Warning: Permanently added '10.128.15.250' (ECDSA) to the list of known hosts. 2021/06/27 03:52:28 parsed 1 programs 2021/06/27 03:52:28 executed programs: 0 [ 37.105436] audit: type=1400 audit(1624765948.853:10): avc: denied { execmem } for pid=5637 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 37.165471] IPVS: ftp: loaded support on port[0] = 21 [ 37.182232] IPVS: ftp: loaded support on port[0] = 21 [ 37.192295] IPVS: ftp: loaded support on port[0] = 21 [ 37.193878] IPVS: ftp: loaded support on port[0] = 21 [ 37.216671] IPVS: ftp: loaded support on port[0] = 21 [ 37.257860] IPVS: ftp: loaded support on port[0] = 21 [ 37.449169] chnl_net:caif_netlink_parms(): no params data found [ 37.495652] chnl_net:caif_netlink_parms(): no params data found [ 37.557391] chnl_net:caif_netlink_parms(): no params data found [ 37.614941] chnl_net:caif_netlink_parms(): no params data found [ 37.638399] chnl_net:caif_netlink_parms(): no params data found [ 37.656447] chnl_net:caif_netlink_parms(): no params data found [ 37.671024] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.679184] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.686760] device bridge_slave_0 entered promiscuous mode [ 37.698145] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.704874] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.713094] device bridge_slave_1 entered promiscuous mode [ 37.786322] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.818027] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.827659] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.836060] device bridge_slave_0 entered promiscuous mode [ 37.845416] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.871596] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.878648] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.886816] device bridge_slave_0 entered promiscuous mode [ 37.894272] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.900608] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.908229] device bridge_slave_1 entered promiscuous mode [ 37.915251] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.921938] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.929672] device bridge_slave_0 entered promiscuous mode [ 37.940192] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.947415] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.955600] device bridge_slave_0 entered promiscuous mode [ 37.963187] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.970381] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.980353] device bridge_slave_0 entered promiscuous mode [ 37.987536] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.995541] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.003151] device bridge_slave_1 entered promiscuous mode [ 38.016741] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.024598] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.031598] device bridge_slave_1 entered promiscuous mode [ 38.044018] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.052616] team0: Port device team_slave_0 added [ 38.058215] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.065064] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.072471] device bridge_slave_1 entered promiscuous mode [ 38.078901] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.085840] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.093784] device bridge_slave_1 entered promiscuous mode [ 38.114955] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 38.123481] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.130976] team0: Port device team_slave_1 added [ 38.149926] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 38.159595] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 38.167750] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.178556] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.195923] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 38.205783] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 38.226340] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 38.235865] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 38.249664] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 38.267866] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 38.277597] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 38.313645] device hsr_slave_0 entered promiscuous mode [ 38.352695] device hsr_slave_1 entered promiscuous mode [ 38.407545] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.415596] team0: Port device team_slave_0 added [ 38.421122] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.431261] team0: Port device team_slave_0 added [ 38.450203] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.458109] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.465724] team0: Port device team_slave_1 added [ 38.471074] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.478891] team0: Port device team_slave_1 added [ 38.488159] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.499612] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.508638] team0: Port device team_slave_0 added [ 38.514537] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 38.521583] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.529006] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.537343] team0: Port device team_slave_0 added [ 38.542896] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.555789] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.563448] team0: Port device team_slave_0 added [ 38.568993] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.576651] team0: Port device team_slave_1 added [ 38.588110] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.596050] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.604002] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.611587] team0: Port device team_slave_1 added [ 38.622154] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.629736] team0: Port device team_slave_1 added [ 38.635547] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.643407] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.656900] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.674460] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.688206] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.734128] device hsr_slave_0 entered promiscuous mode [ 38.762366] device hsr_slave_1 entered promiscuous mode [ 38.806500] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.815707] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.843471] device