program: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff75257025bfa100000000000007010000f8ffffffb702000005000000bf130000000000008500000006000000b700000000000000950000ff00000000"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0)={0x0, 0x0}, 0x8) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1a, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r2}, 0x80) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x187840, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000380)={0x3920e, r3, 0x2, 0x0, 0x42}) r5 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000240)={0x0, 0x0, 0x10}, 0xc) r6 = syz_open_procfs(0x0, &(0x7f0000000580)='net/tcp6\x00') preadv(r6, &(0x7f0000000380)=[{&(0x7f00000000c0)=""/65, 0x41}], 0x1, 0x1ef, 0x0) r7 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000280)={0x0, 0x7, 0x18}, 0xc) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x6, &(0x7f0000000180)=@raw=[@call={0x85, 0x0, 0x0, 0x44}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8}, @map_val={0x18, 0x6, 0x2, 0x0, r4}], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200)={0x3, 0xc, 0x1, 0xc}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000002c0)=[r5, r6, r7], &(0x7f0000000300)=[{0x0, 0x1, 0x6, 0xb}], 0x10, 0x7}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2800000002000000, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x7000, 0x4000000}, 0x28) [ 74.778820][ T4688] Bluetooth: hci0: command tx timeout [ 74.866982][ T5339] ------------[ cut here ]------------ [ 74.869567][ T5339] Please remove unsupported % in format string [ 74.873026][ T5339] WARNING: CPU: 0 PID: 5339 at lib/vsprintf.c:2724 format_decode+0x965/0xe30 [ 74.877129][ T5339] Modules linked in: [ 74.879124][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) [ 74.884391][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.889158][ T5339] RIP: 0010:format_decode+0x965/0xe30 [ 74.891753][ T5339] Code: e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 0f 85 b4 04 00 00 41 0f b6 34 24 48 c7 c7 40 da b9 8c e8 cc c6 18 f6 90 <0f> 0b 90 90 e9 6b fc ff ff e8 7d e6 54 f6 48 89 dd e9 55 fa ff ff [ 74.900325][ T5339] RSP: 0018:ffffc9000d3e77b0 EFLAGS: 00010246 [ 74.903156][ T5339] RAX: 361cfb2761c4c100 RBX: 0000000000000000 RCX: 0000000000100000 [ 74.906705][ T5339] RDX: ffffc9000e552000 RSI: 0000000000000a21 RDI: 0000000000000a22 [ 74.910203][ T5339] RBP: ffffc9000d3e79ac R08: 0000000000000003 R09: 0000000000000004 [ 74.913915][ T5339] R10: dffffc0000000000 R11: fffffbfff1bfaa64 R12: ffffc9000d3e79ac [ 74.917584][ T5339] R13: ffffffff8cb9d540 R14: 0000000000000406 R15: 0000000000000400 [ 74.921500][ T5339] FS: 00007f7bb10ae6c0(0000) GS:ffff88808d21b000(0000) knlGS:0000000000000000 [ 74.925504][ T5339] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.928378][ T5339] CR2: 00007f7bb0386538 CR3: 0000000044445000 CR4: 0000000000352ef0 [ 74.932201][ T5339] Call Trace: [ 74.933798][ T5339] [ 74.935163][ T5339] bstr_printf+0xd0/0xb70 [ 74.937236][ T5339] bpf_trace_printk+0x10e/0x190 [ 74.939752][ T5339] ? ktime_get+0x3e/0x1f0 [ 74.941964][ T5339] ? __pfx_bpf_trace_printk+0x10/0x10 [ 74.944625][ T5339] ? __local_bh_disable_ip+0xf1/0x190 [ 74.947081][ T5339] ? ktime_get+0x1cb/0x1f0 [ 74.949212][ T5339] bpf_prog_12183cdb1cd51dab+0x37/0x3f [ 74.951902][ T5339] bpf_test_run+0x38e/0x830 [ 74.954187][ T5339] ? bpf_test_run+0x205/0x830 [ 74.956428][ T5339] ? __pfx_bpf_test_run+0x10/0x10 [ 74.958869][ T5339] ? slab_build_skb+0x273/0x3e0 [ 74.961350][ T5339] ? convert___skb_to_skb+0x3d/0x590 [ 74.963787][ T5339] bpf_prog_test_run_skb+0xb30/0x1560 [ 74.966364][ T5339] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 74.969037][ T5339] bpf_prog_test_run+0x2c7/0x340 [ 74.971417][ T5339] __sys_bpf+0x4a4/0x860 [ 74.973382][ T5339] ? __pfx___sys_bpf+0x10/0x10 [ 74.975584][ T5339] ? rcu_is_watching+0x15/0xb0 [ 74.977762][ T5339] ? rcu_is_watching+0x15/0xb0 [ 74.980043][ T5339] __x64_sys_bpf+0x7c/0x90 [ 74.982217][ T5339] do_syscall_64+0xfa/0x3b0 [ 74.984241][ T5339] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.986744][ T5339] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.989515][ T5339] ? clear_bhb_loop+0x60/0xb0 [ 74.991831][ T5339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.994589][ T5339] RIP: 0033:0x7f7bb018e929 [ 74.996622][ T5339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.005262][ T5339] RSP: 