last executing test programs:

17.808609222s ago: executing program 0 (id=300):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pim6reg\x00', 0x2})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f2, &(0x7f0000000080))

17.619210931s ago: executing program 0 (id=302):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = socket$kcm(0xa, 0x3, 0x3a)
setsockopt$sock_attach_bpf(r0, 0x29, 0x3, 0x0, 0x500)

17.569160222s ago: executing program 0 (id=307):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x20004810)
setsockopt$sock_attach_bpf(r0, 0x6, 0x4, &(0x7f0000000040), 0x4)

17.429448626s ago: executing program 1 (id=309):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_tracing={0x1a, 0xd, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, [@tail_call, @btf_id={0x18, 0x1, 0x3, 0x0, 0x4}, @alu={0x4, 0x0, 0x3, 0x8, 0xb, 0xfffffffffffffff0, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4}]}, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xf475, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
r0 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x14, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000001780)={&(0x7f00000003c0)=@caif, 0x80, 0x0}, 0x0)

17.429060239s ago: executing program 0 (id=310):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x804, 0x14c9, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, @perf_config_ext={0x1, 0x4}, 0xa0, 0x58, 0x0, 0x4, 0x2, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e502000000"], &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x5ee, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

17.428926535s ago: executing program 1 (id=311):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xd68210}], 0x1, 0x0, 0x1f00000000000000, 0x200000}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xca, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x86c, 0x0, 0x1, 0x2000000, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)

17.158248265s ago: executing program 0 (id=315):
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000100))
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x400, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x50)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000c40)}, 0x94)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000640)=r1, 0x4)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000248053582", 0x1f}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x24, 0x0, 0x0)
sendmsg$kcm(r0, 0x0, 0x800)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup/syz0\x00', 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200), &(0x7f0000000240), 0x4af, r3}, 0x38)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000004c0)="140000002d000b35f8ffffffffffffff0424ff0f", 0x14}], 0x1, 0x0, 0x0, 0x2000000}, 0x8840)

16.970059881s ago: executing program 0 (id=316):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r0)
socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b20, &(0x7f0000000000)={'wlan1\x00'})

16.933209238s ago: executing program 32 (id=316):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r0)
socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b20, &(0x7f0000000000)={'wlan1\x00'})

16.011415592s ago: executing program 1 (id=318):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b904021d080207000000040000a118000200e000000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843c8802033d0803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

15.877690366s ago: executing program 1 (id=322):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x11486, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_bp={0x0, 0x1}, 0x200418, 0x2e, 0xfffffbff, 0x4, 0x2, 0x7, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000140)="06ff03076844babeb89e14f00806", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

15.719692796s ago: executing program 2 (id=323):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

15.648822953s ago: executing program 2 (id=324):
r0 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x6, 0x10, &(0x7f0000000440), 0x4)

15.648629186s ago: executing program 2 (id=325):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x29, &(0x7f0000001500)=[{&(0x7f0000001580)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001b001105142603600e12080005007a010401a80016002000034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e", 0xd8}], 0x1}, 0x0)

15.648476241s ago: executing program 1 (id=326):
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f00000005c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x20}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

15.577861154s ago: executing program 2 (id=327):
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$kcm(0xa, 0x2, 0x0)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
setsockopt$sock_attach_bpf(r2, 0x29, 0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
perf_event_open(&(0x7f00000011c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x8001}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0xb5, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x2}, 0x50)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000a40)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe55a1bc0005000000000000000e41b0000900ac00060311000000040005000a0012060048035c3b61c102000000007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c220175730d16a4683f5ae24e25ccac9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000348cc5614f7da773c20c6a6c8bd414c8da", 0xd8}], 0x1}, 0x0)

15.577462552s ago: executing program 1 (id=328):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, 0x0, 0x30044889)
r1 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0xd, 0x7, 0x7, 0x6, 0x0, 0x2, 0x80, 0xc, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f00000000c0), 0xa}, 0x10c0a1, 0xfffffffffffffc00, 0x8, 0x9, 0x0, 0xf, 0xc426, 0x0, 0x5, 0x0, 0x2}, 0xffffffffffffffff, 0x10, r1, 0x1)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x2, 0x1000000000000002, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r4 = perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x408002, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x100000001, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
r6 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000140)={'full'}, 0xfffffdef)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0xf, 0x1a500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x6, @perf_bp={0x0, 0xb}, 0x105c0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45d30000000000000001d25a80", 0x14}], 0x1}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
setsockopt$sock_attach_bpf(r3, 0x88, 0x67, &(0x7f00000002c0)=r8, 0x4)
socket$kcm(0x11, 0x200000000000002, 0x300)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10}, 0x0, 0xca, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
close(r9)

15.428135926s ago: executing program 2 (id=329):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

15.427627588s ago: executing program 2 (id=330):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe, 0xfffffffffffffffc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r0, 0x107, 0xd, &(0x7f00000000c0), 0x10)

59.665514ms ago: executing program 33 (id=328):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, 0x0, 0x30044889)
r1 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0xd, 0x7, 0x7, 0x6, 0x0, 0x2, 0x80, 0xc, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f00000000c0), 0xa}, 0x10c0a1, 0xfffffffffffffc00, 0x8, 0x9, 0x0, 0xf, 0xc426, 0x0, 0x5, 0x0, 0x2}, 0xffffffffffffffff, 0x10, r1, 0x1)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$kcm(0x2, 0x1000000000000002, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r4 = perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x408002, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x100000001, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x5, 0x5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000e5020000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
r6 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000140)={'full'}, 0xfffffdef)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0xf, 0x1a500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x6, @perf_bp={0x0, 0xb}, 0x105c0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000034000b45d30000000000000001d25a80", 0x14}], 0x1}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
setsockopt$sock_attach_bpf(r3, 0x88, 0x67, &(0x7f00000002c0)=r8, 0x4)
socket$kcm(0x11, 0x200000000000002, 0x300)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10}, 0x0, 0xca, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
close(r9)

