BUG: memory leak unreferenced object 0xffff888115da3f00 (size 224): comm "syz-executor090", pid 6606, jiffies 4294957799 (age 22.230s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000060a3760>] __alloc_skb+0x5e/0x250 net/core/skbuff.c:198 [<00000000bba6a27b>] alloc_skb include/linux/skbuff.h:1083 [inline] [<00000000bba6a27b>] bt_skb_alloc include/net/bluetooth/bluetooth.h:377 [inline] [<00000000bba6a27b>] h4_recv_buf+0x279/0x450 drivers/bluetooth/hci_h4.c:181 [<0000000028c392be>] ag6xx_recv+0x4d/0xb0 drivers/bluetooth/hci_ag6xx.c:108 [<000000005de43911>] hci_uart_tty_receive+0xae/0x230 drivers/bluetooth/hci_ldisc.c:613 [<00000000230de05c>] tiocsti drivers/tty/tty_io.c:2196 [inline] [<00000000230de05c>] tty_ioctl+0x7ee/0xa30 drivers/tty/tty_io.c:2572 [<000000008e8716e5>] vfs_ioctl fs/ioctl.c:48 [inline] [<000000008e8716e5>] ksys_ioctl+0xa6/0xd0 fs/ioctl.c:753 [<00000000265cb71c>] __do_sys_ioctl fs/ioctl.c:762 [inline] [<00000000265cb71c>] __se_sys_ioctl fs/ioctl.c:760 [inline] [<00000000265cb71c>] __x64_sys_ioctl+0x1a/0x20 fs/ioctl.c:760 [<00000000ebc350aa>] do_syscall_64+0x4c/0xe0 arch/x86/entry/common.c:359 [<000000000a5584c6>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888115da3f00 (size 224): comm "syz-executor090", pid 6606, jiffies 4294957799 (age 23.420s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000060a3760>] __alloc_skb+0x5e/0x250 net/core/skbuff.c:198 [<00000000bba6a27b>] alloc_skb include/linux/skbuff.h:1083 [inline] [<00000000bba6a27b>] bt_skb_alloc include/net/bluetooth/bluetooth.h:377 [inline] [<00000000bba6a27b>] h4_recv_buf+0x279/0x450 drivers/bluetooth/hci_h4.c:181 [<0000000028c392be>] ag6xx_recv+0x4d/0xb0 drivers/bluetooth/hci_ag6xx.c:108 [<000000005de43911>] hci_uart_tty_receive+0xae/0x230 drivers/bluetooth/hci_ldisc.c:613 [<00000000230de05c>] tiocsti drivers/tty/tty_io.c:2196 [inline] [<00000000230de05c>] tty_ioctl+0x7ee/0xa30 drivers/tty/tty_io.c:2572 [<000000008e8716e5>] vfs_ioctl fs/ioctl.c:48 [inline] [<000000008e8716e5>] ksys_ioctl+0xa6/0xd0 fs/ioctl.c:753 [<00000000265cb71c>] __do_sys_ioctl fs/ioctl.c:762 [inline] [<00000000265cb71c>] __se_sys_ioctl fs/ioctl.c:760 [inline] [<00000000265cb71c>] __x64_sys_ioctl+0x1a/0x20 fs/ioctl.c:760 [<00000000ebc350aa>] do_syscall_64+0x4c/0xe0 arch/x86/entry/common.c:359 [<000000000a5584c6>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888115da3f00 (size 224): comm "syz-executor090", pid 6606, jiffies 4294957799 (age 26.870s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000060a3760>] __alloc_skb+0x5e/0x250 net/core/skbuff.c:198 [<00000000bba6a27b>] alloc_skb include/linux/skbuff.h:1083 [inline] [<00000000bba6a27b>] bt_skb_alloc include/net/bluetooth/bluetooth.h:377 [inline] [<00000000bba6a27b>] h4_recv_buf+0x279/0x450 drivers/bluetooth/hci_h4.c:181 [<0000000028c392be>] ag6xx_recv+0x4d/0xb0 drivers/bluetooth/hci_ag6xx.c:108 [<000000005de43911>] hci_uart_tty_receive+0xae/0x230 drivers/bluetooth/hci_ldisc.c:613 [<00000000230de05c>] tiocsti drivers/tty/tty_io.c:2196 [inline] [<00000000230de05c>] tty_ioctl+0x7ee/0xa30 drivers/tty/tty_io.c:2572 [<000000008e8716e5>] vfs_ioctl fs/ioctl.c:48 [inline] [<000000008e8716e5>] ksys_ioctl+0xa6/0xd0 fs/ioctl.c:753 [<00000000265cb71c>] __do_sys_ioctl fs/ioctl.c:762 [inline] [<00000000265cb71c>] __se_sys_ioctl fs/ioctl.c:760 [inline] [<00000000265cb71c>] __x64_sys_ioctl+0x1a/0x20 fs/ioctl.c:760 [<00000000ebc350aa>] do_syscall_64+0x4c/0xe0 arch/x86/entry/common.c:359 [<000000000a5584c6>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888115da3f00 (size 224): comm "syz-executor090", pid 6606, jiffies 4294957799 (age 28.060s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000060a3760>] __alloc_skb+0x5e/0x250 net/core/skbuff.c:198 [<00000000bba6a27b>] alloc_skb include/linux/skbuff.h:1083 [inline] [<00000000bba6a27b>] bt_skb_alloc include/net/bluetooth/bluetooth.h:377 [inline] [<00000000bba6a27b>] h4_recv_buf+0x279/0x450 drivers/bluetooth/hci_h4.c:181 [<0000000028c392be>] ag6xx_recv+0x4d/0xb0 drivers/bluetooth/hci_ag6xx.c:108 [<000000005de43911>] hci_uart_tty_receive+0xae/0x230 drivers/bluetooth/hci_ldisc.c:613 [<00000000230de05c>] tiocsti drivers/tty/tty_io.c:2196 [inline] [<00000000230de05c>] tty_ioctl+0x7ee/0xa30 drivers/tty/tty_io.c:2572 [<000000008e8716e5>] vfs_ioctl fs/ioctl.c:48 [inline] [<000000008e8716e5>] ksys_ioctl+0xa6/0xd0 fs/ioctl.c:753 [<00000000265cb71c>] __do_sys_ioctl fs/ioctl.c:762 [inline] [<00000000265cb71c>] __se_sys_ioctl fs/ioctl.c:760 [inline] [<00000000265cb71c>] __x64_sys_ioctl+0x1a/0x20 fs/ioctl.c:760 [<00000000ebc350aa>] do_syscall_64+0x4c/0xe0 arch/x86/entry/common.c:359 [<000000000a5584c6>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888115da3f00 (size 224): comm "syz-executor090", pid 6606, jiffies 4294957799 (age 29.260s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000060a3760>] __alloc_skb+0x5e/0x250 net/core/skbuff.c:198 [<00000000bba6a27b>] alloc_skb include/linux/skbuff.h:1083 [inline] [<00000000bba6a27b>] bt_skb_alloc include/net/bluetooth/bluetooth.h:377 [inline] [<00000000bba6a27b>] h4_recv_buf+0x279/0x450 drivers/bluetooth/hci_h4.c:181 [<0000000028c392be>] ag6xx_recv+0x4d/0xb0 drivers/bluetooth/hci_ag6xx.c:108 [<000000005de43911>] hci_uart_tty_receive+0xae/0x230 drivers/bluetooth/hci_ldisc.c:613 [<00000000230de05c>] tiocsti drivers/tty/tty_io.c:2196 [inline] [<00000000230de05c>] tty_ioctl+0x7ee/0xa30 drivers/tty/tty_io.c:2572 [<000000008e8716e5>] vfs_ioctl fs/ioctl.c:48 [inline] [<000000008e8716e5>] ksys_ioctl+0xa6/0xd0 fs/ioctl.c:753 [<00000000265cb71c>] __do_sys_ioctl fs/ioctl.c:762 [inline] [<00000000265cb71c>] __se_sys_ioctl fs/ioctl.c:760 [inline] [<00000000265cb71c>] __x64_sys_ioctl+0x1a/0x20 fs/ioctl.c:760 [<00000000ebc350aa>] do_syscall_64+0x4c/0xe0 arch/x86/entry/common.c:359 [<000000000a5584c6>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888115da3f00 (size 224): comm "syz-executor090", pid 6606, jiffies 4294957799 (age 30.460s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000060a3760>] __alloc_skb+0x5e/0x250 net/core/skbuff.c:198 [<00000000bba6a27b>] alloc_skb include/linux/skbuff.h:1083 [inline] [<00000000bba6a27b>] bt_skb_alloc include/net/bluetooth/bluetooth.h:377 [inline] [<00000000bba6a27b>] h4_recv_buf+0x279/0x450 drivers/bluetooth/hci_h4.c:181 [<0000000028c392be>] ag6xx_recv+0x4d/0xb0 drivers/bluetooth/hci_ag6xx.c:108 [<000000005de43911>] hci_uart_tty_receive+0xae/0x230 drivers/bluetooth/hci_ldisc.c:613 [<00000000230de05c>] tiocsti drivers/tty/tty_io.c:2196 [inline] [<00000000230de05c>] tty_ioctl+0x7ee/0xa30 drivers/tty/tty_io.c:2572 [<000000008e8716e5>] vfs_ioctl fs/ioctl.c:48 [inline] [<000000008e8716e5>] ksys_ioctl+0xa6/0xd0 fs/ioctl.c:753 [<00000000265cb71c>] __do_sys_ioctl fs/ioctl.c:762 [inline] [<00000000265cb71c>] __se_sys_ioctl fs/ioctl.c:760 [inline] [<00000000265cb71c>] __x64_sys_ioctl+0x1a/0x20 fs/ioctl.c:760 [<00000000ebc350aa>] do_syscall_64+0x4c/0xe0 arch/x86/entry/common.c:359 [<000000000a5584c6>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 executing program executing program