hsr_slave_0 entered promiscuous mode [ 38.882207] device hsr_slave_1 entered promiscuous mode [ 38.922615] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.983372] device hsr_slave_0 entered promiscuous mode [ 39.022125] device hsr_slave_1 entered promiscuous mode [ 39.123375] device hsr_slave_0 entered promiscuous mode [ 39.162480] device hsr_slave_1 entered promiscuous mode [ 39.202462] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 39.218373] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 39.225896] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 39.233448] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 39.241091] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 39.252711] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 39.304504] device hsr_slave_0 entered promiscuous mode [ 39.362008] device hsr_slave_1 entered promiscuous mode [ 39.409851] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.425424] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.437266] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 39.468560] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.476251] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 39.492565] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.510525] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.528464] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.553992] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.572919] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.584845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.595494] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.610147] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.618389] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.636615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.644929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.657990] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.667475] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.674502] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.684661] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.698414] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.712134] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.720526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.728326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.737145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.748932] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.755618] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.766668] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.776498] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.786082] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.795569] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.802336] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.808843] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.816833] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.824207] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.831550] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.839485] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.849379] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.856206] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.865951] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.873159] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.881016] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.890132] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 39.903940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.913907] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.922286] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.930935] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.943105] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.951455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 39.959967] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.969697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.977642] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.986976] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.996338] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.002998] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.010300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.020001] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.028146] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.034784] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.042551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.050550] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.058468] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.065090] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.074247] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.082712] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.090839] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 40.097712] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.105704] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.114560] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.124847] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.134917] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.142911] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.150712] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.162100] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.171694] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.180068] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 40.186557] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.195644] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 40.205247] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.213567] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.223917] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.232246] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.241411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.248935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.257974] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.266469] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.273616] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.280802] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.289612] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.297908] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.304740] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.313601] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.321546] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.328794] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.336909] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.345849] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.355440] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.363828] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.373990] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.383108] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 