0s ago: executing program 34 (id=330):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe, 0xfffffffffffffffc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r0, 0x107, 0xd, &(0x7f00000000c0), 0x10)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:6204' (ED25519) to the list of known hosts.
syzkaller login: [   49.201038][ T5819] cgroup: Unknown subsys name 'net'
[   49.319420][ T5819] cgroup: Unknown subsys name 'cpuset'
[   49.324584][ T5819] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.983697][ T5819] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.578389][ T5221] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.581517][ T5221] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.596010][ T5221] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.598983][ T5221] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.602559][ T5221] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.715485][ T5831] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.719285][ T5831] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.722511][ T5831] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.743117][ T5831] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.762796][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.766569][ T5831] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.768114][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.772859][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.777841][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.783375][ T5839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.853555][ T5829] chnl_net:caif_netlink_parms(): no params data found
[   56.029241][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.032990][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.036731][ T5829] bridge_slave_0: entered allmulticast mode
[   56.040576][ T5829] bridge_slave_0: entered promiscuous mode
[   56.057351][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.060486][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.063590][ T5829] bridge_slave_1: entered allmulticast mode
[   56.068629][ T5829] bridge_slave_1: entered promiscuous mode
[   56.133403][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.150677][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.211510][ T5829] team0: Port device team_slave_0 added
[   56.236185][ T5829] team0: Port device team_slave_1 added
[   56.251604][ T5836] chnl_net:caif_netlink_parms(): no params data found
[   56.304661][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.308619][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.319708][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.339587][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.342464][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.353148][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.374025][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   56.477512][ T5829] hsr_slave_0: entered promiscuous mode
[   56.480644][ T5829] hsr_slave_1: entered promiscuous mode
[   56.483481][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.486618][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.489586][ T5836] bridge_slave_0: entered allmulticast mode
[   56.493323][ T5836] bridge_slave_0: entered promiscuous mode
[   56.503410][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.506831][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.509775][ T5836] bridge_slave_1: entered allmulticast mode
[   56.513572][ T5836] bridge_slave_1: entered promiscuous mode
[   56.564220][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.566626][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.568941][ T5835] bridge_slave_0: entered allmulticast mode
[   56.571549][ T5835] bridge_slave_0: entered promiscuous mode
[   56.578231][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.581026][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.583613][ T5835] bridge_slave_1: entered allmulticast mode
[   56.586728][ T5835] bridge_slave_1: entered promiscuous mode
[   56.590367][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.626654][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.641418][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.659402][ T5836] team0: Port device team_slave_0 added
[   56.662634][ T5836] team0: Port device team_slave_1 added
[   56.672664][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.707507][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.709845][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.719185][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.747872][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.750151][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.759294][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.771288][ T5835] team0: Port device team_slave_0 added
[   56.787447][ T5835] team0: Port device team_slave_1 added
[   56.838369][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.841170][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.851032][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.861437][ T5836] hsr_slave_0: entered promiscuous mode
[   56.864512][ T5836] hsr_slave_1: entered promiscuous mode
[   56.868483][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.871744][ T5836] Cannot create hsr debugfs directory
[   56.887569][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.890299][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.900477][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.984224][ T5835] hsr_slave_0: entered promiscuous mode
[   56.986706][ T5835] hsr_slave_1: entered promiscuous mode
[   56.988887][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.991317][ T5835] Cannot create hsr debugfs directory
[   57.018327][ T5829] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.027863][ T5829] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.054103][ T5829] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.067064][ T5829] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.240526][ T5836] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.254358][ T5836] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.273289][ T5836] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.281951][ T5836] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.344475][ T5835] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   57.355706][ T5835] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   57.367358][ T5835] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   57.374765][ T5835] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   57.396649][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.439835][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   57.450009][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.452377][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.462326][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.464733][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.528654][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.572529][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.581058][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[   57.598863][ T3605] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.601839][ T3605] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.614302][ T3605] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.617326][ T3605] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.627301][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   57.639229][   T54] Bluetooth: hci0: command tx timeout
[   57.656649][   T32] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.659622][   T32] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.672279][ T3605] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.675411][ T3605] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.727064][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.795543][   T54] Bluetooth: hci1: command tx timeout
[   57.799086][ T5829] veth0_vlan: entered promiscuous mode
[   57.804578][ T5829] veth1_vlan: entered promiscuous mode
[   57.828071][ T5829] veth0_macvtap: entered promiscuous mode
[   57.832372][ T5829] veth1_macvtap: entered promiscuous mode
[   57.843712][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.861966][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.872640][ T5829] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.880023][ T5829] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.883484][ T5829] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.887268][   T54] Bluetooth: hci2: command tx timeout
[   57.888084][ T5829] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.898877][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.911939][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.998446][ T5835] veth0_vlan: entered promiscuous mode
[   58.009750][ T5836] veth0_vlan: entered promiscuous mode
[   58.014038][ T5835] veth1_vlan: entered promiscuous mode
[   58.023504][ T1231] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.029666][ T1231] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.031103][ T5836] veth1_vlan: entered promiscuous mode
[   58.088014][ T5835] veth0_macvtap: entered promiscuous mode
[   58.095651][ T3605] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.098816][ T3605] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.111043][ T5836] veth0_macvtap: entered promiscuous mode
[   58.117380][ T5835] veth1_macvtap: entered promiscuous mode
