program: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2c00) io_setup(0x3, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff75257025bfa100000000000007010000f8ffffffb702000005000000bf130000000000008500000006000000b700000000000000950000ff00000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2800000002000000, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x0, 0x4000000}, 0x28) prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000240)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYRES32=0x0], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) r6 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000000)=ANY=[], 0x190) socket$inet6_tcp(0xa, 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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") r7 = open(&(0x7f0000000080)='./file1\x00', 0x400, 0x22) pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3) syz_open_dev$tty20(0xc, 0x4, 0x1) [ 68.961661][ T5300] Bluetooth: hci0: command tx timeout [ 68.981668][ T5315] ------------[ cut here ]------------ [ 68.987674][ T5315] Please remove unsupported % in format string [ 68.995248][ T5315] WARNING: CPU: 0 PID: 5315 at lib/vsprintf.c:2702 format_decode+0x965/0xe30 [ 69.001017][ T5315] Modules linked in: [ 69.002999][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00291-g2a239ffbebb5 #0 PREEMPT(full) [ 69.008853][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.014581][ T5315] RIP: 0010:format_decode+0x965/0xe30 [ 69.017570][ T5315] Code: e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 0f 85 b4 04 00 00 41 0f b6 34 24 48 c7 c7 c0 d3 96 8c e8 fc c5 31 f6 90 <0f> 0b 90 90 e9 6b fc ff ff e8 9d 69 6d f6 48 89 dd e9 55 fa ff ff [ 69.026081][ T5315] RSP: 0018:ffffc9000ff2f7d0 EFLAGS: 00010246 [ 69.028603][ T5315] RAX: 43e3410882378700 RBX: 0000000000000000 RCX: 0000000000100000 [ 69.032380][ T5315] RDX: ffffc9000de72000 RSI: 0000000000000a15 RDI: 0000000000000a16 [ 69.035839][ T5315] RBP: ffffc9000ff2f9cc R08: 0000000000000003 R09: 0000000000000004 [ 69.039229][ T5315] R10: dffffc0000000000 R11: fffffbfff1bba4b4 R12: ffffc9000ff2f9cc [ 69.042752][ T5315] R13: ffffffff8c96cec0 R14: 0000000000000406 R15: 0000000000000400 [ 69.046110][ T5315] FS: 00007f9eb72b66c0(0000) GS:ffff88808d6cb000(0000) knlGS:0000000000000000 [ 69.049979][ T5315] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.052751][ T5315] CR2: 0000200000001000 CR3: 00000000424d8000 CR4: 0000000000352ef0 [ 69.056272][ T5315] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.059810][ T5315] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.063111][ T5315] Call Trace: [ 69.064515][ T5315] [ 69.065745][ T5315] bstr_printf+0xd0/0xb70 [ 69.067507][ T5315] bpf_trace_printk+0x10e/0x190 [ 69.069513][ T5315] ? ktime_get+0x3e/0x1f0 [ 69.071762][ T5315] ? __pfx_bpf_trace_printk+0x10/0x10 [ 69.074275][ T5315] ? __local_bh_disable_ip+0xf1/0x190 [ 69.076416][ T5315] ? ktime_get+0x1cb/0x1f0 [ 69.078253][ T5315] bpf_prog_12183cdb1cd51dab+0x37/0x3b [ 69.080754][ T5315] bpf_test_run+0x614/0x830 [ 69.082817][ T5315] ? bpf_test_run+0x205/0x830 [ 69.084903][ T5315] ? __pfx_bpf_test_run+0x10/0x10 [ 69.087086][ T5315] ? slab_build_skb+0x273/0x3e0 [ 69.089276][ T5315] ? convert___skb_to_skb+0x3d/0x590 [ 69.091648][ T5315] bpf_prog_test_run_skb+0xb30/0x1560 [ 69.094092][ T5315] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 69.097225][ T5315] bpf_prog_test_run+0x2a9/0x340 [ 69.099385][ T5315] __sys_bpf+0x4a4/0x860 [ 69.101427][ T5315] ? __pfx___sys_bpf+0x10/0x10 [ 69.103856][ T5315] ? rcu_is_watching+0x15/0xb0 [ 69.105855][ T5315] ? rcu_is_watching+0x15/0xb0 [ 69.108078][ T5315] __x64_sys_bpf+0x7c/0x90 [ 69.110191][ T5315] do_syscall_64+0xf6/0x210 [ 69.112319][ T5315] ? clear_bhb_loop+0x45/0xa0 [ 69.114325][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.116859][ T5315] RIP: 0033:0x7f9eb638e969 [ 69.118716][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.127158][ T5315] RSP: 002b:00007f9eb72b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 69.130966][ T5315] RAX: ffffffffffffffda RBX: 00007f9eb65b5fa0 RCX: 00007f9eb638e969 [ 