Warning: Permanently added '10.128.0.228' (ED25519) to the list of known hosts.
Setting up swapspace version 1, size = 127995904 bytes
[ 47.659661][ T3500] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 47.750248][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.764784][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.774617][ T1066] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 47.785257][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
executing program
[ 47.794391][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.802982][ T1066] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 47.869582][ T3509] kernel profiling enabled (shift: 0)
[ 49.087893][ C0] ==================================================================
[ 49.096153][ C0] BUG: KASAN: stack-out-of-bounds in profile_pc+0xa4/0xe0
[ 49.103640][ C0] Read of size 8 at addr ffffc90002cf7400 by task syz-executor133/3508
[ 49.112245][ C0]
[ 49.114566][ C0] CPU: 0 PID: 3508 Comm: syz-executor133 Not tainted 5.15.153-syzkaller #0
[ 49.123422][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 49.136731][ C0] Call Trace:
[ 49.140424][ C0]
[ 49.143529][ C0] dump_stack_lvl+0x1e3/0x2cb
[ 49.149013][ C0] ? io_uring_drop_tctx_refs+0x19d/0x19d
[ 49.157009][ C0] ? _printk+0xd1/0x111
[ 49.161519][ C0] ? __wake_up_klogd+0xcc/0x100
[ 49.166637][ C0] ? panic+0x84d/0x84d
[ 49.171221][ C0] ? _raw_spin_lock_irqsave+0xdd/0x120
[ 49.177117][ C0] ? __raise_softirq_irqoff+0x180/0x180
[ 49.182956][ C0] print_address_description+0x63/0x3b0
[ 49.188749][ C0] ? profile_pc+0xa4/0xe0
[ 49.193425][ C0] kasan_report+0x16b/0x1c0
[ 49.198358][ C0] ? profile_pc+0xa4/0xe0
[ 49.202970][ C0] ? trigger_load_balance+0x1d5/0xd90
[ 49.209786][ C0] ? _raw_spin_unlock_irqrestore+0xd4/0x130
[ 49.216195][ C0] profile_pc+0xa4/0xe0
[ 49.220458][ C0] profile_tick+0xd4/0x130
[ 49.225003][ C0] tick_sched_timer+0x390/0x550
[ 49.230321][ C0] ? tick_setup_sched_timer+0x2d0/0x2d0
[ 49.235892][ C0] __hrtimer_run_queues+0x55b/0xcf0
[ 49.241509][ C0] ? hrtimer_interrupt+0x980/0x980
[ 49.246809][ C0] ? ktime_get_update_offsets_now+0x407/0x420
[ 49.253428][ C0] hrtimer_interrupt+0x392/0x980
[ 49.258477][ C0] __sysvec_apic_timer_interrupt+0x139/0x470
[ 49.264690][ C0] sysvec_apic_timer_interrupt+0x8c/0xb0
[ 49.271934][ C0]
[ 49.275239][ C0]
[ 49.278396][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 49.284859][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd4/0x130
[ 49.291887][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 a2 82 a4 f7 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 d7 cb 31 f7 65 8b 05 a8 f9 dc 75 85 c0 74 3f 48 c7 04 24 0e 36
[ 49.314473][ C0] RSP: 0018:ffffc90002cf7400 EFLAGS: 00000206
[ 49.320872][ C0] RAX: 7758b574de8ce600 RBX: 1ffff9200059ee84 RCX: ffffffff8162f8e8