[   58.129961][ T5836] veth1_macvtap: entered promiscuous mode
[   58.141321][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.164021][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.171816][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.181438][ T5835] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.187111][ T5835] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.190629][ T5835] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.194135][ T5835] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.202524][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.210701][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.220597][ T5836] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.228422][ T5836] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.231967][ T5836] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.246163][ T5836] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.354248][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.361559][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.392939][    C0] hrtimer: interrupt took 47286 ns
[   58.393848][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.398955][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.420764][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.428506][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.457172][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.464667][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.584740][   T54] Bluetooth: hci2: unexpected event 0x18 length: 151 > 23
[   58.674548][ T5904] netlink: 14 bytes leftover after parsing attributes in process `syz.1.4'.
[   58.723404][ T5902] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.743339][ T5902] netlink: 'syz.2.5': attribute type 10 has an invalid length.
[   58.825775][ T5902] team0: Port device wlan1 added
[   58.926005][ T5902] syz.2.5 (5902) used greatest stack depth: 19536 bytes left
[   59.072249][ T5914] netlink: 'syz.0.10': attribute type 10 has an invalid length.
[   59.074934][ T5914] netlink: 152 bytes leftover after parsing attributes in process `syz.0.10'.
[   59.086875][ T5914] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[   59.397076][ T5932] netlink: 'syz.2.19': attribute type 3 has an invalid length.
[   59.399789][ T5932] netlink: 199752 bytes leftover after parsing attributes in process `syz.2.19'.
[   59.716123][   T54] Bluetooth: hci0: command tx timeout
[   59.876919][   T54] Bluetooth: hci1: command tx timeout
[   59.958230][   T54] Bluetooth: hci2: command tx timeout
[   60.433749][ T5997] netlink: 'syz.1.47': attribute type 10 has an invalid length.
[   60.441623][ T5997] netlink: 55 bytes leftover after parsing attributes in process `syz.1.47'.
[   60.504164][ T5998] syz.1.47 uses obsolete (PF_INET,SOCK_PACKET)
[   61.296397][ T6024] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.58'.
[   61.498642][ T6032] netlink: 'syz.0.61': attribute type 16 has an invalid length.
[   61.501465][ T6032] netlink: 16 bytes leftover after parsing attributes in process `syz.0.61'.
[   61.805290][   T54] Bluetooth: hci0: command tx timeout
[   61.847834][ T6047] warning: `syz.0.68' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   61.958127][   T54] Bluetooth: hci1: command tx timeout
[   62.042437][   T54] Bluetooth: hci2: command tx timeout
[   62.147170][ T5280] udevd[5280]: worker [5832] terminated by signal 33 (Unknown signal 33)
[   62.152260][ T5280] udevd[5280]: worker [5832] failed while handling '/devices/virtual/block/loop2'
[   62.176414][ T5280] udevd[5280]: worker [5833] terminated by signal 33 (Unknown signal 33)
[   62.180165][ T5280] udevd[5280]: worker [5833] failed while handling '/devices/virtual/block/loop1'
[   62.724563][ T6078] netlink: 'syz.2.82': attribute type 10 has an invalid length.
[   63.484905][ T6078] bond0: (slave bond_slave_0): Releasing backup interface
[   63.713911][ T6085] netlink: 'syz.0.85': attribute type 10 has an invalid length.
[   63.885990][   T54] Bluetooth: hci0: command tx timeout
[   64.026929][ T6085] veth0_macvtap: left promiscuous mode
[   64.036369][   T54] Bluetooth: hci1: command tx timeout
[   64.116058][   T54] Bluetooth: hci2: command tx timeout
[   64.460937][ T6096] netlink: 'syz.2.90': attribute type 3 has an invalid length.
[   64.463563][ T6096] netlink: 'syz.2.90': attribute type 1 has an invalid length.
[   64.467095][ T6085] veth0_macvtap: entered promiscuous mode
[   64.467183][ T6096] netlink: 5886 bytes leftover after parsing attributes in process `syz.2.90'.
[   64.501051][ T6085] team0: Device macvtap0 failed to register rx_handler
[   64.510393][ T6085] veth0_macvtap: left promiscuous mode
[   64.664014][ T6111] Zero length message leads to an empty skb
[   65.109129][ T6119] netlink: 'syz.2.100': attribute type 21 has an invalid length.
[   65.111874][ T6119] netlink: 164 bytes leftover after parsing attributes in process `syz.2.100'.
[   65.593533][ T6132] netlink: 'syz.1.106': attribute type 49 has an invalid length.
[   66.254003][ T6181] netlink: 36 bytes leftover after parsing attributes in process `syz.0.129'.
[   66.265479][ T6181] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   66.492387][ T6198] netlink: 'syz.1.136': attribute type 21 has an invalid length.
[   67.461876][ T6235] netlink: 'syz.2.154': attribute type 10 has an invalid length.
[   67.476154][ T6235] team0: Port device geneve1 added
[   70.936481][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   70.939090][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[   71.268462][ T6334] Illegal XDP return value 4294967294 on prog  (id 95) dev N/A, expect packet loss!
[   71.327913][ T6339] netlink: 'syz.0.198': attribute type 10 has an invalid length.
[   71.411257][ T6348] netlink: 60 bytes leftover after parsing attributes in process `syz.1.202'.
[   71.595082][ T6358] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   71.598206][ T6358] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   72.672872][ T6407] netdevsim netdevsim1: Direct firmware load for  failed with error -2
[   72.682833][ T6407] netdevsim netdevsim1: Falling back to sysfs fallback for: 
[   72.979629][ T6418] netlink: 'syz.0.231': attribute type 21 has an invalid length.
[   72.982830][ T6418] netlink: 'syz.0.231': attribute type 1 has an invalid length.
[   72.985576][ T6418] netlink: 100 bytes leftover after parsing attributes in process `syz.0.231'.
[   73.517412][ T6432] netlink: 'syz.2.238': attribute type 10 has an invalid length.
[   73.554708][ T6432] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   73.686104][   T54] Bluetooth: hci0: unexpected subevent 0x0a length: 150 > 30
[   74.636464][   T96] cfg80211: failed to load regulatory.db
[   74.867436][ T6498] netlink: 'syz.2.268': attribute type 13 has an invalid length.
[   74.870012][ T6498] netlink: 160 bytes leftover after parsing attributes in process `syz.2.268'.
[   74.889487][ T6498] erspan0: refused to change device tx_queue_len
[   74.892021][ T6498] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[   74.949300][ T6510] netlink: 'syz.0.274': attribute type 10 has an invalid length.
[   74.952587][ T6510] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.956072][ T6510] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.964133][ T6510] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.967031][ T6510] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.970311][ T6510] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.973091][ T6510] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.982992][ T6510] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   75.246050][ T6529] netlink: 'syz.2.279': attribute type 21 has an invalid length.
[   75.336118][ T6541] netlink: 60 bytes leftover after parsing attributes in process `syz.2.287'.
[   75.360374][ T6543] sctp: [Deprecated]: syz.2.288 (pid 6543) Use of struct sctp_assoc_value in delayed_ack socket option.
[   75.360374][ T6543] Use struct sctp_sack_info instead
[   75.433823][ T5839] Bluetooth: hci1: unexpected event 0x06 length: 15 > 3
[   75.719413][ T5839] Bluetooth: hci0: command tx timeout
[   76.271210][ T6563] netlink: 'syz.0.297': attribute type 2 has an invalid length.
[   76.690840][ T6578] netlink: 'syz.1.304': attribute type 25 has an invalid length.
[   76.904418][ T6594] netlink: 'syz.2.312': attribute type 29 has an invalid length.
[   76.911211][ T6594] netlink: 'syz.2.312': attribute type 29 has an invalid length.
[   76.934500][ T6596] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.313'.
[   78.335476][ T6611] netlink: 'syz.1.318': attribute type 2 has an invalid length.
[   78.338724][ T6611] netlink: 'syz.1.318': attribute type 8 has an invalid length.
[   78.342013][ T6611] netlink: 132 bytes leftover after parsing attributes in process `syz.1.318'.
[   78.474071][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   78.478268][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   78.481632][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   78.487803][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   78.492020][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   78.608927][ T6620] chnl_net:caif_netlink_parms(): no params data found
[   78.647458][ T6631] netlink: 'syz.2.325': attribute type 27 has an invalid length.
[   78.650504][ T6631] netlink: 'syz.2.325': attribute type 3 has an invalid length.
[   78.653100][ T6631] netlink: 132 bytes leftover after parsing attributes in process `syz.2.325'.
[   78.704660][ T6637] netlink: 'syz.2.327': attribute type 5 has an invalid length.
[   78.712873][ T6620] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.716801][ T6620] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.719717][ T6620] bridge_slave_0: entered allmulticast mode
[   78.722391][ T6620] bridge_slave_0: entered promiscuous mode
[   78.727570][ T6620] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.730716][ T6620] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.733339][ T6620] bridge_slave_1: entered allmulticast mode
[   78.736106][ T6620] bridge_slave_1: entered promiscuous mode
[   78.757510][ T6620] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.763400][ T6620] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.699125][ T5831] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   94.702755][ T5831] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   94.707371][ T5221] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   94.710588][ T5221] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   94.713735][ T5221] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   94.716694][ T5221] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   94.719340][ T5221] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   94.723115][ T5221] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   94.726243][ T5221] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   94.732728][ T5221] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   96.755834][ T5221] Bluetooth: hci3: command tx timeout
[   96.835186][ T5221] Bluetooth: hci4: command tx timeout
[   96.935117][    C0] clocksource: Long readout interval, skipping watchdog check: cs_nsec: 8410030768 wd_nsec: 8410030910
[   98.835360][ T5221] Bluetooth: hci3: command tx timeout
[   98.915434][ T5221] Bluetooth: hci4: command tx timeout
[  100.916438][ T5221] Bluetooth: hci3: command tx timeout
[  100.995255][ T5221] Bluetooth: hci4: command tx timeout
[  103.008727][ T5221] Bluetooth: hci3: command tx timeout
[  103.075193][ T5221] Bluetooth: hci4: command tx timeout
[  132.360076][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[  132.360147][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[  140.073337][ T5839] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  140.073890][ T5839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  140.074157][ T5839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  140.074717][ T5839] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  140.075144][ T5839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  142.128395][ T5221] Bluetooth: hci5: command tx timeout
[  144.195221][ T5221] Bluetooth: hci5: command tx timeout
[  146.278443][ T5221] Bluetooth: hci5: command tx timeout
[  148.368435][ T5221] Bluetooth: hci5: command tx timeout
[  155.840063][ T5839] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  155.840880][ T5839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  155.841418][ T5839] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  155.842402][ T5839] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  155.843024][ T5839] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  155.933617][ T5839] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  155.934721][ T5839] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  155.939807][ T5839] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  155.941122][ T5839] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  155.941781][ T5839] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  157.875284][ T5221] Bluetooth: hci6: command tx timeout
[  157.965886][ T5221] Bluetooth: hci7: command tx timeout
[  159.956934][ T5221] Bluetooth: hci6: command tx timeout
[  160.035457][ T5221] Bluetooth: hci7: command tx timeout
[  162.035409][ T5221] Bluetooth: hci6: command tx timeout
[  162.118256][ T5221] Bluetooth: hci7: command tx timeout
[  164.115263][ T5221] Bluetooth: hci6: command tx timeout
[  164.196448][ T5221] Bluetooth: hci7: command tx timeout
[  180.519987][ T5831] Bluetooth: hci0: command 0x0406 tx timeout
[  180.520070][ T5221] Bluetooth: hci2: command 0x0406 tx timeout
[  183.775077][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  183.775088][    C0] rcu: 	0-....: (10371 ticks this GP) idle=5674/1/0x4000000000000000 softirq=16972/16972 fqs=4569
[  183.775356][    C0] rcu: 	         hardirqs   softirqs   csw/system
[  183.775360][    C0] rcu: 	 number:   960594          0            0
[  183.775366][    C0] rcu: 	cputime:    24330      28139           98   ==> 52470(ms)
[  183.775371][    C0] rcu: 	(t=10500 jiffies g=9677 q=2473 ncpus=2)
[  183.775380][    C0] CPU: 0 UID: 0 PID: 6639 Comm: syz.1.328 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  183.775389][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  183.775393][    C0] RIP: 0010:console_flush_all+0x7f7/0xc40
[  183.775412][    C0] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  183.775418][    C0] RSP: 0018:ffffc90000007620 EFLAGS: 00000246
[  183.775425][    C0] RAX: 1ffffffff1d36927 RBX: ffffffff8e9b4938 RCX: ffff888020e60000
[  183.775430][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  183.775434][    C0] RBP: ffffc90000007770 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  183.775438][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  183.775442][    C0] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8e9b48e0
[  183.775447][    C0] FS:  00007fccb23f06c0(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  183.775452][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  183.775457][    C0] CR2: 000000110c296bc6 CR3: 000000010fb16000 CR4: 00000000000006f0
[  183.775484][    C0] Call Trace:
[  183.775488][    C0]  <IRQ>
[  183.775494][    C0]  ? console_flush_all+0x13a/0xc40
[  183.775507][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  183.775522][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  183.775534][    C0]  console_unlock+0xc4/0x270
[  183.775543][    C0]  ? __pfx_console_unlock+0x10/0x10
[  183.775554][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  183.775565][    C0]  vprintk_emit+0x5b7/0x7a0
[  183.775575][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  183.775582][    C0]  ? irq_work_single+0x1ac/0x240
[  183.775591][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  183.775603][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  183.775615][    C0]  _printk+0xcf/0x120
[  183.775627][    C0]  ? __pfx__printk+0x10/0x10
[  183.775643][    C0]  clocksource_watchdog+0xdca/0x11c0
[  183.775651][    C0]  ? __lock_acquire+0xab9/0xd20
[  183.775665][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  183.775672][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  183.775683][    C0]  call_timer_fn+0x17e/0x5f0
[  183.775689][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  183.775695][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  183.775703][    C0]  ? call_timer_fn+0xbe/0x5f0
[  183.775709][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  183.775722][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  183.775730][    C0]  __run_timer_base+0x61a/0x860
[  183.775739][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  183.775756][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  183.775774][    C0]  run_timer_softirq+0x67/0x180
[  183.775784][    C0]  handle_softirqs+0x286/0x870
[  183.775794][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  183.775804][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  183.775811][    C0]  ? irq_work_single+0x1ac/0x240
[  183.775819][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  183.775830][    C0]  __irq_exit_rcu+0xca/0x1f0
[  183.775837][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  183.775847][    C0]  ? rcu_is_watching+0x15/0xb0
[  183.775856][    C0]  irq_exit_rcu+0x9/0x30
[  183.775863][    C0]  sysvec_irq_work+0xa3/0xc0
[  183.775869][    C0]  </IRQ>
[  183.775871][    C0]  <TASK>
[  183.775874][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  183.775881][    C0] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  183.775890][    C0] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 92 37 f8 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  183.775895][    C0] RSP: 0018:ffffc90006a97840 EFLAGS: 00000206
[  183.775901][    C0] RAX: 7b3128540e133d00 RBX: 1ffff92000d52f10 RCX: 7b3128540e133d00
[  183.775905][    C0] RDX: 0000000000000006 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  183.775909][    C0] RBP: ffffc90006a97938 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  183.775913][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffffffff8e144400
[  183.775918][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
[  183.775932][    C0]  ? irqentry_exit+0x74/0x90
[  183.775940][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  183.775948][    C0]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  183.775963][    C0]  ? percpu_ref_get_many+0x19/0x140
[  183.775974][    C0]  __rcu_read_unlock+0x84/0xe0
[  183.775985][    C0]  refill_obj_stock+0x254/0x850
[  183.776029][    C0]  ? refill_obj_stock+0x116/0x850
[  183.776041][    C0]  obj_cgroup_charge_account+0x116/0x660
[  183.776052][    C0]  ? obj_cgroup_charge_account+0x13b/0x660
[  183.776064][    C0]  __memcg_slab_post_alloc_hook+0x3e6/0x7f0
[  183.776082][    C0]  kmem_cache_alloc_lru_noprof+0x2c7/0x3d0
[  183.776089][    C0]  ? __d_alloc+0x31/0x6f0
[  183.776101][    C0]  __d_alloc+0x31/0x6f0
[  183.776112][    C0]  d_alloc_pseudo+0x1f/0xb0
[  183.776122][    C0]  alloc_file_pseudo+0xcc/0x210
[  183.776132][    C0]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  183.776139][    C0]  ? find_get_pmu_context+0x7cd/0x890
[  183.776155][    C0]  anon_inode_getfile+0xc5/0x1a0
[  183.776165][    C0]  __se_sys_perf_event_open+0xf20/0x1d70
[  183.776174][    C0]  ? perf_trace_preemptirq_template+0x280/0x340
[  183.776190][    C0]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  183.776211][    C0]  ? __x64_sys_perf_event_open+0x20/0xc0
[  183.776222][    C0]  do_syscall_64+0xfa/0x3b0
[  183.776232][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.776237][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  183.776246][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.776252][    C0] RIP: 0033:0x7fccb158eb69
[  183.776259][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.776264][    C0] RSP: 002b:00007fccb23f0038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  183.776271][    C0] RAX: ffffffffffffffda RBX: 00007fccb17b5fa0 RCX: 00007fccb158eb69
[  183.776275][    C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000040
[  183.776279][    C0] RBP: 00007fccb1611df1 R08: 0000000000000000 R09: 0000000000000000
[  183.776283][    C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  183.776287][    C0] R13: 0000000000000000 R14: 00007fccb17b5fa0 R15: 00007fff50577958
[  183.776299][    C0]  </TASK>
[  193.801747][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[  193.801806][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[  201.302379][ T5838] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  201.303417][ T5838] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  201.303959][ T5838] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  201.304959][ T5838] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  201.306442][ T5838] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  214.277373][   T18] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 0-.... } 13550 jiffies s: 3829 root: 0x1/.
[  214.277417][   T18] rcu: blocking rcu_node structures (internal RCU debug):
[  214.277432][   T18] Sending NMI from CPU 1 to CPUs 0:
[  214.277478][    C0] NMI backtrace for cpu 0
[  214.277491][    C0] CPU: 0 UID: 0 PID: 6639 Comm: syz.1.328 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  214.277504][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  214.277510][    C0] RIP: 0010:asm_sysvec_irq_work+0x0/0x20
[  214.277526][    C0] Code: 16 64 6e 0a e9 41 05 00 00 90 f3 0f 1e fa 0f 1f 00 fc 6a ff e8 f1 03 00 00 48 89 c4 48 89 e7 e8 f6 42 6e 0a e9 21 05 00 00 90 <f3> 0f 1e fa 0f 1f 00 fc 6a ff e8 d1 03 00 00 48 89 c4 48 89 e7 e8
[  214.277534][    C0] RSP: 0018:ffffc900000075f8 EFLAGS: 00000046
[  214.277541][    C0] RAX: 1ffffffff1d36927 RBX: ffffffff8e9b4938 RCX: ffff888020e60000
[  214.277548][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  214.277555][    C0] RBP: ffffc90000007770 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  214.277561][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  214.277568][    C0] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8e9b48e0
[  214.277575][    C0] FS:  00007fccb23f06c0(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  214.277584][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  214.277590][    C0] CR2: 000000110c296bc6 CR3: 000000010fb16000 CR4: 00000000000006f0
[  214.277623][    C0] Call Trace:
[  214.277629][    C0]  <IRQ>
[  214.277633][    C0] RIP: 0010:console_flush_all+0x7f7/0xc40
[  214.277648][    C0] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  214.277654][    C0] RSP: 0018:ffffc90000007620 EFLAGS: 00000246
[  214.277663][    C0]  ? console_flush_all+0x13a/0xc40
[  214.277680][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  214.277697][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  214.277713][    C0]  console_unlock+0xc4/0x270
[  214.277727][    C0]  ? __pfx_console_unlock+0x10/0x10
[  214.277741][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  214.277757][    C0]  vprintk_emit+0x5b7/0x7a0
[  214.277770][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  214.277777][    C0]  ? irq_work_single+0x1ac/0x240
[  214.277828][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  214.277843][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  214.277858][    C0]  _printk+0xcf/0x120
[  214.277875][    C0]  ? __pfx__printk+0x10/0x10
[  214.277894][    C0]  clocksource_watchdog+0xdca/0x11c0
[  214.277905][    C0]  ? __lock_acquire+0xab9/0xd20
[  214.277917][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  214.277927][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  214.277942][    C0]  call_timer_fn+0x17e/0x5f0
[  214.277952][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  214.277960][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.277973][    C0]  ? call_timer_fn+0xbe/0x5f0
[  214.277982][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  214.277997][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  214.278009][    C0]  __run_timer_base+0x61a/0x860
[  214.278022][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  214.278037][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  214.278058][    C0]  run_timer_softirq+0x67/0x180
[  214.278073][    C0]  handle_softirqs+0x286/0x870
[  214.278085][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  214.278099][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  214.278109][    C0]  ? irq_work_single+0x1ac/0x240
[  214.278120][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  214.278135][    C0]  __irq_exit_rcu+0xca/0x1f0
[  214.278144][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  214.278159][    C0]  ? rcu_is_watching+0x15/0xb0
[  214.278172][    C0]  irq_exit_rcu+0x9/0x30
[  214.278182][    C0]  sysvec_irq_work+0xa3/0xc0
[  214.278192][    C0]  </IRQ>
[  214.278195][    C0]  <TASK>
[  214.278199][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  214.278209][    C0] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  214.278223][    C0] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 92 37 f8 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  214.278231][    C0] RSP: 0018:ffffc90006a97840 EFLAGS: 00000206
[  214.278239][    C0] RAX: 7b3128540e133d00 RBX: 1ffff92000d52f10 RCX: 7b3128540e133d00
[  214.278246][    C0] RDX: 0000000000000006 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  214.278253][    C0] RBP: ffffc90006a97938 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  214.278260][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffffffff8e144400
[  214.278265][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
[  214.278276][    C0]  ? irqentry_exit+0x74/0x90
[  214.278288][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.278301][    C0]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  214.278318][    C0]  ? percpu_ref_get_many+0x19/0x140
[  214.278332][    C0]  __rcu_read_unlock+0x84/0xe0
[  214.278347][    C0]  refill_obj_stock+0x254/0x850
[  214.278364][    C0]  ? refill_obj_stock+0x116/0x850
[  214.278379][    C0]  obj_cgroup_charge_account+0x116/0x660
[  214.278391][    C0]  ? obj_cgroup_charge_account+0x13b/0x660
[  214.278406][    C0]  __memcg_slab_post_alloc_hook+0x3e6/0x7f0
[  214.278428][    C0]  kmem_cache_alloc_lru_noprof+0x2c7/0x3d0
[  214.278439][    C0]  ? __d_alloc+0x31/0x6f0
[  214.278453][    C0]  __d_alloc+0x31/0x6f0
[  214.278469][    C0]  d_alloc_pseudo+0x1f/0xb0
[  214.278483][    C0]  alloc_file_pseudo+0xcc/0x210
[  214.278497][    C0]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  214.278506][    C0]  ? find_get_pmu_context+0x7cd/0x890
[  214.278523][    C0]  anon_inode_getfile+0xc5/0x1a0
[  214.278536][    C0]  __se_sys_perf_event_open+0xf20/0x1d70
[  214.278549][    C0]  ? perf_trace_preemptirq_template+0x280/0x340
[  214.278569][    C0]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  214.278593][    C0]  ? __x64_sys_perf_event_open+0x20/0xc0
[  214.278607][    C0]  do_syscall_64+0xfa/0x3b0
[  214.278621][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.278627][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  214.278638][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.278647][    C0] RIP: 0033:0x7fccb158eb69
[  214.278657][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.278664][    C0] RSP: 002b:00007fccb23f0038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  214.278674][    C0] RAX: ffffffffffffffda RBX: 00007fccb17b5fa0 RCX: 00007fccb158eb69
[  214.278681][    C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000040
[  214.278687][    C0] RBP: 00007fccb1611df1 R08: 0000000000000000 R09: 0000000000000000
[  214.278693][    C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  214.278700][    C0] R13: 0000000000000000 R14: 00007fccb17b5fa0 R15: 00007fff50577958
[  214.278714][    C0]  </TASK>
[  216.825731][ T6687] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  216.826684][ T6687] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  216.827346][ T6687] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  216.827868][ T6687] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  216.828439][ T6687] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  216.828899][ T6687] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  216.829657][ T6687] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  216.830740][ T6687] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  216.830945][ T6687] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  216.832098][ T6687] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  221.479643][ T5831] Bluetooth: hci3: command 0x0406 tx timeout
