Warning: Permanently added '10.128.1.112' (ED25519) to the list of known hosts.
2025/09/17 08:11:37 parsed 1 programs
[   89.771946][ T5865] cgroup: Unknown subsys name 'net'
[   89.896759][ T5865] cgroup: Unknown subsys name 'cpuset'
[   89.905635][ T5865] cgroup: Unknown subsys name 'rlimit'
[   91.630168][ T5865] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   91.994298][  T845] cfg80211: failed to load regulatory.db
[   94.545082][ T5880] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.554735][ T5880] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.562835][ T5880] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.570925][ T5880] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.579053][ T5880] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   94.696812][ T5879] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   95.917262][ T5906] chnl_net:caif_netlink_parms(): no params data found
[   96.042401][ T5906] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.049672][ T5906] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.057676][ T5906] bridge_slave_0: entered allmulticast mode
[   96.065711][ T5906] bridge_slave_0: entered promiscuous mode
[   96.080449][ T5906] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.088569][ T5906] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.096592][ T5906] bridge_slave_1: entered allmulticast mode
[   96.104339][ T5906] bridge_slave_1: entered promiscuous mode
[   96.140533][ T5906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   96.152062][ T5906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   96.189044][ T5906] team0: Port device team_slave_0 added
[   96.198475][ T5906] team0: Port device team_slave_1 added
[   96.234654][ T5906] batman_adv: batadv0: Adding interface: batadv_slave_0
[   96.241628][ T5906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.267640][ T5906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   96.280666][ T5906] batman_adv: batadv0: Adding interface: batadv_slave_1
[   96.288131][ T5906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.314082][ T5906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   96.360986][ T5906] hsr_slave_0: entered promiscuous mode
[   96.368011][ T5906] hsr_slave_1: entered promiscuous mode
[   96.527004][ T5906] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   96.538768][ T5906] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   96.549594][ T5906] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   96.560365][ T5906] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   96.591566][ T5906] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.598810][ T5906] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.606682][ T5906] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.613836][ T5906] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.669098][ T5906] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.687660][ T4143] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.696421][ T4143] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.711442][ T5906] 8021q: adding VLAN 0 to HW filter on device team0
[   96.726941][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.734073][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.748200][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.755337][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.939758][ T5906] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.983236][ T5906] veth0_vlan: entered promiscuous mode
[   96.996812][ T5906] veth1_vlan: entered promiscuous mode
[   97.027016][ T5906] veth0_macvtap: entered promiscuous mode
[   97.037699][ T5906] veth1_macvtap: entered promiscuous mode
[   97.057468][ T5906] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.071571][ T5906] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.087247][ T4143] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.097873][ T4143] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.113681][ T4143] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.127910][ T4143] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.233925][   T60] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.295627][   T60] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.379245][   T60] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.488794][   T60] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.701483][ T3485] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.709841][ T3485] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.742368][ T3485] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.751865][ T3485] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/09/17 08:11:50 executed programs: 0
[   99.911235][ T5182] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   99.920712][ T5182] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.932299][ T5182] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.940959][ T5182] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.948954][ T5182] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  100.030336][   T60] bridge_slave_1: left allmulticast mode
[  100.044359][   T60] bridge_slave_1: left promiscuous mode
[  100.050868][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.071498][   T60] bridge_slave_0: left allmulticast mode
[  100.077527][   T60] bridge_slave_0: left promiscuous mode
