[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 60.759231][ T26] audit: type=1800 audit(1560178015.713:25): pid=8611 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 60.782220][ T26] audit: type=1800 audit(1560178015.723:26): pid=8611 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 60.804159][ T26] audit: type=1800 audit(1560178015.723:27): pid=8611 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.128' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 145.337900][ T8771] FAULT_INJECTION: forcing a failure. [ 145.337900][ T8771] name failslab, interval 1, probability 0, space 0, times 1 [ 145.339856][ T8766] FAULT_INJECTION: forcing a failure. [ 145.339856][ T8766] name failslab, interval 1, probability 0, space 0, times 1 [ 145.372647][ T8774] FAULT_INJECTION: forcing a failure. [ 145.372647][ T8774] name failslab, interval 1, probability 0, space 0, times 1 [ 145.386079][ T8771] CPU: 1 PID: 8771 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 145.394087][ T8771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.394093][ T8771] Call Trace: [ 145.394114][ T8771] dump_stack+0x172/0x1f0 [ 145.394126][ T8771] should_fail.cold+0xa/0x15 [ 145.394138][ T8771] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 145.394149][ T8771] ? ___might_sleep+0x163/0x280 [ 145.394166][ T8771] __should_failslab+0x121/0x190 [ 145.394176][ T8771] should_failslab+0x9/0x14 [ 145.411990][ T8771] __kmalloc+0x2d9/0x740 [ 145.412003][ T8771] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 145.412013][ T8771] ? rcu_read_lock_sched_held+0x110/0x130 [ 145.412030][ T8771] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 145.427242][ T8771] tomoyo_realpath_from_path+0xcd/0x7a0 [ 145.427252][ T8771] ? tomoyo_path_number_perm+0x193/0x520 [ 145.427266][ T8771] tomoyo_path_number_perm+0x1dd/0x520 [ 145.432754][ T8775] FAULT_INJECTION: forcing a failure. [ 145.432754][ T8775] name failslab, interval 1, probability 0, space 0, times 1 [ 145.436749][ T8771] ? tomoyo_path_number_perm+0x193/0x520 [ 145.436763][ T8771] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 145.436778][ T8771] ? vfs_write+0x2f0/0x580 [ 145.446742][ T8771] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 145.446757][ T8771] ? __sb_end_write+0xd9/0x110 [ 145.469365][ T8771] ? vfs_write+0x160/0x580 [ 145.469381][ T8771] tomoyo_file_ioctl+0x23/0x30 [ 145.469395][ T8771] security_file_ioctl+0x77/0xc0 [ 145.501527][ T8772] FAULT_INJECTION: forcing a failure. [ 145.501527][ T8772] name failslab, interval 1, probability 0, space 0, times 1 [ 145.504002][ T8771] ksys_ioctl+0x57/0xd0 [ 145.504020][ T8771] __x64_sys_ioctl+0x73/0xb0 [ 145.550474][ T8771] do_syscall_64+0xfd/0x680 [ 145.554973][ T8771] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 145.560848][ T8771] RIP: 0033:0x441279 [ 145.564726][ T8771] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 145.584419][ T8771] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.592826][ T8771] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 145.600788][ T8771] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 145.608748][ T8771] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 145.616705][ T8771] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 145.624690][ T8771] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 145.632919][ T8772] CPU: 0 PID: 8772 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 145.635546][ T8773] FAULT_INJECTION: forcing a failure. [ 145.635546][ T8773] name failslab, interval 1, probability 0, space 0, times 1 [ 145.640917][ T8772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.640922][ T8772] Call Trace: [ 145.640942][ T8772] dump_stack+0x172/0x1f0 [ 145.640956][ T8772] should_fail.cold+0xa/0x15 [ 145.640969][ T8772] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 145.640986][ T8772] ? ___might_sleep+0x163/0x280 [ 145.686737][ T8772] __should_failslab+0x121/0x190 [ 145.691669][ T8772] should_failslab+0x9/0x14 [ 145.696153][ T8772] __kmalloc+0x2d9/0x740 [ 145.700382][ T8772] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 145.706089][ T8772] ? rcu_read_lock_sched_held+0x110/0x130 [ 145.711799][ T8772] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 145.717501][ T8772] tomoyo_realpath_from_path+0xcd/0x7a0 [ 145.723051][ T8772] ? tomoyo_path_number_perm+0x193/0x520 [ 145.728672][ T8772] tomoyo_path_number_perm+0x1dd/0x520 [ 145.734226][ T8772] ? tomoyo_path_number_perm+0x193/0x520 [ 145.739846][ T8772] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 145.745647][ T8772] ? vfs_write+0x2f0/0x580 [ 145.755974][ T8772] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 145.762207][ T8772] ? __sb_end_write+0xd9/0x110 [ 145.766961][ T8772] ? vfs_write+0x160/0x580 [ 145.771372][ T8772] tomoyo_file_ioctl+0x23/0x30 [ 145.776123][ T8772] security_file_ioctl+0x77/0xc0 [ 145.781050][ T8772] ksys_ioctl+0x57/0xd0 [ 145.785197][ T8772] __x64_sys_ioctl+0x73/0xb0 [ 145.789773][ T8772] do_syscall_64+0xfd/0x680 [ 145.794435][ T8772] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 145.800318][ T8772] RIP: 0033:0x441279 [ 145.804421][ T8772] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 145.824036][ T8772] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 145.832452][ T8772] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 145.840411][ T8772] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 145.848415][ T8772] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 145.856710][ T8772] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 145.864855][ T8772] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 145.872839][ T8773] CPU: 1 PID: 8773 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 145.880755][ T8773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 145.890907][ T8773] Call Trace: [ 145.894210][ T8773] dump_stack+0x172/0x1f0 [ 145.898644][ T8773] should_fail.cold+0xa/0x15 [ 145.903583][ T8773] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 145.909388][ T8773] ? ___might_sleep+0x163/0x280 [ 145.914343][ T8773] __should_failslab+0x121/0x190 [ 145.919502][ T8773] should_failslab+0x9/0x14 [ 145.923994][ T8773] __kmalloc+0x2d9/0x740 [ 145.928324][ T8773] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 145.934107][ T8773] ? rcu_read_lock_sched_held+0x110/0x130 [ 145.939823][ T8773] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 145.945631][ T8773] tomoyo_realpath_from_path+0xcd/0x7a0 [ 145.951162][ T8773] ? tomoyo_path_number_perm+0x193/0x520 [ 145.956778][ T8773] tomoyo_path_number_perm+0x1dd/0x520 [ 145.962221][ T8773] ? tomoyo_path_number_perm+0x193/0x520 [ 145.967837][ T8773] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 145.973653][ T8773] ? vfs_write+0x2f0/0x580 [ 145.978068][ T8773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 145.984304][ T8773] ? __sb_end_write+0xd9/0x110 [ 145.989055][ T8773] ? vfs_write+0x160/0x580 [ 145.993513][ T8773] tomoyo_file_ioctl+0x23/0x30 [ 145.998265][ T8773] security_file_ioctl+0x77/0xc0 [ 146.003190][ T8773] ksys_ioctl+0x57/0xd0 [ 146.007505][ T8773] __x64_sys_ioctl+0x73/0xb0 [ 146.012096][ T8773] do_syscall_64+0xfd/0x680 [ 146.016631][ T8773] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 146.022507][ T8773] RIP: 0033:0x441279 [ 146.026378][ T8773] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 146.045974][ T8773] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.054382][ T8773] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 146.062345][ T8773] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 146.070395][ T8773] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 146.078486][ T8773] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 146.086487][ T8773] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 146.094610][ T8766] CPU: 0 PID: 8766 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 146.102515][ T8766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.112548][ T8766] Call Trace: [ 146.115822][ T8766] dump_stack+0x172/0x1f0 [ 146.120147][ T8766] should_fail.cold+0xa/0x15 [ 146.124791][ T8766] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 146.130593][ T8766] ? ___might_sleep+0x163/0x280 [ 146.135548][ T8766] __should_failslab+0x121/0x190 [ 146.140520][ T8766] should_failslab+0x9/0x14 [ 146.145010][ T8766] __kmalloc+0x2d9/0x740 [ 146.149238][ T8766] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 