[ OK ] Started System Logging Service. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Found device /dev/ttyS0. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.240' (ECDSA) to the list of known hosts. syzkaller login: [ 87.279665][ T32] audit: type=1400 audit(1596394893.287:8): avc: denied { execmem } for pid=8448 comm="syz-executor041" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 87.298060][ T8449] IPVS: ftp: loaded support on port[0] = 21 executing program [ 88.435633][ T8472] Bluetooth: hci0: Unknown advertising packet type: 0x613d [ 88.435642][ T8472] ===================================================== [ 88.449896][ T8472] BUG: KMSAN: uninit-value in hci_event_packet+0xab7f/0x33ee0 [ 88.457346][ T8472] CPU: 0 PID: 8472 Comm: kworker/u5:2 Not tainted 5.8.0-rc5-syzkaller #0 [ 88.465732][ T8472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 88.475773][ T8472] Workqueue: hci0 hci_rx_work [ 88.480451][ T8472] Call Trace: [ 88.483737][ T8472] dump_stack+0x1df/0x240 [ 88.488056][ T8472] kmsan_report+0xf7/0x1e0 [ 88.492458][ T8472] __msan_warning+0x58/0xa0 [ 88.496948][ T8472] hci_event_packet+0xab7f/0x33ee0 [ 88.502045][ T8472] ? kmsan_get_metadata+0x11d/0x180 [ 88.507224][ T8472] ? kmsan_set_origin_checked+0x95/0xf0 [ 88.512758][ T8472] ? hci_event_packet+0xaca3/0x33ee0 [ 88.518031][ T8472] ? hci_send_to_monitor+0x138/0x520 [ 88.523300][ T8472] ? kmsan_get_metadata+0x11d/0x180 [ 88.528486][ T8472] hci_rx_work+0x95f/0xce0 [ 88.532890][ T8472] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 88.538685][ T8472] ? hci_alloc_dev+0x2680/0x2680 [ 88.543605][ T8472] process_one_work+0x1540/0x1f30 [ 88.548627][ T8472] worker_thread+0xed2/0x23f0 [ 88.553291][ T8472] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 88.559093][ T8472] kthread+0x515/0x550 [ 88.563146][ T8472] ? process_one_work+0x1f30/0x1f30 [ 88.568327][ T8472] ? kthread_blkcg+0xf0/0xf0 [ 88.572900][ T8472] ret_from_fork+0x22/0x30 [ 88.577299][ T8472] [ 88.579604][ T8472] Uninit was created at: [ 88.583827][ T8472] kmsan_internal_poison_shadow+0x66/0xd0 [ 88.589528][ T8472] kmsan_slab_alloc+0x8a/0xe0 [ 88.594188][ T8472] __kmalloc_node_track_caller+0xb40/0x1200 [ 88.600061][ T8472] __alloc_skb+0x2fd/0xac0 [ 88.604472][ T8472] vhci_write+0x15b/0x800 [ 88.608781][ T8472] vfs_write+0xd98/0x1480 [ 88.613095][ T8472] ksys_write+0x267/0x450 [ 88.617405][ T8472] __se_sys_write+0x92/0xb0 [ 88.621895][ T8472] __ia32_sys_write+0x4a/0x70 [ 88.626688][ T8472] __do_fast_syscall_32+0x2aa/0x400 [ 88.631870][ T8472] do_fast_syscall_32+0x6b/0xd0 [ 88.636723][ T8472] do_SYSENTER_32+0x73/0x90 [ 88.641211][ T8472] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 88.647514][ T8472] ===================================================== [ 88.654426][ T8472] Disabling lock debugging due to kernel taint [ 88.660556][ T8472] Kernel panic - not syncing: panic_on_warn set ... [ 88.667125][ T8472] CPU: 0 PID: 8472 Comm: kworker/u5:2 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 88.676904][ T8472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 88.686945][ T8472] Workqueue: hci0 hci_rx_work [ 88.691615][ T8472] Call Trace: [ 88.694890][ T8472] dump_stack+0x1df/0x240 [ 88.699205][ T8472] panic+0x3d5/0xc3e [ 88.703103][ T8472] kmsan_report+0x1df/0x1e0 [ 88.707592][ T8472] __msan_warning+0x58/0xa0 [ 88.712080][ T8472] hci_event_packet+0xab7f/0x33ee0 [ 88.717173][ T8472] ? kmsan_get_metadata+0x11d/0x180 [ 88.722358][ T8472] ? kmsan_set_origin_checked+0x95/0xf0 [ 88.727898][ T8472] ? hci_event_packet+0xaca3/0x33ee0 [ 88.733347][ T8472] ? hci_send_to_monitor+0x138/0x520 [ 88.738623][ T8472] ? kmsan_get_metadata+0x11d/0x180 [ 88.743811][ T8472] hci_rx_work+0x95f/0xce0 [ 88.748215][ T8472] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 88.754012][ T8472] ? hci_alloc_dev+0x2680/0x2680 [ 88.758933][ T8472] process_one_work+0x1540/0x1f30 [ 88.763957][ T8472] worker_thread+0xed2/0x23f0 [ 88.768632][ T8472] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 88.774428][ T8472] kthread+0x515/0x550 [ 88.778482][ T8472] ? process_one_work+0x1f30/0x1f30 [ 88.783668][ T8472] ? kthread_blkcg+0xf0/0xf0 [ 88.788243][ T8472] ret_from_fork+0x22/0x30 [ 88.793955][ T8472] Kernel Offset: 0x1c000000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 88.805606][ T8472] Rebooting in 86400 seconds..