[  100.084153][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.292403][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.304957][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.315530][   T60] bond0 (unregistering): Released all slaves
[  100.425258][   T60] hsr_slave_0: left promiscuous mode
[  100.433628][   T60] hsr_slave_1: left promiscuous mode
[  100.439871][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.447922][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.460986][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.468653][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.490090][   T60] veth1_macvtap: left promiscuous mode
[  100.496820][   T60] veth0_macvtap: left promiscuous mode
[  100.503347][   T60] veth1_vlan: left promiscuous mode
[  100.508775][   T60] veth0_vlan: left promiscuous mode
[  100.917512][   T60] team0 (unregistering): Port device team_slave_1 removed
[  100.948138][   T60] team0 (unregistering): Port device team_slave_0 removed
[  101.295908][ T5972] chnl_net:caif_netlink_parms(): no params data found
[  101.430781][ T5972] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.439197][ T5972] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.452884][ T5972] bridge_slave_0: entered allmulticast mode
[  101.461573][ T5972] bridge_slave_0: entered promiscuous mode
[  101.479804][ T5972] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.490475][ T5972] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.499061][ T5972] bridge_slave_1: entered allmulticast mode
[  101.507551][ T5972] bridge_slave_1: entered promiscuous mode
[  101.557634][ T5972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  102.003508][ T5182] Bluetooth: hci0: command tx timeout
[  102.023391][ T5972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  102.086035][ T5972] team0: Port device team_slave_0 added
[  102.095497][ T5972] team0: Port device team_slave_1 added
[  102.210430][ T5972] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.225463][ T5972] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.265765][ T5972] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.361915][ T5972] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.368983][ T5972] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.396727][ T5972] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.525409][ T5972] hsr_slave_0: entered promiscuous mode
[  102.535492][ T5972] hsr_slave_1: entered promiscuous mode
[  103.235539][ T5972] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  103.262180][ T5972] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  103.286862][ T5972] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  103.299797][ T5972] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  103.516932][ T5972] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.560525][ T5972] 8021q: adding VLAN 0 to HW filter on device team0
[  103.576732][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.583918][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.607700][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.614942][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.895417][ T5972] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.949652][ T5972] veth0_vlan: entered promiscuous mode
[  103.963768][ T5972] veth1_vlan: entered promiscuous mode
[  104.007680][ T5972] veth0_macvtap: entered promiscuous mode
[  104.019975][ T5972] veth1_macvtap: entered promiscuous mode
[  104.043936][ T5972] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.059738][ T5972] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.072705][ T5182] Bluetooth: hci0: command tx timeout
[  104.081597][ T4143] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.109758][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.129913][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.156786][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.233870][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.241830][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.281807][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.290471][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.612921][   T24] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  104.776333][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.788508][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.800233][   T24] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  104.817481][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.830509][   T24] usb 1-1: config 0 descriptor??
[  105.264833][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.271936][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.280508][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.287644][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.294932][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.301894][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.309009][   T24] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  105.320085][   T24] cp2112 0003:10C4:EA90.0001: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.0-1/input0
[  105.458032][   T24] cp2112 0003:10C4:EA90.0001: Part Number: 0x00 Device Version: 0x00
[  106.059744][ T6069] ==================================================================
[  106.067860][ T6069] BUG: KASAN: stack-out-of-bounds in cp2112_xfer+0x713/0xf10
[  106.075288][ T6069] Read of size 34 at addr ffffc90003947d01 by task syz.0.17/6069
[  106.083020][ T6069] 
[  106.085378][ T6069] CPU: 0 UID: 0 PID: 6069 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  106.085402][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  106.085425][ T6069] Call Trace:
[  106.085436][ T6069]  <TASK>
[  106.085446][ T6069]  dump_stack_lvl+0x189/0x250
[  106.085468][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.085492][ T6069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.085507][ T6069]  ? __pfx__printk+0x10/0x10
[  106.085530][ T6069]  ? __virt_addr_valid+0xdc/0x5c0
[  106.085558][ T6069]  ? __virt_addr_valid+0xdc/0x5c0
[  106.085592][ T6069]  print_report+0xca/0x240
[  106.085613][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.085631][ T6069]  kasan_report+0x118/0x150
[  106.085657][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.085675][ T6069]  kasan_check_range+0x2b0/0x2c0
[  106.085694][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.085716][ T6069]  __asan_memcpy+0x29/0x70
[  106.085738][ T6069]  cp2112_xfer+0x713/0xf10
[  106.085761][ T6069]  ? validate_chain+0x897/0x2140
[  106.085786][ T6069]  ? __pfx_cp2112_xfer+0x10/0x10
[  106.085815][ T6069]  __i2c_smbus_xfer+0x5b6/0x1e50
[  106.085835][ T6069]  ? __lock_acquire+0xab9/0xd20
[  106.085850][ T6069]  ? __pfx_cp2112_xfer+0x10/0x10
[  106.085873][ T6069]  ? __pfx___i2c_smbus_xfer+0x10/0x10
[  106.085909][ T6069]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  106.085933][ T6069]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.085957][ T6069]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  106.085976][ T6069]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  106.085996][ T6069]  ? rt_mutex_lock_nested+0x15e/0x1e0
[  106.086023][ T6069]  i2c_smbus_xfer+0x275/0x3c0
[  106.086051][ T6069]  ? __pfx_i2c_smbus_xfer+0x10/0x10
[  106.086080][ T6069]  i2cdev_ioctl_smbus+0x43d/0x6d0
[  106.086102][ T6069]  ? __pfx_i2cdev_ioctl_smbus+0x10/0x10
[  106.086128][ T6069]  i2cdev_ioctl+0x5d3/0x7f0
[  106.086152][ T6069]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  106.086182][ T6069]  ? __pfx___se_sys_futex+0x10/0x10
[  106.086217][ T6069]  ? bpf_lsm_file_ioctl+0x9/0x20
[  106.086235][ T6069]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  106.086265][ T6069]  __se_sys_ioctl+0xfc/0x170
[  106.086288][ T6069]  do_syscall_64+0xfa/0xfa0
[  106.086305][ T6069]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.086323][ T6069]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.086344][ T6069]  ? clear_bhb_loop+0x60/0xb0
[  106.086370][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.086390][ T6069] RIP: 0033:0x7efcda58eba9
[  106.086413][ T6069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.086431][ T6069] RSP: 002b:00007ffce33e0068 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  106.086447][ T6069] RAX: ffffffffffffffda RBX: 00007efcda7d5fa0 RCX: 00007efcda58eba9
[  106.086458][ T6069] RDX: 0000200000000040 RSI: 0000000000000720 RDI: 0000000000000004
[  106.086467][ T6069] RBP: 00007efcda611e19 R08: 0000000000000000 R09: 0000000000000000
[  106.086477][ T6069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.086490][ T6069] R13: 00007efcda7d5fa0 R14: 00007efcda7d5fa0 R15: 0000000000000003
[  106.086515][ T6069]  </TASK>
[  106.086523][ T6069] 
[  106.162939][ T5182] Bluetooth: hci0: command tx timeout
[  106.163912][ T6069] The buggy address belongs to stack of task syz.0.17/6069
[  106.163928][ T6069]  and is located at offset 33 in frame:
[  106.163938][ T6069]  i2cdev_ioctl_smbus+0x0/0x6d0
[  106.412548][ T6069] 
[  106.414906][ T6069] This frame has 1 object:
[  106.419338][ T6069]  [32, 66) 'temp'
[  106.419355][ T6069] 
[  106.425400][ T6069] The buggy address belongs to a 8-page vmalloc region starting at 0xffffc90003940000 allocated at copy_process+0x54b/0x3c00
[  106.438364][ T6069] The buggy address belongs to the physical page:
[  106.444827][ T6069] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888077979000 pfn:0x77979
[  106.454909][ T6069] memcg:ffff88802ff80a02
[  106.459172][ T6069] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  106.466305][ T6069] page_type: f9(unknown)
[  106.470557][ T6069] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  106.479191][ T6069] raw: ffff888077979000 0000000000000000 00000001f9000000 ffff88802ff80a02
[  106.487786][ T6069] page dumped because: kasan: bad access detected
[  106.494221][ T6069] page_owner tracks the page as allocated
[  106.499955][ T6069] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 6030, tgid 6030 (dhcpcd-run-hook), ts 103362399580, free_ts 103326305155
[  106.519683][ T6069]  post_alloc_hook+0x240/0x2a0
[  106.524479][ T6069]  get_page_from_freelist+0x21e4/0x22c0
[  106.530055][ T6069]  __alloc_frozen_pages_noprof+0x181/0x370
[  106.535895][ T6069]  alloc_pages_mpol+0x232/0x4a0
[  106.540774][ T6069]  alloc_pages_noprof+0xa9/0x190
[  106.545733][ T6069]  __vmalloc_node_range_noprof+0x97d/0x12f0
[  106.551634][ T6069]  __vmalloc_node_noprof+0xc2/0x110
[  106.556841][ T6069]  dup_task_struct+0x3d5/0x830
[  106.561610][ T6069]  copy_process+0x54b/0x3c00
[  106.566215][ T6069]  kernel_clone+0x21e/0x840
[  106.570726][ T6069]  __x64_sys_clone+0x18b/0x1e0
[  106.575508][ T6069]  do_syscall_64+0xfa/0xfa0