40.393086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.401997] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.409032] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.418376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.429224] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.440779] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.449584] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.456803] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.464357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.474319] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.483786] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 40.490056] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.500051] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.508098] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.517212] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.525574] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.532395] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.540370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.548640] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.556900] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.563907] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.571890] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.580320] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.589591] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.600100] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 40.609700] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.619401] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.627879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.636048] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.644022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.652308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.659999] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.667973] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.675877] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.683966] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.690406] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.697896] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.706268] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.714196] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.720573] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.727839] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.738142] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.747067] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 40.755104] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.766265] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.775661] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.782958] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.790334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.798055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.806477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.814205] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.822723] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.830795] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.839391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.847728] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.855837] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.865330] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.873733] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.881569] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.891503] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.900009] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.910229] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 40.917552] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.925184] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.933189] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.941218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.949019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.957137] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.965789] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.973766] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.982267] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.990988] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 41.000019] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 41.007778] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 41.015847] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 41.024418] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 41.039832] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 41.047073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.055281] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.063241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 41.071106] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.079192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 41.087423] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.095065] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 41.103416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.112611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 41.121214] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.130956] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 41.137038] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.146889] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 41.161412] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 41.168590] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 41.176767] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 41.187500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.195636] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.203492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 41.212037] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.223664] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 