[ 49.330130][ C0] RDX: dffffc0000000000 RSI: ffffffff8a8b1500 RDI: 0000000000000001
[ 49.340679][ C0] RBP: ffffc90002cf7490 R08: dffffc0000000000 R09: fffffbfff1f7a01c
[ 49.350541][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 49.359685][ C0] R13: 1ffff9200059ee80 R14: ffffc90002cf7420 R15: 0000000000000246
[ 49.368178][ C0] ? mark_lock+0x98/0x340
[ 49.373074][ C0] ? _raw_spin_unlock+0x40/0x40
[ 49.378208][ C0] ? __wake_up_common+0x2a0/0x4e0
[ 49.383844][ C0] __wake_up_sync_key+0x121/0x1c0
[ 49.389790][ C0] ? __wake_up_locked_key_bookmark+0x20/0x20
[ 49.397443][ C0] sock_def_readable+0x135/0x240
[ 49.404174][ C0] netlink_broadcast_filtered+0xc60/0x11a0
[ 49.411234][ C0] netlink_broadcast+0x35/0x50
[ 49.416261][ C0] kobject_uevent_net_broadcast+0x377/0x560
[ 49.422582][ C0] kobject_uevent_env+0x567/0x8d0
[ 49.428010][ C0] device_del+0x9c4/0xbd0
[ 49.432357][ C0] ? kill_device+0x160/0x160
[ 49.437353][ C0] rfkill_unregister+0xbe/0x220
[ 49.443804][ C0] hci_unregister_dev+0x3fa/0x550
[ 49.449127][ C0] vhci_release+0x73/0xc0
[ 49.453860][ C0] ? vhci_open+0x290/0x290
[ 49.458442][ C0] __fput+0x3bf/0x890
[ 49.462443][ C0] task_work_run+0x129/0x1a0
[ 49.467141][ C0] do_exit+0x6a3/0x2480
[ 49.471477][ C0] ? put_task_struct+0x80/0x80
[ 49.476352][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 49.482598][ C0] do_group_exit+0x144/0x310
[ 49.487310][ C0] ? lockdep_hardirqs_on+0x94/0x130
[ 49.492944][ C0] get_signal+0xc66/0x14e0
[ 49.497463][ C0] arch_do_signal_or_restart+0xc3/0x1890
[ 49.503620][ C0] ? get_sigframe_size+0x10/0x10
[ 49.508719][ C0] ? ksys_write+0x269/0x2c0
[ 49.513438][ C0] ? print_irqtrace_events+0x210/0x210
[ 49.519431][ C0] ? exit_to_user_mode_loop+0x39/0x130
[ 49.525167][ C0] exit_to_user_mode_loop+0x97/0x130
[ 49.530550][ C0] exit_to_user_mode_prepare+0xb1/0x140
[ 49.537006][ C0] syscall_exit_to_user_mode+0x5d/0x250
[ 49.542754][ C0] do_syscall_64+0x49/0xb0
[ 49.547518][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 49.554008][ C0] RIP: 0033:0x7fa8c4ad4839
[ 49.558413][ C0] Code: Unable to access opcode bytes at RIP 0x7fa8c4ad480f.
[ 49.566485][ C0] RSP: 002b:00007fa8c4291218 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 49.575572][ C0] RAX: 0000000000010000 RBX: 00007fa8c4b5e408 RCX: 00007fa8c4ad4839
[ 49.584960][ C0] RDX: 00000000fffffecc RSI: 0000000020000040 RDI: 0000000000000004
[ 49.593154][ C0] RBP: 00007fa8c4b5e400 R08: 00007fa8c4290fa2 R09: 0000000000000000
[ 49.601600][ C0] R10: 0000000000000017 R11: 0000000000000246 R12: 00007fa8c4b2b1cc
[ 49.610523][ C0] R13: 676e696c69666f72 R14: 00000000fffffecc R15: 00007fa8c4b2b004
[ 49.618677][ C0]
[ 49.621714][ C0]
[ 49.624062][ C0]
[ 49.626364][ C0] addr ffffc90002cf7400 is located in stack of task syz-executor133/3508 at offset 0 in frame:
[ 49.637240][ C0] _raw_spin_unlock_irqrestore+0x0/0x130