[  221.479688][ T5831] Bluetooth: hci4: command 0x0406 tx timeout
[  233.475271][   T34] INFO: task kworker/u10:1:36 blocked for more than 143 seconds.
[  233.475298][   T34]       Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0
[  233.475309][   T34] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  233.475320][   T34] task:kworker/u10:1   state:D stack:23912 pid:36    tgid:36    ppid:2      task_flags:0x4208060 flags:0x00004000
[  233.475366][   T34] Workqueue: events_unbound linkwatch_event
[  233.475393][   T34] Call Trace:
[  233.475401][   T34]  <TASK>
[  233.475416][   T34]  __schedule+0x16f5/0x4d00
[  233.475453][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.475471][   T34]  ? schedule+0x165/0x360
[  233.475496][   T34]  ? __pfx___schedule+0x10/0x10
[  233.475529][   T34]  ? schedule+0x91/0x360
[  233.475551][   T34]  schedule+0x165/0x360
[  233.475573][   T34]  schedule_preempt_disabled+0x13/0x30
[  233.475592][   T34]  __mutex_lock+0x724/0xe80
[  233.475615][   T34]  ? __mutex_lock+0x51b/0xe80
[  233.475663][   T34]  ? linkwatch_event+0xe/0x60
[  233.475687][   T34]  ? __pfx___mutex_lock+0x10/0x10
[  233.475719][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[  233.475738][   T34]  ? process_scheduled_works+0x9ef/0x17b0
[  233.475756][   T34]  ? process_scheduled_works+0x9ef/0x17b0
[  233.475777][   T34]  linkwatch_event+0xe/0x60
[  233.475796][   T34]  process_scheduled_works+0xae1/0x17b0
[  233.475839][   T34]  ? __pfx_process_scheduled_works+0x10/0x10
[  233.475873][   T34]  worker_thread+0x8a0/0xda0
[  233.475915][   T34]  kthread+0x711/0x8a0
[  233.475942][   T34]  ? __pfx_worker_thread+0x10/0x10
[  233.475966][   T34]  ? __pfx_kthread+0x10/0x10
[  233.475991][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[  233.476009][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.476027][   T34]  ? __pfx_kthread+0x10/0x10
[  233.476051][   T34]  ret_from_fork+0x3fc/0x770
[  233.476071][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  233.476094][   T34]  ? __switch_to_asm+0x39/0x70
[  233.476114][   T34]  ? __switch_to_asm+0x33/0x70
[  233.476133][   T34]  ? __pfx_kthread+0x10/0x10
[  233.476156][   T34]  ret_from_fork_asm+0x1a/0x30
[  233.476191][   T34]  </TASK>
[  233.476273][   T34] INFO: task kworker/1:4:5878 blocked for more than 143 seconds.
[  233.476287][   T34]       Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0
[  233.476298][   T34] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  233.476307][   T34] task:kworker/1:4     state:D stack:24360 pid:5878  tgid:5878  ppid:2      task_flags:0x4208060 flags:0x00004000
[  233.476349][   T34] Workqueue: events_power_efficient crda_timeout_work
[  233.476372][   T34] Call Trace:
[  233.476379][   T34]  <TASK>
[  233.476392][   T34]  __schedule+0x16f5/0x4d00
[  233.476425][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.476443][   T34]  ? schedule+0x165/0x360
[  233.476466][   T34]  ? __pfx___schedule+0x10/0x10
[  233.476499][   T34]  ? schedule+0x91/0x360
[  233.476522][   T34]  schedule+0x165/0x360
[  233.476544][   T34]  schedule_preempt_disabled+0x13/0x30
[  233.476562][   T34]  __mutex_lock+0x724/0xe80
[  233.476584][   T34]  ? __mutex_lock+0x51b/0xe80
[  233.476611][   T34]  ? crda_timeout_work+0x15/0x50
[  233.476630][   T34]  ? __pfx___mutex_lock+0x10/0x10
[  233.476689][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[  233.476707][   T34]  ? process_scheduled_works+0x9ef/0x17b0
[  233.476724][   T34]  ? process_scheduled_works+0x9ef/0x17b0
[  233.476746][   T34]  crda_timeout_work+0x15/0x50
[  233.476763][   T34]  process_scheduled_works+0xae1/0x17b0
[  233.476805][   T34]  ? __pfx_process_scheduled_works+0x10/0x10
[  233.476839][   T34]  worker_thread+0x8a0/0xda0
[  233.476882][   T34]  kthread+0x711/0x8a0
[  233.476906][   T34]  ? __pfx_worker_thread+0x10/0x10
[  233.476925][   T34]  ? __pfx_kthread+0x10/0x10
[  233.476955][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[  233.476973][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.476992][   T34]  ? __pfx_kthread+0x10/0x10
[  233.477015][   T34]  ret_from_fork+0x3fc/0x770
[  233.477035][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  233.477058][   T34]  ? __switch_to_asm+0x39/0x70
[  233.477077][   T34]  ? __switch_to_asm+0x33/0x70
[  233.477096][   T34]  ? __pfx_kthread+0x10/0x10
[  233.477119][   T34]  ret_from_fork_asm+0x1a/0x30
[  233.477153][   T34]  </TASK>
[  233.477164][   T34] INFO: task syz-executor:6620 blocked for more than 143 seconds.
[  233.477176][   T34]       Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0
[  233.477186][   T34] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  233.477196][   T34] task:syz-executor    state:D stack:22184 pid:6620  tgid:6620  ppid:1      task_flags:0x400140 flags:0x00004004
[  233.477233][   T34] Call Trace:
[  233.477243][   T34]  <TASK>
[  233.477255][   T34]  __schedule+0x16f5/0x4d00
[  233.477288][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.477304][   T34]  ? schedule+0x165/0x360
[  233.477328][   T34]  ? __pfx___schedule+0x10/0x10
[  233.477355][   T34]  ? schedule+0x91/0x360
[  233.477378][   T34]  ? schedule+0x91/0x360
[  233.477401][   T34]  schedule+0x165/0x360
[  233.477422][   T34]  synchronize_rcu_expedited+0x583/0x730
[  233.477446][   T34]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  233.477482][   T34]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  233.477501][   T34]  ? __pfx___might_resched+0x10/0x10
[  233.477518][   T34]  ? net_shaper_set_real_num_tx_queues+0x10e/0x450
[  233.477538][   T34]  ? __pfx_autoremove_wake_function+0x10/0x10
[  233.477574][   T34]  netif_set_real_num_tx_queues+0x644/0xac0
[  233.477605][   T34]  veth_newlink+0x67b/0xa50
[  233.477630][   T34]  ? __pfx_veth_newlink+0x10/0x10
[  233.477685][   T34]  ? alloc_netdev_mqs+0xc9e/0x11e0
[  233.477705][   T34]  ? rtnl_newlink_create+0x25c/0xb00
[  233.477721][   T34]  ? rtnl_newlink+0x16d6/0x1c70
[  233.477742][   T34]  ? rtnetlink_rcv_msg+0x7cf/0xb70
[  233.477764][   T34]  ? netlink_unicast+0x75c/0x8e0
[  233.477784][   T34]  ? netlink_sendmsg+0x805/0xb30
[  233.477800][   T34]  ? __sock_sendmsg+0x21c/0x270
[  233.477821][   T34]  ? do_syscall_64+0xfa/0x3b0
[  233.477841][   T34]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.477907][   T34]  ? validate_linkmsg+0x765/0x950
[  233.477935][   T34]  ? __pfx_veth_newlink+0x10/0x10
[  233.477964][   T34]  rtnl_newlink_create+0x310/0xb00
[  233.477987][   T34]  ? __pfx_aa_get_newest_label+0x10/0x10
[  233.478011][   T34]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  233.478028][   T34]  ? rtnl_newlink+0x8db/0x1c70
[  233.478053][   T34]  ? __pfx___mutex_lock+0x10/0x10
[  233.478079][   T34]  ? full_name_hash+0x92/0xe0
[  233.478107][   T34]  rtnl_newlink+0x16d6/0x1c70
[  233.478144][   T34]  ? __pfx_rtnl_newlink+0x10/0x10
[  233.478231][   T34]  ? __lock_acquire+0xab9/0xd20
[  233.478271][   T34]  ? __pfx_rtnl_newlink+0x10/0x10
[  233.478293][   T34]  rtnetlink_rcv_msg+0x7cf/0xb70
[  233.478320][   T34]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  233.478342][   T34]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  233.478380][   T34]  netlink_rcv_skb+0x208/0x470
[  233.478399][   T34]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  233.478422][   T34]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  233.478452][   T34]  ? netlink_deliver_tap+0x2e/0x1b0
[  233.478469][   T34]  ? netlink_deliver_tap+0x2e/0x1b0
[  233.478490][   T34]  netlink_unicast+0x75c/0x8e0
[  233.478523][   T34]  netlink_sendmsg+0x805/0xb30
[  233.478550][   T34]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.478570][   T34]  ? aa_sock_msg_perm+0x94/0x160
[  233.478592][   T34]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  233.478612][   T34]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.478631][   T34]  __sock_sendmsg+0x21c/0x270
[  233.478681][   T34]  __sys_sendto+0x3bd/0x520
[  233.478702][   T34]  ? __pfx___sys_sendto+0x10/0x10
[  233.478741][   T34]  ? do_syscall_64+0xb7/0x3b0
[  233.478763][   T34]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  233.478821][   T34]  __x64_sys_sendto+0xde/0x100
[  233.478863][   T34]  do_syscall_64+0xfa/0x3b0
[  233.478884][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.478905][   T34]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.478920][   T34]  ? exc_page_fault+0x9f/0xf0
[  233.478943][   T34]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.478966][   T34] RIP: 0033:0x7f10887909fc
[  233.478983][   T34] RSP: 002b:00007ffc0f642160 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  233.479003][   T34] RAX: ffffffffffffffda RBX: 00007f10894e4620 RCX: 00007f10887909fc
[  233.479016][   T34] RDX: 0000000000000068 RSI: 00007f10894e4670 RDI: 0000000000000003
[  233.479028][   T34] RBP: 0000000000000000 R08: 00007ffc0f6421b4 R09: 000000000000000c
[  233.479040][   T34] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  233.479051][   T34] R13: 0000000000000000 R14: 00007f10894e4670 R15: 0000000000000000
[  233.479078][   T34]  </TASK>