41.236434] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 41.249704] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.259198] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.267557] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 41.276618] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 41.285758] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 41.295378] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 41.305734] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.314315] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 41.322452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.330386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.338193] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.345957] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.353536] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.361894] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.370890] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.378551] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 41.386662] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 41.393007] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.404190] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 41.410424] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.419524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.429465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.439887] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 41.451447] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 41.463389] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.470052] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.478295] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.486551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.494417] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.506919] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.516752] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.528434] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.538397] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 41.545736] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.556205] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 41.562473] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 41.574458] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.590639] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.600873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.624691] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.671921] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.684017] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.765573] Bluetooth: hci3: sending frame failed (-49) [ 43.701768] Bluetooth: hci0: command 0x1003 tx timeout [ 43.701770] Bluetooth: hci1: command 0x1003 tx timeout [ 43.715322] Bluetooth: hci0: sending frame failed (-49) [ 43.721652] Bluetooth: hci1: sending frame failed (-49) [ 43.780880] Bluetooth: hci4: command 0x1003 tx timeout [ 43.787294] Bluetooth: hci4: sending frame failed (-49) [ 43.790087] Bluetooth: hci2: command 0x1003 tx timeout [ 43.794807] Bluetooth: hci3: command 0x1003 tx timeout [ 43.804738] Bluetooth: hci2: sending frame failed (-49) [ 43.810852] Bluetooth: hci3: sending frame failed (-49) [ 43.860596] Bluetooth: hci5: command 0x1003 tx timeout [ 43.866506] Bluetooth: hci5: sending frame failed (-49) [ 45.780576] Bluetooth: hci1: command 0x1001 tx timeout [ 45.786157] Bluetooth: hci1: sending frame failed (-49) [ 45.793136] Bluetooth: hci0: command 0x1001 tx timeout [ 45.798756] Bluetooth: hci0: sending frame failed (-49) [ 45.870007] Bluetooth: hci3: command 0x1001 tx timeout [ 45.875738] Bluetooth: hci3: sending frame failed (-49) [ 45.882562] Bluetooth: hci2: command 0x1001 tx timeout [ 45.888054] Bluetooth: hci2: sending frame failed (-49) [ 45.894074] Bluetooth: hci4: command 0x1001 tx timeout [ 45.900030] Bluetooth: hci4: sending frame failed (-49) [ 45.940121] Bluetooth: hci5: command 0x1001 tx timeout [ 45.946585] Bluetooth: hci5: sending frame failed (-49) [ 47.858780] Bluetooth: hci0: command 0x1009 tx timeout [ 47.864345] Bluetooth: hci1: command 0x1009 tx timeout [ 47.938759] Bluetooth: hci4: command 0x1009 tx timeout [ 47.944150] Bluetooth: hci2: command 0x1009 tx timeout [ 47.949997] Bluetooth: hci3: command 0x1009 tx timeout [ 48.019912] Bluetooth: hci5: command 0x1009 tx timeout 2021/06/27 03:52:43 executed programs: 6 [ 54.017420] Bluetooth: hci4: command 0x1003 tx timeout [ 54.017511] Bluetooth: hci5: command 0x1003 tx timeout [ 54.023073] Bluetooth: hci3: command 0x1003 tx timeout [ 54.028273] Bluetooth: hci4: sending frame failed (-49) [ 54.028462] Bluetooth: hci5: sending frame failed (-49) [ 54.040340] Bluetooth: hci0: command 0x1003 tx timeout [ 54.044858] Bluetooth: hci3: sending frame failed (-49) [ 54.052320] Bluetooth: hci0: sending frame failed (-49) [ 54.063698] Bluetooth: hci2: command 0x1003 tx timeout [ 54.070079] Bluetooth: hci1: command 0x1003 tx timeout [ 54.070111] Bluetooth: hci2: sending frame failed (-49) [ 54.082830] Bluetooth: hci1: sending frame failed (-49) [ 56.097083] Bluetooth: hci2: command 0x1001 tx timeout [ 56.097191] Bluetooth: hci1: command 0x1001 tx timeout [ 56.103075] Bluetooth: hci2: sending frame failed (-49) [ 56.113815] Bluetooth: hci0: command 0x1001 tx timeout [ 56.115498] Bluetooth: hci1: sending frame failed (-49) [ 56.126432] Bluetooth: hci3: command 0x1001 tx timeout [ 56.136169] Bluetooth: hci0: sending frame failed (-49) [ 56.141934] Bluetooth: hci3: sending frame failed (-49) [ 56.150239] Bluetooth: hci5: command 0x1001 tx timeout [ 56.155789] Bluetooth: hci5: sending frame failed (-49) [ 56.164231] Bluetooth: hci4: command 0x1001 tx timeout [ 56.170621] Bluetooth: hci4: sending frame failed (-49) [ 58.176806] Bluetooth: hci1: command 0x1009 tx timeout [ 58.176987] Bluetooth: hci4: command 0x1009 tx timeout [ 58.182299] Bluetooth: hci0: command 0x1009 tx timeout [ 58.187711] Bluetooth: hci5: command 0x1009 tx timeout [ 58.187745] Bluetooth: hci3: command 0x1009 tx timeout [ 58.199595] Bluetooth: hci2: command 0x1009 tx timeout 2021/06/27 03:52:53 executed programs: 12 [ 62.171079] FAULT_INJECTION: forcing a failure. [ 62.171079] name failslab, interval 1, probability 0, space 0, times 1 [ 62.185160] FAULT_INJECTION: forcing a failure. [ 62.185160] name failslab, interval 1, probability 0, space 0, times 1 [ 62.185183] FAULT_INJECTION: forcing a failure. [ 