program: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff75257025bfa100000000000007010000f8ffffffb702000005000000bf130000000000008500000006000000b700000000000000950000ff00000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2800000002000000, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x0, 0x4000000}, 0x28) r1 = syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x30000ba, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES16=r0], 0xd, 0x2a0, &(0x7f0000000840)="$eJzs3c9qM1UUAPAzSZpGXSSIG0VwQBeuyle3bhrlE8SulAjqQoNtQZJQaCFgBWNXfQKXvoeP4MaNbyC4Fdy1i8rIZGaahKZ/qDGF+vutDnPnnHsyt6SrnPnq9dFg7zCJ0/Pfo9VKorYTO3GRRCdqUfkhGgEAPB0XWRZ/ZQ/JbNRW3w0AsA7F///CY/cCAKzHJ599/lF3d/f5x2nailfbZ+NeEhGjs3GvWO8exDcxjP14Fu24jMiuFPEHH+4+j0aa68Rbo8m4l2eOvvy1rN/9M2Kavx3t6CzP304Lc/mTcW8jXow0ugcbVavteGV5/jtL8qPXjLffnOt/K9rx29dxGMPYizx3lv/9dpq+n/14/t0X+TZ5flKL3ub0vpmsvs5zAQAAAAAAAAAAAAAAAAAAAADgadtK06QY3zOd35NfKufv1C+n61tppbM4n6fIT6pCxXygLMoRPZMsfqrm6zxL0zQrb5zlN+K1hhcLAAAAAAAAAAAAAAAAAAAAQO7425NBfzjcP1pJUE0DqH7W/9A6O3NX3oiTQb9+c8HN++81P20g7/XWm6PRiBU9lruCF/J+Vl55c3a4n0YRVAez0r1efq8oejLop+VS9ZAH/eSuvVrVwf08v9SMf9tYNv2TuMwWz7R11epiVnNFT6P50tKlv7Msu1+dd/8ozqi8kkxHbNxv940yWPoB86B1/Sx+ubngjV8Z9ZV88QAAAAAAAAAAAAAAAAAAANfMfvS7ZPH01tTaf9YUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKzZ7P3/VdCKiMUr14JJmXzbPWXQjKPjR/6IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/A/8EwAA//9s0FAH") ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000b00)) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x81, 0x440, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = dup(0xffffffffffffffff) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000008ec0)={{{@in6=@mcast1, @in6=@ipv4={""/10, ""/2, @private}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@multicast1}}, &(0x7f0000008fc0)=0xe8) getgroups(0x6, &(0x7f0000009000)=[0xffffffffffffffff, 0xee01, 0xffffffffffffffff, 0x0, 0xee00, 0xee00]) mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0xc0, &(0x7f00000004c0)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_off}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@xino_off}, {}], [{@uid_eq={'uid', 0x3d, r3}}]}) [ 90.492879][ T5099] Bluetooth: hci0: command tx timeout [ 91.721603][ T785] cfg80211: failed to load regulatory.db [ 91.814882][ T5118] ------------[ cut here ]------------ [ 91.818001][ T5118] Please remove unsupported % in format string [ 91.821285][ T5118] WARNING: CPU: 0 PID: 5118 at lib/vsprintf.c:2659 format_decode+0x1193/0x1bb0 [ 91.825011][ T5118] Modules linked in: [ 91.826906][ T5118] CPU: 0 UID: 0 PID: 5118 Comm: syz.0.0 Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0 [ 91.831511][ T5118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 91.836262][ T5118] RIP: 0010:format_decode+0x1193/0x1bb0 [ 91.838485][ T5118] Code: 10 d6 f5 c6 05 60 ef 47 04 01 90 43 0f b6 04 34 84 c0 0f 85 14 0a 00 00 41 0f b6 75 00 48 c7 c7 40 77 35 8d e8 be 0a 97 f5 90 <0f> 0b 90 90 e9 0e fd ff ff 48 8b 4c 24 10 80 e1 07 38 c1 0f 8c 14 [ 91.846131][ T5118] RSP: 0018:ffffc900030bf5c0 EFLAGS: 00010246 [ 91.848767][ T5118] RAX: 698b8f46003e5500 RBX: 0000000000000000 RCX: 0000000000040000 [ 91.852494][ T5118] RDX: ffffc9000b451000 RSI: 0000000000000ab7 RDI: 0000000000000ab8 [ 91.856197][ T5118] RBP: ffffc900030bf6b0 R08: ffffffff8155e402 R09: 1ffff11003f8519a [ 91.859623][ T5118] R10: dffffc0000000000 R11: ffffed1003f8519b R12: 1ffff92000617f1d [ 91.862932][ T5118] R13: ffffc900030bf8ec R14: dffffc0000000000 R15: ffff0000ffffff00 [ 91.866539][ T5118] FS: 00007fd1f87ff6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000 [ 91.871646][ T5118] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 91.874620][ T5118] CR2: 00007fd1f8b2aa88 CR3: 000000003e0a8000 CR4: 0000000000352ef0 [ 91.877775][ T5118] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 91.880756][ T5118] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 91.884670][ T5118] Call Trace: [ 91.886625][ T5118] [ 91.888151][ T5118] ? __warn+0x168/0x4e0 [ 91.889790][ T5118] ? format_decode+0x1193/0x1bb0 [ 91.891672][ T5118] ? report_bug+0x2b3/0x500 [ 91.893494][ T5118] ? format_decode+0x1193/0x1bb0 [ 91.895580][ T5118] ? handle_bug+0x60/0x90 [ 91.897794][ T5118] ? exc_invalid_op+0x1a/0x50 [ 91.900210][ T5118] ? asm_exc_invalid_op+0x1a/0x20 [ 91.902247][ T5118] ? __warn_printk+0x292/0x360 [ 91.904167][ T5118] ? format_decode+0x1193/0x1bb0 [ 91.906173][ T5118] ? __pfx_format_decode+0x10/0x10 [ 91.908280][ T5118] ? bstr_printf+0x721/0x1210 [ 91.910319][ T5118] bstr_printf+0x137/0x1210 [ 91.912639][ T5118] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 91.915444][ T5118] ? __pfx_bstr_printf+0x10/0x10 [ 91.917442][ T5118] ? timekeeping_get_ns+0x5c/0x420 [ 91.919363][ T5118] ? lockdep_hardirqs_on+0x99/0x150 [ 91.921394][ T5118] ? bpf_trace_printk+0x115/0x230 [ 91.923379][ T5118] bpf_trace_printk+0x1a1/0x230 [ 91.925232][ T5118] ? timekeeping_get_ns+0x2b1/0x420 [ 91.927305][ T5118] ? __pfx_bpf_trace_printk+0x10/0x10 [ 91.929755][ T5118] ? timekeeping_get_ns+0x2b1/0x420 [ 91.932614][ T5118] ? kvm_clock_get_cycles+0x52/0x70 [ 91.935566][ T5118] ? bpf_test_run+0x370/0xa90 [ 91.937755][ T5118] bpf_prog_12183cdb1cd51dab+0x37/0x3b [ 91.939824][ T5118] bpf_test_run+0x4f0/0xa90 [ 91.941530][ T5118] ? do_syscall_64+0xf3/0x230 [ 91.943405][ T5118] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.945938][ T5118] ? bpf_test_run+0x370/0xa90 [ 91.947883][ T5118] ? __pfx_bpf_test_run+0x10/0x10 [ 91.950117][ T5118] ? eth_type_trans+0x3d1/0x7a0 [ 91.952491][ T5118] ? __pfx_eth_type_trans+0x10/0x10 [ 91.954911][ T5118] ? convert___skb_to_skb+0x41/0x620 [ 91.957107][ T5118] bpf_prog_test_run_skb+0xc97/0x1820 [ 91.959292][ T5118] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 91.961808][ T5118] ? fput+0x1a8/0x230 [ 91.963702][ T5118] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 91.966462][ T5118] bpf_prog_test_run+0x2e4/0x360 [ 91.968793][ T5118] __sys_bpf+0x48d/0x810 [ 91.970615][ T5118] ? __pfx___sys_bpf+0x10/0x10 [ 91.972658][ T5118] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 91.975080][ T5118] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 91.977465][ T5118] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 91.980526][ T5118] ? do_syscall_64+0x100/0x230 [ 91.983212][ T5118] __x64_sys_bpf+0x7c/0x90 [ 91.985117][ T5118] do_syscall_64+0xf3/0x230 [ 91.986838][ T5118] ? clear_bhb_loop+0x35/0x90 [ 91.988670][ T5118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.990923][ T5118] RIP: 0033:0x7fd1f897dff9 [ 91.992924][ T5118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 92.001826][ T5118] RSP: 002b:00007fd1f87ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 92.005529][ T5118] RAX: ffffffffffffffda RBX: 00007fd1f8b35f80 RCX: 00007fd1f897dff9 [ 92.008715][ T5118] RDX: 0000000000000028 RSI: 0000000020000080 RDI: 000000000000000a [ 92.012173][ T5118] RBP: 00007fd1f89f0296 R08: 0000000000000000 R09: 0000000000000000 [ 92.015435][ T5118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 92.018784][ T5118] R13: 0000000000000000 R14: 00007fd1f8b35f80 R15: 00007ffc0ea79778 [ 92.022537][ T5118] [ 92.024032][ T5118] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 92.027291][ T5118] CPU: 0 UID: 0 PID: 5118 Comm: syz.0.0 Not tainted 6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0 [ 92.031397][ T5118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 92.036040][ T5118] Call Trace: [ 92.037587][ T5118] [ 92.039229][ T5118] dump_stack_lvl+0x241/0x360 [ 92.041666][ T5118] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.043876][ T5118] ? __pfx__printk+0x10/0x10 [ 92.045692][ T5118] ? vscnprintf+0x5d/0x90 [ 92.047337][ T5118] panic+0x349/0x880 [ 92.048787][ T5118] ? __warn+0x177/0x4e0 [ 92.050419][ T5118] ? __pfx_panic+0x10/0x10 [ 92.052404][ T5118] __warn+0x34b/0x4e0 [ 92.054504][ T5118] ? format_decode+0x1193/0x1bb0 [ 92.056874][ T5118] report_bug+0x2b3/0x500 [ 92.058611][ T5118] ? format_decode+0x1193/0x1bb0 [ 92.060489][ T5118] handle_bug+0x60/0x90 [ 92.062185][ T5118] exc_invalid_op+0x1a/0x50 [ 92.064296][ T5118] asm_exc_invalid_op+0x1a/0x20 [ 92.067026][ T5118] RIP: 0010:format_decode+0x1193/0x1bb0 [ 92.069799][ T5118] Code: 10 d6 f5 c6 05 60 ef 47 04 01 90 43 0f b6 04 34 84 c0 0f 85 14 0a 00 00 41 0f b6 75 00 48 c7 c7 40 77 35 8d e8 be 0a 97 f5 90 <0f> 0b 90 90 e9 0e fd ff ff 48 8b 4c 24 10 80 e1 07 38 c1 0f 8c 14 [ 92.077203][ T5118] RSP: 0018:ffffc900030bf5c0 EFLAGS: 00010246 [ 92.079746][ T5118] RAX: 698b8f46003e5500 RBX: 0000000000000000 RCX: 0000000000040000 [ 92.083412][ T5118] RDX: ffffc9000b451000 RSI: 0000000000000ab7 RDI: 0000000000000ab8 [ 92.086689][ T5118] RBP: ffffc900030bf6b0 R08: ffffffff8155e402 R09: 1ffff11003f8519a [ 92.089724][ T5118] R10: dffffc0000000000 R11: ffffed1003f8519b R12: 1ffff92000617f1d [ 92.093016][ T5118] R13: ffffc900030bf8ec R14: dffffc0000000000 R15: ffff0000ffffff00 [ 92.097178][ T5118] ? __warn_printk+0x292/0x360 [ 92.099062][ T5118] ? __pfx_format_decode+0x10/0x10 [ 92.101113][ T5118] ? bstr_printf+0x721/0x1210 [ 92.103052][ T5118] bstr_printf+0x137/0x1210 [ 92.104856][ T5118] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 92.107479][ T5118] ? __pfx_bstr_printf+0x10/0x10 [ 92.109619][ T5118] ? timekeeping_get_ns+0x5c/0x420 [ 92.111793][ T5118] ? lockdep_hardirqs_on+0x99/0x150 [ 92.114402][ T5118] ? bpf_trace_printk+0x115/0x230 [ 92.116630][ T5118] bpf_trace_printk+0x1a1/0x230 [ 92.118573][ T5118] ? timekeeping_get_ns+0x2b1/0x420 [ 92.120646][ T5118] ? __pfx_bpf_trace_printk+0x10/0x10 [ 92.122920][ T5118] ? timekeeping_get_ns+0x2b1/0x420 [ 92.125339][ T5118] ? kvm_clock_get_cycles+0x52/0x70 [ 92.127652][ T5118] ? bpf_test_run+0x370/0xa90 [ 92.129511][ T5118] bpf_prog_12183cdb1cd51dab+0x37/0x3b [ 92.131399][ T5118] bpf_test_run+0x4f0/0xa90 [ 92.132888][ T5118] ? do_syscall_64+0xf3/0x230 [ 92.134864][ T5118] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.137697][ T5118] ? bpf_test_run+0x370/0xa90 [ 92.140013][ T5118] ? __pfx_bpf_test_run+0x10/0x10 [ 92.142323][ T5118] ? eth_type_trans+0x3d1/0x7a0 [ 92.144365][ T5118] ? __pfx_eth_type_trans+0x10/0x10 [ 92.146416][ T5118] ? convert___skb_to_skb+0x41/0x620 [ 92.148548][ T5118] bpf_prog_test_run_skb+0xc97/0x1820 [ 92.150715][ T5118] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 92.153131][ T5118] ? fput+0x1a8/0x230 [ 92.154987][ T5118] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 92.158280][ T5118] bpf_prog_test_run+0x2e4/0x360 [ 92.160659][ T5118] __sys_bpf+0x48d/0x810 [ 92.162608][ T5118] ? __pfx___sys_bpf+0x10/0x10 [ 92.164502][ T5118] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 92.167135][ T5118] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 92.169599][ T5118] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 92.172176][ T5118] ? do_syscall_64+0x100/0x230 [ 92.174515][ T5118] __x64_sys_bpf+0x7c/0x90 [ 92.176729][ T5118] do_syscall_64+0xf3/0x230 [ 92.178529][ T5118] ? clear_bhb_loop+0x35/0x90 [ 92.180453][ T5118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.182692][ T5118] RIP: 0033:0x7fd1f897dff9 [ 92.184422][ T5118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 92.193167][ T5118] RSP: 002b:00007fd1f87ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 92.197549][ T5118] RAX: ffffffffffffffda RBX: 00007fd1f8b35f80 RCX: 00007fd1f897dff9 [ 92.201454][ T5118] RDX: 0000000000000028 RSI: 0000000020000080 RDI: 000000000000000a [ 92.205143][ T5118] RBP: 00007fd1f89f0296 R08: 0000000000000000 R09: 0000000000000000 [ 92.208619][ T5118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 92.211874][ T5118] R13: 0000000000000000 R14: 00007fd1f8b35f80 R15: 00007ffc0ea79778 [ 92.215034][ T5118] [ 92.216606][ T5118] Kernel Offset: disabled [ 92.218492][ T5118] Rebooting in 86400 seconds..