EXT4-fs (loop1): VFS: Can't find ext4 filesystem ================================================================== BUG: KASAN: use-after-free in __lock_acquire+0x41b3/0x5b60 kernel/locking/lockdep.c:4820 Read of size 8 at addr ffff888043ae30a0 by task kworker/1:0/17 CPU: 1 PID: 17 Comm: kworker/1:0 Not tainted 5.10.60 #1 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 Workqueue: events l2cap_chan_timeout Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x107/0x163 lib/dump_stack.c:118 print_address_description.constprop.0+0x1c/0x210 mm/kasan/report.c:385 __kasan_report mm/kasan/report.c:545 [inline] kasan_report.cold+0x37/0x7c mm/kasan/report.c:562 __lock_acquire+0x41b3/0x5b60 kernel/locking/lockdep.c:4820 lock_acquire kernel/locking/lockdep.c:5560 [inline] lock_acquire+0x197/0x490 kernel/locking/lockdep.c:5525 __raw_spin_lock_bh include/linux/spinlock_api_smp.h:135 [inline] _raw_spin_lock_bh+0x2f/0x40 kernel/locking/spinlock.c:175 spin_lock_bh include/linux/spinlock.h:359 [inline] lock_sock_nested+0x40/0x120 net/core/sock.c:3038 l2cap_sock_teardown_cb+0x89/0x420 net/bluetooth/l2cap_sock.c:1528 l2cap_chan_del+0xad/0xf30 net/bluetooth/l2cap_core.c:622 l2cap_chan_close+0xf8/0xb40 net/bluetooth/l2cap_core.c:827 l2cap_chan_timeout+0x16d/0x3a0 net/bluetooth/l2cap_core.c:436 process_one_work+0x9ac/0x1580 kernel/workqueue.c:2270 worker_thread+0x61d/0x1310 kernel/workqueue.c:2416 kthread+0x38f/0x470 kernel/kthread.c:292 ret_from_fork+0x22/0x30 arch/x86/entry/entry_64.S:296 Allocated by task 4929: kasan_save_stack+0x1b/0x40 mm/kasan/common.c:48 kasan_set_track mm/kasan/common.c:56 [inline] __kasan_kmalloc.constprop.0+0xc2/0xd0 mm/kasan/common.c:461 kmalloc include/linux/slab.h:552 [inline] kzalloc include/linux/slab.h:664 [inline] l2cap_chan_create+0x3e/0x500 net/bluetooth/l2cap_core.c:450 l2cap_sock_alloc.constprop.0+0x188/0x230 net/bluetooth/l2cap_sock.c:1828 l2cap_sock_create+0x110/0x1b0 net/bluetooth/l2cap_sock.c:1859 bt_sock_create+0x159/0x2b0 net/bluetooth/af_bluetooth.c:130 __sock_create+0x355/0x760 net/socket.c:1414 sock_create net/socket.c:1465 [inline] __sys_socket+0xef/0x200 net/socket.c:1507 __do_sys_socket net/socket.c:1516 [inline] __se_sys_socket net/socket.c:1514 [inline] __x64_sys_socket+0x6e/0xb0 net/socket.c:1514 do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 Last call_rcu(): kasan_save_stack+0x1b/0x40 mm/kasan/common.c:48 kasan_record_aux_stack+0xa0/0xb0 mm/kasan/generic.c:346 __call_rcu kernel/rcu/tree.c:2960 [inline] call_rcu+0x8a/0x9d0 kernel/rcu/tree.c:3034 netlink_release+0xd73/0x1c70 net/netlink/af_netlink.c:804 __sock_release+0xd2/0x290 net/socket.c:596 sock_close+0x18/0x20 net/socket.c:1264 __fput+0x285/0x970 fs/file_table.c:281 task_work_run+0xe2/0x1a0 kernel/task_work.c:151 exit_task_work include/linux/task_work.h:30 [inline] do_exit+0xc0f/0x2770 kernel/exit.c:811 do_group_exit+0x125/0x310 kernel/exit.c:908 __do_sys_exit_group kernel/exit.c:919 [inline] __se_sys_exit_group kernel/exit.c:917 [inline] __x64_sys_exit_group+0x3a/0x50 kernel/exit.c:917 do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 The buggy address belongs to the object at ffff888043ae3000 which belongs to the cache kmalloc-2k of size 2048 The buggy address is located 160 bytes inside of 2048-byte region [ffff888043ae3000, ffff888043ae3800) The buggy address belongs to the page: page:000000002a7119b1 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888043ae2000 pfn:0x43ae0 head:000000002a7119b1 order:3 compound_mapcount:0 compound_pincount:0 flags: 0x100000000010200(slab|head) raw: 0100000000010200 ffffea00006a3a08 ffffea00010c1a08 ffff888007c42000 raw: ffff888043ae2000 0000000000080006 00000001ffffffff ffff88801aa01b01 page dumped because: kasan: bad access detected page->mem_cgroup:ffff88801aa01b01 Memory state around the buggy address: ffff888043ae2f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc ffff888043ae3000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb >ffff888043ae3080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb ^ ffff888043ae3100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb ffff888043ae3180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb ================================================================== kmemleak: 4 new suspected memory leaks (see /sys/kernel/debug/kmemleak) FAT-fs (loop0): Unrecognized mount option "mI‘ tnam" or missing value FAT-fs (loop0): Unrecognized mount option "mI‘ tnam" or missing value