62.185183] name failslab, interval 1, probability 0, space 0, times 1 [ 62.211396] FAULT_INJECTION: forcing a failure. [ 62.211396] name failslab, interval 1, probability 0, space 0, times 1 [ 62.224136] FAULT_INJECTION: forcing a failure. [ 62.224136] name failslab, interval 1, probability 0, space 0, times 1 [ 62.233597] CPU: 1 PID: 6661 Comm: syz-executor.4 Not tainted 4.19.195-syzkaller #0 [ 62.246185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.255648] Call Trace: [ 62.258353] dump_stack+0x123/0x171 [ 62.262446] should_fail.cold.4+0x5/0xa [ 62.266639] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 62.271748] ? mark_held_locks+0x130/0x130 [ 62.276122] __should_failslab+0xba/0xf0 [ 62.280515] should_failslab+0x9/0x20 [ 62.284384] kmem_cache_alloc_node+0x56/0x720 [ 62.289013] ? __lock_acquire+0x792/0x4950 [ 62.293441] __alloc_skb+0xa7/0x580 [ 62.297199] ? skb_scrub_packet+0x3c0/0x3c0 [ 62.301617] ? mark_held_locks+0x130/0x130 [ 62.305927] ? lock_acquire+0x173/0x3d0 [ 62.310113] ? ldsem_down_read+0x2d/0x40 [ 62.314389] bcsp_recv+0x21f/0x1650 [ 62.318768] ? kasan_check_write+0x14/0x20 [ 62.323510] ? bcsp_dequeue+0x4f0/0x4f0 [ 62.327649] ? __lock_is_held+0xb5/0x140 [ 62.331719] ? __lock_is_held+0xb5/0x140 [ 62.335883] hci_uart_tty_receive+0x1d4/0x470 [ 62.340491] ? ldsem_down_read+0x2d/0x40 [ 62.345887] tty_ioctl+0x64e/0x12a0 [ 62.349868] ? tty_vhangup+0x20/0x20 [ 62.353658] ? avc_ss_reset+0x140/0x140 [ 62.357801] ? mark_held_locks+0x130/0x130 [ 62.362139] ? kasan_check_write+0x14/0x20 [ 62.366443] ? proc_fail_nth_write+0x13a/0x180 [ 62.371181] ? map_files_get_link+0x370/0x370 [ 62.375750] ? __lock_is_held+0xb5/0x140 [ 62.379813] ? ___might_sleep+0x16b/0x270 [ 62.383958] do_vfs_ioctl+0x199/0x10d0 [ 62.388019] ? ioctl_preallocate+0x1c0/0x1c0 [ 62.392785] ? selinux_file_mprotect+0x5f0/0x5f0 [ 62.397789] ? wait_for_completion_timeout+0x202/0x4b0 [ 62.403228] ? expand_files.part.8+0x700/0x700 [ 62.407905] ? kasan_check_write+0x14/0x20 [ 62.412122] ? fput+0x18/0x120 [ 62.415402] ? security_file_ioctl+0x50/0x90 [ 62.419796] ? selinux_file_mprotect+0x5f0/0x5f0 [ 62.424557] ksys_ioctl+0x62/0x90 [ 62.428628] ? lockdep_hardirqs_on+0x421/0x5c0 [ 62.434179] __x64_sys_ioctl+0x6e/0xb0 [ 62.438071] do_syscall_64+0xd6/0x4e0 [ 62.442768] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.448150] RIP: 0033:0x4603b9 [ 62.451345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 62.470794] RSP: 002b:00007f0f28e6c198 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 62.478762] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 00000000004603b9 [ 62.486026] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 62.493276] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 62.500526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 62.507776] R13: 0000000000000003 R14: 00000000004ae997 R15: 00007f0f28e6c6bc [ 62.515044] CPU: 0 PID: 6659 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 [ 62.522850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.529822] kasan: CONFIG_KASAN_INLINE enabled [ 62.532675] Call Trace: [ 62.532695] dump_stack+0x123/0x171 [ 62.532709] should_fail.cold.4+0x5/0xa [ 62.532720] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 62.532731] ? mark_held_locks+0x130/0x130 [ 62.532741] __should_failslab+0xba/0xf0 [ 62.532749] should_failslab+0x9/0x20 [ 62.532761] kmem_cache_alloc_node+0x56/0x720 [ 62.532766] ? __lock_acquire+0x792/0x4950 [ 62.532779] __alloc_skb+0xa7/0x580 [ 62.566688] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 62.569844] ? skb_scrub_packet+0x3c0/0x3c0 [ 62.569857] ? mark_held_locks+0x130/0x130 [ 62.569861] ? lock_acquire+0x173/0x3d0 [ 62.569870] ? ldsem_down_read+0x2d/0x40 [ 62.569883] bcsp_recv+0x21f/0x1650 [ 62.569892] ? kasan_check_write+0x14/0x20 [ 62.569900] ? bcsp_dequeue+0x4f0/0x4f0 [ 62.590780] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 62.593832] ? __lock_is_held+0xb5/0x140 [ 62.597788] CPU: 1 PID: 36 Comm: kworker/u4:2 Not tainted 4.19.195-syzkaller #0 [ 62.601850] ? __lock_is_held+0xb5/0x140 [ 62.605808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.610040] hci_uart_tty_receive+0x1d4/0x470 [ 62.614092] Workqueue: events_unbound flush_to_ldisc [ 62.620297] ? ldsem_down_read+0x2d/0x40 [ 62.624523] RIP: 0010:skb_put+0x28/0x1e0 [ 62.632293] tty_ioctl+0x64e/0x12a0 [ 62.636424] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 62.647059] ? tty_vhangup+0x20/0x20 [ 62.651709] RSP: 0018:ffff8881f5127a88 EFLAGS: 00010286 [ 62.656879] ? avc_ss_reset+0x140/0x140 [ 62.660910] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881dcf2abdc [ 62.664950] ? mark_held_locks+0x130/0x130 [ 62.668994] RDX: 0000000000000019 RSI: 0000000000000001 RDI: 0000000000000000 [ 62.688520] ? kasan_check_write+0x14/0x20 [ 62.692486] RBP: ffff8881f5127ab0 R08: ffffed103ed24733 R09: ffffed103ed24732 [ 62.698260] ? proc_fail_nth_write+0x13a/0x180 [ 62.702216] R10: ffffed103ed24732 R11: ffff8881f6923993 R12: ffff8881dcb0a4aa [ 62.702219] R13: 00000000000000c8 R14: ffff8881dcf2aa80 R15: ffff8881dcf2ab78 [ 62.709828] ? map_files_get_link+0x370/0x370 [ 62.709834] ? __lock_is_held+0xb5/0x140 [ 62.714054] FS: 0000000000000000(0000) GS:ffff8881f6900000(0000) knlGS:0000000000000000 [ 62.721590] ? ___might_sleep+0x16b/0x270 [ 62.726588] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.733843] do_vfs_ioctl+0x199/0x10d0 [ 62.738393] CR2: 00007ff78b9b4320 CR3: 000000000806d002 CR4: 00000000001606e0 [ 62.745907] ? ioctl_preallocate+0x1c0/0x1c0 [ 62.753358] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 62.757859] ? selinux_file_mprotect+0x5f0/0x5f0 [ 62.761897] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 62.770208] ? wait_for_completion_timeout+0x202/0x4b0 [ 62.774409] Call Trace: [ 62.780796] ? expand_files.part.8+0x700/0x700 [ 62.784837] bcsp_recv+0x9bb/0x1650 [ 62.792305] ? kasan_check_write+0x14/0x20 [ 62.796917] ? flush_to_ldisc+0x3f/0x3a0 [ 62.804283] ? fput+0x18/0x120 [ 62.809378] ? bcsp_dequeue+0x4f0/0x4f0 [ 62.817455] ? security_file_ioctl+0x50/0x90 [ 62.822805] ? __lock_is_held+0xb5/0x140 [ 62.825449] ? selinux_file_mprotect+0x5f0/0x5f0 [ 62.830442] ? __lock_is_held+0xd0/0x140 [ 62.834233] ksys_ioctl+0x62/0x90 [ 62.838536] hci_uart_tty_receive+0x1d4/0x470 [ 62.842569] ? lockdep_hardirqs_on+0x421/0x5c0 [ 62.845737] tty_ldisc_receive_buf+0x103/0x1c0 [ 62.849784] __x64_sys_ioctl+0x6e/0xb0 [ 62.854169] tty_port_default_receive_buf+0x5f/0x90 [ 62.858290] do_syscall_64+0xd6/0x4e0 [ 62.863018] flush_to_ldisc+0x1af/0x3a0 [ 