last executing test programs:

2.249028976s ago: executing program 0 (id=212):
socketpair(0x1, 0x3, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080))

2.214591886s ago: executing program 0 (id=213):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)
recvmsg$kcm(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, 0x0}, 0x40000100)
recvmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

2.143957796s ago: executing program 0 (id=214):
r0 = socket$kcm(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0xa38, 0x0, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
setsockopt$sock_attach_bpf(r0, 0x29, 0x14, &(0x7f0000000100), 0x120)

2.017872621s ago: executing program 2 (id=217):
r0 = socket$kcm(0x11, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x5, 0x83501, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x940, 0x4, 0x0, 0x0, 0x6d1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
socket$kcm(0x10, 0x2, 0x10)
socket$kcm(0xa, 0x0, 0x106)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x14, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f00000002c0)={&(0x7f0000000200)=@caif=@dgm={0x25, 0xd}, 0x80, 0x0}, 0x0)

2.017676445s ago: executing program 1 (id=218):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x11, 0x4, 0x4, 0x9}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x2, 0x4, 0x1, 0x0, r0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r1}, &(0x7f0000000840), &(0x7f0000000880)=r0, 0x1000000}, 0x20)

1.965532462s ago: executing program 0 (id=219):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000040)=@framed={{0x18, 0x8, 0x0, 0x0, 0xed02, 0x0, 0x0, 0x0, 0x100}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @generic={0x24, 0x8, 0x0, 0x0, 0xb000}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00'}, 0x90)

1.965281296s ago: executing program 1 (id=220):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001b40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
sendmsg$inet(r1, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000001e00)="02", 0x1}], 0x1}, 0x4c041)

1.96456348s ago: executing program 0 (id=221):
r0 = socket$kcm(0xa, 0x2, 0x11)
sendmsg$sock(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
r1 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x51, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x4, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8258000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x1, 0x2}, 0x100810, 0x0, 0x100, 0x3}, 0x0, 0xffffffffffffffff, r1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x14869}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r2 = socket$kcm(0xa, 0x5, 0x0)
r3 = socket$kcm(0xa, 0x5, 0x0)
socket$kcm(0x2, 0x3, 0x106)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.time\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, r4}, 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x8916, &(0x7f0000000000)={r3})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x8936, &(0x7f0000000000)={r3})

1.895631515s ago: executing program 1 (id=222):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1, 0x10, &(0x7f0000000000), 0xffffffffffffffa6, 0x0, 0xffffffffffffffff, 0x60}, 0x48)

1.895417749s ago: executing program 1 (id=223):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803001d000b0ad25a80648c2594f90124fc60100c060000040009053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x4000}, 0x3500000000000000)
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x9, &(0x7f0000000000), 0x98)

1.889532466s ago: executing program 1 (id=224):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000004680)={&(0x7f0000004500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@typedef={0x3}]}, {0x0, [0x5f, 0x2e, 0x61, 0x672608233d8dd4ac]}}, 0x0, 0x2a, 0x0, 0x1}, 0x28)

1.837142888s ago: executing program 2 (id=225):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001580)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001000ff05142603600e1204000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee500"/108, 0x6c}, {&(0x7f0000000500)="25108a32c7d4bdc542b8c9df6ceb70b094f1e124718e5504a6e20a2895b019f167c9c90e183174336e9df0dec10458f6dae623de224d1419522327262183f661e5c8531eac5b457ac2259030eb2539a1bb2b826d8818253b001e679d26b392fe43082e83d84c3f8755b2d34a", 0x6c}], 0x2}, 0x0)

1.836828791s ago: executing program 1 (id=226):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000a50000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x9, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000880), 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x8183, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_config_ext, 0x40, 0x0, 0x0, 0x0, 0xc360, 0xfffffffe}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r4, 0x29, 0x23, &(0x7f0000000040), 0xcf)
r5 = socket$kcm(0xf, 0x3, 0x2)
r6 = openat$cgroup(0xffffffffffffffff, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0)
openat$cgroup_devices(r6, &(0x7f0000000280)='devices.deny\x00', 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="0213020902000000", 0x8}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.836594053s ago: executing program 2 (id=227):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x8004)
close(r0)
close(0x3)

815.32µs ago: executing program 0 (id=228):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x62001, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000001440)={'\x00', 0x4212})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x339)

