last executing test programs:

17.515264892s ago: executing program 1 (id=80):
r0 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000007c0)="d80000004a0081064e007c05e8fe55a10a000404018b2d5ed48e9a4002020a600e41b0000900ac00060311000000160015000a87572a6ea28959b561c1d67f6f94007125cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370ed7dbe56192bb940450a721eabe30259703920723f9000000008af26c8b7b55f4", 0xd8}], 0x1}, 0x0)

17.367490447s ago: executing program 1 (id=82):
r0 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)="39000000120081ae00002c000500015601618575e285af0180007a1b2cc32b38d3740000ffffffffffffffff56fabcb3b2aa9be3da9212d744", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

17.367314275s ago: executing program 1 (id=83):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
close(r0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r2 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x3, &(0x7f00000008c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0xfffffffd}}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r3=>0x0, 0x0})
close(r3)
r4 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$inet(r3, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x20000001)
sendmsg$kcm(r4, &(0x7f0000000100)={&(0x7f0000001540)=@tipc, 0x80, 0x0}, 0x0)

17.316061135s ago: executing program 1 (id=85):
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000040)=0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x21, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x2d1, 0xfffffffffffffd85, &(0x7f00000000c0)="b9ff0303000d698cb89e40f086dd6000000e00ff8900630677", 0x0, 0x100, 0x2000000, 0x0, 0x0, &(0x7f0000000440)}, 0x28)

17.173820351s ago: executing program 1 (id=88):
r0 = socket$kcm(0x10, 0x2, 0x0)
close(r0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f00000000c0)={'netpci0\x00', 0x400})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000280)={'veth1_to_bridge\x00', 0x400})
close(r0)

16.589616201s ago: executing program 2 (id=92):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1700bd030100000000009500000000000000bc2608000000001fbf67000000000000070300000fff0700670200001f00000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48)

16.585833469s ago: executing program 1 (id=93):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r1, 0x400454c9, 0xba98575a95aeb70d)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)
close(0x3)
close(0x4)

16.526683067s ago: executing program 2 (id=95):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x2})
ioctl$TUNGETVNETHDRSZ(r0, 0x400454cc, 0xffffffffffffffff)

16.416250725s ago: executing program 0 (id=97):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x41, 0x0, 0x11}, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2, 0x0, 0x9}, {0x10000002, 0x0, 0x0, 0xc}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0xffc0}], 0x1}, 0x80d1)
r4 = socket$kcm(0x2, 0x1, 0x84)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x32}}, 0x10, 0x0}, 0x40040d4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0x64, &(0x7f0000000000)=r7, 0x10)
sendmsg$inet(r4, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0xffc0}], 0x1}, 0x80d1)

16.341649543s ago: executing program 0 (id=98):
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$kcm(r0, &(0x7f0000003c00)={0x0, 0x0, 0x0}, 0x32060043)

16.341361432s ago: executing program 2 (id=99):
r0 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x23, &(0x7f0000000040), 0x4)

16.341239506s ago: executing program 2 (id=100):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x5, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

16.284561748s ago: executing program 0 (id=101):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000072a4000000000000000000008500000123000000180100002020732500000000002020207b1af8ff00000000bfa1000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3e6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="9feb0100180000000000000048000000480000000d00000000798c6f87d9a5a8c4b81bcbd666000000000000030000000003000000020000000000400000000000000000000000000003000000000300000002000000030000"], 0x0, 0x65}, 0x28)
r1 = gettid()
syz_open_procfs$namespace(r1, 0x0)
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xae6}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x6, 0x2, 0x0, 0x10, 0x0, 0x9c, 0x80020, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_bp={0x0, 0x4}, 0x40, 0x0, 0xfff, 0x8, 0xb, 0x1, 0x4, 0x0, 0x0, 0x0, 0x100000000}, 0x0, 0x1, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0900000004000000563c00000100000002000000", @ANYRES32, @ANYBLOB="0000000000000000440000000000000000000000008ed3983ffb0e932942f5f46ebdd6089b3a0b772c7bf2d3b676dc72addb1592b6622066cdacb52d51dc678c8be6b24b904fa4809cec35cb29cd0f98fcd4504d0dc693f6e292b98457022c3d2e60a897f301f934ca6a991b460774b2e7d0d10e571731d982925b9d721d8e94831f4022c71249914b4bbc47918e8f277d2d06feb44fbaeccbeaac19b433d0352fb1a91863eb61916b58bfcfc0652ce3d5d03173d5cf401f656c", @ANYRES32], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0xc, 0x42, 0x40, 0xc0, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100), &(0x7f00000001c0), 0x10f0, r2}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000640), 0x16c5, r2}, 0x38)

16.16945962s ago: executing program 2 (id=102):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff})
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8020, 0x90000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x6}, 0x8224, 0x2, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x6b4bda13}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1e0000000000000098f8000009"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001100)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f0000000100)=r3, 0x4)
r4 = socket$kcm(0xa, 0x3, 0x87)
sendmsg$kcm(r4, &(0x7f0000000580)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x7, @dev={0xfe, 0x80, '\x00', 0x24}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000080)='\t', 0x1}, {0x0}], 0x2}, 0x40810)
sendmsg$inet(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f00000025c0)}, 0x4)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

16.168892483s ago: executing program 0 (id=103):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0x2, 0x5, 0x84)
socket$kcm(0x11, 0x3, 0x0)
perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x100, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
socket$kcm(0x2, 0x200000000000001, 0x0)
socket$kcm(0x2, 0x922000000001, 0x106)
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r1, 0x4)
sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000cc0)="2206b49bbd253c5028678f113393db4525511468432c99c1b198fa9bdd61a7b491c5f0725de0d5dad57a75fd350a40403d86d5514323ee373192744a9105ce01f2deee3ace168a695b14456bf249fee7db534c05bca620d6c5251184daca824886f99dca7d579a7d6b23b53f8b4230f3f7eca805768399659f0a60be06e13606e62ee32b482bb793cc411c5f3ad7bf099eb30172fe717243b9ae3b874c94b1033779bce18f3f232e09d03601d6fea01b486f8579a77fc656573b0781a2eee4b44e5daf06b19ddb71ecb1d649ac3740cd5a7237240be4e89941e824dce5b8d2cef3df524a988ee630266b58e7130c4602d145961096baf923b09dd698919ed0d75704fd82e5af26b950ff46ae97e4ad69d52659c6f4877b4a54a7daf1960cc3a693147839f1b43b5906b81fcaf1156c25bdc94355f8ad04ca317e4addade2b9bd03e41796810caf6a07a79190d2948ffad951e5294610935c6087b7", 0x15b}], 0x1}, 0x4008041)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4c080)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

15.803163361s ago: executing program 2 (id=104):
socket$kcm(0xa, 0x1, 0x106)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b81, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700)={<r1=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x3500000000000000)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
r4 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r4, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="0204000902000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x23, &(0x7f0000000000), 0x4)
recvmsg(r4, 0x0, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80, 0x0}, 0x4)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1e000000080000", @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0xd, 0x17, &(0x7f0000000a80)=ANY=[@ANYBLOB="1811"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000e40), 0x0, 0x10, 0xfffffffc}, 0x94)
close(0xffffffffffffffff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, &(0x7f0000000600)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0xf}, 0x94)

1.108930807s ago: executing program 0 (id=105):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000008000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000014ff5)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x2, &(0x7f0000000000), 0x1, 0x10, &(0x7f0000000000), 0xa}, 0x70)

1.108650198s ago: executing program 0 (id=106):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000ae000000b703000007000000850000000e000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
r2 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x1a, &(0x7f0000000140), 0x4)
sendmsg$kcm(r2, &(0x7f00000003c0)={&(0x7f0000000040)=@in6={0xa, 0x4e23, 0xd, @local, 0x7}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000000)="f1", 0x1}], 0x1}, 0x40040)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r1}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r1}, 0x38)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x3, 0x73)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b06, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})

1.097629443s ago: executing program 32 (id=93):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r1, 0x400454c9, 0xba98575a95aeb70d)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)
close(0x3)
close(0x4)

149.211962ms ago: executing program 33 (id=106):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000ae000000b703000007000000850000000e000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x1, 0x56d, 0x2}, 0x48)
r2 = socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x1a, &(0x7f0000000140), 0x4)
sendmsg$kcm(r2, &(0x7f00000003c0)={&(0x7f0000000040)=@in6={0xa, 0x4e23, 0xd, @local, 0x7}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000000)="f1", 0x1}], 0x1}, 0x40040)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r1}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r1}, 0x38)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x3, 0x73)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b06, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})

0s ago: executing program 34 (id=104):
socket$kcm(0xa, 0x1, 0x106)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b81, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000700)={<r1=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x3500000000000000)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
r4 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r4, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="0204000902000000e4a17c45c8d260c9", 0x10}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x23, &(0x7f0000000000), 0x4)
recvmsg(r4, 0x0, 0x0)
setsockopt$sock_attach_bpf(r3, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f0000000100)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80, 0x0}, 0x4)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1e000000080000", @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0xd, 0x17, &(0x7f0000000a80)=ANY=[@ANYBLOB="1811"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000e40), 0x0, 0x10, 0xfffffffc}, 0x94)
close(0xffffffffffffffff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x3, &(0x7f0000000600)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0xf}, 0x94)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:16147' (ED25519) to the list of known hosts.
syzkaller login: [   40.780087][ T5761] cgroup: Unknown subsys name 'net'
[   40.867592][ T5761] cgroup: Unknown subsys name 'cpuset'
[   40.871461][ T5761] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.242359][ T5761] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.484471][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.487761][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.490950][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.493923][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.497486][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.510565][ T5219] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.515970][ T5219] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.525213][ T5219] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.530350][ T5219] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.534919][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.538286][ T5219] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.556338][ T5843] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.566837][ T5843] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.570180][ T5843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.572823][ T5843] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.772227][ T5837] chnl_net:caif_netlink_parms(): no params data found
[   45.808834][ T5833] chnl_net:caif_netlink_parms(): no params data found
[   45.857522][ T5840] chnl_net:caif_netlink_parms(): no params data found
[   45.886435][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.889137][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.891530][ T5837] bridge_slave_0: entered allmulticast mode
[   45.894235][ T5837] bridge_slave_0: entered promiscuous mode
[   45.906022][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.908327][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.910663][ T5837] bridge_slave_1: entered allmulticast mode
[   45.913379][ T5837] bridge_slave_1: entered promiscuous mode
[   45.958689][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.961216][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.963706][ T5833] bridge_slave_0: entered allmulticast mode
[   45.966886][ T5833] bridge_slave_0: entered promiscuous mode
[   45.971490][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.982321][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.984705][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.987190][ T5833] bridge_slave_1: entered allmulticast mode
[   45.989904][ T5833] bridge_slave_1: entered promiscuous mode
[   46.000672][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.025332][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.043270][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.046007][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.048400][ T5840] bridge_slave_0: entered allmulticast mode
[   46.051040][ T5840] bridge_slave_0: entered promiscuous mode
[   46.054716][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.060044][ T5837] team0: Port device team_slave_0 added
[   46.062532][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.064865][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.067359][ T5840] bridge_slave_1: entered allmulticast mode
[   46.070128][ T5840] bridge_slave_1: entered promiscuous mode
[   46.073439][ T5837] team0: Port device team_slave_1 added
[   46.120681][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.123026][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.131343][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.136614][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.138863][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.147903][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.153298][ T5833] team0: Port device team_slave_0 added
[   46.157624][ T5833] team0: Port device team_slave_1 added
[   46.161960][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.184324][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.186755][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.195390][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.200416][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.210813][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.213151][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.222046][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.256028][ T5837] hsr_slave_0: entered promiscuous mode
[   46.258382][ T5837] hsr_slave_1: entered promiscuous mode
[   46.262912][ T5840] team0: Port device team_slave_0 added
[   46.280978][ T5840] team0: Port device team_slave_1 added
[   46.312747][ T5833] hsr_slave_0: entered promiscuous mode
[   46.315409][ T5833] hsr_slave_1: entered promiscuous mode
[   46.317718][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.320311][ T5833] Cannot create hsr debugfs directory
[   46.336909][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.339158][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.347648][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.361914][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.364301][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.373155][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.457708][ T5840] hsr_slave_0: entered promiscuous mode
[   46.460016][ T5840] hsr_slave_1: entered promiscuous mode
[   46.462247][ T5840] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.464706][ T5840] Cannot create hsr debugfs directory
[   46.552985][ T5837] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.570904][ T5837] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.584499][ T5837] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.596522][ T5837] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.633090][ T5833] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   46.638112][ T5833] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   46.645634][ T5833] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   46.650558][ T5833] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   46.667522][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.669914][ T5837] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.672560][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.674857][ T5837] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.701646][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.704030][ T5833] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.706535][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.708904][ T5833] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.728276][ T5840] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   46.732447][ T5840] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   46.739139][ T5840] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   46.748077][ T5840] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   46.761227][   T68] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.764268][   T68] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.767657][   T68] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.770859][   T68] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.800634][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.815242][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   46.825737][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.828209][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.838867][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.841622][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.880960][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.896728][ T5837] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   46.911025][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   46.920897][ T1087] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.923351][ T1087] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.931699][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.936173][ T1087] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.938572][ T1087] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.964223][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[   46.977459][ T1087] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.979901][ T1087] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.988163][ T1087] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.990647][ T1087] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.999146][ T5833] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.033532][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.052676][ T5840] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   47.058287][ T5840] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.085089][ T5837] veth0_vlan: entered promiscuous mode
[   47.106376][ T5837] veth1_vlan: entered promiscuous mode
[   47.144479][ T5837] veth0_macvtap: entered promiscuous mode
[   47.150362][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.157101][ T5837] veth1_macvtap: entered promiscuous mode
[   47.168563][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.187421][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.199645][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.208205][ T5837] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.211137][ T5837] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.213956][ T5837] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.217699][ T5837] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.238550][ T5840] veth0_vlan: entered promiscuous mode
[   47.243671][ T5840] veth1_vlan: entered promiscuous mode
[   47.248044][ T5833] veth0_vlan: entered promiscuous mode
[   47.267064][ T5833] veth1_vlan: entered promiscuous mode
[   47.308417][ T5840] veth0_macvtap: entered promiscuous mode
[   47.313369][ T5840] veth1_macvtap: entered promiscuous mode
[   47.321097][ T5833] veth0_macvtap: entered promiscuous mode
[   47.332870][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.333566][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.341368][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.342143][ T5833] veth1_macvtap: entered promiscuous mode
[   47.358989][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.371826][ T5840] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.374666][ T5840] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.379371][ T5840] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.382161][ T5840] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.389936][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.401227][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.403811][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.407508][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.417986][ T5833] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.420988][ T5833] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.423909][ T5833] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.428625][ T5833] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.479968][ T4468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.480851][ T5837] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   47.482575][ T4468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.519580][ T4468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.531640][ T4468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.553280][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.560852][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.565709][ T5838] Bluetooth: hci0: command tx timeout
[   47.577796][ T5902] netlink: 'syz.0.1': attribute type 39 has an invalid length.
[   47.627609][ T5902] hsr_slave_0 (unregistering): left promiscuous mode
[   47.635933][ T5838] Bluetooth: hci2: command tx timeout
[   47.637491][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.637934][ T5838] Bluetooth: hci1: command tx timeout
[   47.642597][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.982040][ T5922] netlink: 'syz.1.9': attribute type 3 has an invalid length.
[   47.990777][ T5922] netlink: 'syz.1.9': attribute type 1 has an invalid length.
[   47.994943][ T5922] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.9'.
[   48.039294][ T5926] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.11'.
[   48.183021][ T5935] syzkaller0: entered promiscuous mode
[   48.185297][ T5935] syzkaller0: entered allmulticast mode
[   49.337560][ T5969] netlink: 'syz.2.31': attribute type 3 has an invalid length.
[   49.340034][ T5969] netlink: 'syz.2.31': attribute type 2 has an invalid length.
[   49.343291][ T5969] netlink: 130532 bytes leftover after parsing attributes in process `syz.2.31'.
[   49.636455][ T5843] Bluetooth: hci0: command tx timeout
[   49.715335][ T5843] Bluetooth: hci1: command tx timeout
[   49.715508][ T5838] Bluetooth: hci2: command tx timeout
[   49.819386][ T5988] netlink: 4 bytes leftover after parsing attributes in process `syz.2.40'.
[   50.281247][ T5838] Bluetooth: hci0: unexpected event 0x0b length: 15 > 11
[   50.454213][ T6016] delete_channel: no stack
[   50.462969][ T6016] delete_channel: no stack
[   50.534515][ T6018] netlink: 'syz.1.55': attribute type 21 has an invalid length.
[   50.539686][ T6020] netlink: 'syz.0.54': attribute type 6 has an invalid length.
[   50.542395][ T6020] netlink: 164 bytes leftover after parsing attributes in process `syz.0.54'.
[   50.959147][ T6023] netlink: 'syz.2.56': attribute type 10 has an invalid length.
[   50.961885][ T6023] netlink: 168 bytes leftover after parsing attributes in process `syz.2.56'.
[   51.209196][ T6042] netlink: 'syz.2.65': attribute type 21 has an invalid length.
[   51.285017][    C0] hrtimer: interrupt took 31233 ns
[   51.287962][ T6046] netlink: 4 bytes leftover after parsing attributes in process `syz.1.67'.
[   51.567421][ T6063] netlink: 9286 bytes leftover after parsing attributes in process `syz.2.75'.
[   51.725560][ T5838] Bluetooth: hci0: command tx timeout
[   51.799840][ T5838] Bluetooth: hci1: command tx timeout
[   51.805863][ T5838] Bluetooth: hci2: command tx timeout
[   52.025367][ T6092] netlink: 60 bytes leftover after parsing attributes in process `syz.0.84'.
[   52.038297][ T6089] netlink: 60 bytes leftover after parsing attributes in process `syz.0.84'.
[   52.069370][ T6089] Zero length message leads to an empty skb
[   52.763589][ T5848] syzkaller0: tun_net_xmit 76
[   52.770429][ T5848] syzkaller0: tun_net_xmit 48
[   52.773456][ T6110] syzkaller0: create flow: hash 3614811717 index 1
[   52.785817][ T5900] syzkaller0: tun_net_xmit 76
[   52.817483][ T6110] syzkaller0: delete flow: hash 3614811717 index 1
[   53.796458][ T5838] Bluetooth: hci0: command tx timeout
[   53.885225][ T5838] Bluetooth: hci2: command tx timeout
[   53.887097][ T5838] Bluetooth: hci1: command tx timeout
[   68.335612][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   68.338552][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   68.341107][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   68.343825][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   68.346775][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   69.298395][ T5838] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   69.301644][ T5838] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   69.304421][ T5838] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   69.307309][ T5838] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   69.311063][ T5838] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   69.454063][ T5843] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   69.458161][ T5843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   69.460733][ T5843] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   69.463579][ T5843] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   69.466616][ T5843] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   70.355254][ T5843] Bluetooth: hci3: command tx timeout
[   71.395188][ T5843] Bluetooth: hci4: command tx timeout
[   71.485217][ T5843] Bluetooth: hci5: command tx timeout
[   72.436226][ T5843] Bluetooth: hci3: command tx timeout
[   73.485313][ T5843] Bluetooth: hci4: command tx timeout
[   73.566365][ T5843] Bluetooth: hci5: command tx timeout
[   74.515249][ T5843] Bluetooth: hci3: command tx timeout
[   75.565216][ T5843] Bluetooth: hci4: command tx timeout
[   75.635229][ T5843] Bluetooth: hci5: command tx timeout
[   76.596069][ T5843] Bluetooth: hci3: command tx timeout
[   77.647347][ T5843] Bluetooth: hci4: command tx timeout
[   77.715210][ T5843] Bluetooth: hci5: command tx timeout
[   80.279577][    C0] clocksource: Long readout interval, skipping watchdog check: cs_nsec: 25376851158 wd_nsec: 25376851450
[   81.093551][  T970] cfg80211: failed to load regulatory.db
[  129.462026][ T5835] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  129.462802][ T5835] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  129.463143][ T5835] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  129.463717][ T5835] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  129.464071][ T5835] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  129.475588][ T5835] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  129.476148][ T5835] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  129.476382][ T5835] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  129.476871][ T5835] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  129.477167][ T5835] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  130.495837][ T5835] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  130.496959][ T5835] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  130.497229][ T5835] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  130.497698][ T5835] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  130.498366][ T5835] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  131.475376][ T5219] Bluetooth: hci6: command tx timeout
[  131.555220][ T5219] Bluetooth: hci7: command tx timeout
[  132.517305][ T5219] Bluetooth: hci8: command tx timeout
[  133.555208][ T5219] Bluetooth: hci6: command tx timeout
[  133.635272][ T5219] Bluetooth: hci7: command tx timeout
[  134.595265][ T5219] Bluetooth: hci8: command tx timeout
[  135.635214][ T5219] Bluetooth: hci6: command tx timeout
[  135.715202][ T5219] Bluetooth: hci7: command tx timeout
[  136.685340][ T5219] Bluetooth: hci8: command tx timeout
[  137.715164][ T5219] Bluetooth: hci6: command tx timeout
[  137.797134][ T5219] Bluetooth: hci7: command tx timeout
[  138.755258][ T5219] Bluetooth: hci8: command tx timeout
[  158.564998][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  158.565038][    C0] rcu: 	0-....: (1 GPs behind) idle=644c/1/0x4000000000000000 softirq=14044/14050 fqs=4667
[  158.565311][    C0] rcu: 	         hardirqs   softirqs   csw/system
[  158.565315][    C0] rcu: 	 number:  1043379          0            0
[  158.565321][    C0] rcu: 	cputime:    23862      28606           84   ==> 52470(ms)
[  158.565327][    C0] rcu: 	(t=10500 jiffies g=6765 q=2421 ncpus=2)
[  158.565337][    C0] CPU: 0 UID: 0 PID: 6133 Comm: syz.2.104 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  158.565345][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  158.565350][    C0] RIP: 0010:kasan_check_range+0x9f/0x2c0
[  158.565364][    C0] Code: 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 41 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 <0f> 85 de 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd
[  158.565370][    C0] RSP: 0018:ffffc900000072a0 EFLAGS: 00000246
[  158.565377][    C0] RAX: ffffffff81a12201 RBX: fffffffffffffff4 RCX: ffffffff81a1229f
[  158.565382][    C0] RDX: 0000000000000000 RSI: 0000000000000066 RDI: ffffffff99af5880
[  158.565386][    C0] RBP: ffffc90000007430 R08: ffffffff99af58e5 R09: 1ffffffff335eb1c
[  158.565391][    C0] R10: dffffc0000000000 R11: fffffbfff335eb11 R12: 000000000000000d
[  158.565395][    C0] R13: ffffffff99af5880 R14: fffffbfff335eb1d R15: 1ffffffff335eb10
[  158.565400][    C0] FS:  00007fbe9e1306c0(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  158.565405][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  158.565409][    C0] CR2: 0000001b3081cff8 CR3: 0000000106bbc000 CR4: 00000000000006f0
[  158.565437][    C0] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  158.565443][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  158.565447][    C0] Call Trace:
[  158.565450][    C0]  <IRQ>
[  158.565453][    C0]  ? record_print_text+0x24f/0x430
[  158.565464][    C0]  __asan_memmove+0x29/0x70
[  158.565506][    C0]  record_print_text+0x24f/0x430
[  158.565521][    C0]  ? __pfx_record_print_text+0x10/0x10
[  158.565529][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  158.565540][    C0]  ? lapic_next_event+0x11/0x20
[  158.565548][    C0]  ? clockevents_program_event+0x24d/0x360
[  158.565562][    C0]  printk_get_next_message+0x26d/0x7b0
[  158.565570][    C0]  ? irq_work_single+0x1ac/0x240
[  158.565581][    C0]  ? __pfx_printk_get_next_message+0x10/0x10
[  158.565589][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  158.565596][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  158.565612][    C0]  ? console_flush_all+0x13a/0xc40
[  158.565621][    C0]  ? console_flush_all+0x476/0xc40
[  158.565632][    C0]  console_flush_all+0x4ca/0xc40
[  158.565642][    C0]  ? console_flush_all+0x13a/0xc40
[  158.565653][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  158.565666][    C0]  ? console_flush_all+0x10/0xc40
[  158.565677][    C0]  console_unlock+0xc4/0x270
[  158.565686][    C0]  ? __pfx_console_unlock+0x10/0x10
[  158.565695][    C0]  ? kasan_check_range+0x29f/0x2c0
[  158.565705][    C0]  vprintk_emit+0x5b7/0x7a0
[  158.565714][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  158.565726][    C0]  ? vprintk_default+0x12/0x30
[  158.565738][    C0]  _printk+0xcf/0x120
[  158.565747][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.565757][    C0]  ? __pfx__printk+0x10/0x10
[  158.565767][    C0]  ? clocksource_watchdog+0xdaf/0x11c0
[  158.565778][    C0]  clocksource_watchdog+0xdca/0x11c0
[  158.565791][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  158.565797][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  158.565804][    C0]  ? call_timer_fn+0x155/0x5f0
[  158.565814][    C0]  call_timer_fn+0x17e/0x5f0
[  158.565820][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  158.565826][    C0]  ? call_timer_fn+0xbe/0x5f0
[  158.565832][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  158.565841][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  158.565849][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  158.565857][    C0]  __run_timer_base+0x61a/0x860
[  158.565874][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  158.565886][    C0]  ? __pfx_run_timer_softirq+0x10/0x10
[  158.565896][    C0]  ? run_timer_softirq+0x30/0x180
[  158.565907][    C0]  run_timer_softirq+0x67/0x180
[  158.565917][    C0]  handle_softirqs+0x286/0x870
[  158.565926][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  158.565936][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  158.565943][    C0]  ? irq_work_single+0x1ac/0x240
[  158.565951][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  158.565962][    C0]  __irq_exit_rcu+0xca/0x1f0
[  158.565969][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  158.565978][    C0]  ? rcu_is_watching+0x15/0xb0
[  158.565987][    C0]  irq_exit_rcu+0x9/0x30
[  158.565993][    C0]  sysvec_irq_work+0xa3/0xc0
[  158.566000][    C0]  </IRQ>
[  158.566002][    C0]  <TASK>
[  158.566005][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  158.566011][    C0] RIP: 0010:preempt_schedule_irq+0xb0/0x150
[  158.566020][    C0] Code: 24 20 f6 44 24 21 02 74 0c 90 0f 0b 48 f7 03 08 00 00 00 74 64 bf 01 00 00 00 e8 5b 22 21 f6 e8 96 f5 57 f6 fb bf 01 00 00 00 <e8> 1b ab ff ff 48 c7 44 24 40 00 00 00 00 9c 8f 44 24 40 8b 44 24
[  158.566025][    C0] RSP: 0018:ffffc9000438fa20 EFLAGS: 00000282
[  158.566031][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  158.566035][    C0] RDX: 0000000000000006 RSI: ffffffff8d998727 RDI: 0000000000000001
[  158.566039][    C0] RBP: ffffc9000438fac0 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  158.566043][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: 0000000000000000
[  158.566047][    C0] R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff92000871f44
[  158.566059][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  158.566071][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  158.566079][    C0]  irqentry_exit+0x6f/0x90
[  158.566087][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  158.566093][    C0] RIP: 0010:lock_acquire+0x175/0x360
[  158.566099][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb de 01 11 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  158.566104][    C0] RSP: 0018:ffffc9000438fb88 EFLAGS: 00000206
[  158.566109][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  158.566113][    C0] RDX: ffffffff9363c318 RSI: ffffffff8db86408 RDI: ffffffff8be29f80
[  158.566117][    C0] RBP: ffffffff894c784e R08: 0000000000000100 R09: 00000000e0bbab7a
[  158.566121][    C0] R10: 0000000025493d32 R11: 0000000000ce8945 R12: 0000000000000000
[  158.566125][    C0] R13: ffff88810cd82258 R14: 0000000000000001 R15: 0000000000000246
[  158.566131][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  158.566149][    C0]  lock_sock_nested+0x48/0x100
[  158.566158][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  158.566165][    C0]  sk_setsockopt+0xd9e/0x2d30
[  158.566172][    C0]  ? __pfx___might_resched+0x10/0x10
[  158.566183][    C0]  ? __pfx_sk_setsockopt+0x10/0x10
[  158.566189][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  158.566206][    C0]  ? aa_sk_perm+0x81e/0x950
[  158.566218][    C0]  ? __pfx_aa_sk_perm+0x10/0x10
[  158.566224][    C0]  ? irqentry_exit+0x74/0x90
[  158.566232][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.566241][    C0]  ? aa_sock_opt_perm+0x74/0x110
[  158.566251][    C0]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  158.566261][    C0]  do_sock_setsockopt+0x11b/0x1b0
[  158.566270][    C0]  __x64_sys_setsockopt+0x13f/0x1b0
[  158.566280][    C0]  do_syscall_64+0xfa/0x3b0
[  158.566289][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.566295][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  158.566304][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.566310][    C0] RIP: 0033:0x7fbe9d38eb69
[  158.566317][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.566322][    C0] RSP: 002b:00007fbe9e130038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  158.566328][    C0] RAX: ffffffffffffffda RBX: 00007fbe9d5b6080 RCX: 00007fbe9d38eb69
[  158.566332][    C0] RDX: 0000000000000023 RSI: 0000000000000001 RDI: 000000000000000b
[  158.566336][    C0] RBP: 00007fbe9d411df1 R08: 0000000000000004 R09: 0000000000000000
[  158.566340][    C0] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.566343][    C0] R13: 0000000000000000 R14: 00007fbe9d5b6080 R15: 00007ffe68a847c8
[  158.566355][    C0]  </TASK>
[  170.198042][ T5843] Bluetooth: hci1: command 0x0406 tx timeout
[  170.198088][ T5219] Bluetooth: hci2: command 0x0406 tx timeout
[  188.600551][   T18] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 0-.... } 13503 jiffies s: 4025 root: 0x1/.
[  188.600585][   T18] rcu: blocking rcu_node structures (internal RCU debug):
[  188.600594][   T18] Sending NMI from CPU 1 to CPUs 0:
[  188.600651][    C0] NMI backtrace for cpu 0
[  188.600665][    C0] CPU: 0 UID: 0 PID: 6133 Comm: syz.2.104 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  188.600674][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  188.600678][    C0] RIP: 0010:native_apic_msr_write+0x39/0x50
[  188.600692][    C0] Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 cc cc cc cc cc f3 0f 1e fa 89 f6 31 d2 e9 e2 d0 86 03 66
[  188.600698][    C0] RSP: 0018:ffffc90000006d28 EFLAGS: 00000046
[  188.600705][    C0] RAX: 00000000000000f6 RBX: 0000000000000200 RCX: 000000000000083f
[  188.600709][    C0] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[  188.600713][    C0] RBP: ffffc90000006df8 R08: ffffc90000006d87 R09: 1ffff92000000db0
[  188.600718][    C0] R10: dffffc0000000000 R11: fffff52000000db1 R12: ffff88804b03af01
[  188.600722][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88804b0314f0
[  188.600726][    C0] FS:  00007fbe9e1306c0(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  188.600732][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  188.600736][    C0] CR2: 0000001b3081cff8 CR3: 0000000106bbc000 CR4: 00000000000006f0
[  188.600762][    C0] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  188.600767][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  188.600771][    C0] Call Trace:
[  188.600775][    C0]  <IRQ>
[  188.600778][    C0]  arch_irq_work_raise+0x6d/0x80
[  188.600786][    C0]  __irq_work_queue_local+0x1d7/0x550
[  188.600794][    C0]  ? __pfx___irq_work_queue_local+0x10/0x10
[  188.600800][    C0]  ? __virt_addr_valid+0x4a5/0x5c0
[  188.600809][    C0]  ? __phys_addr+0xd3/0x180
[  188.600818][    C0]  irq_work_queue_on+0x122/0x230
[  188.600824][    C0]  rcu_read_unlock_special+0x3ab/0x4c0
[  188.600834][    C0]  ? __lock_acquire+0xab9/0xd20