62.867244] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.870672] process_one_work+0x835/0x1670 [ 62.875497] RIP: 0033:0x4603b9 [ 62.880053] ? pwq_dec_nr_in_flight+0x2c0/0x2c0 [ 62.884622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 62.888482] ? lock_acquire+0x173/0x3d0 [ 62.893556] RSP: 002b:00007f4be8317198 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 62.897334] ? kasan_check_write+0x14/0x20 [ 62.901281] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 00000000004603b9 [ 62.906457] ? do_raw_spin_lock+0xd0/0x240 [ 62.910658] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 62.914130] worker_thread+0x85/0xb60 [ 62.918776] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 62.938045] ? __kthread_parkme+0x37/0x1c0 [ 62.941996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 62.952549] kthread+0x34a/0x410 [ 62.956840] R13: 0000000000000003 R14: 00000000004ae997 R15: 00007f4be83176bc [ 62.964170] ? process_one_work+0x1670/0x1670 [ 62.969753] kasan: CONFIG_KASAN_INLINE enabled [ 62.976235] ? kthread_cancel_delayed_work_sync+0x10/0x10 [ 62.976246] ret_from_fork+0x3a/0x50 [ 62.976253] Modules linked in: [ 62.977696] CPU: 1 PID: 6662 Comm: syz-executor.5 Tainted: G D 4.19.195-syzkaller #0 [ 62.983605] kasan: CONFIG_KASAN_INLINE enabled [ 62.988591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.988595] Call Trace: [ 62.988612] dump_stack+0x123/0x171 [ 62.988621] should_fail.cold.4+0x5/0xa [ 62.988630] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 62.988639] ? mark_held_locks+0x130/0x130 [ 62.988648] __should_failslab+0xba/0xf0 [ 62.988654] should_failslab+0x9/0x20 [ 62.988660] kmem_cache_alloc_node+0x56/0x720 [ 62.988665] ? __lock_acquire+0x792/0x4950 [ 62.988674] __alloc_skb+0xa7/0x580 [ 62.988679] ? skb_scrub_packet+0x3c0/0x3c0 [ 62.988682] ? mark_held_locks+0x130/0x130 [ 62.988685] ? lock_acquire+0x173/0x3d0 [ 62.988689] ? ldsem_down_read+0x2d/0x40 [ 62.988702] bcsp_recv+0x21f/0x1650 [ 62.995833] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 63.000628] ? kasan_check_write+0x14/0x20 [ 63.000637] ? bcsp_dequeue+0x4f0/0x4f0 [ 63.000642] ? __lock_is_held+0xb5/0x140 [ 63.000647] ? __lock_is_held+0xb5/0x140 [ 63.000655] hci_uart_tty_receive+0x1d4/0x470 [ 63.000661] ? ldsem_down_read+0x2d/0x40 [ 63.000671] tty_ioctl+0x64e/0x12a0 [ 63.008354] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 63.011374] ? tty_vhangup+0x20/0x20 [ 63.011385] ? avc_ss_reset+0x140/0x140 [ 63.021552] general protection fault: 0000 [#2] PREEMPT SMP KASAN [ 63.026300] ? mark_held_locks+0x130/0x130 [ 63.030074] CPU: 0 PID: 7 Comm: kworker/u4:0 Tainted: G D 4.19.195-syzkaller #0 [ 63.033270] ? kasan_check_write+0x14/0x20 [ 63.042613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.047207] ? proc_fail_nth_write+0x13a/0x180 [ 63.056626] Workqueue: events_unbound flush_to_ldisc [ 63.059387] ? map_files_get_link+0x370/0x370 [ 63.062987] RIP: 0010:skb_put+0x28/0x1e0 [ 63.067140] ? __lock_is_held+0xb5/0x140 [ 63.072426] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 63.076640] ? ___might_sleep+0x16b/0x270 [ 63.080669] RSP: 0018:ffff8881f56b7a88 EFLAGS: 00010286 [ 63.084451] do_vfs_ioctl+0x199/0x10d0 [ 63.089088] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881de3ecddc [ 63.093596] ? ioctl_preallocate+0x1c0/0x1c0 [ 63.097216] RDX: 0000000000000019 RSI: 0000000000000001 RDI: 0000000000000000 [ 63.101990] ? selinux_file_mprotect+0x5f0/0x5f0 [ 63.106388] RBP: ffff8881f56b7ab0 R08: 0000000000000001 R09: 0000000000000000 [ 63.110352] ? wait_for_completion_timeout+0x202/0x4b0 [ 63.114831] R10: ffffed103ead6f83 R11: 0000000000000000 R12: ffff8881dcf88dea [ 63.118551] ? expand_files.part.8+0x700/0x700 [ 63.126696] R13: 00000000000000c8 R14: ffff8881de3ecc80 R15: ffff8881de3ecd78 [ 63.131272] ? kasan_check_write+0x14/0x20 [ 63.135732] FS: 0000000000000000(0000) GS:ffff8881f6800000(0000) knlGS:0000000000000000 [ 63.139768] ? fput+0x18/0x120 [ 63.143928] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.148413] ? security_file_ioctl+0x50/0x90 [ 63.152570] CR2: 000000000049c8f0 CR3: 000000000806d003 CR4: 00000000001606f0 [ 63.156263] ? selinux_file_mprotect+0x5f0/0x5f0 [ 63.164028] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.167900] ksys_ioctl+0x62/0x90 [ 63.172897] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.172900] Call Trace: [ 63.179555] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.183766] bcsp_recv+0x9bb/0x1650 [ 63.192530] __x64_sys_ioctl+0x6e/0xb0 [ 63.197357] ? flush_to_ldisc+0x3f/0x3a0 [ 63.206966] do_syscall_64+0xd6/0x4e0 [ 63.211528] ? bcsp_dequeue+0x4f0/0x4f0 [ 63.216867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.221686] ? lock_acquire+0x173/0x3d0 [ 63.225979] RIP: 0033:0x4603b9 [ 63.230158] ? tty_ldisc_receive_buf+0x15b/0x1c0 [ 63.250912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 63.255190] hci_uart_tty_receive+0x1d4/0x470 [ 63.261130] RSP: 002b:00007fb3b24a0198 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.265008] tty_ldisc_receive_buf+0x103/0x1c0 [ 63.272254] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 00000000004603b9 [ 63.276638] tty_port_default_receive_buf+0x5f/0x90 [ 63.283985] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 63.288851] flush_to_ldisc+0x1af/0x3a0 [ 63.296685] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 63.302777] ? process_one_work+0x792/0x1670 [ 63.310147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 63.314830] process_one_work+0x835/0x1670 [ 63.322298] R13: 0000000000000003 R14: 00000000004ae997 R15: 00007fb3b24a06bc [ 63.326525] ? pwq_dec_nr_in_flight+0x2c0/0x2c0 [ 63.521307] ? lock_acquire+0x173/0x3d0 [ 63.525263] ? kasan_check_write+0x14/0x20 [ 63.529473] ? do_raw_spin_lock+0xd0/0x240 [ 63.533856] worker_thread+0x85/0xb60 [ 63.537634] ? __kthread_parkme+0x37/0x1c0 [ 63.541861] kthread+0x34a/0x410 [ 63.545205] ? process_one_work+0x1670/0x1670 [ 63.549761] ? kthread_cancel_delayed_work_sync+0x10/0x10 [ 63.555275] ret_from_fork+0x3a/0x50 [ 63.559058] Modules linked in: [ 63.571377] CPU: 0 PID: 6663 Comm: syz-executor.2 Tainted: G D 4.19.195-syzkaller #0 [ 63.580578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.590474] Call Trace: [ 63.593288] dump_stack+0x123/0x171 [ 63.596916] should_fail.cold.4+0x5/0xa [ 63.601061] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 63.606248] ? mark_held_locks+0x130/0x130 [ 63.611083] __should_failslab+0xba/0xf0 [ 63.615251] should_failslab+0x9/0x20 [ 63.619603] kmem_cache_alloc_node+0x56/0x720 [ 