Warning: Permanently added '10.128.1.77' (ECDSA) to the list of known hosts. [ 48.033270][ T3602] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 48.040936][ T3602] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 48.048686][ T3602] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 48.056827][ T3602] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 48.064418][ T3602] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 48.071902][ T3602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 48.137988][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.150951][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.162433][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.164132][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 48.170712][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program [ 48.186438][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 48.198561][ T3600] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 48.288795][ T3600] ================================================================== [ 48.296869][ T3600] BUG: KASAN: vmalloc-out-of-bounds in blocking_notifier_chain_unregister+0x9d/0x210 [ 48.306320][ T3600] Read of size 8 at addr ffffc90003a8bbe8 by task syz-executor555/3600 [ 48.314534][ T3600] [ 48.316839][ T3600] CPU: 1 PID: 3600 Comm: syz-executor555 Not tainted 5.19.0-syzkaller-13930-g7ebfc85e2cd7 #0 [ 48.326962][ T3600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 48.336997][ T3600] Call Trace: [ 48.340259][ T3600] [ 48.343172][ T3600] dump_stack_lvl+0x1e3/0x2cb [ 48.347844][ T3600] ? io_notif_register+0x5e7/0x5e7 [ 48.352938][ T3600] ? _printk+0xcf/0x10f [ 48.357073][ T3600] ? __wake_up_klogd+0xd6/0x100 [ 48.361909][ T3600] ? __wake_up_klogd+0xcd/0x100 [ 48.366739][ T3600] ? panic+0x76b/0x76b [ 48.370825][ T3600] ? _printk+0xcf/0x10f [ 48.374967][ T3600] print_address_description+0x65/0x4b0 [ 48.380496][ T3600] print_report+0x108/0x220 [ 48.384994][ T3600] ? blocking_notifier_chain_unregister+0x9d/0x210 [ 48.391476][ T3600] kasan_report+0xfb/0x130 [ 48.395876][ T3600] ? blocking_notifier_chain_unregister+0x9d/0x210 [ 48.402360][ T3600] blocking_notifier_chain_unregister+0x9d/0x210 [ 48.408926][ T3600] hci_unregister_dev+0x189/0x460 [ 48.413933][ T3600] ? vhci_open+0x360/0x360 [ 48.418327][ T3600] vhci_release+0x7f/0xd0 [ 48.422649][ T3600] __fput+0x3b9/0x820 [ 48.426614][ T3600] task_work_run+0x146/0x1c0 [ 48.431182][ T3600] do_exit+0x55e/0x20a0 [ 48.435320][ T3600] ? mm_update_next_owner+0x6d0/0x6d0 [ 48.440672][ T3600] ? lockdep_hardirqs_on_prepare+0x448/0x7b0 [ 48.446635][ T3600] ? __ct_user_exit+0x81/0xe0 [ 48.451294][ T3600] do_group_exit+0x23b/0x2f0 [ 48.455863][ T3600] __x64_sys_exit_group+0x3b/0x40 [ 48.460865][ T3600] do_syscall_64+0x2b/0x70 [ 48.465258][ T3600] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 48.471138][ T3600] RIP: 0033:0x7f4b09c35389 [ 48.475550][ T3600] Code: Unable to access opcode bytes at RIP 0x7f4b09c3535f. [ 48.482890][ T3600] RSP: 002b:00007ffe1cad1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 48.491280][ T3600] RAX: ffffffffffffffda RBX: 00007f4b09cb8430 RCX: 00007f4b09c35389 [ 48.499235][ T3600] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 48.507192][ T3600] RBP: 0000000000000001 R08: ffffffffffffffb8 R09: 00007ffe1c003034 [ 48.515144][ T3600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4b09cb8430 [ 48.523092][ T3600] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 48.531045][ T3600] [ 48.534044][ T3600] [ 48.536348][ T3600] Memory state around the buggy address: [ 48.541955][ T3600] ffffc90003a8ba80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 48.549993][ T3600] ffffc90003a8bb00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 48.558030][ T3600] >ffffc90003a8bb80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 48.566064][ T3600] ^ [ 48.573499][ T3600] ffffc90003a8bc00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 48.581562][ T3600] ffffc90003a8bc80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 48.589597][ T3600] ================================================================== [ 48.600323][ T3600] Kernel panic - not syncing: panic_on_warn set ... [ 48.606913][ T3600] CPU: 1 PID: 3600 Comm: syz-executor555 Not tainted 5.19.0-syzkaller-13930-g7ebfc85e2cd7 #0 [ 48.617046][ T3600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 48.627099][ T3600] Call Trace: [ 48.630370][ T3600] [ 48.633292][ T3600] dump_stack_lvl+0x1e3/0x2cb [ 48.637974][ T3600] ? io_notif_register+0x5e7/0x5e7 [ 48.643071][ T3600] ? panic+0x76b/0x76b [ 48.647125][ T3600] ? preempt_schedule_common+0xb7/0xe0 [ 48.652572][ T3600] ? preempt_schedule+0xd9/0xe0 [ 48.657410][ T3600] ? vscnprintf+0x59/0x80 [ 48.661727][ T3600] panic+0x316/0x76b [ 48.665611][ T3600] ? fb_is_primary_device+0xcc/0xcc [ 48.670799][ T3600] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 48.676769][ T3600] ? blocking_notifier_chain_unregister+0x9d/0x210 [ 48.683264][ T3600] end_report+0x91/0xa0 [ 48.687406][ T3600] kasan_report+0x108/0x130 [ 48.691895][ T3600] ? blocking_notifier_chain_unregister+0x9d/0x210 [ 48.698386][ T3600] blocking_notifier_chain_unregister+0x9d/0x210 [ 48.704719][ T3600] hci_unregister_dev+0x189/0x460 [ 48.709743][ T3600] ? vhci_open+0x360/0x360 [ 48.714149][ T3600] vhci_release+0x7f/0xd0 [ 48.718465][ T3600] __fput+0x3b9/0x820 [ 48.722438][ T3600] task_work_run+0x146/0x1c0 [ 48.727013][ T3600] do_exit+0x55e/0x20a0 [ 48.731159][ T3600] ? mm_update_next_owner+0x6d0/0x6d0 [ 48.736515][ T3600] ? lockdep_hardirqs_on_prepare+0x448/0x7b0 [ 48.742484][ T3600] ? __ct_user_exit+0x81/0xe0 [ 48.747148][ T3600] do_group_exit+0x23b/0x2f0 [ 48.751725][ T3600] __x64_sys_exit_group+0x3b/0x40 [ 48.756733][ T3600] do_syscall_64+0x2b/0x70 [ 48.761139][ T3600] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 48.767020][ T3600] RIP: 0033:0x7f4b09c35389 [ 48.771433][ T3600] Code: Unable to access opcode bytes at RIP 0x7f4b09c3535f. [ 48.778797][ T3600] RSP: 002b:00007ffe1cad1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 48.787196][ T3600] RAX: ffffffffffffffda RBX: 00007f4b09cb8430 RCX: 00007f4b09c35389 [ 48.795155][ T3600] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 48.803108][ T3600] RBP: 0000000000000001 R08: ffffffffffffffb8 R09: 00007ffe1c003034 [ 48.811063][ T3600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4b09cb8430 [ 48.819020][ T3600] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 48.826980][ T3600] [ 48.830159][ T3600] Kernel Offset: disabled [ 48.834477][ T3600] Rebooting in 86400 seconds..