INFO: trying to register non-static key. the code is fine but needs lockdep annotation. turning off the locking correctness validator. CPU: 0 PID: 21299 Comm: syz-executor.4 Not tainted 4.14.226-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x1b2/0x281 lib/dump_stack.c:58 register_lock_class+0x32b/0x1320 kernel/locking/lockdep.c:768 __lock_acquire+0x167/0x3f20 kernel/locking/lockdep.c:3378 ebtables: ebtables: counters copy to user failed while replacing table lock_acquire+0x170/0x3f0 kernel/locking/lockdep.c:3998 __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] _raw_spin_lock_irqsave+0x8c/0xc0 kernel/locking/spinlock.c:160 skb_dequeue+0x1c/0x180 net/core/skbuff.c:2831 skb_queue_purge+0x21/0x30 net/core/skbuff.c:2869 l2cap_chan_del+0x56d/0x950 net/bluetooth/l2cap_core.c:637 l2cap_chan_close+0x103/0x870 net/bluetooth/l2cap_core.c:757 l2cap_sock_shutdown+0x2e7/0xc20 net/bluetooth/l2cap_sock.c:1160 l2cap_sock_release+0x77/0x280 net/bluetooth/l2cap_sock.c:1203 __sock_release+0xcd/0x2b0 net/socket.c:602 sock_close+0x15/0x20 net/socket.c:1139 __fput+0x25f/0x7a0 fs/file_table.c:210 task_work_run+0x11f/0x190 kernel/task_work.c:113 tracehook_notify_resume include/linux/tracehook.h:191 [inline] exit_to_usermode_loop+0x1ad/0x200 arch/x86/entry/common.c:164 prepare_exit_to_usermode arch/x86/entry/common.c:199 [inline] syscall_return_slowpath arch/x86/entry/common.c:270 [inline] do_syscall_64+0x4a3/0x640 arch/x86/entry/common.c:297 entry_SYSCALL_64_after_hwframe+0x46/0xbb RIP: 0033:0x41927b RSP: 002b:00007ffcf04feb00 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 000000000041927b RDX: ffffffffffffffbc RSI: 00000000089075c3 RDI: 0000000000000004 RBP: 0000000000000001 R08: 0000000000000000 R09: 0000001b3032202c R10: 00007ffcf04febf0 R11: 0000000000000293 R12: 000000000005ed26 R13: 00000000000003e8 R14: 000000000056bf60 R15: 000000000005ed0c Bluetooth: hci4 command 0x0419 tx timeout ebtables: ebtables: counters copy to user failed while replacing table Cannot find add_set index 0 as target ebtables: ebtables: counters copy to user failed while replacing table audit: type=1800 audit(1616067133.360:170): pid=21335 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="bus" dev="sda1" ino=15067 res=0 audit: type=1800 audit(1616067133.580:171): pid=21335 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="bus" dev="sda1" ino=15067 res=0 sit: non-ECT from 0.0.0.0 with TOS=0x3 sit: non-ECT from 0.0.0.0 with TOS=0x3 sit: non-ECT from 0.0.0.0 with TOS=0x3 sit: non-ECT from 0.0.0.0 with TOS=0x3 sit: non-ECT from 0.0.0.0 with TOS=0x3 audit: type=1800 audit(1616067134.220:172): pid=21379 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="bus" dev="sda1" ino=15084 res=0 IPVS: Error connecting to the multicast addr audit: type=1800 audit(1616067134.500:173): pid=21403 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="bus" dev="sda1" ino=15083 res=0 IPVS: Error connecting to the multicast addr IPVS: Error connecting to the multicast addr IPVS: Error connecting to the multicast addr IPVS: Error connecting to the multicast addr EXT4-fs warning (device sda1): ext4_group_add:1653: No reserved GDT blocks, can't resize tmpfs: Bad value '7n' for mount option 'nr_blocks' print_req_error: I/O error, dev loop0, sector 0 EXT4-fs warning (device sda1): ext4_group_add:1653: No reserved GDT blocks, can't resize print_req_error: I/O error, dev loop0, sector 0 tmpfs: Bad value '7n' for mount option 'nr_blocks' EXT4-fs warning (device sda1): ext4_group_add:1653: No reserved GDT blocks, can't resize tmpfs: Bad value '7n' for mount option 'nr_blocks' print_req_error: I/O error, dev loop0, sector 0 EXT4-fs warning (device sda1): ext4_group_add:1653: No reserved GDT blocks, can't resize new mount options do not match the existing superblock, will be ignored new mount options do not match the existing superblock, will be ignored tmpfs: Bad value '7n' for mount option 'nr_blocks' new mount options do not match the existing superblock, will be ignored new mount options do not match the existing superblock, will be ignored new mount options do not match the existing superblock, will be ignored new mount options do not match the existing superblock, will be ignored new mount options do not match the existing superblock, will be ignored new mount options do not match the existing superblock, will be ignored kauditd_printk_skb: 2 callbacks suppressed audit: type=1326 audit(1616067140.470:176): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=21786 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x465f69 code=0x0 audit: type=1326 audit(1616067140.690:177): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=21803 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x465f69 code=0x0 audit: type=1326 audit(1616067140.780:178): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=21813 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=231 compat=0 ip=0x465f69 code=0x0 audit: type=1326 audit(1616067141.100:179): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=21837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x465f69 code=0x0 audit: type=1326 audit(1616067141.280:180): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=21856 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x465f69 code=0x0 audit: type=1326 audit(1616067141.640:181): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=21887 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=231 compat=0 ip=0x465f69 code=0x0 IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready device bridge_slave_0 left promiscuous mode bridge0: port 1(bridge_slave_0) entered disabled state device bridge_slave_1 left promiscuous mode bridge0: port 2(bridge_slave_1) entered disabled state bond0: Releasing backup interface bond_slave_0 bond0: Releasing backup interface bond_slave_1 team0: Port device team_slave_0 removed team0: Port device team_slave_1 removed batman_adv: batadv0: Interface deactivated: batadv_slave_0 batman_adv: batadv0: Removing interface: batadv_slave_0 batman_adv: batadv0: Interface deactivated: batadv_slave_1 batman_adv: batadv0: Removing interface: batadv_slave_1 binder: 21913:21914 unknown command 0 binder: 21913:21914 ioctl c0306201 20000200 returned -22 binder: 21913:21914 unknown command 0 binder: 21913:21914 ioctl c0306201 20000200 returned -22 IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready