Warning: Permanently added '10.128.0.217' (ED25519) to the list of known hosts.
2025/10/06 06:46:37 parsed 1 programs
[  119.312232][ T6188] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  122.831178][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.839641][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.888824][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.897730][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.711405][ T5943] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  123.719604][ T5943] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  123.731668][ T5943] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  123.741470][ T5943] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  123.759183][ T5943] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  124.285492][ T6244] chnl_net:caif_netlink_parms(): no params data found
[  124.371618][ T6244] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.379396][ T6244] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.386824][ T6244] bridge_slave_0: entered allmulticast mode
[  124.393897][ T6244] bridge_slave_0: entered promiscuous mode
[  124.402705][ T6244] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.409800][ T6244] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.417113][ T6244] bridge_slave_1: entered allmulticast mode
[  124.424627][ T6244] bridge_slave_1: entered promiscuous mode
[  124.457860][ T6244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.469229][ T6244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.498012][ T6244] team0: Port device team_slave_0 added
[  124.505976][ T6244] team0: Port device team_slave_1 added
[  124.529471][ T6244] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.537318][ T6244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  124.563374][ T6244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.575304][ T6244] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.583171][ T6244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  124.609322][ T6244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.647511][ T6244] hsr_slave_0: entered promiscuous mode
[  124.653893][ T6244] hsr_slave_1: entered promiscuous mode
[  125.168997][ T6244] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  125.180504][ T6244] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  125.192850][ T6244] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  125.206370][ T6244] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  125.239569][ T6244] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.246893][ T6244] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.255067][ T6244] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.262336][ T6244] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.321920][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.330050][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.362148][ T6244] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.385929][ T6244] 8021q: adding VLAN 0 to HW filter on device team0
[  125.399178][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.406381][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.431354][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.438499][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.677956][ T6244] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.732750][ T6244] veth0_vlan: entered promiscuous mode
[  125.753233][ T6244] veth1_vlan: entered promiscuous mode
[  125.786456][ T6244] veth0_macvtap: entered promiscuous mode
[  125.797077][ T6244] veth1_macvtap: entered promiscuous mode
[  125.823871][ T6244] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.840719][ T6244] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.856957][   T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.895796][   T36] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.918482][   T36] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.939832][   T36] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.043383][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.137737][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.203618][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.322792][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/10/06 06:46:49 executed programs: 0
[  127.809950][ T5161] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  127.820786][ T5161] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  127.829001][ T5161] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  127.837346][ T5161] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  127.845258][ T5161] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  128.099639][ T6366] chnl_net:caif_netlink_parms(): no params data found
[  128.209765][ T6366] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.217314][ T6366] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.225054][ T6366] bridge_slave_0: entered allmulticast mode
[  128.233450][ T6366] bridge_slave_0: entered promiscuous mode
[  128.243147][ T6366] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.250826][ T6366] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.258224][ T6366] bridge_slave_1: entered allmulticast mode
[  128.266782][ T6366] bridge_slave_1: entered promiscuous mode
[  128.307741][ T6366] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  128.320673][ T6366] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  128.369032][ T6366] team0: Port device team_slave_0 added
[  128.428399][ T6366] team0: Port device team_slave_1 added
[  128.534806][ T6366] batman_adv: batadv0: Adding interface: batadv_slave_0
[  128.541933][ T6366] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  128.570852][ T6366] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  128.582466][   T13] bridge_slave_1: left allmulticast mode
[  128.588139][   T13] bridge_slave_1: left promiscuous mode
[  128.595335][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.605636][   T13] bridge_slave_0: left allmulticast mode
[  128.611744][   T13] bridge_slave_0: left promiscuous mode
[  128.617491][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.936339][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  128.948133][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  128.958595][   T13] bond0 (unregistering): Released all slaves
[  128.977799][ T6366] batman_adv: batadv0: Adding interface: batadv_slave_1
[  128.984919][ T6366] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  129.012763][ T6366] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  129.118707][   T13] hsr_slave_0: left promiscuous mode
[  129.126724][   T13] hsr_slave_1: left promiscuous mode
[  129.133686][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.141467][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.149927][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.157807][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  129.180377][   T13] veth1_macvtap: left promiscuous mode
[  129.185947][   T13] veth0_macvtap: left promiscuous mode
[  129.192026][   T13] veth1_vlan: left promiscuous mode
[  129.197465][   T13] veth0_vlan: left promiscuous mode
[  129.639172][   T13] team0 (unregistering): Port device team_slave_1 removed
[  129.677719][   T13] team0 (unregistering): Port device team_slave_0 removed
[  129.880226][ T5161] Bluetooth: hci0: command tx timeout
[  129.968192][ T6366] hsr_slave_0: entered promiscuous mode
[  129.974605][ T6366] hsr_slave_1: entered promiscuous mode
[  130.847190][ T6366] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  130.870572][ T6366] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  130.888622][ T6366] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  130.918907][ T6366] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  131.058362][ T6366] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.088270][ T6366] 8021q: adding VLAN 0 to HW filter on device team0
[  131.103966][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.111218][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.133748][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.141014][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.464631][ T6366] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.553911][ T6366] veth0_vlan: entered promiscuous mode
[  131.581629][ T6366] veth1_vlan: entered promiscuous mode
[  131.623417][ T6366] veth0_macvtap: entered promiscuous mode
[  131.635168][ T6366] veth1_macvtap: entered promiscuous mode
[  131.667736][ T6366] batman_adv: batadv0: Interface activated: batadv_slave_0
[  131.684081][ T6366] batman_adv: batadv0: Interface activated: batadv_slave_1
[  131.712640][ T3588] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.722182][ T3588] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.738463][ T3588] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.747909][ T3588] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.793720][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.806174][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.829073][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.837258][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.960201][ T5161] Bluetooth: hci0: command tx timeout
[  132.110783][  T874] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  132.273029][  T874] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  132.284884][  T874] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  132.294784][  T874] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  132.304643][  T874] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.315771][  T874] usb 1-1: config 0 descriptor??
[  132.733991][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.742373][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.749327][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.756376][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.764008][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.771111][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.778062][  T874] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  132.788755][  T874] cp2112 0003:10C4:EA90.0001: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.0-1/input0
[  132.844676][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  132.855341][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  132.929547][  T874] cp2112 0003:10C4:EA90.0001: Part Number: 0x00 Device Version: 0x00
[  133.531926][ T6477] ==================================================================
[  133.540013][ T6477] BUG: KASAN: stack-out-of-bounds in cp2112_xfer+0x713/0xf10
[  133.547414][ T6477] Read of size 34 at addr ffffc9000391fd21 by task syz.0.17/6477
[  133.555123][ T6477] 
[  133.557447][ T6477] CPU: 1 UID: 0 PID: 6477 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  133.557460][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  133.557473][ T6477] Call Trace:
[  133.557482][ T6477]  <TASK>
[  133.557491][ T6477]  dump_stack_lvl+0x189/0x250
[  133.557516][ T6477]  ? cp2112_xfer+0x713/0xf10
[  133.557545][ T6477]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.557566][ T6477]  ? __pfx__printk+0x10/0x10
[  133.557582][ T6477]  ? __virt_addr_valid+0xdc/0x5c0
[  133.557595][ T6477]  ? __virt_addr_valid+0xdc/0x5c0
[  133.557609][ T6477]  print_report+0xca/0x240
[  133.557619][ T6477]  ? cp2112_xfer+0x713/0xf10
[  133.557642][ T6477]  kasan_report+0x118/0x150
[  133.557671][ T6477]  ? cp2112_xfer+0x713/0xf10
[  133.557700][ T6477]  kasan_check_range+0x2b0/0x2c0
[  133.557722][ T6477]  ? cp2112_xfer+0x713/0xf10
[  133.557735][ T6477]  __asan_memcpy+0x29/0x70
[  133.557747][ T6477]  cp2112_xfer+0x713/0xf10
[  133.557764][ T6477]  ? validate_chain+0x897/0x2140
[  133.557781][ T6477]  ? __pfx_cp2112_xfer+0x10/0x10
[  133.557814][ T6477]  __i2c_smbus_xfer+0x5b3/0x1e50
[  133.557833][ T6477]  ? __lock_acquire+0xab9/0xd20
[  133.557851][ T6477]  ? __pfx_cp2112_xfer+0x10/0x10
[  133.557873][ T6477]  ? __pfx___i2c_smbus_xfer+0x10/0x10
[  133.557883][ T6477]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  133.557899][ T6477]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.557909][ T6477]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  133.557924][ T6477]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  133.557955][ T6477]  ? rt_mutex_lock_nested+0x15e/0x1e0
[  133.557979][ T6477]  i2c_smbus_xfer+0x275/0x3c0
[  133.558015][ T6477]  ? __pfx_i2c_smbus_xfer+0x10/0x10
[  133.558033][ T6477]  i2cdev_ioctl_smbus+0x43d/0x6d0
[  133.558047][ T6477]  ? __pfx_i2cdev_ioctl_smbus+0x10/0x10
[  133.558063][ T6477]  i2cdev_ioctl+0x5d3/0x7f0
[  133.558077][ T6477]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  133.558099][ T6477]  ? __fget_files+0x2a/0x420
[  133.558126][ T6477]  ? __fget_files+0x3a0/0x420
[  133.558155][ T6477]  ? bpf_lsm_file_ioctl+0x9/0x20
[  133.558171][ T6477]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  133.558182][ T6477]  __se_sys_ioctl+0xf9/0x170
[  133.558194][ T6477]  do_syscall_64+0xfa/0x3b0
[  133.558205][ T6477]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.558213][ T6477]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.558223][ T6477]  ? clear_bhb_loop+0x60/0xb0
[  133.558243][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.558262][ T6477] RIP: 0033:0x7ff721f8eba9
[  133.558284][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.558301][ T6477] RSP: 002b:00007ff722d8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  133.558325][ T6477] RAX: ffffffffffffffda RBX: 00007ff7221d5fa0 RCX: 00007ff721f8eba9
[  133.558332][ T6477] RDX: 0000200000000040 RSI: 0000000000000720 RDI: 0000000000000004
[  133.558339][ T6477] RBP: 00007ff722011e19 R08: 0000000000000000 R09: 0000000000000000
[  133.558345][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.558351][ T6477] R13: 00007ff7221d6038 R14: 00007ff7221d5fa0 R15: 00007ffe7cf9cd38
[  133.558362][ T6477]  </TASK>
[  133.558365][ T6477] 
[  133.864956][ T6477] The buggy address belongs to stack of task syz.0.17/6477
[  133.872135][ T6477]  and is located at offset 33 in frame:
[  133.877756][ T6477]  i2cdev_ioctl_smbus+0x0/0x6d0
[  133.882609][ T6477] 
[  133.884939][ T6477] This frame has 1 object:
[  133.889335][ T6477]  [32, 66) 'temp'
[  133.889344][ T6477] 
[  133.895358][ T6477] The buggy address belongs to a vmalloc virtual mapping
[  133.902385][ T6477] The buggy address belongs to the physical page:
[  133.908814][ T6477] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88807b698140 pfn:0x7b698
[  133.918881][ T6477] memcg:ffff88801ef76302
[  133.923123][ T6477] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  133.930246][ T6477] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  133.938819][ T6477] raw: ffff88807b698140 0000000000000000 00000001ffffffff ffff88801ef76302
[  133.947398][ T6477] page dumped because: kasan: bad access detected
[  133.953804][ T6477] page_owner tracks the page as allocated
[  133.959594][ T6477] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 6188, tgid 6188 (syz-executor), ts 118102949195, free_ts 117772360556
[  133.978962][ T6477]  post_alloc_hook+0x240/0x2a0
[  133.983806][ T6477]  get_page_from_freelist+0x2365/0x2440
[  133.989349][ T6477]  __alloc_frozen_pages_noprof+0x181/0x370
[  133.995146][ T6477]  alloc_pages_mpol+0x232/0x4a0
[  134.000007][ T6477]  alloc_pages_noprof+0xa9/0x190
[  134.004960][ T6477]  __vmalloc_node_range_noprof+0x96c/0x12d0
[  134.010853][ T6477]  __vmalloc_node_noprof+0xc2/0x110
[  134.016054][ T6477]  dup_task_struct+0x3d4/0x830
[  134.020808][ T6477]  copy_process+0x54b/0x3c00
[  134.025398][ T6477]  kernel_clone+0x21e/0x840
[  134.029996][ T6477]  __se_sys_clone3+0x256/0x2d0
[  134.034760][ T6477]  do_syscall_64+0xfa/0x3b0
[  134.039264][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.040196][ T5161] Bluetooth: hci0: command tx timeout
[  134.045158][ T6477] page last free pid 6188 tgid 6188 stack trace:
[  134.045171][ T6477]  __free_frozen_pages+0xbc4/0xd30
[  134.045197][ T6477]  vfree+0x25a/0x400
[  134.066258][ T6477]  __se_sys_swapoff+0x9a1/0xc30
[  134.071123][ T6477]  do_syscall_64+0xfa/0x3b0
[  134.075630][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.081525][ T6477] 
[  134.083847][ T6477] Memory state around the buggy address:
[  134.089472][ T6477]  ffffc9000391fc00: 00 00 00 00 f1 f1 f1 f1 00 f3 f3 f3 00 00 00 00
[  134.097520][ T6477]  ffffc9000391fc80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  134.105576][ T6477] >ffffc9000391fd00: f1 f1 f1 f1 00 00 00 00 02 f3 f3 f3 f3 f3 f3 f3
[  134.113631][ T6477]                                            ^
[  134.119775][ T6477]  ffffc9000391fd80: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[  134.127964][ T6477]  ffffc9000391fe00: 04 f2 00 00 f2 f2 00 00 f3 f3 f3 f3 00 00 00 00
[  134.136117][ T6477] ==================================================================
[  134.149071][ T6477] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  134.156289][ T6477] CPU: 0 UID: 0 PID: 6477 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  134.165406][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  134.175588][ T6477] Call Trace:
[  134.178862][ T6477]  <TASK>
[  134.181776][ T6477]  dump_stack_lvl+0x99/0x250
[  134.186365][ T6477]  ? __asan_memcpy+0x40/0x70
[  134.190953][ T6477]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.196140][ T6477]  ? __pfx__printk+0x10/0x10
[  134.200731][ T6477]  vpanic+0x237/0x6d0
[  134.204704][ T6477]  ? __pfx_vpanic+0x10/0x10
[  134.209187][ T6477]  ? preempt_schedule+0xae/0xc0
[  134.214056][ T6477]  ? __pfx_preempt_schedule+0x10/0x10
[  134.219420][ T6477]  panic+0xb9/0xc0
[  134.223126][ T6477]  ? __pfx_panic+0x10/0x10
[  134.227640][ T6477]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  134.233529][ T6477]  ? cp2112_xfer+0x713/0xf10
[  134.238104][ T6477]  check_panic_on_warn+0x89/0xb0
[  134.243025][ T6477]  ? cp2112_xfer+0x713/0xf10
[  134.247595][ T6477]  end_report+0x78/0x160
[  134.251839][ T6477]  kasan_report+0x129/0x150
[  134.256332][ T6477]  ? cp2112_xfer+0x713/0xf10
[  134.260909][ T6477]  kasan_check_range+0x2b0/0x2c0
[  134.265834][ T6477]  ? cp2112_xfer+0x713/0xf10
[  134.270493][ T6477]  __asan_memcpy+0x29/0x70
[  134.274894][ T6477]  cp2112_xfer+0x713/0xf10
[  134.279380][ T6477]  ? validate_chain+0x897/0x2140
[  134.284298][ T6477]  ? __pfx_cp2112_xfer+0x10/0x10
[  134.289224][ T6477]  __i2c_smbus_xfer+0x5b3/0x1e50
[  134.294145][ T6477]  ? __lock_acquire+0xab9/0xd20
[  134.298981][ T6477]  ? __pfx_cp2112_xfer+0x10/0x10
[  134.303902][ T6477]  ? __pfx___i2c_smbus_xfer+0x10/0x10
[  134.309275][ T6477]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  134.315153][ T6477]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.320337][ T6477]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  134.326213][ T6477]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  134.332542][ T6477]  ? rt_mutex_lock_nested+0x15e/0x1e0
[  134.337897][ T6477]  i2c_smbus_xfer+0x275/0x3c0
[  134.342558][ T6477]  ? __pfx_i2c_smbus_xfer+0x10/0x10
[  134.347751][ T6477]  i2cdev_ioctl_smbus+0x43d/0x6d0
[  134.352849][ T6477]  ? __pfx_i2cdev_ioctl_smbus+0x10/0x10
[  134.358375][ T6477]  i2cdev_ioctl+0x5d3/0x7f0
[  134.362864][ T6477]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  134.367868][ T6477]  ? __fget_files+0x2a/0x420
[  134.372441][ T6477]  ? __fget_files+0x3a0/0x420
[  134.377101][ T6477]  ? bpf_lsm_file_ioctl+0x9/0x20
[  134.382033][ T6477]  ? __pfx_i2cdev_ioctl+0x10/0x10
[  134.387056][ T6477]  __se_sys_ioctl+0xf9/0x170
[  134.391641][ T6477]  do_syscall_64+0xfa/0x3b0
[  134.396135][ T6477]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.401316][ T6477]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.407460][ T6477]  ? clear_bhb_loop+0x60/0xb0
[  134.412151][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.418027][ T6477] RIP: 0033:0x7ff721f8eba9
[  134.422423][ T6477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.442013][ T6477] RSP: 002b:00007ff722d8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.450443][ T6477] RAX: ffffffffffffffda RBX: 00007ff7221d5fa0 RCX: 00007ff721f8eba9
[  134.458394][ T6477] RDX: 0000200000000040 RSI: 0000000000000720 RDI: 0000000000000004
[  134.466434][ T6477] RBP: 00007ff722011e19 R08: 0000000000000000 R09: 0000000000000000
[  134.474389][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.482342][ T6477] R13: 00007ff7221d6038 R14: 00007ff7221d5fa0 R15: 00007ffe7cf9cd38
[  134.490297][ T6477]  </TASK>
[  134.493569][ T6477] Kernel Offset: disabled
[  134.497890][ T6477] Rebooting in 86400 seconds..