[  188.600842][    C0]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  188.600850][    C0]  ? trace_call_bpf+0xb7/0x850
[  188.600859][    C0]  __rcu_read_unlock+0x84/0xe0
[  188.600868][    C0]  ? trace_call_bpf+0xb7/0x850
[  188.600874][    C0]  trace_call_bpf+0x5ae/0x850
[  188.600880][    C0]  ? trace_call_bpf+0xb7/0x850
[  188.600887][    C0]  ? __pfx_trace_call_bpf+0x10/0x10
[  188.600893][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  188.600901][    C0]  ? sched_clock_cpu+0x74/0x430
[  188.600908][    C0]  ? lapic_next_event+0x11/0x20
[  188.600915][    C0]  ? clockevents_program_event+0x24d/0x360
[  188.600925][    C0]  perf_trace_run_bpf_submit+0x78/0x170
[  188.600935][    C0]  perf_trace_preemptirq_template+0x280/0x340
[  188.600945][    C0]  ? irqentry_enter+0x3d/0x60
[  188.600953][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  188.600962][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  188.600969][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  188.600977][    C0]  ? irqentry_enter+0x3d/0x60
[  188.600984][    C0]  trace_irq_disable+0xee/0x110
[  188.600993][    C0]  irqentry_enter+0x3d/0x60
[  188.601001][    C0]  sysvec_apic_timer_interrupt+0xe/0xc0
[  188.601009][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  188.601015][    C0] RIP: 0010:kasan_check_range+0x9f/0x2c0
[  188.601023][    C0] Code: 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 4d 85 e4 0f 84 41 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 <0f> 85 de 01 00 00 49 ff c3 48 ff c3 75 ee e9 21 01 00 00 44 89 dd
[  188.601028][    C0] RSP: 0018:ffffc900000072a0 EFLAGS: 00000246
[  188.601034][    C0] RAX: ffffffff81a12201 RBX: fffffffffffffff4 RCX: ffffffff81a1229f
[  188.601038][    C0] RDX: 0000000000000000 RSI: 0000000000000066 RDI: ffffffff99af5880
[  188.601042][    C0] RBP: ffffc90000007430 R08: ffffffff99af58e5 R09: 1ffffffff335eb1c
[  188.601046][    C0] R10: dffffc0000000000 R11: fffffbfff335eb11 R12: 000000000000000d
[  188.601051][    C0] R13: ffffffff99af5880 R14: fffffbfff335eb1d R15: 1ffffffff335eb10
[  188.601056][    C0]  ? record_print_text+0x1b1/0x430
[  188.601065][    C0]  ? record_print_text+0x24f/0x430
[  188.601074][    C0]  ? record_print_text+0x24f/0x430
[  188.601082][    C0]  __asan_memmove+0x29/0x70
[  188.601091][    C0]  record_print_text+0x24f/0x430
[  188.601100][    C0]  ? __pfx_record_print_text+0x10/0x10
[  188.601108][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  188.601116][    C0]  ? lapic_next_event+0x11/0x20
[  188.601122][    C0]  ? clockevents_program_event+0x24d/0x360
[  188.601167][    C0]  printk_get_next_message+0x26d/0x7b0
[  188.601180][    C0]  ? irq_work_single+0x1ac/0x240
[  188.601188][    C0]  ? __pfx_printk_get_next_message+0x10/0x10
[  188.601195][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  188.601202][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  188.601212][    C0]  ? console_flush_all+0x13a/0xc40
[  188.601220][    C0]  ? console_flush_all+0x476/0xc40
[  188.601229][    C0]  console_flush_all+0x4ca/0xc40
[  188.601237][    C0]  ? console_flush_all+0x13a/0xc40
[  188.601246][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  188.601256][    C0]  ? console_flush_all+0x10/0xc40
[  188.601265][    C0]  console_unlock+0xc4/0x270
[  188.601273][    C0]  ? __pfx_console_unlock+0x10/0x10
[  188.601280][    C0]  ? kasan_check_range+0x29f/0x2c0
[  188.601288][    C0]  vprintk_emit+0x5b7/0x7a0
[  188.601296][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  188.601305][    C0]  ? vprintk_default+0x12/0x30
[  188.601313][    C0]  _printk+0xcf/0x120
[  188.601322][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  188.601330][    C0]  ? __pfx__printk+0x10/0x10
[  188.601339][    C0]  ? clocksource_watchdog+0xdaf/0x11c0
[  188.601347][    C0]  clocksource_watchdog+0xdca/0x11c0
[  188.601356][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  188.601362][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  188.601368][    C0]  ? call_timer_fn+0x155/0x5f0
[  188.601376][    C0]  call_timer_fn+0x17e/0x5f0
[  188.601382][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  188.601388][    C0]  ? call_timer_fn+0xbe/0x5f0
[  188.601393][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  188.601400][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  188.601407][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  188.601414][    C0]  __run_timer_base+0x61a/0x860
[  188.601426][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  188.601435][    C0]  ? __pfx_run_timer_softirq+0x10/0x10
[  188.601444][    C0]  ? run_timer_softirq+0x30/0x180
[  188.601454][    C0]  run_timer_softirq+0x67/0x180
[  188.601463][    C0]  handle_softirqs+0x286/0x870
[  188.601471][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  188.601478][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  188.601485][    C0]  ? irq_work_single+0x1ac/0x240
[  188.601491][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  188.601501][    C0]  __irq_exit_rcu+0xca/0x1f0
[  188.601508][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  188.601515][    C0]  ? rcu_is_watching+0x15/0xb0
[  188.601523][    C0]  irq_exit_rcu+0x9/0x30
[  188.601529][    C0]  sysvec_irq_work+0xa3/0xc0
[  188.601535][    C0]  </IRQ>
[  188.601537][    C0]  <TASK>
[  188.601540][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  188.601546][    C0] RIP: 0010:preempt_schedule_irq+0xb0/0x150
[  188.601554][    C0] Code: 24 20 f6 44 24 21 02 74 0c 90 0f 0b 48 f7 03 08 00 00 00 74 64 bf 01 00 00 00 e8 5b 22 21 f6 e8 96 f5 57 f6 fb bf 01 00 00 00 <e8> 1b ab ff ff 48 c7 44 24 40 00 00 00 00 9c 8f 44 24 40 8b 44 24
[  188.601559][    C0] RSP: 0018:ffffc9000438fa20 EFLAGS: 00000282
[  188.601565][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  188.601569][    C0] RDX: 0000000000000006 RSI: ffffffff8d998727 RDI: 0000000000000001
[  188.601573][    C0] RBP: ffffc9000438fac0 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  188.601577][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: 0000000000000000
[  188.601581][    C0] R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff92000871f44
[  188.601589][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  188.601598][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  188.601605][    C0]  irqentry_exit+0x6f/0x90
[  188.601613][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  188.601619][    C0] RIP: 0010:lock_acquire+0x175/0x360
[  188.601625][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb de 01 11 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  188.601629][    C0] RSP: 0018:ffffc9000438fb88 EFLAGS: 00000206
[  188.601634][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  188.601638][    C0] RDX: ffffffff9363c318 RSI: ffffffff8db86408 RDI: ffffffff8be29f80
[  188.601643][    C0] RBP: ffffffff894c784e R08: 0000000000000100 R09: 00000000e0bbab7a
[  188.601647][    C0] R10: 0000000025493d32 R11: 0000000000ce8945 R12: 0000000000000000
[  188.601651][    C0] R13: ffff88810cd82258 R14: 0000000000000001 R15: 0000000000000246
[  188.601655][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  188.601667][    C0]  lock_sock_nested+0x48/0x100
[  188.601675][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  188.601681][    C0]  sk_setsockopt+0xd9e/0x2d30
[  188.601687][    C0]  ? __pfx___might_resched+0x10/0x10
[  188.601696][    C0]  ? __pfx_sk_setsockopt+0x10/0x10
[  188.601702][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  188.601712][    C0]  ? aa_sk_perm+0x81e/0x950
[  188.601720][    C0]  ? __pfx_aa_sk_perm+0x10/0x10
[  188.601727][    C0]  ? irqentry_exit+0x74/0x90
[  188.601734][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  188.601742][    C0]  ? aa_sock_opt_perm+0x74/0x110
[  188.601751][    C0]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  188.601760][    C0]  do_sock_setsockopt+0x11b/0x1b0
[  188.601768][    C0]  __x64_sys_setsockopt+0x13f/0x1b0
[  188.601776][    C0]  do_syscall_64+0xfa/0x3b0
[  188.601785][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.601791][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  188.601798][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.601804][    C0] RIP: 0033:0x7fbe9d38eb69
[  188.601812][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.601817][    C0] RSP: 002b:00007fbe9e130038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  188.601823][    C0] RAX: ffffffffffffffda RBX: 00007fbe9d5b6080 RCX: 00007fbe9d38eb69
[  188.601839][    C0] RDX: 0000000000000023 RSI: 0000000000000001 RDI: 000000000000000b
[  188.601843][    C0] RBP: 00007fbe9d411df1 R08: 0000000000000004 R09: 0000000000000000
[  188.601847][    C0] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  188.601850][    C0] R13: 0000000000000000 R14: 00007fbe9d5b6080 R15: 00007ffe68a847c8
[  188.601857][    C0]  </TASK>
[  190.425703][   T53] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  190.426684][   T53] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  190.426934][   T53] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  190.427453][   T53] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  190.427759][   T53] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  190.453719][ T6181] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  190.454352][ T6181] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  190.454739][ T6181] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  190.455847][ T6181] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  190.456212][ T6181] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  190.677023][   T53] Bluetooth: hci3: command 0x0406 tx timeout
[  191.289036][ T6184] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  191.289638][ T6184] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  191.289914][ T6184] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  191.290770][ T6184] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  191.291077][ T6184] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  195.796414][ T5841] Bluetooth: hci4: command 0x0406 tx timeout
[  195.796457][ T5841] Bluetooth: hci5: command 0x0406 tx timeout