146.154945][ T8766] ? rcu_read_lock_sched_held+0x110/0x130 [ 146.160651][ T8766] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 146.166372][ T8766] tomoyo_realpath_from_path+0xcd/0x7a0 [ 146.171899][ T8766] ? tomoyo_path_number_perm+0x193/0x520 [ 146.177511][ T8766] tomoyo_path_number_perm+0x1dd/0x520 [ 146.182963][ T8766] ? tomoyo_path_number_perm+0x193/0x520 [ 146.188590][ T8766] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 146.194433][ T8766] ? vfs_write+0x2f0/0x580 [ 146.198858][ T8766] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.205136][ T8766] ? __sb_end_write+0xd9/0x110 [ 146.209930][ T8766] ? vfs_write+0x160/0x580 [ 146.214354][ T8766] tomoyo_file_ioctl+0x23/0x30 [ 146.219108][ T8766] security_file_ioctl+0x77/0xc0 [ 146.224038][ T8766] ksys_ioctl+0x57/0xd0 [ 146.228187][ T8766] __x64_sys_ioctl+0x73/0xb0 [ 146.232813][ T8766] do_syscall_64+0xfd/0x680 [ 146.237323][ T8766] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 146.243294][ T8766] RIP: 0033:0x441279 [ 146.247206][ T8766] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 146.266814][ T8766] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.275427][ T8766] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 146.283386][ T8766] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 146.291341][ T8766] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 146.299331][ T8766] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 146.307288][ T8766] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 146.315272][ T8774] CPU: 1 PID: 8774 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 146.323191][ T8774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.333368][ T8774] Call Trace: [ 146.336657][ T8774] dump_stack+0x172/0x1f0 [ 146.341020][ T8774] should_fail.cold+0xa/0x15 [ 146.345694][ T8774] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 146.351954][ T8774] ? ___might_sleep+0x163/0x280 [ 146.356895][ T8774] __should_failslab+0x121/0x190 [ 146.361829][ T8774] should_failslab+0x9/0x14 [ 146.366322][ T8774] __kmalloc+0x2d9/0x740 [ 146.370570][ T8774] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 146.376350][ T8774] ? rcu_read_lock_sched_held+0x110/0x130 [ 146.382200][ T8774] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 146.387914][ T8774] tomoyo_realpath_from_path+0xcd/0x7a0 [ 146.393516][ T8774] ? tomoyo_path_number_perm+0x193/0x520 [ 146.399258][ T8774] tomoyo_path_number_perm+0x1dd/0x520 [ 146.404842][ T8774] ? tomoyo_path_number_perm+0x193/0x520 [ 146.410485][ T8774] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 146.410534][ T8771] ERROR: Out of memory at tomoyo_realpath_from_path. [ 146.416288][ T8774] ? vfs_write+0x2f0/0x580 [ 146.416325][ T8774] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.433775][ T8774] ? __sb_end_write+0xd9/0x110 [ 146.438538][ T8774] ? vfs_write+0x160/0x580 [ 146.442938][ T8774] tomoyo_file_ioctl+0x23/0x30 [ 146.447815][ T8774] security_file_ioctl+0x77/0xc0 [ 146.452744][ T8774] ksys_ioctl+0x57/0xd0 [ 146.456048][ T8773] ERROR: Out of memory at tomoyo_realpath_from_path. [ 146.456998][ T8774] __x64_sys_ioctl+0x73/0xb0 [ 146.468253][ T8774] do_syscall_64+0xfd/0x680 [ 146.472752][ T8774] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 146.478646][ T8774] RIP: 0033:0x441279 [ 146.482631][ T8774] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 146.485700][ T8772] ERROR: Out of memory at tomoyo_realpath_from_path. [ 146.502288][ T8774] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.502300][ T8774] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 146.502305][ T8774] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 146.502309][ T8774] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 146.502314][ T8774] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 146.502318][ T8774] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 146.503705][ T8774] ERROR: Out of memory at tomoyo_realpath_from_path. [ 146.510359][ T8775] CPU: 0 PID: 8775 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 146.519107][ T8766] ERROR: Out of memory at tomoyo_realpath_from_path. [ 146.525501][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 146.525506][ T8775] Call Trace: [ 146.525525][ T8775] dump_stack+0x172/0x1f0 [ 146.525539][ T8775] should_fail.cold+0xa/0x15 [ 146.525549][ T8775] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 146.525562][ T8775] ? ___might_sleep+0x163/0x280 [ 146.525576][ T8775] __should_failslab+0x121/0x190 [ 146.525595][ T8775] should_failslab+0x9/0x14 [ 146.621439][ T8775] __kmalloc+0x2d9/0x740 [ 146.625675][ T8775] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 146.631388][ T8775] ? rcu_read_lock_sched_held+0x110/0x130 [ 146.637102][ T8775] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 146.642820][ T8775] tomoyo_realpath_from_path+0xcd/0x7a0 [ 146.648400][ T8775] ? tomoyo_path_number_perm+0x193/0x520 [ 146.654030][ T8775] tomoyo_path_number_perm+0x1dd/0x520 [ 146.659483][ T8775] ? tomoyo_path_number_perm+0x193/0x520 [ 146.665158][ T8775] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 146.671230][ T8775] ? vfs_write+0x2f0/0x580 [ 146.675644][ T8775] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 146.681873][ T8775] ? __sb_end_write+0xd9/0x110 [ 146.686635][ T8775] ? vfs_write+0x160/0x580 [ 146.691065][ T8775] tomoyo_file_ioctl+0x23/0x30 [ 146.695836][ T8775] security_file_ioctl+0x77/0xc0 [ 146.700775][ T8775] ksys_ioctl+0x57/0xd0 [ 146.704936][ T8775] __x64_sys_ioctl+0x73/0xb0 [ 146.709525][ T8775] do_syscall_64+0xfd/0x680 [ 146.714141][ T8775] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 146.720027][ T8775] RIP: 0033:0x441279 [ 146.723916][ T8775] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 146.743749][ T8775] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 146.752151][ T8775] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 146.760204][ T8775] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 146.768162][ T8775] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 146.776193][ T8775] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 146.784156][ T8775] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 146.793568][ T8775] ERROR: Out of memory at tomoyo_realpath_from_path. [ 146.803857][ T8782] Bluetooth: hci1: sending frame failed (-49) [ 148.360820][ T2901] Bluetooth: hci0: command 0x1003 tx timeout [ 148.367383][ T8784] Bluetooth: hci0: sending frame failed (-49) [ 148.840790][ T8778] Bluetooth: hci4: command 0x1003 tx timeout [ 148.846971][ T8778] Bluetooth: hci5: command 0x1003 tx timeout [ 148.847075][ T8784] Bluetooth: hci4: sending frame failed (-49) [ 148.853308][ T8778] Bluetooth: hci3: command 0x1003 tx timeout [ 148.859206][ T8783] Bluetooth: hci5: sending frame failed (-49) [ 148.865691][ T8778] Bluetooth: hci2: command 0x1003 tx timeout [ 148.871748][ T8784] Bluetooth: hci3: sending frame failed (-49) [ 148.877667][ T8778] Bluetooth: hci1: command 0x1003 tx timeout [ 148.883593][ T8783] Bluetooth: hci2: sending frame failed (-49) [ 148.889840][ T8785] Bluetooth: hci1: sending frame failed (-49) [ 150.440544][ T8778] Bluetooth: hci0: command 0x1001 tx timeout [ 150.446638][ T8785] Bluetooth: hci0: sending frame failed (-49) [ 150.920596][ T8778] Bluetooth: hci1: command 0x1001 tx timeout [ 150.920603][ T2901] Bluetooth: hci2: command 0x1001 tx timeout [ 150.920642][ T2901] Bluetooth: hci3: command 0x1001 tx timeout [ 150.933074][ T8785] Bluetooth: hci2: sending frame failed (-49) [ 150.938683][ T8783] Bluetooth: hci1: sending frame failed (-49) [ 150.951091][ T2901] Bluetooth: hci5: command 0x1001 tx timeout [ 150.951137][ T8783] Bluetooth: hci3: sending frame failed (-49) [ 150.957110][ T2901] Bluetooth: hci4: command 0x1001 tx timeout [ 150.963254][ T8785] Bluetooth: hci5: sending frame failed (-49) [ 150.969232][ T8784] Bluetooth: hci4: sending frame failed (-49) [ 152.520617][ T2901] Bluetooth: hci0: command 0x1009 tx timeout [ 153.000613][ T8778] Bluetooth: hci3: command 0x1009 tx timeout [ 153.000620][ T2901] Bluetooth: hci4: command 0x1009 tx timeout [ 153.000672][ T2901] Bluetooth: hci1: command 0x1009 tx timeout [ 153.006730][ T8778] Bluetooth: hci5: command 0x1009 tx timeout [ 153.024726][ T8778] Bluetooth: hci2: command 0x1009 tx timeout executing program [ 155.493166][ T8786] FAULT_INJECTION: forcing a failure. [ 155.493166][ T8786] name