BUG: memory leak unreferenced object 0xffff888044c7da00 (size 224): comm "syz-executor.4", pid 5734, jiffies 4295245104 (age 1415.301s) hex dump (first 32 bytes): 00 d5 c7 44 80 88 ff ff 68 61 7b 15 80 88 ff ff ...D....ha{..... 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000aa176c3d>] __alloc_skb+0x6d/0x620 net/core/skbuff.c:198 [<0000000099adc941>] alloc_skb include/linux/skbuff.h:1094 [inline] [<0000000099adc941>] bt_skb_alloc include/net/bluetooth/bluetooth.h:389 [inline] [<0000000099adc941>] vhci_get_user drivers/bluetooth/hci_vhci.c:165 [inline] [<0000000099adc941>] vhci_write+0xbd/0x450 drivers/bluetooth/hci_vhci.c:285 [<00000000a1deb67a>] call_write_iter include/linux/fs.h:1903 [inline] [<00000000a1deb67a>] new_sync_write+0x42c/0x660 fs/read_write.c:518 [<000000003b743eac>] vfs_write+0x743/0xa20 fs/read_write.c:605 [<00000000f7aace03>] ksys_write+0x12d/0x250 fs/read_write.c:658 [<000000003fe81887>] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 [<000000005ab0b7a4>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888048849400 (size 512): comm "syz-executor.4", pid 5734, jiffies 4295245104 (age 1415.301s) hex dump (first 32 bytes): 20 c2 44 0c 80 88 ff ff 02 00 00 31 00 2d 00 01 .D........1.-.. 00 05 00 29 00 00 04 00 02 02 00 00 04 09 04 08 ...)............ backtrace: [<00000000879136bb>] __kmalloc_reserve net/core/skbuff.c:142 [inline] [<00000000879136bb>] __alloc_skb+0xb1/0x620 net/core/skbuff.c:210 [<0000000099adc941>] alloc_skb include/linux/skbuff.h:1094 [inline] [<0000000099adc941>] bt_skb_alloc include/net/bluetooth/bluetooth.h:389 [inline] [<0000000099adc941>] vhci_get_user drivers/bluetooth/hci_vhci.c:165 [inline] [<0000000099adc941>] vhci_write+0xbd/0x450 drivers/bluetooth/hci_vhci.c:285 [<00000000a1deb67a>] call_write_iter include/linux/fs.h:1903 [inline] [<00000000a1deb67a>] new_sync_write+0x42c/0x660 fs/read_write.c:518 [<000000003b743eac>] vfs_write+0x743/0xa20 fs/read_write.c:605 [<00000000f7aace03>] ksys_write+0x12d/0x250 fs/read_write.c:658 [<000000003fe81887>] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 [<000000005ab0b7a4>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff8880157b6000 (size 1024): comm "kworker/u5:3", pid 298, jiffies 4295245104 (age 1415.301s) hex dump (first 32 bytes): 00 e0 8f 44 80 88 ff ff 00 e8 48 0b 80 88 ff ff ...D......H..... fd 03 00 00 00 00 00 00 00 06 00 00 00 00 00 00 ................ backtrace: [<000000007204789e>] kmalloc include/linux/slab.h:552 [inline] [<000000007204789e>] kzalloc include/linux/slab.h:664 [inline] [<000000007204789e>] l2cap_conn_add.part.0+0x64/0xdf0 net/bluetooth/l2cap_core.c:7707 [<000000008d1d6435>] l2cap_conn_add net/bluetooth/l2cap_core.c:7700 [inline] [<000000008d1d6435>] l2cap_recv_acldata+0x578/0x8e0 net/bluetooth/l2cap_core.c:8288 [<0000000022a1ba53>] hci_acldata_packet net/bluetooth/hci_core.c:4758 [inline] [<0000000022a1ba53>] hci_rx_work+0x4b7/0xb80 net/bluetooth/hci_core.c:4949 [<00000000a48d1e69>] process_one_work+0x9a9/0x1590 kernel/workqueue.c:2270 [<000000001245058a>] worker_thread+0x61d/0x1310 kernel/workqueue.c:2416 [<0000000076ba7058>] kthread+0x38f/0x470 kernel/kthread.c:313 [<000000009df5aa0d>] ret_from_fork+0x22/0x30 arch/x86/entry/entry_64.S:296 BUG: memory leak unreferenced object 0xffff888044c7d500 (size 224): comm "syz-executor.4", pid 5734, jiffies 4295245105 (age 1415.300s) hex dump (first 32 bytes): 68 61 7b 15 80 88 ff ff 00 da c7 44 80 88 ff ff ha{........D.... 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000aa176c3d>] __alloc_skb+0x6d/0x620 net/core/skbuff.c:198 [<0000000099adc941>] alloc_skb include/linux/skbuff.h:1094 [inline] [<0000000099adc941>] bt_skb_alloc include/net/bluetooth/bluetooth.h:389 [inline] [<0000000099adc941>] vhci_get_user drivers/bluetooth/hci_vhci.c:165 [inline] [<0000000099adc941>] vhci_write+0xbd/0x450 drivers/bluetooth/hci_vhci.c:285 [<00000000a1deb67a>] call_write_iter include/linux/fs.h:1903 [inline] [<00000000a1deb67a>] new_sync_write+0x42c/0x660 fs/read_write.c:518 [<000000003b743eac>] vfs_write+0x743/0xa20 fs/read_write.c:605 [<00000000f7aace03>] ksys_write+0x12d/0x250 fs/read_write.c:658 [<000000003fe81887>] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 [<000000005ab0b7a4>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88804884b400 (size 512): comm "syz-executor.4", pid 5734, jiffies 4295245105 (age 1415.300s) hex dump (first 32 bytes): 40 c7 44 0c 80 88 ff ff 02 00 00 31 00 2d 00 01 @.D........1.-.. 00 05 00 29 00 00 04 00 02 02 00 00 04 09 04 08 ...)............ backtrace: [<00000000879136bb>] __kmalloc_reserve net/core/skbuff.c:142 [inline] [<00000000879136bb>] __alloc_skb+0xb1/0x620 net/core/skbuff.c:210 [<0000000099adc941>] alloc_skb include/linux/skbuff.h:1094 [inline] [<0000000099adc941>] bt_skb_alloc include/net/bluetooth/bluetooth.h:389 [inline] [<0000000099adc941>] vhci_get_user drivers/bluetooth/hci_vhci.c:165 [inline] [<0000000099adc941>] vhci_write+0xbd/0x450 drivers/bluetooth/hci_vhci.c:285 [<00000000a1deb67a>] call_write_iter include/linux/fs.h:1903 [inline] [<00000000a1deb67a>] new_sync_write+0x42c/0x660 fs/read_write.c:518 [<000000003b743eac>] vfs_write+0x743/0xa20 fs/read_write.c:605 [<00000000f7aace03>] ksys_write+0x12d/0x250 fs/read_write.c:658 [<000000003fe81887>] do_syscall_64+0x33/0x40 arch/x86/entry/common.c:46 [<000000005ab0b7a4>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: leak checking failed