69.134291][ T5315] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a [ 69.137702][ T5315] RBP: 00007f9eb6410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 69.141370][ T5315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.144875][ T5315] R13: 0000000000000000 R14: 00007f9eb65b5fa0 R15: 00007fff96888708 [ 69.148392][ T5315] [ 69.149869][ T5315] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 69.152960][ T5315] CPU: 0 UID: 0 PID: 5315 Comm: syz.0.0 Not tainted 6.15.0-rc4-syzkaller-00291-g2a239ffbebb5 #0 PREEMPT(full) [ 69.157845][ T5315] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 69.162605][ T5315] Call Trace: [ 69.164074][ T5315] [ 69.165477][ T5315] dump_stack_lvl+0x99/0x250 [ 69.167553][ T5315] ? __asan_memcpy+0x40/0x70 [ 69.169707][ T5315] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.171996][ T5315] ? __pfx__printk+0x10/0x10 [ 69.173999][ T5315] panic+0x2db/0x790 [ 69.175548][ T5315] ? __pfx_panic+0x10/0x10 [ 69.177310][ T5315] __warn+0x31b/0x4b0 [ 69.178971][ T5315] ? format_decode+0x965/0xe30 [ 69.180868][ T5315] ? format_decode+0x965/0xe30 [ 69.183063][ T5315] report_bug+0x2be/0x4f0 [ 69.185127][ T5315] ? format_decode+0x965/0xe30 [ 69.187051][ T5315] ? format_decode+0x965/0xe30 [ 69.189058][ T5315] ? format_decode+0x967/0xe30 [ 69.191411][ T5315] handle_bug+0x84/0x160 [ 69.193293][ T5315] exc_invalid_op+0x1a/0x50 [ 69.195293][ T5315] asm_exc_invalid_op+0x1a/0x20 [ 69.197413][ T5315] RIP: 0010:format_decode+0x965/0xe30 [ 69.199797][ T5315] Code: e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 0f 85 b4 04 00 00 41 0f b6 34 24 48 c7 c7 c0 d3 96 8c e8 fc c5 31 f6 90 <0f> 0b 90 90 e9 6b fc ff ff e8 9d 69 6d f6 48 89 dd e9 55 fa ff ff [ 69.208177][ T5315] RSP: 0018:ffffc9000ff2f7d0 EFLAGS: 00010246 [ 69.210744][ T5315] RAX: 43e3410882378700 RBX: 0000000000000000 RCX: 0000000000100000 [ 69.214192][ T5315] RDX: ffffc9000de72000 RSI: 0000000000000a15 RDI: 0000000000000a16 [ 69.217653][ T5315] RBP: ffffc9000ff2f9cc R08: 0000000000000003 R09: 0000000000000004 [ 69.221088][ T5315] R10: dffffc0000000000 R11: fffffbfff1bba4b4 R12: ffffc9000ff2f9cc [ 69.224550][ T5315] R13: ffffffff8c96cec0 R14: 0000000000000406 R15: 0000000000000400 [ 69.228046][ T5315] bstr_printf+0xd0/0xb70 [ 69.230041][ T5315] bpf_trace_printk+0x10e/0x190 [ 69.232339][ T5315] ? ktime_get+0x3e/0x1f0 [ 69.234278][ T5315] ? __pfx_bpf_trace_printk+0x10/0x10 [ 69.236726][ T5315] ? __local_bh_disable_ip+0xf1/0x190 [ 69.239092][ T5315] ? ktime_get+0x1cb/0x1f0 [ 69.240990][ T5315] bpf_prog_12183cdb1cd51dab+0x37/0x3b [ 69.243350][ T5315] bpf_test_run+0x614/0x830 [ 69.245446][ T5315] ? bpf_test_run+0x205/0x830 [ 69.247558][ T5315] ? __pfx_bpf_test_run+0x10/0x10 [ 69.249916][ T5315] ? slab_build_skb+0x273/0x3e0 [ 69.252067][ T5315] ? convert___skb_to_skb+0x3d/0x590 [ 69.254664][ T5315] bpf_prog_test_run_skb+0xb30/0x1560 [ 69.257079][ T5315] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 69.259591][ T5315] bpf_prog_test_run+0x2a9/0x340 [ 69.261766][ T5315] __sys_bpf+0x4a4/0x860 [ 69.263645][ T5315] ? __pfx___sys_bpf+0x10/0x10 [ 69.265768][ T5315] ? rcu_is_watching+0x15/0xb0 [ 69.267921][ T5315] ? rcu_is_watching+0x15/0xb0 [ 69.270043][ T5315] __x64_sys_bpf+0x7c/0x90 [ 69.272096][ T5315] do_syscall_64+0xf6/0x210 [ 69.274083][ T5315] ? clear_bhb_loop+0x45/0xa0 [ 69.276133][ T5315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.278764][ T5315] RIP: 0033:0x7f9eb638e969 [ 69.280803][ T5315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.288966][ T5315] RSP: 002b:00007f9eb72b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 69.292638][ T5315] RAX: ffffffffffffffda RBX: 00007f9eb65b5fa0 RCX: 00007f9eb638e969 [ 69.296120][ T5315] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a [ 69.299664][ T5315] RBP: 00007f9eb6410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 69.303062][ T5315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.306524][ T5315] R13: 0000000000000000 R14: 00007f9eb65b5fa0 R15: 00007fff96888708 [ 69.310014][ T5315] [ 69.311734][ T5315] Kernel Offset: disabled [ 69.313658][ T5315] Rebooting in 86400 seconds..