kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 1 PID: 23 Comm: kworker/1:1 Not tainted 4.14.217-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events l2cap_chan_timeout
task: ffff8880b5602600 task.stack: ffff8880b5608000
RIP: 0010:strlen+0x1a/0x90 lib/string.c:506
RSP: 0018:ffff8880b560fa78 EFLAGS: 00010096
RAX: dffffc0000000000 RBX: ffff88809b7de0a8 RCX: 0000000000000000
RDX: 185bad4757fe7907 RSI: ffff8880a9f93720 RDI: c2dd6a3abff3c83a
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
RBP: c2dd6a3abff3c83a R08: 0000000000000000 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff88f60ec0
R13: ffff8880a9f93720 R14: 0000000000000000 R15: ffff8880b560fb38
FS:  0000000000000000(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000538198 CR3: 000000009c8b3000 CR4: 00000000001426e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 strlen include/linux/string.h:294 [inline]
 trace_event_get_offsets_lock_acquire include/trace/events/lock.h:13 [inline]
 perf_trace_lock_acquire+0xd3/0x510 include/trace/events/lock.h:13
 trace_lock_acquire include/trace/events/lock.h:13 [inline]
 lock_acquire+0x2b8/0x3f0 kernel/locking/lockdep.c:3997
 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:135 [inline]
 _raw_spin_lock_bh+0x2f/0x40 kernel/locking/spinlock.c:176
 spin_lock_bh include/linux/spinlock.h:322 [inline]
 lock_sock_nested+0x39/0x100 net/core/sock.c:2788
 l2cap_sock_teardown_cb+0x93/0x650 net/bluetooth/l2cap_sock.c:1341
 l2cap_chan_del+0xaf/0x950 net/bluetooth/l2cap_core.c:599
 l2cap_chan_close+0x103/0x870 net/bluetooth/l2cap_core.c:757
 l2cap_chan_timeout+0x143/0x2a0 net/bluetooth/l2cap_core.c:430
 process_one_work+0x793/0x14a0 kernel/workqueue.c:2116
 worker_thread+0x5cc/0xff0 kernel/workqueue.c:2250
 kthread+0x30d/0x420 kernel/kthread.c:232
 ret_from_fork+0x24/0x30 arch/x86/entry/entry_64.S:404
Code: ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 89 fd 48 c1 ea 03 53 48 83 ec 08 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 48 80 7d 00 
RIP: strlen+0x1a/0x90 lib/string.c:506 RSP: ffff8880b560fa78
---[ end trace d012b0e7aa997e24 ]---