002b:00007f7bb10ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 75.009026][ T5339] RAX: ffffffffffffffda RBX: 00007f7bb03b5fa0 RCX: 00007f7bb018e929 [ 75.012719][ T5339] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a [ 75.016316][ T5339] RBP: 00007f7bb0210b39 R08: 0000000000000000 R09: 0000000000000000 [ 75.019904][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.025129][ T5339] R13: 0000000000000000 R14: 00007f7bb03b5fa0 R15: 00007ffe3236d7e8 [ 75.028891][ T5339] [ 75.030381][ T5339] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 75.033709][ T5339] CPU: 0 UID: 0 PID: 5339 Comm: syz.0.0 Not tainted 6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) [ 75.039070][ T5339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.043930][ T5339] Call Trace: [ 75.045630][ T5339] [ 75.047037][ T5339] dump_stack_lvl+0x99/0x250 [ 75.049278][ T5339] ? __asan_memcpy+0x40/0x70 [ 75.051473][ T5339] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.053894][ T5339] ? __pfx__printk+0x10/0x10 [ 75.056088][ T5339] panic+0x2db/0x790 [ 75.057903][ T5339] ? __pfx_panic+0x10/0x10 [ 75.060065][ T5339] __warn+0x31b/0x4b0 [ 75.061944][ T5339] ? format_decode+0x965/0xe30 [ 75.064223][ T5339] ? format_decode+0x965/0xe30 [ 75.066412][ T5339] report_bug+0x2be/0x4f0 [ 75.068428][ T5339] ? format_decode+0x965/0xe30 [ 75.070674][ T5339] ? format_decode+0x965/0xe30 [ 75.072871][ T5339] ? format_decode+0x967/0xe30 [ 75.075101][ T5339] handle_bug+0x84/0x160 [ 75.077010][ T5339] exc_invalid_op+0x1a/0x50 [ 75.079133][ T5339] asm_exc_invalid_op+0x1a/0x20 [ 75.081400][ T5339] RIP: 0010:format_decode+0x965/0xe30 [ 75.083859][ T5339] Code: e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 0f 85 b4 04 00 00 41 0f b6 34 24 48 c7 c7 40 da b9 8c e8 cc c6 18 f6 90 <0f> 0b 90 90 e9 6b fc ff ff e8 7d e6 54 f6 48 89 dd e9 55 fa ff ff [ 75.092723][ T5339] RSP: 0018:ffffc9000d3e77b0 EFLAGS: 00010246 [ 75.095764][ T5339] RAX: 361cfb2761c4c100 RBX: 0000000000000000 RCX: 0000000000100000 [ 75.099489][ T5339] RDX: ffffc9000e552000 RSI: 0000000000000a21 RDI: 0000000000000a22 [ 75.103094][ T5339] RBP: ffffc9000d3e79ac R08: 0000000000000003 R09: 0000000000000004 [ 75.106605][ T5339] R10: dffffc0000000000 R11: fffffbfff1bfaa64 R12: ffffc9000d3e79ac [ 75.110149][ T5339] R13: ffffffff8cb9d540 R14: 0000000000000406 R15: 0000000000000400 [ 75.113653][ T5339] bstr_printf+0xd0/0xb70 [ 75.115654][ T5339] bpf_trace_printk+0x10e/0x190 [ 75.117952][ T5339] ? ktime_get+0x3e/0x1f0 [ 75.119937][ T5339] ? __pfx_bpf_trace_printk+0x10/0x10 [ 75.122388][ T5339] ? __local_bh_disable_ip+0xf1/0x190 [ 75.124861][ T5339] ? ktime_get+0x1cb/0x1f0 [ 75.126940][ T5339] bpf_prog_12183cdb1cd51dab+0x37/0x3f [ 75.129468][ T5339] bpf_test_run+0x38e/0x830 [ 75.131538][ T5339] ? bpf_test_run+0x205/0x830 [ 75.133554][ T5339] ? __pfx_bpf_test_run+0x10/0x10 [ 75.135693][ T5339] ? slab_build_skb+0x273/0x3e0 [ 75.137687][ T5339] ? convert___skb_to_skb+0x3d/0x590 [ 75.139958][ T5339] bpf_prog_test_run_skb+0xb30/0x1560 [ 75.142257][ T5339] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 75.144745][ T5339] bpf_prog_test_run+0x2c7/0x340 [ 75.146958][ T5339] __sys_bpf+0x4a4/0x860 [ 75.148980][ T5339] ? __pfx___sys_bpf+0x10/0x10 [ 75.151253][ T5339] ? rcu_is_watching+0x15/0xb0 [ 75.153526][ T5339] ? rcu_is_watching+0x15/0xb0 [ 75.155762][ T5339] __x64_sys_bpf+0x7c/0x90 [ 75.157812][ T5339] do_syscall_64+0xfa/0x3b0 [ 75.159940][ T5339] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.162367][ T5339] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.165145][ T5339] ? clear_bhb_loop+0x60/0xb0 [ 75.167353][ T5339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.170201][ T5339] RIP: 0033:0x7f7bb018e929 [ 75.172302][ T5339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.181095][ T5339] RSP: 002b:00007f7bb10ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 75.184960][ T5339] RAX: ffffffffffffffda RBX: 00007f7bb03b5fa0 RCX: 00007f7bb018e929 [ 75.188547][ T5339] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a [ 75.192529][ T5339] RBP: 00007f7bb0210b39 R08: 0000000000000000 R09: 0000000000000000 [ 75.196402][ T5339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.200040][ T5339] R13: 0000000000000000 R14: 00007f7bb03b5fa0 R15: 00007ffe3236d7e8 [ 75.203671][ T5339] [ 75.205438][ T5339] Kernel Offset: disabled [ 75.207462][ T5339] Rebooting in 86400 seconds..