345.512µs ago: executing program 2 (id=229):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000280)="db", 0x1}], 0x1}, 0x41)
recvmsg(r0, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000380)="1e3a", 0x2}], 0x1}, 0x41)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100e64, 0xc78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
recvmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x2)

96.518µs ago: executing program 2 (id=230):
r0 = socket$kcm(0xa, 0x3, 0x73)
setsockopt$sock_attach_bpf(r0, 0x0, 0x61, 0x0, 0x0)

0s ago: executing program 2 (id=231):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x6c}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x3b, 0x10, 0x0, 0x1800}, 0x48)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:14700' (ED25519) to the list of known hosts.
syzkaller login: [   48.636384][ T5813] cgroup: Unknown subsys name 'net'
[   48.747137][ T5813] cgroup: Unknown subsys name 'cpuset'
[   48.751086][ T5813] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.427435][ T5813] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   60.144977][ T5824] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   60.148451][ T5824] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   60.151171][ T5824] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   60.154096][ T5824] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   60.156788][ T5824] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   60.216529][ T5824] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   60.224884][ T5824] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   60.227853][ T5824] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   60.231163][ T5824] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   60.233914][ T5824] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   60.250511][ T5824] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   60.253382][ T5824] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   60.255912][ T5824] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   60.259002][ T5824] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   60.261405][ T5824] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   60.403309][ T5821] chnl_net:caif_netlink_parms(): no params data found
[   60.511443][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.513916][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.517065][ T5821] bridge_slave_0: entered allmulticast mode
[   60.519938][ T5821] bridge_slave_0: entered promiscuous mode
[   60.551032][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.553380][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.556294][ T5821] bridge_slave_1: entered allmulticast mode
[   60.559047][ T5821] bridge_slave_1: entered promiscuous mode
[   60.603508][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   60.613058][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.618237][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.668353][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   60.675097][ T5821] team0: Port device team_slave_0 added
[   60.698691][ T5821] team0: Port device team_slave_1 added
[   60.765991][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.768207][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.770709][ T5828] bridge_slave_0: entered allmulticast mode
[   60.773482][ T5828] bridge_slave_0: entered promiscuous mode
[   60.778101][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.780495][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.789212][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.799813][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.802405][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.805462][ T5828] bridge_slave_1: entered allmulticast mode
[   60.809142][ T5828] bridge_slave_1: entered promiscuous mode
[   60.813471][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.816077][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.825819][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.877291][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.915560][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.918714][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.921539][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.925636][ T5826] bridge_slave_0: entered allmulticast mode
[   60.929334][ T5826] bridge_slave_0: entered promiscuous mode
[   60.933997][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.938096][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.940838][ T5826] bridge_slave_1: entered allmulticast mode
[   60.944617][ T5826] bridge_slave_1: entered promiscuous mode
[   60.959618][ T5821] hsr_slave_0: entered promiscuous mode
[   60.961792][ T5821] hsr_slave_1: entered promiscuous mode
[   61.000008][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.005633][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.009725][ T5828] team0: Port device team_slave_0 added
[   61.039827][ T5828] team0: Port device team_slave_1 added
[   61.056658][ T5826] team0: Port device team_slave_0 added
[   61.068400][ T5826] team0: Port device team_slave_1 added
[   61.104598][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.106695][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.114013][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.123247][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.125357][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.132647][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.137312][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.139338][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.146945][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.150661][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.152757][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.162464][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.225394][ T5828] hsr_slave_0: entered promiscuous mode