[  233.479089][   T34] INFO: task syz.1.328:6638 blocked for more than 143 seconds.
[  233.479102][   T34]       Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0
[  233.479111][   T34] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  233.479121][   T34] task:syz.1.328       state:D stack:25040 pid:6638  tgid:6638  ppid:5829   task_flags:0x400040 flags:0x00004004
[  233.479162][   T34] Call Trace:
[  233.479170][   T34]  <TASK>
[  233.479182][   T34]  __schedule+0x16f5/0x4d00
[  233.479216][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.479234][   T34]  ? schedule+0x165/0x360
[  233.479256][   T34]  ? __pfx___schedule+0x10/0x10
[  233.479283][   T34]  ? schedule+0x91/0x360
[  233.479307][   T34]  ? schedule+0x91/0x360
[  233.479330][   T34]  schedule+0x165/0x360
[  233.479351][   T34]  synchronize_rcu_expedited+0x5f5/0x730
[  233.479374][   T34]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  233.479396][   T34]  ? __pfx_autoremove_wake_function+0x10/0x10
[  233.479423][   T34]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  233.479450][   T34]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  233.479475][   T34]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  233.479503][   T34]  packet_release+0xa05/0xce0
[  233.479528][   T34]  ? __pfx_packet_release+0x10/0x10
[  233.479543][   T34]  ? down_write+0x162/0x1f0
[  233.479571][   T34]  ? __pfx_perf_trace_lock+0x10/0x10
[  233.479593][   T34]  sock_close+0xc3/0x240
[  233.479615][   T34]  ? __pfx_sock_close+0x10/0x10
[  233.479637][   T34]  __fput+0x44c/0xa70
[  233.479694][   T34]  task_work_run+0x1d4/0x260
[  233.479720][   T34]  ? __pfx_task_work_run+0x10/0x10
[  233.479749][   T34]  ? exit_to_user_mode_loop+0x40/0x110
[  233.479769][   T34]  exit_to_user_mode_loop+0xec/0x110
[  233.479788][   T34]  do_syscall_64+0x2bd/0x3b0
[  233.479808][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.479828][   T34]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.479844][   T34]  ? exc_page_fault+0x9f/0xf0
[  233.479865][   T34]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.479881][   T34] RIP: 0033:0x7fccb158eb69
[  233.479895][   T34] RSP: 002b:00007fff50577ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  233.479916][   T34] RAX: 0000000000000000 RBX: 00007fccb17b7ba0 RCX: 00007fccb158eb69
[  233.479927][   T34] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  233.479938][   T34] RBP: 00007fccb17b7ba0 R08: 000000000000021c R09: 0000001e50577daf
[  233.479957][   T34] R10: 00007fccb17b7ac0 R11: 0000000000000246 R12: 0000000000013650
[  233.479969][   T34] R13: 00007fccb17b6160 R14: ffffffffffffffff R15: 00007fff50577bd0
[  233.479997][   T34]  </TASK>
[  233.480007][   T34] INFO: task syz.2.330:6643 blocked for more than 143 seconds.
[  233.480020][   T34]       Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0
[  233.480031][   T34] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  233.480039][   T34] task:syz.2.330       state:D stack:28328 pid:6643  tgid:6642  ppid:5835   task_flags:0x400140 flags:0x00004004
[  233.480082][   T34] Call Trace:
[  233.480091][   T34]  <TASK>
[  233.480104][   T34]  __schedule+0x16f5/0x4d00
[  233.480136][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.480153][   T34]  ? schedule+0x165/0x360
[  233.480177][   T34]  ? __pfx___schedule+0x10/0x10
[  233.480208][   T34]  ? schedule+0x91/0x360
[  233.480232][   T34]  schedule+0x165/0x360
[  233.480253][   T34]  schedule_preempt_disabled+0x13/0x30
[  233.480272][   T34]  __mutex_lock+0x724/0xe80
[  233.480293][   T34]  ? __mutex_lock+0x51b/0xe80
[  233.480319][   T34]  ? synchronize_rcu_expedited+0x3b9/0x730
[  233.480343][   T34]  ? __pfx___mutex_lock+0x10/0x10
[  233.480373][   T34]  ? do_raw_spin_unlock+0x4d/0x240
[  233.480399][   T34]  synchronize_rcu_expedited+0x3b9/0x730
[  233.480418][   T34]  ? __kmalloc_noprof+0x27a/0x4f0
[  233.480434][   T34]  ? tracepoint_add_func+0x35e/0xa10
[  233.480458][   T34]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  233.480496][   T34]  ? __pfx___might_resched+0x10/0x10
[  233.480530][   T34]  synchronize_rcu+0x11a/0x310
[  233.480550][   T34]  ? __pfx_synchronize_rcu+0x10/0x10
[  233.480571][   T34]  ? rcu_is_watching+0x15/0xb0
[  233.480590][   T34]  ? trace_kmalloc+0x1f/0xd0
[  233.480606][   T34]  ? tracepoint_add_func+0x515/0xa10
[  233.480632][   T34]  tracepoint_add_func+0x632/0xa10
[  233.480687][   T34]  ? __pfx_perf_trace_lock_acquire+0x10/0x10
[  233.480708][   T34]  tracepoint_probe_register+0x5d/0x90
[  233.480729][   T34]  ? __pfx_perf_trace_lock_acquire+0x10/0x10
[  233.480750][   T34]  perf_trace_event_init+0x4e1/0x9d0
[  233.480776][   T34]  perf_trace_init+0x23d/0x2d0
[  233.480797][   T34]  perf_tp_event_init+0x8d/0x120
[  233.480819][   T34]  perf_try_init_event+0x17f/0x870
[  233.480841][   T34]  ? perf_event_alloc+0xf6b/0x2bb0
[  233.480864][   T34]  ? perf_event_alloc+0xf6b/0x2bb0
[  233.480885][   T34]  perf_event_alloc+0x1357/0x2bb0
[  233.480907][   T34]  ? perf_event_alloc+0xf6b/0x2bb0
[  233.480932][   T34]  ? __pfx_perf_trace_lock+0x10/0x10
[  233.480965][   T34]  ? __pfx_perf_event_alloc+0x10/0x10
[  233.480992][   T34]  ? find_lively_task_by_vpid+0x19/0x290
[  233.481013][   T34]  ? find_lively_task_by_vpid+0x19/0x290
[  233.481031][   T34]  ? find_lively_task_by_vpid+0x19/0x290
[  233.481053][   T34]  __se_sys_perf_event_open+0x772/0x1d70
[  233.481078][   T34]  ? __bpf_trace_bpf_trace_printk+0xa1/0x100
[  233.481103][   T34]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  233.481136][   T34]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  233.481160][   T34]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  233.481187][   T34]  ? do_syscall_64+0xbe/0x3b0
[  233.481206][   T34]  ? __x64_sys_perf_event_open+0x20/0xc0
[  233.481229][   T34]  do_syscall_64+0xfa/0x3b0
[  233.481249][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.481269][   T34]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.481285][   T34]  ? exc_page_fault+0x9f/0xf0
[  233.481308][   T34]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.481324][   T34] RIP: 0033:0x7f797398eb69
[  233.481337][   T34] RSP: 002b:00007f797488c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  233.481357][   T34] RAX: ffffffffffffffda RBX: 00007f7973bb5fa0 RCX: 00007f797398eb69
[  233.481370][   T34] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000200
[  233.481381][   T34] RBP: 00007f7973a11df1 R08: 0000000000000000 R09: 0000000000000000
[  233.481394][   T34] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  233.481406][   T34] R13: 0000000000000001 R14: 00007f7973bb5fa0 R15: 00007ffe3ce8bd88
[  233.481432][   T34]  </TASK>
[  233.481441][   T34] INFO: task syz.2.330:6645 blocked for more than 143 seconds.
[  233.481453][   T34]       Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0
[  233.481464][   T34] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  233.481473][   T34] task:syz.2.330       state:D stack:28848 pid:6645  tgid:6642  ppid:5835   task_flags:0x400140 flags:0x00004004
[  233.481516][   T34] Call Trace:
[  233.481523][   T34]  <TASK>
[  233.481536][   T34]  __schedule+0x16f5/0x4d00
[  233.481570][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.481587][   T34]  ? schedule+0x165/0x360
[  233.481609][   T34]  ? __pfx___schedule+0x10/0x10
[  233.481635][   T34]  ? schedule+0x91/0x360
[  233.481685][   T34]  ? schedule+0x91/0x360
[  233.481707][   T34]  schedule+0x165/0x360
[  233.481728][   T34]  synchronize_rcu_expedited+0x5f5/0x730
[  233.481752][   T34]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  233.481772][   T34]  ? __pfx_autoremove_wake_function+0x10/0x10
[  233.481810][   T34]  ? packet_set_ring+0x1300/0x2380
[  233.481842][   T34]  packet_set_ring+0x1305/0x2380
[  233.481867][   T34]  ? debug_mutex_free_waiter+0x100/0x100
[  233.481894][   T34]  ? __pfx_perf_trace_lock+0x10/0x10
[  233.481916][   T34]  ? __pfx_packet_set_ring+0x10/0x10
[  233.481937][   T34]  ? __might_fault+0xb0/0x130
[  233.481971][   T34]  ? _copy_from_user+0x94/0xb0
[  233.481993][   T34]  packet_setsockopt+0xc5a/0x12c0
[  233.482015][   T34]  ? __pfx_packet_setsockopt+0x10/0x10
[  233.482034][   T34]  ? perf_trace_lock+0xec/0x3b0
[  233.482060][   T34]  ? aa_sk_perm+0x81e/0x950
[  233.482085][   T34]  ? __pfx_aa_sk_perm+0x10/0x10
[  233.482106][   T34]  ? __fget_files+0x2a/0x420
[  233.482125][   T34]  ? aa_sock_opt_perm+0x74/0x110
[  233.482147][   T34]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  233.482166][   T34]  ? __pfx_packet_setsockopt+0x10/0x10
[  233.482186][   T34]  do_sock_setsockopt+0x17c/0x1b0
[  233.482208][   T34]  __x64_sys_setsockopt+0x13f/0x1b0
[  233.482233][   T34]  do_syscall_64+0xfa/0x3b0
[  233.482252][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.482271][   T34]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.482286][   T34]  ? exc_page_fault+0x9f/0xf0
[  233.482309][   T34]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.482325][   T34] RIP: 0033:0x7f797398eb69
[  233.482340][   T34] RSP: 002b:00007f797486b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  233.482360][   T34] RAX: ffffffffffffffda RBX: 00007f7973bb6080 RCX: 00007f797398eb69
[  233.482371][   T34] RDX: 000000000000000d RSI: 0000000000000107 RDI: 0000000000000004
[  233.482383][   T34] RBP: 00007f7973a11df1 R08: 0000000000000010 R09: 0000000000000000
[  233.482394][   T34] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  233.482407][   T34] R13: 0000000000000000 R14: 00007f7973bb6080 R15: 00007ffe3ce8bd88