63.624643] ? __lock_acquire+0x792/0x4950 [ 63.629144] __alloc_skb+0xa7/0x580 [ 63.633033] ? skb_scrub_packet+0x3c0/0x3c0 [ 63.637441] ? mark_held_locks+0x130/0x130 [ 63.641676] ? lock_acquire+0x173/0x3d0 [ 63.645695] ? ldsem_down_read+0x2d/0x40 [ 63.649753] bcsp_recv+0x21f/0x1650 [ 63.653471] ? kasan_check_write+0x14/0x20 [ 63.657829] ? bcsp_dequeue+0x4f0/0x4f0 [ 63.661972] ? __lock_is_held+0xb5/0x140 [ 63.666212] ? __lock_is_held+0xb5/0x140 [ 63.670810] hci_uart_tty_receive+0x1d4/0x470 [ 63.675306] ? ldsem_down_read+0x2d/0x40 [ 63.679373] tty_ioctl+0x64e/0x12a0 [ 63.683086] ? tty_vhangup+0x20/0x20 [ 63.686995] ? avc_ss_reset+0x140/0x140 [ 63.691197] ? mark_held_locks+0x130/0x130 [ 63.695601] ? kasan_check_write+0x14/0x20 [ 63.700113] ? proc_fail_nth_write+0x13a/0x180 [ 63.704779] ? map_files_get_link+0x370/0x370 [ 63.709356] ? __lock_is_held+0xb5/0x140 [ 63.713501] ? ___might_sleep+0x16b/0x270 [ 63.717763] do_vfs_ioctl+0x199/0x10d0 [ 63.721684] ? ioctl_preallocate+0x1c0/0x1c0 [ 63.726263] ? selinux_file_mprotect+0x5f0/0x5f0 [ 63.731023] ? wait_for_completion_timeout+0x202/0x4b0 [ 63.736627] ? expand_files.part.8+0x700/0x700 [ 63.741300] ? kasan_check_write+0x14/0x20 [ 63.745965] ? fput+0x18/0x120 [ 63.749157] ? security_file_ioctl+0x50/0x90 [ 63.753546] ? selinux_file_mprotect+0x5f0/0x5f0 [ 63.759076] ksys_ioctl+0x62/0x90 [ 63.762774] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.767330] __x64_sys_ioctl+0x6e/0xb0 [ 63.771189] do_syscall_64+0xd6/0x4e0 [ 63.775248] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.780842] RIP: 0033:0x4603b9 [ 63.784402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 63.803983] RSP: 002b:00007fb9c3114198 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.811891] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 00000000004603b9 [ 63.819310] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 63.827271] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 63.835122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 63.842365] R13: 0000000000000003 R14: 00000000004ae997 R15: 00007fb9c31146bc [ 63.849812] Bluetooth: Can't allocate mem for new packet [ 63.863617] CPU: 0 PID: 6664 Comm: syz-executor.1 Tainted: G D 4.19.195-syzkaller #0 [ 63.865101] Bluetooth: Can't allocate mem for new packet [ 63.873066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.873069] Call Trace: [ 63.873082] dump_stack+0x123/0x171 [ 63.873090] should_fail.cold.4+0x5/0xa [ 63.873096] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 63.873102] ? mark_held_locks+0x130/0x130 [ 63.873109] __should_failslab+0xba/0xf0 [ 63.873114] should_failslab+0x9/0x20 [ 63.873118] kmem_cache_alloc_node+0x56/0x720 [ 63.873122] ? __lock_acquire+0x792/0x4950 [ 63.873129] __alloc_skb+0xa7/0x580 [ 63.873133] ? skb_scrub_packet+0x3c0/0x3c0 [ 63.873136] ? mark_held_locks+0x130/0x130 [ 63.873139] ? lock_acquire+0x173/0x3d0 [ 63.873144] ? ldsem_down_read+0x2d/0x40 [ 63.873153] bcsp_recv+0x21f/0x1650 [ 63.878749] ---[ end trace 1c03dc83dd778268 ]--- [ 63.888004] ? kasan_check_write+0x14/0x20 [ 63.888012] ? bcsp_dequeue+0x4f0/0x4f0 [ 63.888017] ? __lock_is_held+0xb5/0x140 [ 63.888021] ? __lock_is_held+0xb5/0x140 [ 63.888029] hci_uart_tty_receive+0x1d4/0x470 [ 63.888033] ? ldsem_down_read+0x2d/0x40 [ 63.888041] tty_ioctl+0x64e/0x12a0 [ 63.888046] ? tty_vhangup+0x20/0x20 [ 63.888052] ? avc_ss_reset+0x140/0x140 [ 63.888058] ? mark_held_locks+0x130/0x130 [ 63.891045] RIP: 0010:skb_put+0x28/0x1e0 [ 63.894315] ? kasan_check_write+0x14/0x20 [ 63.894322] ? proc_fail_nth_write+0x13a/0x180 [ 63.894327] ? map_files_get_link+0x370/0x370 [ 63.894332] ? __lock_is_held+0xb5/0x140 [ 63.894341] ? ___might_sleep+0x16b/0x270 [ 63.898522] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 63.903561] do_vfs_ioctl+0x199/0x10d0 [ 63.903568] ? ioctl_preallocate+0x1c0/0x1c0 [ 63.903574] ? selinux_file_mprotect+0x5f0/0x5f0 [ 63.903581] ? wait_for_completion_timeout+0x202/0x4b0 [ 63.908014] RSP: 0018:ffff8881f5127a88 EFLAGS: 00010286 [ 63.912027] ? expand_files.part.8+0x700/0x700 [ 63.912034] ? kasan_check_write+0x14/0x20 [ 63.912039] ? fput+0x18/0x120 [ 63.912048] ? security_file_ioctl+0x50/0x90 [ 63.918322] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881dcf2abdc [ 63.920588] ? selinux_file_mprotect+0x5f0/0x5f0 [ 63.920596] ksys_ioctl+0x62/0x90 [ 63.920601] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.920606] __x64_sys_ioctl+0x6e/0xb0 [ 63.927020] RDX: 0000000000000019 RSI: 0000000000000001 RDI: 0000000000000000 [ 63.928434] do_syscall_64+0xd6/0x4e0 [ 63.928442] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.928448] RIP: 0033:0x4603b9 [ 63.935005] RBP: ffff8881f5127ab0 R08: ffffed103ed24733 R09: ffffed103ed24732 [ 63.936966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 63.936969] RSP: 002b:00007fa6af3b3198 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 63.936973] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 00000000004603b9 [ 63.936975] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003 [ 63.936977] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 63.936979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 63.936981] R13: 0000000000000003 R14: 00000000004ae997 R15: 00007fa6af3b36bc [ 63.938985] kasan: CONFIG_KASAN_INLINE enabled [ 63.943633] general protection fault: 0000 [#3] PREEMPT SMP KASAN [ 63.945484] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 63.949386] CPU: 1 PID: 160 Comm: kworker/u4:3 Tainted: G D 4.19.195-syzkaller #0 [ 63.949389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.949400] Workqueue: events_unbound flush_to_ldisc [ 63.949408] RIP: 0010:skb_put+0x28/0x1e0 [ 63.949412] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 63.949415] RSP: 0018:ffff8881f53f7a88 EFLAGS: 00010286 [ 63.949418] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881dcc48e9c [ 63.949420] RDX: 0000000000000019 RSI: 0000000000000001 RDI: 0000000000000000 [ 63.949423] RBP: ffff8881f53f7ab0 R08: 0000000000000001 R09: 0000000000000000 [ 63.949424] R10: ffffed103ea7ef83 R11: 0000000000000000 R12: ffff8881dcf8926a [ 63.949426] R13: 00000000000000c8 R14: ffff8881dcc48d40 R15: ffff8881dcc48e38 [ 63.949430] FS: 0000000000000000(0000) GS:ffff8881f6900000(0000) knlGS:0000000000000000 [ 63.949432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.949434] CR2: 00007fed472bf000 CR3: 000000000806d004 CR4: 00000000001606e0 [ 63.949440] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.949442] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.949444] Call Trace: [ 