[   61.227662][ T5828] hsr_slave_1: entered promiscuous mode
[   61.229674][ T5828] debugfs: 'hsr0' already exists in 'hsr'
[   61.231400][ T5828] Cannot create hsr debugfs directory
[   61.245500][ T5826] hsr_slave_0: entered promiscuous mode
[   61.248201][ T5826] hsr_slave_1: entered promiscuous mode
[   61.250728][ T5826] debugfs: 'hsr0' already exists in 'hsr'
[   61.252811][ T5826] Cannot create hsr debugfs directory
[   61.427351][ T5821] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   61.441394][ T5821] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   61.456245][ T5821] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   61.468054][ T5821] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   61.508816][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   61.515145][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   61.519864][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   61.526051][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   61.581788][ T5826] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   61.589383][ T5826] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   61.601312][ T5826] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   61.606151][ T5826] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   61.666895][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.690712][ T5821] 8021q: adding VLAN 0 to HW filter on device team0
[   61.696059][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.707332][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.709597][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.727572][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.729803][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.736235][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   61.752041][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.754204][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.776982][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.780036][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.782189][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.833665][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   61.851416][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.853574][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.877833][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.880523][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.927638][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.989844][ T5821] veth0_vlan: entered promiscuous mode
[   61.999739][ T5821] veth1_vlan: entered promiscuous mode
[   62.030633][ T5821] veth0_macvtap: entered promiscuous mode
[   62.038648][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.042979][ T5821] veth1_macvtap: entered promiscuous mode
[   62.061587][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.079175][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.092950][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.096716][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.101815][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.106657][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.109255][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.143293][ T5828] veth0_vlan: entered promiscuous mode
[   62.149005][ T5828] veth1_vlan: entered promiscuous mode
[   62.185294][ T5824] Bluetooth: hci0: command tx timeout
[   62.202725][   T28] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.206969][   T28] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.216720][ T5828] veth0_macvtap: entered promiscuous mode
[   62.221598][ T5826] veth0_vlan: entered promiscuous mode
[   62.234212][ T5828] veth1_macvtap: entered promiscuous mode
[   62.251459][ T5826] veth1_vlan: entered promiscuous mode
[   62.259856][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.262319][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.265611][ T5824] Bluetooth: hci1: command tx timeout
[   62.266929][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.282052][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.293840][ T5826] veth0_macvtap: entered promiscuous mode
[   62.308387][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.314181][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.320136][ T5826] veth1_macvtap: entered promiscuous mode
[   62.329989][ T5821] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   62.338172][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.345764][ T5824] Bluetooth: hci2: command tx timeout
[   62.348443][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.399059][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.420744][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.438411][ T5835] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.450512][ T5835] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.461395][ T5835] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.471530][ T5835] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.478023][   T28] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.480320][   T28] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.837919][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.840619][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.887023][ T1087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.889702][ T1087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.928830][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.934050][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.685260][ T5910] Driver unsupported XDP return value 0 on prog  (id 8) dev N/A, expect packet loss!
[   63.740002][ T5914] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.742932][ T5914] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.757851][ T5914] bridge0: entered allmulticast mode
[   63.775235][ T5914] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.777543][ T5914] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.780712][ T5914] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.783026][ T5914] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.789514][ T5914] bridge0: entered promiscuous mode