[ 49.643416][ C0]
[ 49.645924][ C0] this frame has 1 object:
[ 49.650655][ C0] [32, 40) 'flags.i.i.i.i'
[ 49.650669][ C0]
[ 49.657970][ C0] Memory state around the buggy address:
[ 49.664066][ C0] ffffc90002cf7300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 49.672337][ C0] ffffc90002cf7380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 49.680650][ C0] >ffffc90002cf7400: f1 f1 f1 f1 00 f3 f3 f3 00 00 00 00 00 00 00 00
[ 49.688875][ C0] ^
[ 49.693189][ C0] ffffc90002cf7480: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00
[ 49.701738][ C0] ffffc90002cf7500: 00 f3 f3 f3 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[ 49.710124][ C0] ==================================================================
[ 49.719001][ C0] Disabling lock debugging due to kernel taint
[ 49.725491][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 49.733021][ C0] CPU: 0 PID: 3508 Comm: syz-executor133 Tainted: G B 5.15.153-syzkaller #0
[ 49.743949][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 49.754364][ C0] Call Trace:
[ 49.757983][ C0]
[ 49.761062][ C0] dump_stack_lvl+0x1e3/0x2cb
[ 49.766095][ C0] ? io_uring_drop_tctx_refs+0x19d/0x19d
[ 49.772336][ C0] ? panic+0x84d/0x84d
[ 49.776676][ C0] ? lock_release+0xb9/0x9a0
[ 49.781445][ C0] ? irq_work_queue+0xcd/0x150
[ 49.786308][ C0] panic+0x318/0x84d
[ 49.790299][ C0] ? check_panic_on_warn+0x1d/0xa0
[ 49.795846][ C0] ? fb_is_primary_device+0xcc/0xcc
[ 49.801151][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 49.808191][ C0] ? _raw_spin_unlock+0x40/0x40
[ 49.813676][ C0] check_panic_on_warn+0x7e/0xa0
[ 49.818920][ C0] ? profile_pc+0xa4/0xe0
[ 49.823609][ C0] end_report+0x6d/0xf0
[ 49.828433][ C0] kasan_report+0x18e/0x1c0
[ 49.833031][ C0] ? profile_pc+0xa4/0xe0
[ 49.837404][ C0] ? trigger_load_balance+0x1d5/0xd90
[ 49.842852][ C0] ? _raw_spin_unlock_irqrestore+0xd4/0x130
[ 49.849593][ C0] profile_pc+0xa4/0xe0
[ 49.853988][ C0] profile_tick+0xd4/0x130
[ 49.858644][ C0] tick_sched_timer+0x390/0x550
[ 49.863523][ C0] ? tick_setup_sched_timer+0x2d0/0x2d0
[ 49.869314][ C0] __hrtimer_run_queues+0x55b/0xcf0
[ 49.875130][ C0] ? hrtimer_interrupt+0x980/0x980
[ 49.880732][ C0] ? ktime_get_update_offsets_now+0x407/0x420
[ 49.887248][ C0] hrtimer_interrupt+0x392/0x980
[ 49.893271][ C0] __sysvec_apic_timer_interrupt+0x139/0x470
[ 49.899730][ C0] sysvec_apic_timer_interrupt+0x8c/0xb0
[ 49.905693][ C0]
[ 49.908707][ C0]
[ 49.912071][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 49.918172][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd4/0x130
[ 49.925023][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 a2 82 a4 f7 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 d7 cb 31 f7 65 8b 05 a8 f9 dc 75 85 c0 74 3f 48 c7 04 24 0e 36
[ 49.945138][ C0] RSP: 0018:ffffc90002cf7400 EFLAGS: 00000206
