Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.23' (ECDSA) to the list of known hosts. syzkaller login: [ 61.080082][ T6839] IPVS: ftp: loaded support on port[0] = 21 executing program executing program executing program [ 62.216007][ T6865] Bluetooth: hci0: hardware error 0x00 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 62.369520][ T1536] debugfs: Directory '200' with parent 'hci0' already present! [ 62.377420][ T1536] list_add double add: new=ffff88809951e418, prev=ffff88809951e418, next=ffff88821b777b00. [ 62.388243][ T1536] ------------[ cut here ]------------ [ 62.393712][ T1536] kernel BUG at lib/list_debug.c:29! [ 62.399242][ T1536] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 62.405320][ T1536] CPU: 1 PID: 1536 Comm: kworker/u5:0 Not tainted 5.8.0-syzkaller #0 executing program executing program [ 62.413376][ T1536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.423440][ T1536] Workqueue: hci0 hci_rx_work [ 62.428120][ T1536] RIP: 0010:__list_add_valid.cold+0x26/0x3c [ 62.434082][ T1536] Code: 57 ff ff ff 4c 89 e1 48 c7 c7 c0 a7 93 88 e8 31 c2 c1 fd 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 00 a9 93 88 e8 1a c2 c1 fd <0f> 0b 48 89 f1 48 c7 c7 80 a8 93 88 4c 89 e6 e8 06 c2 c1 fd 0f 0b [ 62.453687][ T1536] RSP: 0018:ffffc90005947830 EFLAGS: 00010282 [ 62.459781][ T1536] RAX: 0000000000000058 RBX: ffff88821b777b00 RCX: 0000000000000000 [ 62.467747][ T1536] RDX: ffff8880a4a5a040 RSI: ffffffff815d8eb7 RDI: fffff52000b28ef8 [ 62.480605][ T1536] RBP: ffff88809951e418 R08: 0000000000000058 R09: ffff8880ae731927 [ 62.488601][ T1536] R10: 0000000000000000 R11: 000000000009d138 R12: ffff88821b777b00 [ 62.496598][ T1536] R13: ffff8880947bd270 R14: ffff88809951e430 R15: ffff88809951e418 [ 62.504571][ T1536] FS: 0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 62.513529][ T1536] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.520205][ T1536] CR2: 0000000020000480 CR3: 0000000009a79000 CR4: 00000000001406e0 [ 62.528180][ T1536] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 62.536148][ T1536] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 62.544134][ T1536] Call Trace: [ 62.547428][ T1536] kobject_add_internal+0x18d/0x940 [ 62.552635][ T1536] kobject_add+0x150/0x1c0 [ 62.557074][ T1536] ? kset_create_and_add+0x190/0x190 [ 62.562356][ T1536] ? kfree+0x1cd/0x2c0 [ 62.566427][ T1536] ? trace_hardirqs_on+0x5f/0x220 [ 62.571455][ T1536] ? lockdep_hardirqs_on+0x76/0xf0 [ 62.576564][ T1536] ? device_add+0x33b/0x1be0 [ 62.581157][ T1536] device_add+0x35a/0x1be0 [ 62.585573][ T1536] ? debugfs_create_dir+0x2cf/0x390 [ 62.590803][ T1536] ? device_check_offline+0x280/0x280 [ 62.596179][ T1536] ? hci_debugfs_create_conn+0x179/0x1f0 [ 62.601815][ T1536] ? hci_debugfs_create_le+0x850/0x850 [ 62.607282][ T1536] hci_conn_add_sysfs+0x84/0xe0 [ 62.612134][ T1536] hci_event_packet+0xe0b/0x86f5 [ 62.617076][ T1536] ? hci_cmd_complete_evt+0xc6e0/0xc6e0 [ 62.622625][ T1536] ? lock_acquire+0x1f1/0xad0 [ 62.627311][ T1536] ? skb_dequeue+0x1c/0x180 [ 62.631823][ T1536] ? find_held_lock+0x2d/0x110 [ 62.636587][ T1536] ? mark_lock+0xbc/0x1710 [ 62.641032][ T1536] ? mark_held_locks+0x9f/0xe0 [ 62.645796][ T1536] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 62.651604][ T1536] ? lockdep_hardirqs_on_prepare+0x354/0x530 [ 62.657586][ T1536] ? trace_hardirqs_on+0x5f/0x220 [ 62.662612][ T1536] ? lockdep_hardirqs_on+0x76/0xf0 [ 62.667726][ T1536] hci_rx_work+0x22e/0xb10 [ 62.672150][ T1536] process_one_work+0x94c/0x1670 [ 62.677091][ T1536] ? lock_release+0x8e0/0x8e0 [ 62.681796][ T1536] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 62.687169][ T1536] ? rwlock_bug.part.0+0x90/0x90 [ 62.692143][ T1536] worker_thread+0x64c/0x1120 [ 62.696828][ T1536] ? process_one_work+0x1670/0x1670 [ 62.702029][ T1536] kthread+0x3b5/0x4a0 [ 62.706120][ T1536] ? __kthread_bind_mask+0xc0/0xc0 [ 62.711234][ T1536] ? __kthread_bind_mask+0xc0/0xc0 [ 62.716349][ T1536] ret_from_fork+0x1f/0x30 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 62.720785][ T1536] Modules linked in: [ 62.724888][ T1536] ---[ end trace c61e73417cdec6f7 ]--- [ 62.730389][ T1536] RIP: 0010:__list_add_valid.cold+0x26/0x3c [ 62.736315][ T1536] Code: 57 ff ff ff 4c 89 e1 48 c7 c7 c0 a7 93 88 e8 31 c2 c1 fd 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 00 a9 93 88 e8 1a c2 c1 fd <0f> 0b 48 89 f1 48 c7 c7 80 a8 93 88 4c 89 e6 e8 06 c2 c1 fd 0f 0b [ 62.755985][ T1536] RSP: 0018:ffffc90005947830 EFLAGS: 00010282 [ 62.762097][ T1536] RAX: 0000000000000058 RBX: ffff88821b777b00 RCX: 0000000000000000 [ 62.770125][ T1536] RDX: ffff8880a4a5a040 RSI: ffffffff815d8eb7 RDI: fffff52000b28ef8 [ 62.778151][ T1536] RBP: ffff88809951e418 R08: 0000000000000058 R09: ffff8880ae731927 [ 62.786126][ T1536] R10: 0000000000000000 R11: 000000000009d138 R12: ffff88821b777b00 [ 62.794158][ T1536] R13: ffff8880947bd270 R14: ffff88809951e430 R15: ffff88809951e418 [ 62.802205][ T1536] FS: 0000000000000000(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 62.811183][ T1536] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.817831][ T1536] CR2: 0000000020000480 CR3: 0000000009a79000 CR4: 00000000001406e0 [ 62.825809][ T1536] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 62.833850][ T1536] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 62.841871][ T1536] Kernel panic - not syncing: Fatal exception [ 62.849019][ T1536] Kernel Offset: disabled [ 62.853376][ T1536] Rebooting in 86400 seconds..