[   63.935275][ T5929] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   63.938049][ T5929] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   64.354977][ T5824] Bluetooth: hci0: command tx timeout
[   64.356631][ T5824] Bluetooth: hci1: command tx timeout
[   64.495403][ T5948] netlink: 60 bytes leftover after parsing attributes in process `syz.1.32'.
[   64.498901][ T5947] netlink: 60 bytes leftover after parsing attributes in process `syz.1.32'.
[   64.501754][   T54] Bluetooth: hci2: command tx timeout
[   64.884503][   T54] Bluetooth: hci2: ACL packet for unknown connection handle 0
[   64.998566][ T5970] warning: `syz.2.43' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   65.091500][ T5980] netlink: 'syz.1.48': attribute type 4 has an invalid length.
[   65.332941][ T6004] netlink: 'syz.1.59': attribute type 46 has an invalid length.
[   65.356653][ T6005] IPv6: Can't replace route, no match found
[   65.432544][   T54] Bluetooth: hci1: unexpected event 0x36 length: 15 > 7
[   65.470336][ T6017] netlink: 495 bytes leftover after parsing attributes in process `syz.2.65'.
[   65.592374][ T6027] netlink: 'syz.2.70': attribute type 10 has an invalid length.
[   65.693670][ T6037] netlink: 'syz.0.75': attribute type 16 has an invalid length.
[   65.697409][ T6037] netlink: 48 bytes leftover after parsing attributes in process `syz.0.75'.
[   65.776014][ T6042] netlink: 1053 bytes leftover after parsing attributes in process `syz.2.78'.
[   65.852975][ T6053] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.856610][ T6053] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.875948][ T6053] bridge0: entered allmulticast mode
[   65.894250][    C1] hrtimer: interrupt took 18431 ns
[   66.014955][ T6061] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   66.327796][ T6053] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.330443][ T6053] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.333504][ T6053] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.336077][ T6053] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.341774][ T6053] bridge0: entered promiscuous mode
[   66.424621][   T54] Bluetooth: hci1: command tx timeout
[   66.426466][   T54] Bluetooth: hci0: command tx timeout
[   66.504543][ T5824] Bluetooth: hci2: command tx timeout
[   68.336589][ T6126] Zero length message leads to an empty skb
[   68.519972][ T5824] Bluetooth: hci0: command tx timeout
[   68.522401][ T5824] Bluetooth: hci1: command tx timeout
[   68.604177][   T54] Bluetooth: hci2: command tx timeout
[   70.086293][ T6129] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.116'.
[   70.156877][ T6137] netlink: 'syz.1.120': attribute type 29 has an invalid length.
[   70.166233][ T6137] netlink: 'syz.1.120': attribute type 29 has an invalid length.
[   70.610562][ T6186] netlink: 'syz.2.141': attribute type 10 has an invalid length.
[   70.882945][ T6186] team0: Port device wlan1 added
[   70.893955][ T6191] bridge_slave_1: left allmulticast mode
[   70.899499][ T6191] bridge_slave_1: left promiscuous mode
[   70.910528][ T6191] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.106033][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   71.108409][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[   71.272097][ T6186] syz.2.141 (6186) used greatest stack depth: 19256 bytes left
[   71.295098][ T6191] bridge_slave_0: left allmulticast mode
[   71.297024][ T6191] bridge_slave_0: left promiscuous mode
[   71.298944][ T6191] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.456441][ T6227] netlink: 'syz.1.158': attribute type 9 has an invalid length.
[   72.458852][ T6227] netlink: 61951 bytes leftover after parsing attributes in process `syz.1.158'.
[   75.879045][ T6255] netlink: 'syz.1.171': attribute type 9 has an invalid length.
[   75.882738][ T6255] netlink: 61951 bytes leftover after parsing attributes in process `syz.1.171'.
[   77.572201][ T6367] netlink: 'syz.2.225': attribute type 16 has an invalid length.
[   77.576527][ T6367] netlink: 16 bytes leftover after parsing attributes in process `syz.2.225'.
[   77.652803][ T6373] tap0: tun_chr_ioctl cmd 1074025677
[   77.656160][ T6373] tap0: linktype set to 825
[   81.153519][ T3148] cfg80211: failed to load regulatory.db
[  183.564251][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  183.566328][    C1] rcu: 	1-....: (1 GPs behind) idle=1e64/1/0x4000000000000000 softirq=16144/16145 fqs=5250
[  183.570547][    C1] rcu: 	         hardirqs   softirqs   csw/system
[  183.572530][    C1] rcu: 	 number:  1202234          0            0
[  183.574501][    C1] rcu: 	cputime:    25409      27080           77   ==> 52500(ms)
[  183.576909][    C1] rcu: 	(t=10502 jiffies g=7841 q=1398 ncpus=2)
[  183.578853][    C1] CPU: 1 UID: 0 PID: 6369 Comm: syz.1.226 Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10-dirty #0 PREEMPT(full) 
[  183.578864][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  183.578871][    C1] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  183.578890][    C1] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 b2 e8 f2 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  183.578897][    C1] RSP: 0018:ffffc900001e0160 EFLAGS: 00000206
[  183.578907][    C1] RAX: 65e8d08287275700 RBX: 1ffff9200003c034 RCX: 65e8d08287275700
[  183.578913][    C1] RDX: 0000000000000002 RSI: ffffffff8d9792eb RDI: ffffffff8be30a00
[  183.578918][    C1] RBP: ffffc900001e0258 R08: ffffffff8fa07bf7 R09: 1ffffffff1f40f7e
[  183.578924][    C1] R10: dffffc0000000000 R11: fffffbfff1f40f7f R12: ffffffff8e141800
[  183.578929][    C1] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000002
[  183.578934][    C1] FS:  00007f77cfdf66c0(0000) GS:ffff8881a3c80000(0000) knlGS:0000000000000000
