Warning: Permanently added '10.128.1.179' (ED25519) to the list of known hosts.
[ 101.596033][ T5826] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 101.604592][ T5826] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 101.612342][ T5826] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 101.622560][ T5826] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 101.630804][ T5826] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
executing program
executing program
[ 101.788786][ T5832] syz-executor362[5832]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 1 (core 0, socket 0)
[ 101.802557][ T5832] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 101.865714][ T5834] syz-executor362[5834]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 0 (core 0, socket 0)
[ 101.893252][ T5834] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 101.987068][ T5836] syz-executor362[5836]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 1 (core 0, socket 0)
[ 102.014869][ T5836] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 102.110048][ T5838] syz-executor362[5838]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 1 (core 0, socket 0)
[ 102.143379][ T5838] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 102.207008][ T5840] syz-executor362[5840]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 0 (core 0, socket 0)
[ 102.222660][ T5840] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 102.327476][ T5842] syz-executor362[5842]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 1 (core 0, socket 0)
[ 102.363643][ T5842] Code: Unable to access opcode bytes at 0x400fd6.
[ 102.424939][ T2150] cfg80211: failed to load regulatory.db
executing program
[ 102.468519][ T5844] syz-executor362[5844]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 0 (core 0, socket 0)
[ 102.482216][ T5844] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 102.614659][ T5846] syz-executor362[5846]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 0 (core 0, socket 0)
[ 102.637068][ T5846] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 102.743052][ T5848] syz-executor362[5848]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 0 (core 0, socket 0)
[ 102.767238][ T5848] Code: Unable to access opcode bytes at 0x400fd6.
executing program
[ 102.876729][ T5850] syz-executor362[5850]: segfault at 401000 ip 0000000000401000 sp 000000000000000a error 14 likely on CPU 0 (core 0, socket 0)
[ 102.903220][ T5850] Code: Unable to access opcode bytes at 0x400fd6.
executing program
executing program
executing program
executing program
executing program
executing program
[ 103.673643][ T5826] ==================================================================
[ 103.681817][ T5826] BUG: KASAN: vmalloc-out-of-bounds in hci_devcd_dump+0x142/0x240
[ 103.689728][ T5826] Read of size 140 at addr ffffc90000ace000 by task kworker/u9:2/5826
[ 103.697950][ T5826]
[ 103.700337][ T5826] CPU: 1 UID: 0 PID: 5826 Comm: kworker/u9:2 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full)
[ 103.700378][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 103.700401][ T5826] Workqueue: hci0 hci_devcd_rx
[ 103.700445][ T5826] Call Trace:
[ 103.700456][ T5826]
[ 103.700472][ T5826] dump_stack_lvl+0x116/0x1f0
[ 103.700523][ T5826] print_report+0xc3/0x670
[ 103.700560][ T5826] ? __virt_addr_valid+0x5e/0x590
[ 103.700606][ T5826] ? hci_devcd_dump+0x142/0x240
[ 103.700647][ T5826] kasan_report+0xe0/0x110
[ 103.700685][ T5826] ? hci_devcd_dump+0x142/0x240
[ 103.700733][ T5826] kasan_check_range+0xef/0x1a0
[ 103.700779][ T5826] __asan_memcpy+0x23/0x60
[ 103.700815][ T5826] hci_devcd_dump+0x142/0x240
[ 103.700858][ T5826] hci_devcd_rx+0xa25/0x1780
[ 103.700903][ T5826] ? __lock_acquire+0xaa4/0x1ba0
[ 103.700945][ T5826] ? __pfx_hci_devcd_rx+0x10/0x10
[ 103.700988][ T5826] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 103.701032][ T5826] ? debug_object_deactivate+0x1ec/0x3a0
[ 103.701080][ T5826] ? rcu_is_watching+0x12/0xc0