failslab, interval 1, probability 0, space 0, times 0 [ 155.505867][ T8786] CPU: 0 PID: 8786 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 155.513765][ T8786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 155.523889][ T8786] Call Trace: [ 155.527194][ T8786] dump_stack+0x172/0x1f0 [ 155.531513][ T8786] should_fail.cold+0xa/0x15 [ 155.536089][ T8786] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 155.541881][ T8786] ? ___might_sleep+0x163/0x280 [ 155.546715][ T8786] __should_failslab+0x121/0x190 [ 155.551639][ T8786] should_failslab+0x9/0x14 [ 155.556123][ T8786] __kmalloc+0x2d9/0x740 [ 155.560365][ T8786] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 155.566086][ T8786] ? rcu_read_lock_sched_held+0x110/0x130 [ 155.571813][ T8786] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 155.577513][ T8786] tomoyo_realpath_from_path+0xcd/0x7a0 [ 155.583039][ T8786] ? tomoyo_path_number_perm+0x193/0x520 [ 155.588654][ T8786] tomoyo_path_number_perm+0x1dd/0x520 [ 155.594098][ T8786] ? tomoyo_path_number_perm+0x193/0x520 [ 155.599748][ T8786] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 155.605552][ T8786] ? vfs_write+0x2f0/0x580 [ 155.609985][ T8786] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 155.616212][ T8786] ? __sb_end_write+0xd9/0x110 [ 155.620958][ T8786] ? vfs_write+0x160/0x580 [ 155.625359][ T8786] tomoyo_file_ioctl+0x23/0x30 [ 155.630106][ T8786] security_file_ioctl+0x77/0xc0 [ 155.635026][ T8786] ksys_ioctl+0x57/0xd0 [ 155.639171][ T8786] __x64_sys_ioctl+0x73/0xb0 [ 155.643750][ T8786] do_syscall_64+0xfd/0x680 [ 155.648238][ T8786] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 155.654116][ T8786] RIP: 0033:0x441279 [ 155.658008][ T8786] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 155.677612][ T8786] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 155.686011][ T8786] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 155.693971][ T8786] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 155.701928][ T8786] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 155.709912][ T8786] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 155.717869][ T8786] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 155.726948][ T8786] ERROR: Out of memory at tomoyo_realpath_from_path. executing program [ 156.129995][ T8787] FAULT_INJECTION: forcing a failure. [ 156.129995][ T8787] name failslab, interval 1, probability 0, space 0, times 0 [ 156.142692][ T8787] CPU: 0 PID: 8787 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 156.150623][ T8787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 156.160657][ T8787] Call Trace: [ 156.163940][ T8787] dump_stack+0x172/0x1f0 [ 156.168270][ T8787] should_fail.cold+0xa/0x15 [ 156.172852][ T8787] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 156.178658][ T8787] ? ___might_sleep+0x163/0x280 [ 156.183502][ T8787] __should_failslab+0x121/0x190 [ 156.188438][ T8787] should_failslab+0x9/0x14 [ 156.192921][ T8787] __kmalloc+0x2d9/0x740 [ 156.197147][ T8787] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 156.202851][ T8787] ? rcu_read_lock_sched_held+0x110/0x130 [ 156.208560][ T8787] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 156.214267][ T8787] tomoyo_realpath_from_path+0xcd/0x7a0 [ 156.219799][ T8787] ? tomoyo_path_number_perm+0x193/0x520 [ 156.225420][ T8787] tomoyo_path_number_perm+0x1dd/0x520 [ 156.230861][ T8787] ? tomoyo_path_number_perm+0x193/0x520 [ 156.236488][ T8787] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 156.242392][ T8787] ? vfs_write+0x2f0/0x580 [ 156.246802][ T8787] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 156.253046][ T8787] ? __sb_end_write+0xd9/0x110 [ 156.257804][ T8787] ? vfs_write+0x160/0x580 [ 156.262227][ T8787] tomoyo_file_ioctl+0x23/0x30 [ 156.266992][ T8787] security_file_ioctl+0x77/0xc0 [ 156.271913][ T8787] ksys_ioctl+0x57/0xd0 [ 156.276050][ T8787] __x64_sys_ioctl+0x73/0xb0 [ 156.280624][ T8787] do_syscall_64+0xfd/0x680 [ 156.285112][ T8787] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 156.291245][ T8787] RIP: 0033:0x441279 [ 156.295123][ T8787] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 156.314717][ T8787] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 156.323304][ T8787] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 156.331260][ T8787] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 156.339234][ T8787] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 156.347190][ T8787] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 156.355156][ T8787] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 156.363218][ T8787] ERROR: Out of memory at tomoyo_realpath_from_path. executing program executing program executing program executing program [ 156.790137][ T8793] FAULT_INJECTION: forcing a failure. [ 156.790137][ T8793] name failslab, interval 1, probability 0, space 0, times 0 [ 156.807555][ T8789] FAULT_INJECTION: forcing a failure. [ 156.807555][ T8789] name failslab, interval 1, probability 0, space 0, times 0 [ 156.822888][ T8793] CPU: 1 PID: 8793 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 156.830816][ T8793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 156.830822][ T8793] Call Trace: [ 156.830846][ T8793] dump_stack+0x172/0x1f0 [ 156.830867][ T8793] should_fail.cold+0xa/0x15 [ 156.830886][ T8793] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 156.830905][ T8793] ? ___might_sleep+0x163/0x280 [ 156.830924][ T8793] __should_failslab+0x121/0x190 [ 156.830943][ T8793] should_failslab+0x9/0x14 [ 156.830956][ T8793] __kmalloc+0x2d9/0x740 [ 156.830973][ T8793] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 156.830990][ T8793] ? rcu_read_lock_sched_held+0x110/0x130 [ 156.831003][ T8793] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 156.831021][ T8793] tomoyo_realpath_from_path+0xcd/0x7a0 [ 156.831040][ T8793] ? tomoyo_path_number_perm+0x193/0x520 [ 156.850177][ T8793] tomoyo_path_number_perm+0x1dd/0x520 [ 156.850192][ T8793] ? tomoyo_path_number_perm+0x193/0x520 [ 156.850209][ T8793] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 156.850242][ T8793] ? vfs_write+0x2f0/0x580 [ 156.865457][ T8793] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 156.865478][ T8793] ? __sb_end_write+0xd9/0x110 [ 156.865496][ T8793] ? vfs_write+0x160/0x580 [ 156.883894][ T8794] FAULT_INJECTION: forcing a failure. [ 156.883894][ T8794] name failslab, interval 1, probability 0, space 0, times 0 [ 156.884876][ T8793] tomoyo_file_ioctl+0x23/0x30 [ 156.884893][ T8793] security_file_ioctl+0x77/0xc0 [ 156.884917][ T8793] ksys_ioctl+0x57/0xd0 [ 156.970599][ T8793] __x64_sys_ioctl+0x73/0xb0 [ 156.975206][ T8793] do_syscall_64+0xfd/0x680 [ 156.979722][ T8793] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 156.985616][ T8793] RIP: 0033:0x441279 [ 156.989526][ T8793] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 157.009137][ T8793] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 157.017558][ T8793] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 157.025531][ T8793] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 157.033504][ T8793] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 157.041491][ T8793] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 157.049468][ T8793] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 157.057644][ T8794] CPU: 0 PID: 8794 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 157.065546][ T8794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.065552][ T8794] Call Trace: [ 157.065576][ T8794] dump_stack+0x172/0x1f0 [ 157.065596][ T8794] should_fail.cold+0xa/0x15 [ 157.065617][ T8794] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 157.087861][ T8794] ? ___might_sleep+0x163/0x280 [ 157.087883][ T8794] __should_failslab+0x121/0x190 [ 157.087910][ T8794] should_failslab+0x9/0x14 [ 157.098880][ T8794] __kmalloc+0x2d9/0x740 [ 157.098899][ T8794] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 157.098916][ T8794] ? rcu_read_lock_sched_held+0x110/0x130 [ 157.098930][ T8794] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 157.098949][ T8794] tomoyo_realpath_from_path+0xcd/0x7a0 [ 157.105842][ T8792] FAULT_INJECTION: forcing a failure. [ 157.105842][ T8792] name failslab, interval 1, probability 0, space 0, times 0 [ 157.108458][ T8794] ? tomoyo_path_number_perm+0x193/0x520 [ 157.108482][ T8794] tomoyo_path_number_perm+0x1dd/0x520 [ 157.108494][ T8794] ? tomoyo_path_number_perm+0x193/0x520 [ 157.108514][ T8794] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 157.170421][ T8794] ? vfs_write+0x2f0/0x580 [ 157.174870][ T8794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.181118][ T8794] ? __sb_end_write+0xd9/0x110 [ 157.185889][ T8794] ? vfs_write+0x160/0x580 [ 157.190317][ T8794] tomoyo_file_ioctl+0x23/0x30 [ 157.195083][ T8794] security_file_ioctl+0x77/0xc0 [ 157.200034][ T8794] ksys_ioctl+0x57/0xd0 [ 157.204205][ T8794] __x64_sys_ioctl+0x73/0xb0 [ 157.208803][ T8794] do_syscall_64+0xfd/0x680 [ 157.213316][ T8794] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 157.219235][ T8794] RIP: 0033:0x441279 [ 157.223136][ T8794] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 157.242775][ T8794] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 157.251197][ T8794] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 157.259168][ T8794] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 157.267135][ T8794] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 157.275103][ T8794] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 157.283073][ T8794] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 157.291068][ T8792] CPU: 1 PID: 8792 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 157.293308][ T8793] ERROR: Out of memory at tomoyo_realpath_from_path. [ 157.298973][ T8792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.298980][ T8792] Call Trace: [ 157.299003][ T8792] dump_stack+0x172/0x1f0 [ 157.299024][ T8792] should_fail.cold+0xa/0x15 [ 157.299045][ T8792] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 157.307430][ T8794] ERROR: Out of memory at tomoyo_realpath_from_path. [ 157.315795][ T8792] ? ___might_sleep+0x163/0x280 [ 157.315818][ T8792] __should_failslab+0x121/0x190 [ 157.315835][ T8792] should_failslab+0x9/0x14 [ 157.315848][ T8792] __kmalloc+0x2d9/0x740 [ 157.315863][ T8792] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 157.315880][ T8792] ? rcu_read_lock_sched_held+0x110/0x130 [ 157.315899][ T8792] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 157.376087][ T8792] tomoyo_realpath_from_path+0xcd/0x7a0 [ 157.381651][ T8792] ? tomoyo_path_number_perm+0x193/0x520 [ 157.387561][ T8792] tomoyo_path_number_perm+0x1dd/0x520 [ 157.393024][ T8792] ? tomoyo_path_number_perm+0x193/0x520 [ 157.398668][ T8792] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 157.404586][ T8792] ? vfs_write+0x2f0/0x580 [ 157.409035][ T8792] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.415290][ T8792] ? __sb_end_write+0xd9/0x110 [ 157.420053][ T8792] ? vfs_write+0x160/0x580 [ 157.424476][ T8792] tomoyo_file_ioctl+0x23/0x30 [ 157.429244][ T8792] security_file_ioctl+0x77/0xc0 [ 157.434184][ T8792] ksys_ioctl+0x57/0xd0 [ 157.438345][ T8792] __x64_sys_ioctl+0x73/0xb0 [ 157.442947][ T8792] do_syscall_64+0xfd/0x680 [ 157.447453][ T8792] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 157.453695][ T8792] RIP: 0033:0x441279 [ 157.457598][ T8792] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 157.477405][ T8792] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 157.485821][ T8792] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 157.493800][ T8792] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 157.501777][ T8792] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 157.509752][ T8792] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 157.517721][ T8792] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 157.525714][ T8789] CPU: 0 PID: 8789 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 157.531600][ T189] Bluetooth: Error in BCSP hdr checksum [ 157.533789][ T8789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.533803][ T8789] Call Trace: [ 157.533827][ T8789] dump_stack+0x172/0x1f0 [ 157.539485][ T189] Bluetooth: Error in BCSP hdr checksum [ 157.549497][ T8789] should_fail.cold+0xa/0x15 [ 157.549515][ T8789] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 157.549535][ T8789] ? ___might_sleep+0x163/0x280 [ 157.549555][ T8789] __should_failslab+0x121/0x190 [ 157.549573][ T8789] should_failslab+0x9/0x14 [ 157.549592][ T8789] __kmalloc+0x2d9/0x740 [ 157.553109][ T8792] ERROR: Out of memory at tomoyo_realpath_from_path. [ 157.557186][ T8789] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 157.557205][ T8789] ? rcu_read_lock_sched_held+0x110/0x130 [ 157.557219][ T8789] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 157.557239][ T8789] tomoyo_realpath_from_path+0xcd/0x7a0 [ 157.620872][ T8789] ? tomoyo_path_number_perm+0x193/0x520 [ 157.626562][ T8789] tomoyo_path_number_perm+0x1dd/0x520 [ 157.632093][ T8789] ? tomoyo_path_number_perm+0x193/0x520 [ 157.637739][ T8789] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 157.643597][ T8789] ? vfs_write+0x2f0/0x580 [ 157.648137][ T8789] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 157.654370][ T8789] ? __sb_end_write+0xd9/0x110 [ 157.659162][ T8789] ? vfs_write+0x160/0x580 [ 157.663678][ T8789] tomoyo_file_ioctl+0x23/0x30 [ 157.668461][ T8789] security_file_ioctl+0x77/0xc0 [ 157.673407][ T8789] ksys_ioctl+0x57/0xd0 [ 157.677579][ T8789] __x64_sys_ioctl+0x73/0xb0 [ 157.682175][ T8789] do_syscall_64+0xfd/0x680 [ 157.686683][ T8789] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 157.692580][ T8789] RIP: 0033:0x441279 [ 157.696513][ T8789] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 157.716281][ T8789] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 157.724695][ T8789] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 157.733983][ T8789] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 157.741984][ T8789] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 157.749976][ T8789] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 157.757965][ T8789] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 157.766301][ T12] Bluetooth: hci0: command 0x1003 tx timeout [ 157.767432][ T8789] ERROR: Out of memory at tomoyo_realpath_from_path. [ 157.773178][ T8784] Bluetooth: hci0: sending frame failed (-49) [ 157.781367][ T189] Bluetooth: Short BCSP packet [ 158.200526][ T3486] Bluetooth: hci1: command 0x1003 tx timeout [ 158.206756][ T8784] Bluetooth: hci1: sending frame failed (-49) [ 158.840532][ T3486] Bluetooth: hci3: command 0x1003 tx timeout [ 158.846714][ T8784] Bluetooth: hci3: sending frame failed (-49) [ 158.852953][ T3486] Bluetooth: hci2: command 0x1003 tx timeout [ 158.859367][ T8784] Bluetooth: hci2: sending frame failed (-49) [ 159.240521][ T3486] Bluetooth: hci4: command 0x1003 tx timeout [ 159.246682][ T8784] Bluetooth: hci4: sending frame failed (-49) [ 159.252936][ T3486] Bluetooth: hci5: command 0x1003 tx timeout [ 159.259005][ T8784] Bluetooth: hci5: sending frame failed (-49) [ 159.800524][ T12] Bluetooth: hci0: command 0x1001 tx timeout [ 159.806820][ T8784] Bluetooth: hci0: sending frame failed (-49) [ 160.280514][ T3486] Bluetooth: hci1: command 0x1001 tx timeout [ 160.286617][ T8784] Bluetooth: hci1: sending frame failed (-49) [ 160.920525][ T3486] Bluetooth: hci2: command 0x1001 tx timeout [ 160.926671][ T8784] Bluetooth: hci2: sending frame failed (-49) [ 160.932814][ T3486] Bluetooth: hci3: command 0x1001 tx timeout [ 160.938866][ T8784] Bluetooth: hci3: sending frame failed (-49) [ 161.320513][ T12] Bluetooth: hci5: command 0x1001 tx timeout [ 161.320520][ T3486] Bluetooth: hci4: command 0x1001 tx timeout [ 161.332606][ T8784] Bluetooth: hci4: sending frame failed (-49) [ 161.338801][ T8784] Bluetooth: hci5: sending frame failed (-49) [ 161.880562][ T3486] Bluetooth: hci0: command 0x1009 tx timeout [ 162.360588][ T3486] Bluetooth: hci1: command 0x1009 tx timeout [ 163.000623][ T3486] Bluetooth: hci2: command 0x1009 tx timeout [ 163.000644][ T12] Bluetooth: hci3: command 0x1009 tx timeout [ 163.400638][ T3486] Bluetooth: hci5: command 0x1009 tx timeout [ 163.400646][ T12] Bluetooth: hci4: command 0x1009 tx timeout executing program [ 165.729405][ T8799] FAULT_INJECTION: forcing a failure. [ 165.729405][ T8799] name failslab, interval 1, probability 0, space 0, times 0 [ 165.742136][ T8799] CPU: 1 PID: 8799 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 165.750013][ T8799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.760052][ T8799] Call Trace: [ 165.763417][ T8799] dump_stack+0x172/0x1f0 [ 165.767739][ T8799] should_fail.cold+0xa/0x15 [ 165.772327][ T8799] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 165.778120][ T8799] ? ___might_sleep+0x163/0x280 [ 165.782959][ T8799] __should_failslab+0x121/0x190 [ 165.787988][ T8799] should_failslab+0x9/0x14 [ 165.792477][ T8799] __kmalloc+0x2d9/0x740 [ 165.796704][ T8799] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 165.802495][ T8799] ? rcu_read_lock_sched_held+0x110/0x130 [ 165.808220][ T8799] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 165.814543][ T8799] tomoyo_realpath_from_path+0xcd/0x7a0 [ 165.820165][ T8799] ? tomoyo_path_number_perm+0x193/0x520 [ 165.825835][ T8799] tomoyo_path_number_perm+0x1dd/0x520 [ 165.831376][ T8799] ? tomoyo_path_number_perm+0x193/0x520 [ 165.837002][ T8799] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 165.842808][ T8799] ? vfs_write+0x2f0/0x580 [ 165.847221][ T8799] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 165.853454][ T8799] ? __sb_end_write+0xd9/0x110 [ 165.858200][ T8799] ? vfs_write+0x160/0x580 [ 165.862614][ T8799] tomoyo_file_ioctl+0x23/0x30 [ 165.867362][ T8799] security_file_ioctl+0x77/0xc0 [ 165.872285][ T8799] ksys_ioctl+0x57/0xd0 [ 165.876440][ T8799] __x64_sys_ioctl+0x73/0xb0 [ 165.881032][ T8799] do_syscall_64+0xfd/0x680 [ 165.885540][ T8799] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 165.891415][ T8799] RIP: 0033:0x441279 [ 165.895317][ T8799] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 165.914908][ T8799] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.923323][ T8799] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 165.931281][ T8799] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 165.939244][ T8799] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 165.947216][ T8799] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 165.955211][ T8799] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 165.964074][ T8799] ERROR: Out of memory at tomoyo_realpath_from_path. executing program [ 166.369977][ T8800] FAULT_INJECTION: forcing a failure. [ 166.369977][ T8800] name failslab, interval 1, probability 0, space 0, times 0 [ 166.382760][ T8800] CPU: 0 PID: 8800 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 166.390657][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.400715][ T8800] Call Trace: [ 166.404066][ T8800] dump_stack+0x172/0x1f0 [ 166.408399][ T8800] should_fail.cold+0xa/0x15 [ 166.412976][ T8800] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 166.418770][ T8800] ? ___might_sleep+0x163/0x280 [ 166.423611][ T8800] __should_failslab+0x121/0x190 [ 166.428533][ T8800] should_failslab+0x9/0x14 [ 166.433016][ T8800] __kmalloc+0x2d9/0x740 [ 166.437245][ T8800] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 166.442944][ T8800] ? rcu_read_lock_sched_held+0x110/0x130 [ 166.448660][ T8800] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 166.454363][ T8800] tomoyo_realpath_from_path+0xcd/0x7a0 [ 166.459889][ T8800] ? tomoyo_path_number_perm+0x193/0x520 [ 166.465521][ T8800] tomoyo_path_number_perm+0x1dd/0x520 [ 166.470981][ T8800] ? tomoyo_path_number_perm+0x193/0x520 [ 166.476594][ T8800] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 166.482387][ T8800] ? vfs_write+0x2f0/0x580 [ 166.486805][ T8800] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 166.493031][ T8800] ? __sb_end_write+0xd9/0x110 [ 166.497793][ T8800] ? vfs_write+0x160/0x580 [ 166.502198][ T8800] tomoyo_file_ioctl+0x23/0x30 [ 166.506955][ T8800] security_file_ioctl+0x77/0xc0 [ 166.511882][ T8800] ksys_ioctl+0x57/0xd0 [ 166.516018][ T8800] __x64_sys_ioctl+0x73/0xb0 [ 166.520590][ T8800] do_syscall_64+0xfd/0x680 [ 166.525076][ T8800] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 166.530948][ T8800] RIP: 0033:0x441279 [ 166.534835][ T8800] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 166.554428][ T8800] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.562827][ T8800] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 166.570794][ T8800] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 166.578769][ T8800] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 166.586765][ T8800] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 166.594729][ T8800] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 166.603476][ T8800] ERROR: Out of memory at tomoyo_realpath_from_path. executing program executing program [ 167.017989][ T8784] Bluetooth: hci2: sending frame failed (-49) [ 167.025348][ T8801] FAULT_INJECTION: forcing a failure. [ 167.025348][ T8801] name failslab, interval 1, probability 0, space 0, times 0 [ 167.035108][ T8802] FAULT_INJECTION: forcing a failure. [ 167.035108][ T8802] name failslab, interval 1, probability 0, space 0, times 0 [ 167.038259][ T8801] CPU: 0 PID: 8801 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 167.058578][ T8801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.068639][ T8801] Call Trace: [ 167.071944][ T8801] dump_stack+0x172/0x1f0 [ 167.076290][ T8801] should_fail.cold+0xa/0x15 [ 167.080900][ T8801] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 167.086723][ T8801] ? ___might_sleep+0x163/0x280 [ 167.091602][ T8801] __should_failslab+0x121/0x190 [ 167.096563][ T8801] should_failslab+0x9/0x14 [ 167.101072][ T8801] __kmalloc+0x2d9/0x740 [ 167.105341][ T8801] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 167.111336][ T8801] ? rcu_read_lock_sched_held+0x110/0x130 [ 167.117055][ T8801] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.122785][ T8801] tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.128347][ T8801] ? tomoyo_path_number_perm+0x193/0x520 [ 167.134010][ T8801] tomoyo_path_number_perm+0x1dd/0x520 [ 167.139491][ T8801] ? tomoyo_path_number_perm+0x193/0x520 [ 167.145133][ T8801] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 167.150963][ T8801] ? vfs_write+0x2f0/0x580 [ 167.155400][ T8801] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 167.161648][ T8801] ? __sb_end_write+0xd9/0x110 [ 167.166414][ T8801] ? vfs_write+0x160/0x580 [ 167.170837][ T8801] tomoyo_file_ioctl+0x23/0x30 [ 167.175609][ T8801] security_file_ioctl+0x77/0xc0 [ 167.180640][ T8801] ksys_ioctl+0x57/0xd0 [ 167.184803][ T8801] __x64_sys_ioctl+0x73/0xb0 [ 167.189396][ T8801] do_syscall_64+0xfd/0x680 [ 167.193917][ T8801] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.200163][ T8801] RIP: 0033:0x441279 [ 167.204069][ T8801] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 167.223675][ T8801] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.232090][ T8801] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 167.240062][ T8801] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 167.248056][ T8801] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 167.256031][ T8801] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 167.264181][ T8801] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 167.272179][ T8802] CPU: 1 PID: 8802 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 167.272880][ T8801] ERROR: Out of memory at tomoyo_realpath_from_path. [ 167.280096][ T8802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.280102][ T8802] Call Trace: [ 167.280126][ T8802] dump_stack+0x172/0x1f0 [ 167.280146][ T8802] should_fail.cold+0xa/0x15 [ 167.280166][ T8802] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 167.287231][ T189] Bluetooth: Error in BCSP hdr checksum [ 167.296912][ T8802] ? ___might_sleep+0x163/0x280 [ 167.296932][ T8802] __should_failslab+0x121/0x190 [ 167.296950][ T8802] should_failslab+0x9/0x14 [ 167.296961][ T8802] __kmalloc+0x2d9/0x740 [ 167.296978][ T8802] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 167.296993][ T8802] ? rcu_read_lock_sched_held+0x110/0x130 [ 167.297005][ T8802] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.297026][ T8802] tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.361934][ T8802] ? tomoyo_path_number_perm+0x193/0x520 [ 167.367561][ T8802] tomoyo_path_number_perm+0x1dd/0x520 [ 167.373003][ T8802] ? tomoyo_path_number_perm+0x193/0x520 [ 167.378621][ T8802] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 167.384422][ T8802] ? vfs_write+0x2f0/0x580 [ 167.388839][ T8802] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 167.395080][ T8802] ? __sb_end_write+0xd9/0x110 [ 167.399828][ T8802] ? vfs_write+0x160/0x580 [ 167.404229][ T8802] tomoyo_file_ioctl+0x23/0x30 [ 167.408983][ T8802] security_file_ioctl+0x77/0xc0 [ 167.413904][ T8802] ksys_ioctl+0x57/0xd0 [ 167.418045][ T8802] __x64_sys_ioctl+0x73/0xb0 [ 167.422620][ T8802] do_syscall_64+0xfd/0x680 [ 167.427111][ T8802] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.432992][ T8802] RIP: 0033:0x441279 [ 167.436902][ T8802] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 167.456496][ T8802] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.464894][ T8802] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 167.472847][ T8802] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 167.480799][ T8802] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 167.488757][ T8802] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 167.496713][ T8802] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 167.506220][ T8802] ERROR: Out of memory at tomoyo_realpath_from_path. executing program executing program [ 167.656858][ T8803] FAULT_INJECTION: forcing a failure. [ 167.656858][ T8803] name failslab, interval 1, probability 0, space 0, times 0 [ 167.671120][ T8803] CPU: 0 PID: 8803 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 167.679028][ T8803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.679035][ T8803] Call Trace: [ 167.679058][ T8803] dump_stack+0x172/0x1f0 [ 167.679080][ T8803] should_fail.cold+0xa/0x15 [ 167.692442][ T8803] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 167.692462][ T8803] ? ___might_sleep+0x163/0x280 [ 167.692482][ T8803] __should_failslab+0x121/0x190 [ 167.692500][ T8803] should_failslab+0x9/0x14 [ 167.692512][ T8803] __kmalloc+0x2d9/0x740 [ 167.692535][ T8803] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 167.701441][ T8803] ? rcu_read_lock_sched_held+0x110/0x130 [ 167.701454][ T8803] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.701471][ T8803] tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.701484][ T8803] ? tomoyo_path_number_perm+0x193/0x520 [ 167.701505][ T8803] tomoyo_path_number_perm+0x1dd/0x520 [ 167.701526][ T8803] ? tomoyo_path_number_perm+0x193/0x520 [ 167.715360][ T8804] FAULT_INJECTION: forcing a failure. [ 167.715360][ T8804] name failslab, interval 1, probability 0, space 0, times 0 [ 167.717188][ T8803] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 167.717215][ T8803] ? vfs_write+0x2f0/0x580 [ 167.788362][ T8803] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 167.794627][ T8803] ? __sb_end_write+0xd9/0x110 [ 167.799403][ T8803] ? vfs_write+0x160/0x580 [ 167.803863][ T8803] tomoyo_file_ioctl+0x23/0x30 [ 167.808643][ T8803] security_file_ioctl+0x77/0xc0 [ 167.813634][ T8803] ksys_ioctl+0x57/0xd0 [ 167.817891][ T8803] __x64_sys_ioctl+0x73/0xb0 [ 167.822516][ T8803] do_syscall_64+0xfd/0x680 [ 167.827047][ T8803] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 167.832952][ T8803] RIP: 0033:0x441279 [ 167.836856][ T8803] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 167.856468][ T8803] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.865069][ T8803] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 167.873050][ T8803] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 167.881027][ T8803] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 167.889007][ T8803] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 167.896993][ T8803] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 167.904999][ T8804] CPU: 1 PID: 8804 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 167.905998][ T8796] Bluetooth: hci0: command 0x1003 tx timeout [ 167.912915][ T8804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.912922][ T8804] Call Trace: [ 167.912946][ T8804] dump_stack+0x172/0x1f0 [ 167.912968][ T8804] should_fail.cold+0xa/0x15 [ 167.912987][ T8804] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 167.913006][ T8804] ? ___might_sleep+0x163/0x280 [ 167.913024][ T8804] __should_failslab+0x121/0x190 [ 167.913049][ T8804] should_failslab+0x9/0x14 [ 167.920868][ T8803] ERROR: Out of memory at tomoyo_realpath_from_path. [ 167.929104][ T8804] __kmalloc+0x2d9/0x740 [ 167.929124][ T8804] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 167.929141][ T8804] ? rcu_read_lock_sched_held+0x110/0x130 [ 167.929155][ T8804] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.929172][ T8804] tomoyo_realpath_from_path+0xcd/0x7a0 [ 167.929191][ T8804] ? tomoyo_path_number_perm+0x193/0x520 [ 167.942443][ T8784] Bluetooth: hci0: sending frame failed (-49) [ 167.947142][ T8804] tomoyo_path_number_perm+0x1dd/0x520 [ 167.947157][ T8804] ? tomoyo_path_number_perm+0x193/0x520 [ 167.947176][ T8804] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 167.947201][ T8804] ? vfs_write+0x2f0/0x580 [ 167.947243][ T8804] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 168.034203][ T8804] ? __sb_end_write+0xd9/0x110 [ 168.038971][ T8804] ? vfs_write+0x160/0x580 [ 168.043377][ T8804] tomoyo_file_ioctl+0x23/0x30 [ 168.048132][ T8804] security_file_ioctl+0x77/0xc0 [ 168.053076][ T8804] ksys_ioctl+0x57/0xd0 [ 168.057326][ T8804] __x64_sys_ioctl+0x73/0xb0 [ 168.061908][ T8804] do_syscall_64+0xfd/0x680 [ 168.066402][ T8804] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 168.072279][ T8804] RIP: 0033:0x441279 [ 168.076440][ T8804] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 168.096057][ T8804] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.104570][ T8804] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 168.112542][ T8804] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 168.120506][ T8804] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 168.128469][ T8804] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 168.136527][ T8804] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 168.146066][ T189] Bluetooth: Error in BCSP hdr checksum [ 168.151846][ T8804] ERROR: Out of memory at tomoyo_realpath_from_path. [ 168.440507][ T8797] Bluetooth: hci1: command 0x1003 tx timeout [ 168.446765][ T8784] Bluetooth: hci1: sending frame failed (-49) [ 169.080511][ T8796] Bluetooth: hci2: command 0x1003 tx timeout [ 169.086708][ T8796] Bluetooth: hci3: command 0x1003 tx timeout [ 169.086770][ T8784] Bluetooth: hci2: sending frame failed (-49) [ 169.098918][ T8783] Bluetooth: hci3: sending frame failed (-49) [ 169.720499][ T8796] Bluetooth: hci4: command 0x1003 tx timeout [ 169.726715][ T8783] Bluetooth: hci4: sending frame failed (-49) [ 169.880527][ T8797] Bluetooth: hci5: command 0x1003 tx timeout [ 169.886738][ T8783] Bluetooth: hci5: sending frame failed (-49) [ 169.960518][ T8796] Bluetooth: hci0: command 0x1001 tx timeout [ 169.966743][ T8783] Bluetooth: hci0: sending frame failed (-49) [ 170.530515][ T8796] Bluetooth: hci1: command 0x1001 tx timeout [ 170.536803][ T8783] Bluetooth: hci1: sending frame failed (-49) [ 171.160526][ T8796] Bluetooth: hci2: command 0x1001 tx timeout [ 171.160534][ T8797] Bluetooth: hci3: command 0x1001 tx timeout [ 171.161385][ T8783] Bluetooth: hci3: sending frame failed (-49) [ 171.166817][ T8784] Bluetooth: hci2: sending frame failed (-49) [ 171.800494][ T8797] Bluetooth: hci4: command 0x1001 tx timeout [ 171.806718][ T8784] Bluetooth: hci4: sending frame failed (-49) [ 171.960514][ T8796] Bluetooth: hci5: command 0x1001 tx timeout [ 171.966681][ T8784] Bluetooth: hci5: sending frame failed (-49) [ 172.040492][ T8796] Bluetooth: hci0: command 0x1009 tx timeout [ 172.600494][ T8797] Bluetooth: hci1: command 0x1009 tx timeout [ 173.240564][ T8797] Bluetooth: hci3: command 0x1009 tx timeout [ 173.240572][ T8796] Bluetooth: hci2: command 0x1009 tx timeout [ 173.880590][ T8796] Bluetooth: hci4: command 0x1009 tx timeout [ 174.040517][ T8796] Bluetooth: hci5: command 0x1009 tx timeout executing program [ 175.969407][ T8805] FAULT_INJECTION: forcing a failure. [ 175.969407][ T8805] name failslab, interval 1, probability 0, space 0, times 0 [ 175.982180][ T8805] CPU: 0 PID: 8805 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 175.990081][ T8805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.000125][ T8805] Call Trace: [ 176.003410][ T8805] dump_stack+0x172/0x1f0 [ 176.007740][ T8805] should_fail.cold+0xa/0x15 [ 176.012319][ T8805] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 176.018119][ T8805] ? ___might_sleep+0x163/0x280 [ 176.022984][ T8805] __should_failslab+0x121/0x190 [ 176.027904][ T8805] should_failslab+0x9/0x14 [ 176.032387][ T8805] __kmalloc+0x2d9/0x740 [ 176.036632][ T8805] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 176.042340][ T8805] ? rcu_read_lock_sched_held+0x110/0x130 [ 176.048047][ T8805] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 176.053784][ T8805] tomoyo_realpath_from_path+0xcd/0x7a0 [ 176.059322][ T8805] ? tomoyo_path_number_perm+0x193/0x520 [ 176.064944][ T8805] tomoyo_path_number_perm+0x1dd/0x520 [ 176.070397][ T8805] ? tomoyo_path_number_perm+0x193/0x520 [ 176.076027][ T8805] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 176.081820][ T8805] ? vfs_write+0x2f0/0x580 [ 176.086531][ T8805] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 176.092779][ T8805] ? __sb_end_write+0xd9/0x110 [ 176.097564][ T8805] ? vfs_write+0x160/0x580 [ 176.101977][ T8805] tomoyo_file_ioctl+0x23/0x30 [ 176.106782][ T8805] security_file_ioctl+0x77/0xc0 [ 176.111718][ T8805] ksys_ioctl+0x57/0xd0 [ 176.115898][ T8805] __x64_sys_ioctl+0x73/0xb0 [ 176.120479][ T8805] do_syscall_64+0xfd/0x680 [ 176.124969][ T8805] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 176.130841][ T8805] RIP: 0033:0x441279 [ 176.134820][ T8805] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 176.154427][ T8805] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 176.162852][ T8805] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 176.170807][ T8805] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 176.178767][ T8805] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 176.186729][ T8805] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 176.194695][ T8805] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 176.202917][ T8805] ERROR: Out of memory at tomoyo_realpath_from_path. executing program [ 176.609408][ T8806] FAULT_INJECTION: forcing a failure. [ 176.609408][ T8806] name failslab, interval 1, probability 0, space 0, times 0 [ 176.622201][ T8806] CPU: 1 PID: 8806 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 176.630092][ T8806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.640134][ T8806] Call Trace: [ 176.643417][ T8806] dump_stack+0x172/0x1f0 [ 176.647759][ T8806] should_fail.cold+0xa/0x15 [ 176.652357][ T8806] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 176.658171][ T8806] ? ___might_sleep+0x163/0x280 [ 176.663016][ T8806] __should_failslab+0x121/0x190 [ 176.667950][ T8806] should_failslab+0x9/0x14 [ 176.672466][ T8806] __kmalloc+0x2d9/0x740 [ 176.676714][ T8806] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 176.682442][ T8806] ? rcu_read_lock_sched_held+0x110/0x130 [ 176.688180][ T8806] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 176.693909][ T8806] tomoyo_realpath_from_path+0xcd/0x7a0 [ 176.699452][ T8806] ? tomoyo_path_number_perm+0x193/0x520 [ 176.705105][ T8806] tomoyo_path_number_perm+0x1dd/0x520 [ 176.710560][ T8806] ? tomoyo_path_number_perm+0x193/0x520 [ 176.716183][ T8806] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 176.721994][ T8806] ? vfs_write+0x2f0/0x580 [ 176.726437][ T8806] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 176.733551][ T8806] ? __sb_end_write+0xd9/0x110 [ 176.738309][ T8806] ? vfs_write+0x160/0x580 [ 176.742741][ T8806] tomoyo_file_ioctl+0x23/0x30 [ 176.747502][ T8806] security_file_ioctl+0x77/0xc0 [ 176.752545][ T8806] ksys_ioctl+0x57/0xd0 [ 176.756715][ T8806] __x64_sys_ioctl+0x73/0xb0 [ 176.761297][ T8806] do_syscall_64+0xfd/0x680 [ 176.765794][ T8806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 176.771666][ T8806] RIP: 0033:0x441279 [ 176.775646][ T8806] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 176.795355][ T8806] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 176.803776][ T8806] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 176.811760][ T8806] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 176.819727][ T8806] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 176.827707][ T8806] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 176.835668][ T8806] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 176.844576][ T8806] ERROR: Out of memory at tomoyo_realpath_from_path. executing program executing program [ 177.265372][ T8808] FAULT_INJECTION: forcing a failure. [ 177.265372][ T8808] name failslab, interval 1, probability 0, space 0, times 0 [ 177.271219][ T8807] FAULT_INJECTION: forcing a failure. [ 177.271219][ T8807] name failslab, interval 1, probability 0, space 0, times 0 [ 177.278595][ T8808] CPU: 0 PID: 8808 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 177.298534][ T8808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.308604][ T8808] Call Trace: [ 177.311926][ T8808] dump_stack+0x172/0x1f0 [ 177.316452][ T8808] should_fail.cold+0xa/0x15 [ 177.321056][ T8808] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 177.326879][ T8808] ? ___might_sleep+0x163/0x280 [ 177.331755][ T8808] __should_failslab+0x121/0x190 [ 177.336716][ T8808] should_failslab+0x9/0x14 [ 177.341231][ T8808] __kmalloc+0x2d9/0x740 [ 177.345486][ T8808] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 177.351209][ T8808] ? rcu_read_lock_sched_held+0x110/0x130 [ 177.356934][ T8808] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 177.362668][ T8808] tomoyo_realpath_from_path+0xcd/0x7a0 [ 177.368224][ T8808] ? tomoyo_path_number_perm+0x193/0x520 [ 177.373873][ T8808] tomoyo_path_number_perm+0x1dd/0x520 [ 177.379339][ T8808] ? tomoyo_path_number_perm+0x193/0x520 [ 177.384989][ T8808] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 177.390812][ T8808] ? vfs_write+0x2f0/0x580 [ 177.395250][ T8808] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 177.401502][ T8808] ? __sb_end_write+0xd9/0x110 [ 177.406274][ T8808] ? vfs_write+0x160/0x580 [ 177.410707][ T8808] tomoyo_file_ioctl+0x23/0x30 [ 177.415487][ T8808] security_file_ioctl+0x77/0xc0 [ 177.420457][ T8808] ksys_ioctl+0x57/0xd0 [ 177.424622][ T8808] __x64_sys_ioctl+0x73/0xb0 [ 177.429216][ T8808] do_syscall_64+0xfd/0x680 [ 177.433763][ T8808] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 177.439656][ T8808] RIP: 0033:0x441279 [ 177.443570][ T8808] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 177.463209][ T8808] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 177.471631][ T8808] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 177.479632][ T8808] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 177.487606][ T8808] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 177.495584][ T8808] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 177.503564][ T8808] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 177.511566][ T8807] CPU: 1 PID: 8807 Comm: syz-executor014 Not tainted 5.2.0-rc4 #25 [ 177.513821][ T8808] ERROR: Out of memory at tomoyo_realpath_from_path. [ 177.519477][ T8807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.526551][ T189] Bluetooth: Error in BCSP hdr checksum [ 177.536189][ T8807] Call Trace: [ 177.536216][ T8807] dump_stack+0x172/0x1f0 [ 177.536241][ T8807] should_fail.cold+0xa/0x15 [ 177.536260][ T8807] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 177.536281][ T8807] ? ___might_sleep+0x163/0x280 [ 177.541906][ T21] Bluetooth: Error in BCSP hdr checksum [ 177.545202][ T8807] __should_failslab+0x121/0x190 [ 177.549607][ T8808] Bluetooth: Error in BCSP hdr checksum [ 177.554091][ T8807] should_failslab+0x9/0x14 [ 177.554104][ T8807] __kmalloc+0x2d9/0x740 [ 177.554120][ T8807] ? tomoyo_realpath_from_path+0xc0/0x7a0 [ 177.554135][ T8807] ? rcu_read_lock_sched_held+0x110/0x130 [ 177.554147][ T8807] ? tomoyo_realpath_from_path+0xcd/0x7a0 [ 177.554164][ T8807] tomoyo_realpath_from_path+0xcd/0x7a0 [ 177.554184][ T8807] ? tomoyo_path_number_perm+0x193/0x520 [ 177.565223][ T189] ================================================================== [ 177.570456][ T8807] tomoyo_path_number_perm+0x1dd/0x520 [ 177.575450][ T189] BUG: KASAN: use-after-free in kfree_skb+0x38/0x390 [ 177.580979][ T8807] ? tomoyo_path_number_perm+0x193/0x520 [ 177.585505][ T189] Read of size 4 at addr ffff88808d7fb2d4 by task kworker/u4:3/189 [ 177.589742][ T8807] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 177.595439][ T189] [ 177.601158][ T8807] ? vfs_write+0x2f0/0x580 [ 177.664191][ T8807] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 177.670451][ T8807] ? __sb_end_write+0xd9/0x110 [ 177.675227][ T8807] ? vfs_write+0x160/0x580 [ 177.679664][ T8807] tomoyo_file_ioctl+0x23/0x30 [ 177.684439][ T8807] security_file_ioctl+0x77/0xc0 [ 177.689480][ T8807] ksys_ioctl+0x57/0xd0 [ 177.693645][ T8807] __x64_sys_ioctl+0x73/0xb0 [ 177.698252][ T8807] do_syscall_64+0xfd/0x680 [ 177.702764][ T8807] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 177.708676][ T8807] RIP: 0033:0x441279 [ 177.712664][ T8807] Code: e8 ac e8 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 0b 0a fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 177.732644][ T8807] RSP: 002b:00007ffe0c384088 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 177.741078][ T8807] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441279 [ 177.749061][ T8807] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 177.757041][ T8807] RBP: 00007ffe0c3840a0 R08: 0000000000000001 R09: 0000000000000000 [ 177.765020][ T8807] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff [ 177.773002][ T8807] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000000000000 [ 177.781010][ T189] CPU: 0 PID: 189 Comm: kworker/u4:3 Not tainted 5.2.0-rc4 #25 [ 177.782837][ T8807] ERROR: Out of memory at tomoyo_realpath_from_path. [ 177.788576][ T189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.788595][ T189] Workqueue: events_unbound flush_to_ldisc [ 177.788603][ T189] Call Trace: [ 177.788627][ T189] dump_stack+0x172/0x1f0 [ 177.788643][ T189] ? kfree_skb+0x38/0x390 [ 177.788668][ T189] print_address_description.cold+0x7c/0x20d [ 177.829201][ T189] ? kfree_skb+0x38/0x390 [ 177.833525][ T189] ? kfree_skb+0x38/0x390 [ 177.837846][ T189] __kasan_report.cold+0x1b/0x40 [ 177.842774][ T189] ? kfree_skb+0x38/0x390 [ 177.847099][ T189] kasan_report+0x12/0x20 [ 177.851482][ T189] check_memory_region+0x123/0x190 [ 177.856599][ T189] kasan_check_read+0x11/0x20 [ 177.861281][ T189] kfree_skb+0x38/0x390 [ 177.865427][ T189] bcsp_recv+0x2d8/0x13a0 [ 177.869758][ T189] hci_uart_tty_receive+0x225/0x530 [ 177.874949][ T189] ? hci_uart_write_work+0x700/0x700 [ 177.880222][ T189] tty_ldisc_receive_buf+0x15f/0x1c0 [ 177.885490][ T189] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 177.891749][ T189] tty_port_default_receive_buf+0x7d/0xb0 [ 177.897499][ T189] flush_to_ldisc+0x222/0x390 [ 177.902186][ T189] process_one_work+0x989/0x1790 [ 177.907194][ T189] ? pwq_dec_nr_in_flight+0x320/0x320 [ 177.912555][ T189] ? lock_acquire+0x16f/0x3f0 [ 177.917255][ T189] worker_thread+0x98/0xe40 [ 177.921757][ T189] ? trace_hardirqs_on+0x67/0x220 [ 177.926812][ T189] kthread+0x354/0x420 [ 177.930887][ T189] ? process_one_work+0x1790/0x1790 [ 177.936086][ T189] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 177.942310][ T189] ret_from_fork+0x24/0x30 [ 177.946716][ T189] [ 177.949037][ T189] Allocated by task 189: [ 177.953265][ T189] save_stack+0x23/0x90 [ 177.957414][ T189] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 177.963044][ T189] kasan_slab_alloc+0xf/0x20 [ 177.967618][ T189] kmem_cache_alloc_node+0x131/0x710 [ 177.973148][ T189] __alloc_skb+0xd5/0x5e0 [ 177.977481][ T189] bcsp_recv+0x8c1/0x13a0 [ 177.981815][ T189] hci_uart_tty_receive+0x225/0x530 [ 177.986998][ T189] tty_ldisc_receive_buf+0x15f/0x1c0 [ 177.992278][ T189] tty_port_default_receive_buf+0x7d/0xb0 [ 177.998021][ T189] flush_to_ldisc+0x222/0x390 [ 178.002689][ T189] process_one_work+0x989/0x1790 [ 178.007610][ T189] worker_thread+0x98/0xe40 [ 178.012115][ T189] kthread+0x354/0x420 [ 178.016173][ T189] ret_from_fork+0x24/0x30 [ 178.020575][ T189] [ 178.022896][ T189] Freed by task 8808: [ 178.026877][ T189] save_stack+0x23/0x90 [ 178.031010][ T189] __kasan_slab_free+0x102/0x150 [ 178.035928][ T189] kasan_slab_free+0xe/0x10 [ 178.040446][ T189] kmem_cache_free+0x86/0x260 [ 178.045145][ T189] kfree_skbmem+0xc5/0x150 [ 178.049541][ T189] kfree_skb+0xf0/0x390 [ 178.053679][ T189] bcsp_recv+0x2d8/0x13a0 [ 178.057992][ T189] hci_uart_tty_receive+0x225/0x530 [ 178.063170][ T189] tty_ioctl+0x921/0x14a0 [ 178.067500][ T189] do_vfs_ioctl+0xd5f/0x1380 [ 178.072070][ T189] ksys_ioctl+0xab/0xd0 [ 178.076202][ T189] __x64_sys_ioctl+0x73/0xb0 [ 178.080792][ T189] do_syscall_64+0xfd/0x680 [ 178.085305][ T189] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 178.091264][ T189] [ 178.093617][ T189] The buggy address belongs to the object at ffff88808d7fb200 [ 178.093617][ T189] which belongs to the cache skbuff_head_cache of size 224 [ 178.108430][ T189] The buggy address is located 212 bytes inside of [ 178.108430][ T189] 224-byte region [ffff88808d7fb200, ffff88808d7fb2e0) [ 178.121701][ T189] The buggy address belongs to the page: [ 178.127320][ T189] page:ffffea000235fec0 refcount:1 mapcount:0 mapping:ffff88821b6f6540 index:0x0 [ 178.136409][ T189] flags: 0x1fffc0000000200(slab) [ 178.141332][ T189] raw: 01fffc0000000200 ffffea000256f0c8 ffffea0002a49888 ffff88821b6f6540 [ 178.149934][ T189] raw: 0000000000000000 ffff88808d7fb0c0 000000010000000c 0000000000000000 [ 178.158514][ T189] page dumped because: kasan: bad access detected [ 178.164920][ T189] [ 178.167258][ T189] Memory state around the buggy address: [ 178.172902][ T189] ffff88808d7fb180: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc [ 178.180983][ T189] ffff88808d7fb200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 178.189028][ T189] >ffff88808d7fb280: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 178.197101][ T189] ^ [ 178.203794][ T189] ffff88808d7fb300: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb [ 178.211855][ T189] ffff88808d7fb380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 178.219896][ T189] ================================================================== [ 178.227940][ T189] Disabling lock debugging due to kernel taint [ 178.234637][ T189] Kernel panic - not syncing: panic_on_warn set ... [ 178.240631][ T8778] Bluetooth: hci0: command 0x1003 tx timeout [ 178.241248][ T189] CPU: 0 PID: 189 Comm: kworker/u4:3 Tainted: G B 5.2.0-rc4 #25 [ 178.241256][ T189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.241273][ T189] Workqueue: events_unbound flush_to_ldisc [ 178.247313][ T8777] Bluetooth: hci0: sending frame failed (-49) [ 178.256195][ T189] Call Trace: [ 178.256219][ T189] dump_stack+0x172/0x1f0 [ 178.256235][ T189] panic+0x2cb/0x744 [ 178.256249][ T189] ? __warn_printk+0xf3/0xf3 [ 178.256269][ T189] ? kfree_skb+0x38/0x390 [ 178.266579][ T8804] kobject: 'rfkill22' (00000000450c238c): kobject_uevent_env [ 178.272121][ T189] ? preempt_schedule+0x4b/0x60 [ 178.272143][ T189] ? ___preempt_schedule+0x16/0x18 [ 178.279304][ T8804] kobject: 'rfkill22' (00000000450c238c): fill_kobj_path: path = '/devices/virtual/bluetooth/hci5/rfkill22' [ 178.281480][ T189] ? trace_hardirqs_on+0x5e/0x220 [ 178.281495][ T189] ? kfree_skb+0x38/0x390 [ 178.281509][ T189] end_report+0x47/0x4f [ 178.281520][ T189] ? kfree_skb+0x38/0x390 [ 178.281539][ T189] __kasan_report.cold+0xe/0x40 [ 178.288049][ T8804] kobject: 'rfkill22' (00000000450c238c): kobject_cleanup, parent 000000009c9536ae [ 178.289757][ T189] ? kfree_skb+0x38/0x390 [ 178.289772][ T189] kasan_report+0x12/0x20 [ 178.289792][ T189] check_memory_region+0x123/0x190 [ 178.294787][ T8804] kobject: 'rfkill22' (00000000450c238c): calling ktype release [ 178.298869][ T189] kasan_check_read+0x11/0x20 [ 178.298883][ T189] kfree_skb+0x38/0x390 [ 178.298903][ T189] bcsp_recv+0x2d8/0x13a0 [ 178.306672][ T8804] kobject: 'rfkill22': free name [ 178.311112][ T189] hci_uart_tty_receive+0x225/0x530 [ 178.311127][ T189] ? hci_uart_write_work+0x700/0x700 [ 178.311142][ T189] tty_ldisc_receive_buf+0x15f/0x1c0 [ 178.311162][ T189] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 178.316696][ T8804] kobject: 'hci5' (0000000001a462de): kobject_uevent_env [ 178.327710][ T189] tty_port_default_receive_buf+0x7d/0xb0 [ 178.327725][ T189] flush_to_ldisc+0x222/0x390 [ 178.327750][ T189] process_one_work+0x989/0x1790 [ 178.327769][ T189] ? pwq_dec_nr_in_flight+0x320/0x320 [ 178.327788][ T189] ? lock_acquire+0x16f/0x3f0 [ 178.333502][ T8804] kobject: 'hci5' (0000000001a462de): fill_kobj_path: path = '/devices/virtual/bluetooth/hci5' [ 178.337163][ T189] worker_thread+0x98/0xe40 [ 178.337180][ T189] ? trace_hardirqs_on+0x67/0x220 [ 178.337198][ T189] kthread+0x354/0x420 [ 178.337219][ T189] ? process_one_work+0x1790/0x1790 [ 178.343762][ T8804] kobject: 'hci5' (0000000001a462de): kobject_cleanup, parent 000000009c9536ae [ 178.345834][ T189] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 178.345850][ T189] ret_from_fork+0x24/0x30 [ 178.351814][ T189] Kernel Offset: disabled [ 178.512451][ T189] Rebooting in 86400 seconds..