[  250.325688][ T6194] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  250.326445][ T6194] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  250.326882][ T6194] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  250.327450][ T6194] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  250.328254][ T6194] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  251.466316][ T6198] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  251.467130][ T6198] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  251.467695][ T6198] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  251.467946][ T6198] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  251.468440][ T6198] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  251.468636][ T6198] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  251.469137][ T6198] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  251.469298][ T6198] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  251.469798][ T6198] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  251.470293][ T6198] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  252.115798][ T6198] Bluetooth: hci7: command 0x0406 tx timeout
[  252.115851][ T6198] Bluetooth: hci6: command 0x0406 tx timeout
[  257.236443][ T6202] Bluetooth: hci8: command 0x0406 tx timeout
[  310.807622][ T6209] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  310.808861][ T6209] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  310.809287][ T6209] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  310.810175][ T6209] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  310.810780][ T6209] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  311.732215][ T6212] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  311.733182][ T6212] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  311.733569][ T6212] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  311.734069][ T6212] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  311.734592][ T6212] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  312.726345][ T6216] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  312.728527][ T6216] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  312.728823][ T6216] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  312.729288][ T6216] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  312.729826][ T6216] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  331.703224][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 266s! [syz.2.104:6133]
[  331.703236][    C0] Modules linked in:
[  331.703241][    C0] irq event stamp: 11007627
[  331.703243][    C0] hardirqs last  enabled at (11007626): [<ffffffff8b6e9424>] irqentry_exit+0x74/0x90
[  331.703258][    C0] hardirqs last disabled at (11007627): [<ffffffff8b6e7f6e>] sysvec_apic_timer_interrupt+0xe/0xc0
[  331.703268][    C0] softirqs last  enabled at (954098): [<ffffffff8185bd4a>] __irq_exit_rcu+0xca/0x1f0
[  331.703277][    C0] softirqs last disabled at (954101): [<ffffffff8185bd4a>] __irq_exit_rcu+0xca/0x1f0
[  331.703287][    C0] CPU: 0 UID: 0 PID: 6133 Comm: syz.2.104 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  331.703295][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  331.703299][    C0] RIP: 0010:printk_get_next_message+0x657/0x7b0
[  331.703309][    C0] Code: 83 c1 28 4c 89 ef 4c 89 e6 48 c7 c2 e0 8b 8b 8b e8 ae 76 00 00 4c 8b 74 24 50 49 01 de 49 01 c6 eb 08 e8 dc fe 1e 00 45 31 f6 <48> 8b 5c 24 38 48 83 c3 08 48 89 d8 48 c1 e8 03 42 0f b6 04 38 84
[  331.703314][    C0] RSP: 0018:ffffc90000007440 EFLAGS: 00000246
[  331.703320][    C0] RAX: 000000000000007e RBX: 0000000000000004 RCX: ffff8880214d8000
[  331.703325][    C0] RDX: 0000000000000100 RSI: 0000000000000800 RDI: 0000000000000000
[  331.703329][    C0] RBP: ffffc90000007610 R08: 322e30382020205b R09: 205b5d3737353937
[  331.703333][    C0] R10: 5b5d373735393732 R11: 205d304320202020 R12: ffffc90000007500
[  331.703338][    C0] R13: 1ffff92000000ea2 R14: 000000000000007e R15: dffffc0000000000
[  331.703342][    C0] FS:  00007fbe9e1306c0(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  331.703348][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  331.703352][    C0] CR2: 0000001b3081cff8 CR3: 0000000106bbc000 CR4: 00000000000006f0
[  331.703379][    C0] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  331.703384][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  331.703388][    C0] Call Trace:
[  331.703392][    C0]  <IRQ>
[  331.703396][    C0]  ? irq_work_single+0x1ac/0x240
[  331.703408][    C0]  ? __pfx_printk_get_next_message+0x10/0x10
[  331.703416][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  331.703423][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  331.703438][    C0]  ? console_flush_all+0x13a/0xc40
[  331.703447][    C0]  ? console_flush_all+0x476/0xc40
[  331.703458][    C0]  console_flush_all+0x4ca/0xc40
[  331.703468][    C0]  ? console_flush_all+0x13a/0xc40
[  331.703512][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  331.703526][    C0]  ? console_flush_all+0x10/0xc40
[  331.703536][    C0]  console_unlock+0xc4/0x270
[  331.703546][    C0]  ? __pfx_console_unlock+0x10/0x10
[  331.703554][    C0]  ? kasan_check_range+0x29f/0x2c0
[  331.703565][    C0]  vprintk_emit+0x5b7/0x7a0
[  331.703574][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  331.703586][    C0]  ? vprintk_default+0x12/0x30
[  331.703597][    C0]  _printk+0xcf/0x120
[  331.703607][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  331.703616][    C0]  ? __pfx__printk+0x10/0x10
[  331.703627][    C0]  ? clocksource_watchdog+0xdaf/0x11c0
[  331.703637][    C0]  clocksource_watchdog+0xdca/0x11c0
[  331.703651][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.703657][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.703664][    C0]  ? call_timer_fn+0x155/0x5f0
[  331.703674][    C0]  call_timer_fn+0x17e/0x5f0
[  331.703680][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.703686][    C0]  ? call_timer_fn+0xbe/0x5f0
[  331.703692][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  331.703700][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.703709][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.703717][    C0]  __run_timer_base+0x61a/0x860
[  331.703733][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  331.703744][    C0]  ? __pfx_run_timer_softirq+0x10/0x10
[  331.703754][    C0]  ? run_timer_softirq+0x30/0x180
[  331.703766][    C0]  run_timer_softirq+0x67/0x180
[  331.703776][    C0]  handle_softirqs+0x286/0x870
[  331.703785][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  331.703794][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  331.703801][    C0]  ? irq_work_single+0x1ac/0x240
[  331.703809][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  331.703820][    C0]  __irq_exit_rcu+0xca/0x1f0
[  331.703828][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  331.703837][    C0]  ? rcu_is_watching+0x15/0xb0
[  331.703846][    C0]  irq_exit_rcu+0x9/0x30
[  331.703852][    C0]  sysvec_irq_work+0xa3/0xc0
[  331.703860][    C0]  </IRQ>
[  331.703862][    C0]  <TASK>
[  331.703864][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  331.703871][    C0] RIP: 0010:preempt_schedule_irq+0xb0/0x150
[  331.703880][    C0] Code: 24 20 f6 44 24 21 02 74 0c 90 0f 0b 48 f7 03 08 00 00 00 74 64 bf 01 00 00 00 e8 5b 22 21 f6 e8 96 f5 57 f6 fb bf 01 00 00 00 <e8> 1b ab ff ff 48 c7 44 24 40 00 00 00 00 9c 8f 44 24 40 8b 44 24
[  331.703885][    C0] RSP: 0018:ffffc9000438fa20 EFLAGS: 00000282
[  331.703891][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  331.703895][    C0] RDX: 0000000000000006 RSI: ffffffff8d998727 RDI: 0000000000000001
[  331.703899][    C0] RBP: ffffc9000438fac0 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  331.703903][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: 0000000000000000
[  331.703907][    C0] R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff92000871f44
[  331.703919][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  331.703931][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  331.703939][    C0]  irqentry_exit+0x6f/0x90
[  331.703947][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  331.703954][    C0] RIP: 0010:lock_acquire+0x175/0x360
[  331.703960][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb de 01 11 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  331.703965][    C0] RSP: 0018:ffffc9000438fb88 EFLAGS: 00000206
[  331.703969][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  331.703973][    C0] RDX: ffffffff9363c318 RSI: ffffffff8db86408 RDI: ffffffff8be29f80
[  331.703978][    C0] RBP: ffffffff894c784e R08: 0000000000000100 R09: 00000000e0bbab7a
[  331.703982][    C0] R10: 0000000025493d32 R11: 0000000000ce8945 R12: 0000000000000000
[  331.703986][    C0] R13: ffff88810cd82258 R14: 0000000000000001 R15: 0000000000000246
[  331.703991][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  331.704010][    C0]  lock_sock_nested+0x48/0x100
[  331.704018][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  331.704026][    C0]  sk_setsockopt+0xd9e/0x2d30
[  331.704032][    C0]  ? __pfx___might_resched+0x10/0x10
[  331.704043][    C0]  ? __pfx_sk_setsockopt+0x10/0x10
[  331.704050][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  331.704062][    C0]  ? aa_sk_perm+0x81e/0x950
[  331.704073][    C0]  ? __pfx_aa_sk_perm+0x10/0x10
[  331.704079][    C0]  ? irqentry_exit+0x74/0x90
[  331.704087][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  331.704096][    C0]  ? aa_sock_opt_perm+0x74/0x110
[  331.704105][    C0]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  331.704116][    C0]  do_sock_setsockopt+0x11b/0x1b0
[  331.704126][    C0]  __x64_sys_setsockopt+0x13f/0x1b0
[  331.704136][    C0]  do_syscall_64+0xfa/0x3b0
[  331.704146][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.704152][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  331.704160][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.704167][    C0] RIP: 0033:0x7fbe9d38eb69
[  331.704174][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.704179][    C0] RSP: 002b:00007fbe9e130038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  331.704190][    C0] RAX: ffffffffffffffda RBX: 00007fbe9d5b6080 RCX: 00007fbe9d38eb69
[  331.704194][    C0] RDX: 0000000000000023 RSI: 0000000000000001 RDI: 000000000000000b
[  331.704198][    C0] RBP: 00007fbe9d411df1 R08: 0000000000000004 R09: 0000000000000000
[  331.704202][    C0] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  331.704206][    C0] R13: 0000000000000000 R14: 00007fbe9d5b6080 R15: 00007ffe68a847c8
[  331.704217][    C0]  </TASK>