[  183.578940][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  183.578945][    C1] CR2: 00005555841625c8 CR3: 000000011010a000 CR4: 00000000000006f0
[  183.578967][    C1] Call Trace:
[  183.578973][    C1]  <IRQ>
[  183.578976][    C1]  ? __lock_acquire+0xab9/0xd20
[  183.578994][    C1]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  183.579006][    C1]  ? unwind_next_frame+0xa5/0x2390
[  183.579020][    C1]  __rcu_read_unlock+0x84/0xe0
[  183.579030][    C1]  ? unwind_next_frame+0xa5/0x2390
[  183.579037][    C1]  unwind_next_frame+0x19ae/0x2390
[  183.579048][    C1]  ? unwind_next_frame+0xa5/0x2390
[  183.579056][    C1]  ? kmem_cache_alloc_lru_noprof+0x288/0x3d0
[  183.579072][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  183.579082][    C1]  arch_stack_walk+0x11c/0x150
[  183.579094][    C1]  ? __d_alloc+0x36/0x7a0
[  183.579106][    C1]  stack_trace_save+0x9c/0xe0
[  183.579115][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  183.579126][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  183.579140][    C1]  kasan_save_track+0x3e/0x80
[  183.579151][    C1]  ? kasan_save_track+0x3e/0x80
[  183.579159][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  183.579168][    C1]  ? kmem_cache_alloc_bulk_noprof+0x4e0/0x790
[  183.579179][    C1]  ? napi_skb_cache_get+0x3cb/0x6d0
[  183.579192][    C1]  ? __alloc_skb+0x11e/0x2d0
[  183.579202][    C1]  ? napi_alloc_skb+0x84/0x7d0
[  183.579207][    C1]  ? e1000_clean_rx_irq+0x448/0x1170
[  183.579219][    C1]  ? e1000_clean+0xca4/0x2b00
[  183.579228][    C1]  ? __napi_poll+0xc7/0x360
[  183.579239][    C1]  ? net_rx_action+0x707/0xe30
[  183.579248][    C1]  ? handle_softirqs+0x286/0x870
[  183.579259][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  183.579268][    C1]  ? irq_exit_rcu+0x9/0x30
[  183.579277][    C1]  ? sysvec_apic_timer_interrupt+0xa6/0xc0
[  183.579286][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  183.579295][    C1]  ? ___slab_alloc+0x4ab/0x1480
[  183.579302][    C1]  ? kmem_cache_alloc_lru_noprof+0x288/0x3d0
[  183.579335][    C1]  __kasan_slab_alloc+0x6c/0x80
[  183.579346][    C1]  kmem_cache_alloc_bulk_noprof+0x4e0/0x790
[  183.579360][    C1]  ? kmem_cache_alloc_bulk_noprof+0xfa/0x790
[  183.579376][    C1]  napi_skb_cache_get+0x3cb/0x6d0
[  183.579386][    C1]  ? napi_skb_cache_get+0x146/0x6d0
[  183.579399][    C1]  __alloc_skb+0x11e/0x2d0
[  183.579412][    C1]  napi_alloc_skb+0x84/0x7d0
[  183.579421][    C1]  e1000_clean_rx_irq+0x448/0x1170
[  183.579449][    C1]  ? __pfx_e1000_clean_rx_irq+0x10/0x10
[  183.579459][    C1]  e1000_clean+0xca4/0x2b00
[  183.579484][    C1]  ? __pfx_e1000_clean+0x10/0x10
[  183.579492][    C1]  ? __pfx_e1000_clean+0x10/0x10
[  183.579506][    C1]  __napi_poll+0xc7/0x360
[  183.579515][    C1]  ? net_rx_action+0x46d/0xe30
[  183.579527][    C1]  net_rx_action+0x707/0xe30
[  183.579548][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  183.579579][    C1]  handle_softirqs+0x286/0x870
[  183.579592][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  183.579605][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  183.579619][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  183.579631][    C1]  __irq_exit_rcu+0xca/0x1f0
[  183.579667][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  183.579684][    C1]  irq_exit_rcu+0x9/0x30
[  183.579693][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  183.579703][    C1]  </IRQ>
[  183.579706][    C1]  <TASK>
[  183.579710][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  183.579718][    C1] RIP: 0010:___slab_alloc+0x4ab/0x1480
[  183.579725][    C1] Code: 04 24 00 02 00 00 0f 84 bb fb ff ff fb 89 dd e9 b3 fb ff ff e8 d6 6c 57 09 f7 c3 00 02 00 00 0f 84 98 fe ff ff fb 8b 6c 24 08 <eb> 1a 48 8b 74 24 08 48 c7 46 10 00 00 00 00 4c 8b 6c 24 10 4c 89
[  183.579731][    C1] RSP: 0018:ffffc900046bfbd8 EFLAGS: 00000206
[  183.579738][    C1] RAX: 65e8d08287275700 RBX: 0000000000000246 RCX: 65e8d08287275700
[  183.579743][    C1] RDX: 0000000000000000 RSI: ffffffff8d9792eb RDI: ffffffff8be30a00
[  183.579748][    C1] RBP: 00000000ffffffff R08: ffffffff8fa07bf7 R09: 1ffffffff1f40f7e
[  183.579757][    C1] R10: dffffc0000000000 R11: fffffbfff1f40f7f R12: 0000000000000001
[  183.579762][    C1] R13: ffff88801b68e780 R14: ffff888136640940 R15: ffff888136640960
[  183.579782][    C1]  ? __d_alloc+0x36/0x7a0
[  183.579793][    C1]  kmem_cache_alloc_lru_noprof+0x288/0x3d0
[  183.579804][    C1]  ? __d_alloc+0x36/0x7a0
[  183.579815][    C1]  __d_alloc+0x36/0x7a0
[  183.579822][    C1]  ? irqentry_exit+0x74/0x90
[  183.579835][    C1]  d_alloc_pseudo+0x21/0xc0
[  183.579845][    C1]  alloc_file_pseudo+0xcc/0x210
[  183.579858][    C1]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  183.579865][    C1]  ? do_raw_spin_unlock+0x4d/0x240
[  183.579877][    C1]  ? _raw_spin_unlock+0x28/0x50
[  183.579891][    C1]  sock_alloc_file+0xb8/0x2e0
[  183.579901][    C1]  ? __sys_socket+0x12c/0x1b0
[  183.579912][    C1]  __sys_socket+0x13d/0x1b0
[  183.579925][    C1]  __x64_sys_socket+0x7a/0x90
[  183.579935][    C1]  do_syscall_64+0xfa/0x3b0
[  183.579947][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.579955][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  183.579965][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.579972][    C1] RIP: 0033:0x7f77d1f8eb69
[  183.579982][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.579988][    C1] RSP: 002b:00007f77cfdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  183.579996][    C1] RAX: ffffffffffffffda RBX: 00007f77d21b5fa0 RCX: 00007f77d1f8eb69
[  183.580001][    C1] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000010
[  183.580006][    C1] RBP: 00007f77d2011df1 R08: 0000000000000000 R09: 0000000000000000
[  183.580010][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  183.580015][    C1] R13: 0000000000000000 R14: 00007f77d21b5fa0 R15: 00007fffca9b03c8
[  183.580028][    C1]  </TASK>
[  183.775066][    C1] sched: DL replenish lagged too much

