Warning: Permanently added '10.128.10.45' (ECDSA) to the list of known hosts.
syzkaller login: [   67.234978][ T3602] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   67.242699][ T3602] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   67.250697][ T3602] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   67.258654][ T3602] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   67.266420][ T3602] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   67.273674][ T3602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   67.346169][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.354117][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.370532][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   67.382294][    T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
executing program
[   67.390384][    T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.398559][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   67.419592][ T3605] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   67.494177][ T3599] ==================================================================
[   67.502287][ T3599] BUG: KASAN: vmalloc-out-of-bounds in blocking_notifier_chain_unregister+0x230/0x290
[   67.511858][ T3599] Read of size 8 at addr ffffc9000391bbe8 by task syz-executor271/3599
[   67.520079][ T3599] 
[   67.522385][ T3599] CPU: 0 PID: 3599 Comm: syz-executor271 Not tainted 5.19.0-syzkaller-13930-g7ebfc85e2cd7 #0
[   67.532515][ T3599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[   67.542552][ T3599] Call Trace:
[   67.545815][ T3599]  <TASK>
[   67.548734][ T3599]  dump_stack_lvl+0xcd/0x134
[   67.553329][ T3599]  ? blocking_notifier_chain_unregister+0x230/0x290
[   67.559905][ T3599]  print_report.cold+0x59/0x719
[   67.564745][ T3599]  ? blocking_notifier_chain_unregister+0x230/0x290
[   67.571321][ T3599]  kasan_report+0xb1/0x1e0
[   67.575727][ T3599]  ? blocking_notifier_chain_unregister+0x230/0x290
[   67.582302][ T3599]  blocking_notifier_chain_unregister+0x230/0x290
[   67.588703][ T3599]  hci_unregister_suspend_notifier+0x73/0x90
[   67.594672][ T3599]  hci_unregister_dev+0x16f/0x4e0
[   67.599687][ T3599]  vhci_release+0x7c/0xf0
[   67.604021][ T3599]  __fput+0x277/0x9d0
[   67.608008][ T3599]  ? vhci_close_dev+0x50/0x50
[   67.612694][ T3599]  task_work_run+0xdd/0x1a0
[   67.617205][ T3599]  do_exit+0xad5/0x29b0
[   67.621377][ T3599]  ? lock_downgrade+0x6e0/0x6e0
[   67.626228][ T3599]  ? up_write+0x470/0x470
[   67.630563][ T3599]  ? mm_update_next_owner+0x7a0/0x7a0
[   67.635938][ T3599]  do_group_exit+0xd2/0x2f0
[   67.640442][ T3599]  __ia32_sys_exit_group+0x3a/0x50
[   67.645551][ T3599]  __do_fast_syscall_32+0x65/0xf0
[   67.650589][ T3599]  do_fast_syscall_32+0x2f/0x70
[   67.655444][ T3599]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[   67.661775][ T3599] RIP: 0023:0xf7e8e549
[   67.665836][ T3599] Code: Unable to access opcode bytes at RIP 0xf7e8e51f.
[   67.672843][ T3599] RSP: 002b:00000000ffaaf21c EFLAGS: 00000292 ORIG_RAX: 00000000000000fc
[   67.681251][ T3599] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[   67.689218][ T3599] RDX: 00000000f7e7ffe0 RSI: 00000000f7e803f8 RDI: 00000000f7e803f8
[   67.697188][ T3599] RBP: 00000000f7fa3628 R08: 0000000000000000 R09: 0000000000000000
[   67.705156][ T3599] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[   67.713128][ T3599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.721105][ T3599]  </TASK>
[   67.724120][ T3599] 
[   67.726440][ T3599] Memory state around the buggy address:
[   67.732060][ T3599]  ffffc9000391ba80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   67.740115][ T3599]  ffffc9000391bb00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   67.748167][ T3599] >ffffc9000391bb80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   67.756217][ T3599]                                                           ^
[   67.763661][ T3599]  ffffc9000391bc00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   67.771714][ T3599]  ffffc9000391bc80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   67.779762][ T3599] ==================================================================
[   67.795217][ T3599] Kernel panic - not syncing: panic_on_warn set ...
[   67.801828][ T3599] CPU: 0 PID: 3599 Comm: syz-executor271 Not tainted 5.19.0-syzkaller-13930-g7ebfc85e2cd7 #0
[   67.811977][ T3599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[   67.822027][ T3599] Call Trace:
[   67.825309][ T3599]  <TASK>
[   67.828234][ T3599]  dump_stack_lvl+0xcd/0x134
[   67.832833][ T3599]  panic+0x2c8/0x627
[   67.836728][ T3599]  ? panic_print_sys_info.part.0+0x10b/0x10b
[   67.842710][ T3599]  ? preempt_schedule_common+0x59/0xc0
[   67.848171][ T3599]  ? preempt_schedule_thunk+0x16/0x18
[   67.853552][ T3599]  ? blocking_notifier_chain_unregister+0x230/0x290
[   67.860150][ T3599]  end_report.part.0+0x3f/0x7c
[   67.864918][ T3599]  kasan_report.cold+0xa/0xf
[   67.869511][ T3599]  ? blocking_notifier_chain_unregister+0x230/0x290
[   67.876104][ T3599]  blocking_notifier_chain_unregister+0x230/0x290
[   67.882524][ T3599]  hci_unregister_suspend_notifier+0x73/0x90
[   67.888512][ T3599]  hci_unregister_dev+0x16f/0x4e0
[   67.893541][ T3599]  vhci_release+0x7c/0xf0
[   67.897892][ T3599]  __fput+0x277/0x9d0
[   67.901878][ T3599]  ? vhci_close_dev+0x50/0x50
[   67.906558][ T3599]  task_work_run+0xdd/0x1a0
[   67.911064][ T3599]  do_exit+0xad5/0x29b0
[   67.915236][ T3599]  ? lock_downgrade+0x6e0/0x6e0
[   67.920087][ T3599]  ? up_write+0x470/0x470
[   67.924419][ T3599]  ? mm_update_next_owner+0x7a0/0x7a0
[   67.930162][ T3599]  do_group_exit+0xd2/0x2f0
[   67.934835][ T3599]  __ia32_sys_exit_group+0x3a/0x50
[   67.939948][ T3599]  __do_fast_syscall_32+0x65/0xf0
[   67.944977][ T3599]  do_fast_syscall_32+0x2f/0x70
[   67.949826][ T3599]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[   67.956158][ T3599] RIP: 0023:0xf7e8e549
[   67.960220][ T3599] Code: Unable to access opcode bytes at RIP 0xf7e8e51f.
[   67.967227][ T3599] RSP: 002b:00000000ffaaf21c EFLAGS: 00000292 ORIG_RAX: 00000000000000fc
[   67.975639][ T3599] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[   67.983611][ T3599] RDX: 00000000f7e7ffe0 RSI: 00000000f7e803f8 RDI: 00000000f7e803f8
[   67.991577][ T3599] RBP: 00000000f7fa3628 R08: 0000000000000000 R09: 0000000000000000
[   67.999546][ T3599] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[   68.007511][ T3599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.015486][ T3599]  </TASK>
[   68.018646][ T3599] Kernel Offset: disabled
[   68.022961][ T3599] Rebooting in 86400 seconds..