[  331.704220][    C0] Sending NMI from CPU 0 to CPUs 1:
[  331.704280][    C1] NMI backtrace for cpu 1
[  331.704291][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  331.704299][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  331.704303][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  331.704314][    C1] Code: d3 de 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d d3 ad 19 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  331.704320][    C1] RSP: 0018:ffffc90000177de0 EFLAGS: 00000282
[  331.704326][    C1] RAX: c6999f55f2940700 RBX: ffffffff81975f18 RCX: c6999f55f2940700
[  331.704331][    C1] RDX: 0000000000000001 RSI: ffffffff8d998727 RDI: ffffffff8be29f80
[  331.704335][    C1] RBP: ffffc90000177f20 R08: ffff888136632f9b R09: 1ffff11026cc65f3
[  331.704340][    C1] R10: dffffc0000000000 R11: ffffed1026cc65f4 R12: ffffffff8fa1e8f0
[  331.704344][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff1102001d000
[  331.704349][    C1] FS:  0000000000000000(0000) GS:ffff8881a3c1f000(0000) knlGS:0000000000000000
[  331.704354][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  331.704358][    C1] CR2: 0000555d7bcace08 CR3: 000000010dbcc000 CR4: 00000000000006f0
[  331.704384][    C1] Call Trace:
[  331.704389][    C1]  <TASK>
[  331.704391][    C1]  default_idle+0x13/0x20
[  331.704401][    C1]  default_idle_call+0x74/0xb0
[  331.704411][    C1]  do_idle+0x1e8/0x510
[  331.704420][    C1]  ? __pfx_do_idle+0x10/0x10
[  331.704430][    C1]  cpu_startup_entry+0x44/0x60
[  331.704437][    C1]  start_secondary+0x101/0x110
[  331.704443][    C1]  common_startup_64+0x13e/0x147
[  331.704455][    C1]  </TASK>
[  331.705251][    C0] Kernel panic - not syncing: softlockup: hung tasks
[  331.705262][    C0] CPU: 0 UID: 0 PID: 6133 Comm: syz.2.104 Tainted: G             L      6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  331.705273][    C0] Tainted: [L]=SOFTLOCKUP
[  331.705276][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  331.705280][    C0] Call Trace:
[  331.705285][    C0]  <IRQ>
[  331.705288][    C0]  dump_stack_lvl+0x99/0x250
[  331.705299][    C0]  ? __asan_memcpy+0x40/0x70
[  331.705309][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  331.705318][    C0]  ? __pfx__printk+0x10/0x10
[  331.705332][    C0]  panic+0x2db/0x790
[  331.705343][    C0]  ? __pfx_panic+0x10/0x10
[  331.705351][    C0]  ? nmi_backtrace_stall_check+0x433/0x440
[  331.705367][    C0]  watchdog_timer_fn+0x862/0x870
[  331.705377][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  331.705385][    C0]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  331.705394][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  331.705404][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  331.705412][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  331.705419][    C0]  __hrtimer_run_queues+0x4e0/0xc60
[  331.705427][    C0]  ? ktime_get_update_offsets_now+0x60/0x3d0
[  331.705444][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  331.705452][    C0]  ? ktime_get_update_offsets_now+0x3ab/0x3d0
[  331.705462][    C0]  ? sched_clock_cpu+0x74/0x430
[  331.705473][    C0]  hrtimer_interrupt+0x45b/0xaa0
[  331.705515][    C0]  __sysvec_apic_timer_interrupt+0x10b/0x410
[  331.705526][    C0]  sysvec_apic_timer_interrupt+0x52/0xc0
[  331.705535][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  331.705542][    C0] RIP: 0010:printk_get_next_message+0x657/0x7b0
[  331.705552][    C0] Code: 83 c1 28 4c 89 ef 4c 89 e6 48 c7 c2 e0 8b 8b 8b e8 ae 76 00 00 4c 8b 74 24 50 49 01 de 49 01 c6 eb 08 e8 dc fe 1e 00 45 31 f6 <48> 8b 5c 24 38 48 83 c3 08 48 89 d8 48 c1 e8 03 42 0f b6 04 38 84
[  331.705558][    C0] RSP: 0018:ffffc90000007440 EFLAGS: 00000246
[  331.705565][    C0] RAX: 000000000000007e RBX: 0000000000000004 RCX: ffff8880214d8000
[  331.705570][    C0] RDX: 0000000000000100 RSI: 0000000000000800 RDI: 0000000000000000
[  331.705574][    C0] RBP: ffffc90000007610 R08: 322e30382020205b R09: 205b5d3737353937
[  331.705579][    C0] R10: 5b5d373735393732 R11: 205d304320202020 R12: ffffc90000007500
[  331.705583][    C0] R13: 1ffff92000000ea2 R14: 000000000000007e R15: dffffc0000000000
[  331.705595][    C0]  ? irq_work_single+0x1ac/0x240
[  331.705605][    C0]  ? __pfx_printk_get_next_message+0x10/0x10
[  331.705614][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  331.705622][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  331.705637][    C0]  ? console_flush_all+0x13a/0xc40
[  331.705647][    C0]  ? console_flush_all+0x476/0xc40
[  331.705658][    C0]  console_flush_all+0x4ca/0xc40
[  331.705668][    C0]  ? console_flush_all+0x13a/0xc40
[  331.705680][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  331.705693][    C0]  ? console_flush_all+0x10/0xc40
[  331.705703][    C0]  console_unlock+0xc4/0x270
[  331.705713][    C0]  ? __pfx_console_unlock+0x10/0x10
[  331.705721][    C0]  ? kasan_check_range+0x29f/0x2c0
[  331.705732][    C0]  vprintk_emit+0x5b7/0x7a0
[  331.705741][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  331.705754][    C0]  ? vprintk_default+0x12/0x30
[  331.705765][    C0]  _printk+0xcf/0x120
[  331.705774][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  331.705785][    C0]  ? __pfx__printk+0x10/0x10
[  331.705795][    C0]  ? clocksource_watchdog+0xdaf/0x11c0
[  331.705805][    C0]  clocksource_watchdog+0xdca/0x11c0
[  331.705819][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.705826][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.705834][    C0]  ? call_timer_fn+0x155/0x5f0
[  331.705843][    C0]  call_timer_fn+0x17e/0x5f0
[  331.705849][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.705856][    C0]  ? call_timer_fn+0xbe/0x5f0
[  331.705862][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  331.705871][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.705880][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  331.705888][    C0]  __run_timer_base+0x61a/0x860
[  331.705905][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  331.705917][    C0]  ? __pfx_run_timer_softirq+0x10/0x10
[  331.705927][    C0]  ? run_timer_softirq+0x30/0x180
[  331.705939][    C0]  run_timer_softirq+0x67/0x180
[  331.705949][    C0]  handle_softirqs+0x286/0x870
[  331.705959][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  331.705969][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  331.705976][    C0]  ? irq_work_single+0x1ac/0x240
[  331.705985][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  331.705996][    C0]  __irq_exit_rcu+0xca/0x1f0
[  331.706003][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  331.706013][    C0]  ? rcu_is_watching+0x15/0xb0
[  331.706022][    C0]  irq_exit_rcu+0x9/0x30
[  331.706029][    C0]  sysvec_irq_work+0xa3/0xc0
[  331.706036][    C0]  </IRQ>
[  331.706039][    C0]  <TASK>
[  331.706042][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  331.706048][    C0] RIP: 0010:preempt_schedule_irq+0xb0/0x150
[  331.706056][    C0] Code: 24 20 f6 44 24 21 02 74 0c 90 0f 0b 48 f7 03 08 00 00 00 74 64 bf 01 00 00 00 e8 5b 22 21 f6 e8 96 f5 57 f6 fb bf 01 00 00 00 <e8> 1b ab ff ff 48 c7 44 24 40 00 00 00 00 9c 8f 44 24 40 8b 44 24
[  331.706062][    C0] RSP: 0018:ffffc9000438fa20 EFLAGS: 00000282
[  331.706068][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  331.706072][    C0] RDX: 0000000000000006 RSI: ffffffff8d998727 RDI: 0000000000000001
[  331.706077][    C0] RBP: ffffc9000438fac0 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  331.706081][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: 0000000000000000
[  331.706086][    C0] R13: 0000000000000000 R14: dffffc0000000000 R15: 1ffff92000871f44
[  331.706098][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  331.706110][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  331.706119][    C0]  irqentry_exit+0x6f/0x90
[  331.706127][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  331.706134][    C0] RIP: 0010:lock_acquire+0x175/0x360
[  331.706140][    C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb de 01 11 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e
[  331.706145][    C0] RSP: 0018:ffffc9000438fb88 EFLAGS: 00000206
[  331.706150][    C0] RAX: 643bd19b9e52fb00 RBX: 0000000000000000 RCX: 643bd19b9e52fb00
[  331.706155][    C0] RDX: ffffffff9363c318 RSI: ffffffff8db86408 RDI: ffffffff8be29f80
[  331.706160][    C0] RBP: ffffffff894c784e R08: 0000000000000100 R09: 00000000e0bbab7a
[  331.706164][    C0] R10: 0000000025493d32 R11: 0000000000ce8945 R12: 0000000000000000
[  331.706168][    C0] R13: ffff88810cd82258 R14: 0000000000000001 R15: 0000000000000246
[  331.706174][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  331.706196][    C0]  lock_sock_nested+0x48/0x100
[  331.706205][    C0]  ? sk_setsockopt+0xd9e/0x2d30
[  331.706213][    C0]  sk_setsockopt+0xd9e/0x2d30
[  331.706219][    C0]  ? __pfx___might_resched+0x10/0x10
[  331.706230][    C0]  ? __pfx_sk_setsockopt+0x10/0x10
[  331.706237][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  331.706249][    C0]  ? aa_sk_perm+0x81e/0x950
[  331.706259][    C0]  ? __pfx_aa_sk_perm+0x10/0x10
[  331.706266][    C0]  ? irqentry_exit+0x74/0x90
[  331.706274][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  331.706284][    C0]  ? aa_sock_opt_perm+0x74/0x110
[  331.706293][    C0]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  331.706304][    C0]  do_sock_setsockopt+0x11b/0x1b0
[  331.706313][    C0]  __x64_sys_setsockopt+0x13f/0x1b0
[  331.706323][    C0]  do_syscall_64+0xfa/0x3b0
[  331.706332][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.706339][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  331.706348][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.706354][    C0] RIP: 0033:0x7fbe9d38eb69
[  331.706360][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.706365][    C0] RSP: 002b:00007fbe9e130038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  331.706373][    C0] RAX: ffffffffffffffda RBX: 00007fbe9d5b6080 RCX: 00007fbe9d38eb69
[  331.706377][    C0] RDX: 0000000000000023 RSI: 0000000000000001 RDI: 000000000000000b
[  331.706381][    C0] RBP: 00007fbe9d411df1 R08: 0000000000000004 R09: 0000000000000000
[  331.706385][    C0] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  331.706390][    C0] R13: 0000000000000000 R14: 00007fbe9d5b6080 R15: 00007ffe68a847c8
[  331.706401][    C0]  </TASK>
[  331.707082][    C0] Kernel Offset: disabled