[  106.580035][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.585936][ T6069] page last free pid 10 tgid 10 stack trace:
[  106.591926][ T6069]  __free_frozen_pages+0xbc4/0xd30
[  106.597042][ T6069]  rcu_core+0xcab/0x1770
[  106.601329][ T6069]  handle_softirqs+0x286/0x870
[  106.606113][ T6069]  do_softirq+0xec/0x180
[  106.610374][ T6069]  __local_bh_enable_ip+0x17d/0x1c0
[  106.615599][ T6069]  ipv6_get_lladdr+0x2aa/0x3f0
[  106.620382][ T6069]  mld_newpack+0x420/0xc40
[  106.624889][ T6069]  add_grhead+0x5a/0x2a0
[  106.629151][ T6069]  add_grec+0x1452/0x1740
[  106.633499][ T6069]  mld_ifc_work+0x6ed/0xd60
[  106.638013][ T6069]  process_scheduled_works+0xae1/0x17b0
[  106.643571][ T6069]  worker_thread+0x8a0/0xda0
[  106.648180][ T6069]  kthread+0x711/0x8a0
[  106.652267][ T6069]  ret_from_fork+0x4bc/0x870
[  106.656873][ T6069]  ret_from_fork_asm+0x1a/0x30
[  106.661703][ T6069] 
[  106.664044][ T6069] Memory state around the buggy address:
[  106.669672][ T6069]  ffffc90003947c00: f1 f1 f1 f1 00 f3 f3 f3 00 00 00 00 00 00 00 00
[  106.677742][ T6069]  ffffc90003947c80: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[  106.685803][ T6069] >ffffc90003947d00: 00 00 00 00 02 f3 f3 f3 f3 f3 f3 f3 00 00 00 00
[  106.693879][ T6069]                                ^
[  106.698993][ T6069]  ffffc90003947d80: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 04 f2 00 00
[  106.707169][ T6069]  ffffc90003947e00: f2 f2 00 00 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[  106.715254][ T6069] ==================================================================
[  106.730800][ T6069] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  106.738054][ T6069] CPU: 0 UID: 0 PID: 6069 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  106.747169][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  106.757233][ T6069] Call Trace:
[  106.760521][ T6069]  <TASK>
[  106.763465][ T6069]  dump_stack_lvl+0x99/0x250
[  106.768076][ T6069]  ? __asan_memcpy+0x40/0x70
[  106.772696][ T6069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.777901][ T6069]  ? __pfx__printk+0x10/0x10
[  106.782515][ T6069]  vpanic+0x237/0x6d0
[  106.786528][ T6069]  ? __pfx_vpanic+0x10/0x10
[  106.791044][ T6069]  ? preempt_schedule+0xae/0xc0
[  106.795918][ T6069]  ? __pfx_preempt_schedule+0x10/0x10
[  106.801299][ T6069]  panic+0xb9/0xc0
[  106.805152][ T6069]  ? __pfx_panic+0x10/0x10
[  106.809659][ T6069]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  106.815580][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.820184][ T6069]  check_panic_on_warn+0x89/0xb0
[  106.825135][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.829736][ T6069]  end_report+0x78/0x160
[  106.833997][ T6069]  kasan_report+0x129/0x150
[  106.838518][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.843135][ T6069]  kasan_check_range+0x2b0/0x2c0
[  106.848088][ T6069]  ? cp2112_xfer+0x713/0xf10
[  106.852683][ T6069]  __asan_memcpy+0x29/0x70
[  106.857106][ T6069]  cp2112_xfer+0x713/0xf10
[  106.861528][ T6069]  ? validate_chain+0x897/0x2140
[  106.866477][ T6069]  ? __pfx_cp2112_xfer+0x10/0x10
[  106.871439][ T6069]  __i2c_smbus_xfer+0x5b6/0x1e50
[  106.876400][ T6069]  ? __lock_acquire+0xab9/0xd20
[  106.881264][ T6069]  ? __pfx_cp2112_xfer+0x10/0x10
[  106.886218][ T6069]  ? __pfx___i2c_smbus_xfer+0x10/0x10
[  106.891604][ T6069]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  106.897519][ T6069]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.902762][ T6069]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  106.908859][ T6069]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  106.915202][ T6069]  ? rt_mutex_lock_nested+0x15e/0x1e0
[  106.920601][ T6069]  i2c_smbus_xfer+0x275/0x3c0
[  106.925312][ T6069]  ? __pfx_i2c_smbus_xfer+0x10/0x10
[  106.930551][ T6069]  i2cdev_ioctl_smbus+0x43d/0x6d0
[  106.935606][ T6069]  ? __pfx_i2cdev_ioctl_smbus+0x10/0x10
[  106.941174][ T6069]  i2cdev_ioctl+0x5d3/0x7f0
[  106.945749][ T6069]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  106.950809][ T6069]  ? __pfx___se_sys_futex+0x10/0x10
[  106.956031][ T6069]  ? bpf_lsm_file_ioctl+0x9/0x20
[  106.960973][ T6069]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  106.966023][ T6069]  __se_sys_ioctl+0xfc/0x170
[  106.970625][ T6069]  do_syscall_64+0xfa/0xfa0
[  106.975169][ T6069]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.980386][ T6069]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.986462][ T6069]  ? clear_bhb_loop+0x60/0xb0
[  106.991153][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.997053][ T6069] RIP: 0033:0x7efcda58eba9
[  107.001738][ T6069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.021351][ T6069] RSP: 002b:00007ffce33e0068 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.029780][ T6069] RAX: ffffffffffffffda RBX: 00007efcda7d5fa0 RCX: 00007efcda58eba9
[  107.037761][ T6069] RDX: 0000200000000040 RSI: 0000000000000720 RDI: 0000000000000004
[  107.045763][ T6069] RBP: 00007efcda611e19 R08: 0000000000000000 R09: 0000000000000000
[  107.053743][ T6069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.061722][ T6069] R13: 00007efcda7d5fa0 R14: 00007efcda7d5fa0 R15: 0000000000000003
[  107.069724][ T6069]  </TASK>
[  107.073012][ T6069] Kernel Offset: disabled
[  107.077359][ T6069] Rebooting in 86400 seconds..