VM DIAGNOSIS:
18:51:32  Registers:
info registers vcpu 0

CPU#0
RAX=4357ea9d86f8a500 RBX=ffffffff81969b18 RCX=4357ea9d86f8a500 RDX=0000000000000001
RSI=ffffffff8d9792eb RDI=ffffffff8be30a00 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f5b R9 =1ffff110096065eb R10=dffffc0000000000 R11=ffffed10096065ec
R12=ffffffff8fa07bf0 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a18
RIP=ffffffff8b6fc4f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8680000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000565216698028 CR3=00000001101cc000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000001 XMM01=0000000000000000 00007f858cb87d20
XMM02=080060030000003d 0300000000000000 XMM03=0008007803000800 7003000800680301
XMM04=0000000000000000 000000000000000f XMM05=0004080600000000 0100000608060003
XMM06=000404a4ac080001 000004080000003f XMM07=b201000000000000 0301a01000000400
XMM08=1000060102ba0008 000198030000003e XMM09=660a35322e79656b 5f5f2e6574616572
XMM10=2030363635626639 3966666666666666 XMM11=66666666660a7365 7275746165662062
XMM12=3837376266393966 666666666666660a XMM13=676f5f76695f7664 6174616220622030
XMM14=2e77656e5f657461 6765726767615f6d XMM15=666666666666660a 30342e79656b5f5f
info registers vcpu 1

CPU#1
RAX=0000000000000035 RBX=0000000000000035 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900001df490
R8 =ffff888021988237 R9 =1ffff11004331046 R10=dffffc0000000000 R11=ffffffff854c1d90
R12=dffffc0000000000 R13=ffffffff99a9594c R14=ffffffff99d9a4e0 R15=0000000000000000
RIP=ffffffff854c1e0c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f77cfdf66c0 ffffffff 00c00000
GS =0000 ffff8881a3c80000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005555841625c8 CR3=000000011010a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 00007f3fcc812e17
XMM06=0000000000000000 00007f3fcc812e11 XMM07=0000000000000000 00007f3fcc812e25
XMM08=0000000000000000 00007f3fcc812eab XMM09=0000000000000000 00007f3fcc812f89
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