[ 103.701112][ T5826] process_one_work+0x9cc/0x1b70
[ 103.701171][ T5826] ? __pfx_process_one_work+0x10/0x10
[ 103.701229][ T5826] ? assign_work+0x1a0/0x250
[ 103.701277][ T5826] worker_thread+0x6c8/0xf10
[ 103.701333][ T5826] ? __kthread_parkme+0x19e/0x250
[ 103.701372][ T5826] ? __pfx_worker_thread+0x10/0x10
[ 103.701423][ T5826] kthread+0x3c2/0x780
[ 103.701470][ T5826] ? __pfx_kthread+0x10/0x10
[ 103.701514][ T5826] ? __pfx_kthread+0x10/0x10
[ 103.701559][ T5826] ? __pfx_kthread+0x10/0x10
[ 103.701604][ T5826] ? __pfx_kthread+0x10/0x10
[ 103.701649][ T5826] ? rcu_is_watching+0x12/0xc0
[ 103.701677][ T5826] ? __pfx_kthread+0x10/0x10
[ 103.701724][ T5826] ret_from_fork+0x45/0x80
[ 103.701771][ T5826] ? __pfx_kthread+0x10/0x10
[ 103.701825][ T5826] ret_from_fork_asm+0x1a/0x30
[ 103.701883][ T5826]
[ 103.701894][ T5826]
[ 103.888728][ T5826] The buggy address ffffc90000ace000 belongs to a vmalloc virtual mapping
[ 103.897248][ T5826] Memory state around the buggy address:
[ 103.902926][ T5826] ffffc90000acdf00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 103.911018][ T5826] ffffc90000acdf80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 103.919111][ T5826] >ffffc90000ace000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 103.927281][ T5826] ^
[ 103.931369][ T5826] ffffc90000ace080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 103.939524][ T5826] ffffc90000ace100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 103.947604][ T5826] ==================================================================
[ 103.957834][ T5826] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 103.965098][ T5826] CPU: 1 UID: 0 PID: 5826 Comm: kworker/u9:2 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full)
[ 103.977297][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 103.987397][ T5826] Workqueue: hci0 hci_devcd_rx
[ 103.992215][ T5826] Call Trace:
[ 103.995523][ T5826]
[ 103.998478][ T5826] dump_stack_lvl+0x3d/0x1f0
[ 104.003115][ T5826] panic+0x71c/0x800
[ 104.007055][ T5826] ? __pfx_panic+0x10/0x10
[ 104.011512][ T5826] ? mark_held_locks+0x49/0x80
[ 104.016327][ T5826] ? preempt_schedule_thunk+0x16/0x30
[ 104.021753][ T5826] ? hci_devcd_dump+0x142/0x240
[ 104.026649][ T5826] ? preempt_schedule_common+0x44/0xc0
[ 104.032152][ T5826] ? check_panic_on_warn+0x1f/0xb0
[ 104.037317][ T5826] ? hci_devcd_dump+0x142/0x240
[ 104.042210][ T5826] check_panic_on_warn+0xab/0xb0
[ 104.047200][ T5826] end_report+0x107/0x170
[ 104.051570][ T5826] kasan_report+0xee/0x110
[ 104.056033][ T5826] ? hci_devcd_dump+0x142/0x240
[ 104.060931][ T5826] kasan_check_range+0xef/0x1a0
[ 104.065827][ T5826] __asan_memcpy+0x23/0x60
[ 104.070274][ T5826] hci_devcd_dump+0x142/0x240
[ 104.074993][ T5826] hci_devcd_rx+0xa25/0x1780
[ 104.079634][ T5826] ? __lock_acquire+0xaa4/0x1ba0
[ 104.084622][ T5826] ? __pfx_hci_devcd_rx+0x10/0x10
[ 104.089692][ T5826] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 104.095553][ T5826] ? debug_object_deactivate+0x1ec/0x3a0
[ 104.101325][ T5826] ? rcu_is_watching+0x12/0xc0
[ 104.106129][ T5826] process_one_work+0x9cc/0x1b70
[ 104.111120][ T5826] ? __pfx_process_one_work+0x10/0x10
[ 104.116551][ T5826] ? assign_work+0x1a0/0x250
[ 104.121200][ T5826] worker_thread+0x6c8/0xf10
[ 104.125854][ T5826] ? __kthread_parkme+0x19e/0x250
[ 104.130921][ T5826] ? __pfx_worker_thread+0x10/0x10
[ 104.136075][ T5826] kthread+0x3c2/0x780
[ 104.140194][ T5826] ? __pfx_kthread+0x10/0x10
[ 104.144829][ T5826] ? __pfx_kthread+0x10/0x10
[ 104.149458][ T5826] ? __pfx_kthread+0x10/0x10
[ 104.154090][ T5826] ? __pfx_kthread+0x10/0x10
[ 104.158719][ T5826] ? rcu_is_watching+0x12/0xc0
[ 104.163527][ T5826] ? __pfx_kthread+0x10/0x10
[ 104.168165][ T5826] ret_from_fork+0x45/0x80
[ 104.172631][ T5826] ? __pfx_kthread+0x10/0x10
[ 104.177275][ T5826] ret_from_fork_asm+0x1a/0x30
[ 104.182102][ T5826]
[ 104.185489][ T5826] Kernel Offset: disabled
[ 104.189837][ T5826] Rebooting in 86400 seconds..