63.949583] bcsp_recv+0x9bb/0x1650 [ 63.949594] ? flush_to_ldisc+0x3f/0x3a0 [ 63.949600] ? bcsp_dequeue+0x4f0/0x4f0 [ 63.949610] ? lock_acquire+0x173/0x3d0 [ 63.949614] ? tty_ldisc_receive_buf+0x15b/0x1c0 [ 63.949620] hci_uart_tty_receive+0x1d4/0x470 [ 63.949625] tty_ldisc_receive_buf+0x103/0x1c0 [ 63.949631] tty_port_default_receive_buf+0x5f/0x90 [ 63.949634] flush_to_ldisc+0x1af/0x3a0 [ 63.949639] ? process_one_work+0x792/0x1670 [ 63.949645] process_one_work+0x835/0x1670 [ 63.949652] ? pwq_dec_nr_in_flight+0x2c0/0x2c0 [ 63.949656] ? lock_acquire+0x173/0x3d0 [ 63.949663] ? kasan_check_write+0x14/0x20 [ 63.949667] ? do_raw_spin_lock+0xd0/0x240 [ 63.949673] worker_thread+0x85/0xb60 [ 63.949678] ? __kthread_parkme+0x37/0x1c0 [ 63.949685] kthread+0x34a/0x410 [ 63.949689] ? process_one_work+0x1670/0x1670 [ 63.949693] ? kthread_cancel_delayed_work_sync+0x10/0x10 [ 63.949700] ret_from_fork+0x3a/0x50 [ 63.949706] Modules linked in: [ 63.953814] R10: ffffed103ed24732 R11: ffff8881f6923993 R12: ffff8881dcb0a4aa [ 63.960586] general protection fault: 0000 [#4] PREEMPT SMP KASAN [ 63.975559] ---[ end trace 1c03dc83dd778269 ]--- [ 63.976630] CPU: 0 PID: 6682 Comm: kworker/u4:6 Tainted: G D 4.19.195-syzkaller #0 [ 63.976633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.976644] Workqueue: events_unbound flush_to_ldisc [ 63.976652] RIP: 0010:skb_put+0x28/0x1e0 [ 63.976657] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 63.976659] RSP: 0018:ffff8881cf727a88 EFLAGS: 00010286 [ 63.976663] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881dccd991c [ 63.976665] RDX: 0000000000000019 RSI: 0000000000000001 RDI: 0000000000000000 [ 63.976667] RBP: ffff8881cf727ab0 R08: 0000000000000001 R09: 0000000000000000 [ 63.976669] R10: ffffed1039ee4f83 R11: 0000000000000000 R12: ffff8881dcf896ea [ 63.976671] R13: 00000000000000c8 R14: ffff8881dccd97c0 R15: ffff8881dccd98b8 [ 63.976676] FS: 0000000000000000(0000) GS:ffff8881f6800000(0000) knlGS:0000000000000000 [ 63.981951] RIP: 0010:skb_put+0x28/0x1e0 [ 63.984444] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.984447] CR2: 00007fff36beb000 CR3: 000000000806d005 CR4: 00000000001606f0 [ 63.984452] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 63.984455] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 63.984457] Call Trace: [ 63.984467] bcsp_recv+0x9bb/0x1650 [ 63.984474] ? flush_to_ldisc+0x3f/0x3a0 [ 63.989429] R13: 00000000000000c8 R14: ffff8881dcf2aa80 R15: ffff8881dcf2ab78 [ 63.992396] ? bcsp_dequeue+0x4f0/0x4f0 [ 63.992405] ? lock_acquire+0x173/0x3d0 [ 63.992411] ? tty_ldisc_receive_buf+0x15b/0x1c0 [ 64.003375] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 64.006412] hci_uart_tty_receive+0x1d4/0x470 [ 64.006420] tty_ldisc_receive_buf+0x103/0x1c0 [ 64.006425] tty_port_default_receive_buf+0x5f/0x90 [ 64.006429] flush_to_ldisc+0x1af/0x3a0 [ 64.006434] ? process_one_work+0x792/0x1670 [ 64.006440] process_one_work+0x835/0x1670 [ 64.006445] ? pwq_dec_nr_in_flight+0x2c0/0x2c0 [ 64.006451] ? kasan_check_write+0x14/0x20 [ 64.006458] ? do_raw_spin_lock+0xd0/0x240 [ 64.015440] FS: 0000000000000000(0000) GS:ffff8881f6900000(0000) knlGS:0000000000000000 [ 64.015508] worker_thread+0x85/0xb60 [ 64.019820] RSP: 0018:ffff8881f5127a88 EFLAGS: 00010286 [ 64.023756] ? __kthread_parkme+0x37/0x1c0 [ 64.023764] kthread+0x34a/0x410 [ 64.023768] ? process_one_work+0x1670/0x1670 [ 64.023774] ? kthread_cancel_delayed_work_sync+0x10/0x10 [ 64.047975] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 64.052197] ret_from_fork+0x3a/0x50 [ 64.052205] Modules linked in: [ 64.067104] CR2: 00007fed472c6008 CR3: 000000000806d001 CR4: 00000000001606e0 [ 64.068442] kasan: CONFIG_KASAN_INLINE enabled [ 64.074069] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 64.083584] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 64.089724] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 64.096052] general protection fault: 0000 [#5] PREEMPT SMP KASAN [ 64.794293] CPU: 0 PID: 6683 Comm: kworker/u4:7 Tainted: G D 4.19.195-syzkaller #0 [ 64.803463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.813638] Workqueue: events_unbound flush_to_ldisc [ 64.818722] RIP: 0010:skb_put+0x28/0x1e0 [ 64.822823] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 55 4c 8d af c8 00 00 00 41 54 4c 89 ea 53 48 89 fb 48 c1 ea 03 48 83 ec 10 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 28 [ 64.842075] RSP: 0018:ffff8881dd2c7a88 EFLAGS: 00010286 [ 64.847419] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881de9663dc [ 64.855268] RDX: 0000000000000019 RSI: 0000000000000001 RDI: 0000000000000000 [ 64.862515] RBP: ffff8881dd2c7ab0 R08: 0000000000000001 R09: 0000000000000000 [ 64.869937] R10: ffffed103ba58f83 R11: 0000000000000000 R12: ffff8881dcb0a02a [ 64.877194] R13: 00000000000000c8 R14: ffff8881de966280 R15: ffff8881de966378 [ 64.885133] FS: 0000000000000000(0000) GS:ffff8881f6800000(0000) knlGS:0000000000000000 [ 64.893431] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 64.899658] CR2: 0000561aeaaba740 CR3: 000000000806d005 CR4: 00000000001606f0 [ 64.907550] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 64.915925] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 64.923617] Call Trace: [ 64.926240] bcsp_recv+0x9bb/0x1650 [ 64.930115] ? flush_to_ldisc+0x3f/0x3a0 [ 64.934263] ? bcsp_dequeue+0x4f0/0x4f0 [ 64.938413] ? lock_acquire+0x173/0x3d0 [ 64.942618] ? tty_ldisc_receive_buf+0x15b/0x1c0 [ 64.947784] hci_uart_tty_receive+0x1d4/0x470 [ 64.952686] tty_ldisc_receive_buf+0x103/0x1c0 [ 64.957513] tty_port_default_receive_buf+0x5f/0x90 [ 64.962706] flush_to_ldisc+0x1af/0x3a0 [ 64.966919] ? process_one_work+0x792/0x1670 [ 64.971411] process_one_work+0x835/0x1670 [ 64.975814] ? pwq_dec_nr_in_flight+0x2c0/0x2c0 [ 64.980723] ? kasan_check_write+0x14/0x20 [ 64.985109] ? do_raw_spin_lock+0xd0/0x240 [ 64.989783] worker_thread+0x85/0xb60 [ 64.993557] ? __kthread_parkme+0x37/0x1c0 [ 64.997940] kthread+0x34a/0x410 [ 65.001310] ? process_one_work+0x1670/0x1670 [ 65.005794] ? kthread_cancel_delayed_work_sync+0x10/0x10 [ 65.011336] ret_from_fork+0x3a/0x50 [ 65.015048] Modules linked in: [ 65.019249] Bluetooth: hci2: command 0x1003 tx timeout [ 65.025965] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffff8881dcf2abdc [ 65.026580] Bluetooth: hci1: command 0x1003 tx timeout [ 65.036936] Kernel panic - not syncing: Fatal exception [ 65.039475] Bluetooth: hci3: command 0x1003 tx timeout [ 65.045271] Kernel Offset: disabled [ 65.054192] Rebooting in 86400 seconds..