last executing test programs: 6.692875533s ago: executing program 2 (id=432): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pktcdvd/control', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pktcdvd/control', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/pktcdvd/control', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pktcdvd/control', 0x800, 0x0) 6.584268851s ago: executing program 2 (id=437): socket$pppl2tp(0x18, 0x1, 0x1) 6.460932041s ago: executing program 2 (id=442): preadv2(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) 6.399638216s ago: executing program 2 (id=446): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video1', 0x2, 0x0) 6.200716216s ago: executing program 2 (id=452): rt_sigreturn() 5.122901111s ago: executing program 1 (id=483): syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) 4.964935366s ago: executing program 1 (id=485): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio1', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1', 0x800, 0x0) 4.498967217s ago: executing program 3 (id=495): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs', 0x800, 0x0) 4.333079807s ago: executing program 3 (id=497): fchown(0xffffffffffffffff, 0x0, 0x0) 4.319850249s ago: executing program 4 (id=498): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/exec', 0x2, 0x0) 4.270849337s ago: executing program 4 (id=499): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.0/attach', 0x1, 0x0) 4.172609552s ago: executing program 3 (id=500): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill', 0x800, 0x0) 4.148639145s ago: executing program 4 (id=502): setrlimit(0x0, &(0x7f0000000000)) 4.021088546s ago: executing program 3 (id=504): getrandom(&(0x7f0000000000), 0x0, 0x0) 4.020832825s ago: executing program 4 (id=505): socket$isdn_base(0x22, 0x3, 0x0) 3.919926608s ago: executing program 3 (id=507): syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) 3.864811067s ago: executing program 4 (id=508): epoll_create(0x0) 3.568099356s ago: executing program 0 (id=513): stat64(&(0x7f0000000000), &(0x7f0000000000)) 3.404628927s ago: executing program 0 (id=514): sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) 3.354285061s ago: executing program 0 (id=515): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero', 0x800, 0x0) 3.342053475s ago: executing program 1 (id=516): request_key(&(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), 0x0) 3.204623576s ago: executing program 1 (id=517): openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/create', 0x2, 0x0) 3.20446002s ago: executing program 0 (id=518): link(&(0x7f0000000000), &(0x7f0000000000)) 3.163014204s ago: executing program 0 (id=519): getdents(0xffffffffffffffff, &(0x7f0000000000), 0x0) 3.157651162s ago: executing program 1 (id=520): chmod(&(0x7f0000000000), 0x0) 3.004860139s ago: executing program 0 (id=521): chdir(&(0x7f0000000000)) 566.602083ms ago: executing program 1 (id=522): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 476.207143ms ago: executing program 2 (id=525): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 440.48131ms ago: executing program 4 (id=512): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 0s ago: executing program 3 (id=524): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.217' (ED25519) to the list of known hosts. [ 167.534268][ T5767] cgroup: Unknown subsys name 'net' [ 167.681305][ T5767] cgroup: Unknown subsys name 'cpuset' [ 167.695559][ T5767] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 212.807422][ T5767] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 219.254008][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 219.260758][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 219.426526][ T5924] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 222.923792][ T6068] mmap: syz.2.271 (6068) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 224.597097][ T6140] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 231.923856][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 231.933539][ T6330] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 231.944448][ T6330] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 231.957796][ T6330] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 231.969566][ T6330] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 231.979049][ T6330] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 232.412990][ T6325] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 234.123195][ T6330] Bluetooth: hci0: command tx timeout [ 234.137846][ T25] BUG: unable to handle page fault for address: 0000000000007366 [ 234.145786][ T25] #PF: supervisor read access in kernel mode [ 234.151939][ T25] #PF: error_code(0x0000) - not-present page [ 234.158106][ T25] PGD 0 P4D 0 [ 234.161815][ T25] Oops: Oops: 0000 [#1] PREEMPT SMP PTI [ 234.167598][ T25] CPU: 1 UID: 0 PID: 25 Comm: kworker/1:0 Not tainted 6.13.0-syzkaller-09338-g05dbaf8dd8bf #0 [ 234.178084][ T25] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 234.188378][ T25] Workqueue: events free_ipc [ 234.193270][ T25] RIP: 0010:strlen+0x38/0x90 [ 234.198118][ T25] Code: 41 54 53 48 89 fb 49 c7 c6 ff ff ff ff e8 d0 68 5c f2 49 89 c7 41 b4 01 eb 0b 48 ff c3 49 ff c6 45 84 ed 74 31 45 84 e4 74 23 <44> 0f b6 2b 48 89 df e8 6c 5a 5c f2 0f b6 00 84 c0 74 dd f6 d0 44 [ 234.217985][ T25] RSP: 0018:ffff8881002ff788 EFLAGS: 00010202 [ 234.224319][ T25] RAX: ffff8881002eac08 RBX: 0000000000007366 RCX: 0000000000000000 [ 234.232487][ T25] RDX: ffff88812f2f55f8 RSI: ffff88813fffad10 RDI: 0000000000007366 [ 234.240658][ T25] RBP: ffff8881002ff7b0 R08: ffffea000000000f R09: ffffffff82d145f0 [ 234.248931][ T25] R10: 0000000000000002 R11: ffff8881002ea0c0 R12: 0000000000000001 [ 234.257091][ T25] R13: 0000000000000000 R14: ffffffffffffffff R15: ffff8881002eac08 [ 234.265258][ T25] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000 [ 234.274389][ T25] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 234.281155][ T25] CR2: 0000000000007366 CR3: 000000011a664000 CR4: 00000000003526f0 [ 234.289317][ T25] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 234.297495][ T25] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 234.305654][ T25] Call Trace: [ 234.309085][ T25] [ 234.312165][ T25] ? show_trace_log_lvl+0x268/0x3d0 [ 234.317644][ T25] ? put_links+0x226/0x9d0 [ 234.322303][ T25] ? __die_body+0xce/0x1a0 [ 234.326977][ T25] ? __die+0x22a/0x290 [ 234.331296][ T25] ? page_fault_oops+0xe58/0xfb0 [ 234.336496][ T25] ? exc_page_fault+0x56c/0x700 [ 234.341599][ T25] ? asm_exc_page_fault+0x2b/0x30 [ 234.346886][ T25] ? put_links+0x680/0x9d0 [ 234.351523][ T25] ? strlen+0x38/0x90 [ 234.355709][ T25] ? strlen+0x20/0x90 [ 234.359901][ T25] put_links+0x226/0x9d0 [ 234.364390][ T25] drop_sysctl_table+0x10d/0x4f0 [ 234.369551][ T25] ? kvfree_call_rcu+0xcdc/0xea0 [ 234.374700][ T25] ? rb_erase+0x20e/0x23b0 [ 234.379381][ T25] drop_sysctl_table+0x4b6/0x4f0 [ 234.384551][ T25] ? kvfree_call_rcu+0xcdc/0xea0 [ 234.389724][ T25] drop_sysctl_table+0x4b6/0x4f0 [ 234.394912][ T25] unregister_sysctl_table+0x48/0x70 [ 234.400425][ T25] retire_mq_sysctls+0x67/0xc0 [ 234.405432][ T25] free_ipc+0x1c5/0x4c0 [ 234.409820][ T25] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 234.415895][ T25] ? __pfx_free_ipc+0x10/0x10 [ 234.420807][ T25] process_scheduled_works+0xae0/0x1c40 [ 234.426714][ T25] worker_thread+0xea7/0x14f0 [ 234.431649][ T25] kthread+0x6b9/0xef0 [ 234.435966][ T25] ? __pfx_worker_thread+0x10/0x10 [ 234.441324][ T25] ? __pfx_kthread+0x10/0x10 [ 234.446154][ T25] ret_from_fork+0x6d/0x90 [ 234.450831][ T25] ? __pfx_kthread+0x10/0x10 [ 234.455675][ T25] ret_from_fork_asm+0x1a/0x30 [ 234.460687][ T25] [ 234.463870][ T25] Modules linked in: [ 234.467970][ T25] CR2: 0000000000007366 [ 234.472274][ T25] ---[ end trace 0000000000000000 ]--- [ 234.477886][ T25] RIP: 0010:strlen+0x38/0x90 [ 234.482701][ T25] Code: 41 54 53 48 89 fb 49 c7 c6 ff ff ff ff e8 d0 68 5c f2 49 89 c7 41 b4 01 eb 0b 48 ff c3 49 ff c6 45 84 ed 74 31 45 84 e4 74 23 <44> 0f b6 2b 48 89 df e8 6c 5a 5c f2 0f b6 00 84 c0 74 dd f6 d0 44 [ 234.502638][ T25] RSP: 0018:ffff8881002ff788 EFLAGS: 00010202 [ 234.508940][ T25] RAX: ffff8881002eac08 RBX: 0000000000007366 RCX: 0000000000000000 [ 234.517101][ T25] RDX: ffff88812f2f55f8 RSI: ffff88813fffad10 RDI: 0000000000007366 [ 234.525262][ T25] RBP: ffff8881002ff7b0 R08: ffffea000000000f R09: ffffffff82d145f0 [ 234.533430][ T25] R10: 0000000000000002 R11: ffff8881002ea0c0 R12: 0000000000000001 [ 234.541583][ T25] R13: 0000000000000000 R14: ffffffffffffffff R15: ffff8881002eac08 [ 234.549837][ T25] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000 [ 234.558976][ T25] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 234.565742][ T25] CR2: 0000000000007366 CR3: 000000011a664000 CR4: 00000000003526f0 [ 234.573908][ T25] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 234.582058][ T25] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 234.590228][ T25] Kernel panic - not syncing: Fatal exception [ 234.596758][ T25] Kernel Offset: disabled [ 234.601189][ T25] Rebooting in 86400 seconds..