Warning: Permanently added '10.128.1.72' (ED25519) to the list of known hosts.
[  100.375381][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.386475][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.394412][ T5832] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.403291][ T5832] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.411224][ T5832] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
executing program
executing program
[  100.530056][ T5154] ==================================================================
[  100.538179][ T5154] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240
[  100.546058][ T5154] Read of size 140 at addr ffffc90000abe000 by task kworker/u9:1/5154
[  100.554263][ T5154] 
[  100.556652][ T5154] CPU: 0 UID: 0 PID: 5154 Comm: kworker/u9:1 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  100.556687][ T5154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.556704][ T5154] Workqueue: hci0 hci_devcd_rx
[  100.556748][ T5154] Call Trace:
[  100.556757][ T5154]  <TASK>
[  100.556770][ T5154]  dump_stack_lvl+0x116/0x1f0
[  100.556816][ T5154]  print_report+0xcd/0x680
[  100.556856][ T5154]  ? __virt_addr_valid+0x81/0x610
[  100.556885][ T5154]  ? hci_devcd_dump+0x142/0x240
[  100.556918][ T5154]  kasan_report+0xe0/0x110
[  100.556941][ T5154]  ? hci_devcd_dump+0x142/0x240
[  100.556980][ T5154]  kasan_check_range+0x100/0x1b0
[  100.557009][ T5154]  __asan_memcpy+0x23/0x60
[  100.557042][ T5154]  hci_devcd_dump+0x142/0x240
[  100.557077][ T5154]  hci_devcd_rx+0xa25/0x1780
[  100.557115][ T5154]  ? __pfx_hci_devcd_rx+0x10/0x10
[  100.557150][ T5154]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  100.557189][ T5154]  ? finish_task_switch.isra.0+0x221/0xc10
[  100.557223][ T5154]  ? rcu_is_watching+0x12/0xc0
[  100.557251][ T5154]  process_one_work+0x9cc/0x1b70
[  100.557296][ T5154]  ? __pfx_process_one_work+0x10/0x10
[  100.557339][ T5154]  ? assign_work+0x1a0/0x250
[  100.557375][ T5154]  worker_thread+0x6c8/0xf10
[  100.557425][ T5154]  ? __kthread_parkme+0x19e/0x250
[  100.557455][ T5154]  ? __pfx_worker_thread+0x10/0x10
[  100.557494][ T5154]  kthread+0x3c5/0x780
[  100.557529][ T5154]  ? __pfx_kthread+0x10/0x10
[  100.557565][ T5154]  ? rcu_is_watching+0x12/0xc0
[  100.557589][ T5154]  ? __pfx_kthread+0x10/0x10
[  100.557624][ T5154]  ret_from_fork+0x5d7/0x6f0
[  100.557659][ T5154]  ? __pfx_kthread+0x10/0x10
[  100.557694][ T5154]  ret_from_fork_asm+0x1a/0x30
[  100.557729][ T5154]  </TASK>
[  100.557737][ T5154] 
[  100.726216][ T5154] The buggy address ffffc90000abe000 belongs to a vmalloc virtual mapping
[  100.734729][ T5154] Memory state around the buggy address:
[  100.740394][ T5154]  ffffc90000abdf00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  100.748568][ T5154]  ffffc90000abdf80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  100.756655][ T5154] >ffffc90000abe000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  100.764741][ T5154]                    ^
[  100.768826][ T5154]  ffffc90000abe080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  100.776915][ T5154]  ffffc90000abe100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  100.784989][ T5154] ==================================================================
[  100.793367][ T5154] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  100.800595][ T5154] CPU: 0 UID: 0 PID: 5154 Comm: kworker/u9:1 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b #0 PREEMPT(full) 
[  100.812778][ T5154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  100.822868][ T5154] Workqueue: hci0 hci_devcd_rx
[  100.827680][ T5154] Call Trace:
[  100.831003][ T5154]  <TASK>
[  100.833955][ T5154]  dump_stack_lvl+0x3d/0x1f0
[  100.838592][ T5154]  panic+0x71c/0x800
[  100.842537][ T5154]  ? __pfx_panic+0x10/0x10
[  100.847251][ T5154]  ? irqentry_exit+0x3b/0x90
[  100.851897][ T5154]  ? lockdep_hardirqs_on+0x7c/0x110
[  100.857175][ T5154]  ? hci_devcd_dump+0x142/0x240
[  100.862265][ T5154]  ? check_panic_on_warn+0x1f/0xb0
[  100.867422][ T5154]  ? hci_devcd_dump+0x142/0x240
[  100.872346][ T5154]  check_panic_on_warn+0xab/0xb0
[  100.877341][ T5154]  end_report+0x107/0x170
[  100.881718][ T5154]  kasan_report+0xee/0x110
[  100.886169][ T5154]  ? hci_devcd_dump+0x142/0x240
[  100.891059][ T5154]  kasan_check_range+0x100/0x1b0
[  100.896033][ T5154]  __asan_memcpy+0x23/0x60
[  100.900486][ T5154]  hci_devcd_dump+0x142/0x240
[  100.905205][ T5154]  hci_devcd_rx+0xa25/0x1780
[  100.909839][ T5154]  ? __pfx_hci_devcd_rx+0x10/0x10
[  100.914907][ T5154]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  100.920759][ T5154]  ? finish_task_switch.isra.0+0x221/0xc10
[  100.926605][ T5154]  ? rcu_is_watching+0x12/0xc0
[  100.931402][ T5154]  process_one_work+0x9cc/0x1b70
[  100.936393][ T5154]  ? __pfx_process_one_work+0x10/0x10
[  100.941819][ T5154]  ? assign_work+0x1a0/0x250
[  100.946464][ T5154]  worker_thread+0x6c8/0xf10
[  100.951105][ T5154]  ? __kthread_parkme+0x19e/0x250
[  100.956167][ T5154]  ? __pfx_worker_thread+0x10/0x10
[  100.961366][ T5154]  kthread+0x3c5/0x780
[  100.965909][ T5154]  ? __pfx_kthread+0x10/0x10
[  100.970540][ T5154]  ? rcu_is_watching+0x12/0xc0
[  100.975340][ T5154]  ? __pfx_kthread+0x10/0x10
[  100.979971][ T5154]  ret_from_fork+0x5d7/0x6f0
[  100.984604][ T5154]  ? __pfx_kthread+0x10/0x10
[  100.989231][ T5154]  ret_from_fork_asm+0x1a/0x30
[  100.994037][ T5154]  </TASK>
[  100.997229][ T5154] Kernel Offset: disabled
[  101.001569][ T5154] Rebooting in 86400 seconds..