[ 49.951726][ C0] RAX: 7758b574de8ce600 RBX: 1ffff9200059ee84 RCX: ffffffff8162f8e8
[ 49.960038][ C0] RDX: dffffc0000000000 RSI: ffffffff8a8b1500 RDI: 0000000000000001
[ 49.968193][ C0] RBP: ffffc90002cf7490 R08: dffffc0000000000 R09: fffffbfff1f7a01c
[ 49.976613][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 49.985102][ C0] R13: 1ffff9200059ee80 R14: ffffc90002cf7420 R15: 0000000000000246
[ 49.993517][ C0] ? mark_lock+0x98/0x340
[ 49.998245][ C0] ? _raw_spin_unlock+0x40/0x40
[ 50.003471][ C0] ? __wake_up_common+0x2a0/0x4e0
[ 50.008705][ C0] __wake_up_sync_key+0x121/0x1c0
[ 50.013856][ C0] ? __wake_up_locked_key_bookmark+0x20/0x20
[ 50.020258][ C0] sock_def_readable+0x135/0x240
[ 50.025400][ C0] netlink_broadcast_filtered+0xc60/0x11a0
[ 50.031573][ C0] netlink_broadcast+0x35/0x50
[ 50.036470][ C0] kobject_uevent_net_broadcast+0x377/0x560
[ 50.042562][ C0] kobject_uevent_env+0x567/0x8d0
[ 50.047775][ C0] device_del+0x9c4/0xbd0
[ 50.052302][ C0] ? kill_device+0x160/0x160
[ 50.057456][ C0] rfkill_unregister+0xbe/0x220
[ 50.062767][ C0] hci_unregister_dev+0x3fa/0x550
[ 50.068228][ C0] vhci_release+0x73/0xc0
[ 50.072730][ C0] ? vhci_open+0x290/0x290
[ 50.077306][ C0] __fput+0x3bf/0x890
[ 50.081627][ C0] task_work_run+0x129/0x1a0
[ 50.086656][ C0] do_exit+0x6a3/0x2480
[ 50.091417][ C0] ? put_task_struct+0x80/0x80
[ 50.096526][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[ 50.110223][ C0] do_group_exit+0x144/0x310
[ 50.115341][ C0] ? lockdep_hardirqs_on+0x94/0x130
[ 50.121371][ C0] get_signal+0xc66/0x14e0
[ 50.127528][ C0] arch_do_signal_or_restart+0xc3/0x1890
[ 50.134817][ C0] ? get_sigframe_size+0x10/0x10
[ 50.140410][ C0] ? ksys_write+0x269/0x2c0
[ 50.145335][ C0] ? print_irqtrace_events+0x210/0x210
[ 50.150880][ C0] ? exit_to_user_mode_loop+0x39/0x130
[ 50.156546][ C0] exit_to_user_mode_loop+0x97/0x130
[ 50.162018][ C0] exit_to_user_mode_prepare+0xb1/0x140
[ 50.167994][ C0] syscall_exit_to_user_mode+0x5d/0x250
[ 50.173927][ C0] do_syscall_64+0x49/0xb0
[ 50.179146][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 50.185392][ C0] RIP: 0033:0x7fa8c4ad4839
[ 50.190073][ C0] Code: Unable to access opcode bytes at RIP 0x7fa8c4ad480f.
[ 50.198187][ C0] RSP: 002b:00007fa8c4291218 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 50.208483][ C0] RAX: 0000000000010000 RBX: 00007fa8c4b5e408 RCX: 00007fa8c4ad4839
[ 50.217268][ C0] RDX: 00000000fffffecc RSI: 0000000020000040 RDI: 0000000000000004
[ 50.226364][ C0] RBP: 00007fa8c4b5e400 R08: 00007fa8c4290fa2 R09: 0000000000000000
[ 50.235708][ C0] R10: 0000000000000017 R11: 0000000000000246 R12: 00007fa8c4b2b1cc
[ 50.243946][ C0] R13: 676e696c69666f72 R14: 00000000fffffecc R15: 00007fa8c4b2b004
[ 50.252088][ C0]
[ 50.255530][ C0] Kernel Offset: disabled
[ 50.260739][ C0] Rebooting in 86400 seconds..