VM DIAGNOSIS:
23:01:40  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000034 RBX=0000000000000034 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90000006a70
R8 =ffff888021930237 R9 =1ffff11004326046 R10=dffffc0000000000 R11=ffffffff85471fa0
R12=dffffc0000000000 R13=ffffffff99af58bc R14=ffffffff99dfa1e0 R15=0000000000000000
RIP=ffffffff8547201c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fbe9e1306c0 ffffffff 00c00000
GS =0000 ffff8880b861f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b3081cff8 CR3=0000000106bbc000 CR4=000006f0
DR0=0000200000000300 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fbe9d587498 00007fbe9d587470 XMM03=00007fbe9d5874a8 00007fbe9d5874a0
XMM04=00007fbe9e0ed100 00007fbe9d587460 XMM05=00007fbe9d587478 00007fbe9d5874c0
XMM06=00007fbe9d5874b8 00007fbe9d5874b0 XMM07=00007fbe9d5874a8 00007fbe9d5874a0
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007fbe9d412f89
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff81680ea6 RBX=0000000000000000 RCX=ffff88802318b980 RDX=0000000000010000
RSI=0000000000000008 RDI=ffffffff92a52460 RBP=ffffc900001e0fe0 RSP=ffffc900001e0f60
R8 =ffffffff92a52467 R9 =1ffffffff254a48c R10=dffffc0000000000 R11=fffffbfff254a48d
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff81680ea7 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7747f13380 ffffffff 00c00000
GS =0000 ffff8881a3c1f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555d7bcace08 CR3=000000010e860000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000ff00ff 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