[  233.482433][   T34]  </TASK>
[  233.482452][   T34] 
[  233.482452][   T34] Showing all locks held in the system:
[  233.482462][   T34] 3 locks held by kworker/u8:0/12:
[  233.482475][   T34]  #0: ffff88802045b948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.482531][   T34]  #1: ffffc900000f7bc0 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.482586][   T34]  #2: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[  233.482664][   T34] 3 locks held by kworker/u10:0/27:
[  233.482676][   T34]  #0: ffff88801a489148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.482732][   T34]  #1: ffffc9000060fbc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.482786][   T34]  #2: ffff888109f00768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x460
[  233.482845][   T34] 1 lock held by khungtaskd/34:
[  233.482856][   T34]  #0: ffffffff8e13f0a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  233.482913][   T34] 3 locks held by kworker/u10:1/36:
[  233.482925][   T34]  #0: ffff88801a489148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.482984][   T34]  #1: ffffc900006afbc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.483038][   T34]  #2: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[  233.483092][   T34] 3 locks held by kworker/1:1/47:
[  233.483102][   T34]  #0: ffff88801a481d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.483157][   T34]  #1: ffffc9000075fbc0 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.483210][   T34]  #2: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x95/0xf00
[  233.483263][   T34] 6 locks held by kworker/u11:0/54:
[  233.483274][   T34]  #0: ffff888107acf148 ((wq_completion)hci0){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.483328][   T34]  #1: ffffc900007cfbc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.483382][   T34]  #2: ffff888112d74dc0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  233.483438][   T34]  #3: ffff888112d740b8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1eb/0xdf0
[  233.483495][   T34]  #4: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  233.483548][   T34]  #5: ffff88802aa5f338 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x70/0x680
[  233.483609][   T34] 3 locks held by kworker/u10:3/64:
[  233.483620][   T34]  #0: ffff88801a489148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.483698][   T34]  #1: ffffc9000172fbc0 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.483753][   T34]  #2: ffff888111488768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xc4/0x460
[  233.483829][   T34] 5 locks held by kworker/u11:1/5221:
[  233.483841][   T34]  #0: ffff88803a7df948 ((wq_completion)hci1){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.483895][   T34]  #1: ffffc90007c17bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.483965][   T34]  #2: ffff88810bf84dc0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  233.484018][   T34]  #3: ffff88810bf840b8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1eb/0xdf0
[  233.484075][   T34]  #4: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  233.484127][   T34] 2 locks held by getty/5655:
[  233.484138][   T34]  #0: ffff88810a3290a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  233.484190][   T34]  #1: ffffc900029062f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  233.484248][   T34] 4 locks held by kworker/u11:3/5838:
[  233.484258][   T34]  #0: ffff8881213bf948 ((wq_completion)hci8#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.484316][   T34]  #1: ffffc9000321fbc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.484371][   T34]  #2: ffff88811c1200b8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[  233.484425][   T34]  #3: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[  233.484482][   T34] 5 locks held by kworker/u11:4/5839:
[  233.484494][   T34]  #0: ffff88811263f148 ((wq_completion)hci2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.484548][   T34]  #1: ffffc9000322fbc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.484601][   T34]  #2: ffff88810b958dc0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  233.484678][   T34]  #3: ffff88810b9580b8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1eb/0xdf0
[  233.484737][   T34]  #4: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  233.484790][   T34] 4 locks held by kworker/u8:4/5865:
[  233.484800][   T34]  #0: ffff88801b2f6948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.484854][   T34]  #1: ffffc900033afbc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.484907][   T34]  #2: ffffffff8f5101d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[  233.484963][   T34]  #3: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: wg_netns_pre_exit+0x1c/0x1d0
[  233.485038][   T34] 3 locks held by kworker/1:4/5878:
[  233.499847][   T34]  #0: ffff88801a481d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.499914][   T34]  #1: ffffc9000347fbc0 ((crda_timeout).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.499976][   T34]  #2: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: crda_timeout_work+0x15/0x50
[  233.500034][   T34] 3 locks held by syz-executor/6620:
[  233.500047][   T34]  #0: ffffffff8eca43a0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  233.500107][   T34]  #1: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  233.500164][   T34]  #2: ffffffff8e144bb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x2f6/0x730
[  233.500222][   T34] 1 lock held by syz.1.328/6638:
[  233.500232][   T34]  #0: ffff888118c5ac08 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[  233.500295][   T34] 8 locks held by syz.1.328/6639:
[  233.500306][   T34] 5 locks held by syz.2.330/6643:
[  233.500316][   T34]  #0: ffffffff99b075d0 (&pmus_srcu){.+.+}-{0:0}, at: class_srcu_constructor+0x2c/0x60
[  233.500371][   T34]  #1: ffffffff99b075d0 (&pmus_srcu){.+.+}-{0:0}, at: perf_event_alloc+0xf6b/0x2bb0
[  233.500427][   T34]  #2: ffffffff8e1a2c68 (event_mutex){+.+.}-{4:4}, at: perf_trace_init+0x50/0x2d0
[  233.500479][   T34]  #3: ffffffff8e193d68 (tracepoints_mutex){+.+.}-{4:4}, at: tracepoint_probe_register+0x3f/0x90
[  233.500538][   T34]  #4: ffffffff8e144bb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730
[  233.500594][   T34] 1 lock held by syz.2.330/6645:
[  233.500604][   T34]  #0: ffff88811a824258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_setsockopt+0x53d/0x12c0
[  233.500682][   T34] 1 lock held by dhcpcd/6647:
[  233.500694][   T34]  #0: ffff88801f79a258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[  233.500749][   T34] 1 lock held by syz-executor/6650:
[  233.500759][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.500813][   T34] 1 lock held by dhcpcd/6653:
[  233.500825][   T34]  #0: ffff888120e5c258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[  233.500879][   T34] 1 lock held by syz-executor/6654:
[  233.500890][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.500949][   T34] 1 lock held by dhcpcd/6657:
[  233.500960][   T34]  #0: ffff88810f1b8258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[  233.501013][   T34] 1 lock held by dhcpcd/6658:
[  233.501024][   T34]  #0: ffff888120f8c258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[  233.501078][   T34] 1 lock held by dhcpcd/6659:
[  233.501088][   T34]  #0: ffff888120fb0258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[  233.501142][   T34] 1 lock held by dhcpcd/6660:
[  233.501153][   T34]  #0: ffff88812101c258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[  233.501206][   T34] 1 lock held by syz-executor/6662:
[  233.501218][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.501272][   T34] 1 lock held by syz-executor/6669:
[  233.501283][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.501337][   T34] 1 lock held by syz-executor/6672:
[  233.501348][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.501402][   T34] 1 lock held by syz-executor/6678:
[  233.501413][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.501467][   T34] 4 locks held by kworker/u11:5/6681:
[  233.501478][   T34]  #0: ffff88812ae83948 ((wq_completion)hci10#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.501538][   T34]  #1: ffffc90002a7fbc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.501592][   T34]  #2: ffff8880607e40b8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[  233.501670][   T34]  #3: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[  233.501726][   T34] 1 lock held by syz-executor/6684:
[  233.501737][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.501791][   T34] 1 lock held by syz-executor/6685:
[  233.501803][   T34]  #0: ffffffff8f51cdc8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  233.501856][   T34] 4 locks held by kworker/u11:6/6687:
[  233.501866][   T34]  #0: ffff88812ad21148 ((wq_completion)hci9#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.501925][   T34]  #1: ffffc90002a5fbc0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.501983][   T34]  #2: ffff8880607e00b8 (&hdev->lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x9b/0x8e0
[  233.502039][   T34]  #3: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_remote_features_evt+0x516/0x8e0
[  233.502094][   T34] 5 locks held by kworker/u11:7/6690:
[  233.502105][   T34]  #0: ffff888119e8d948 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.502161][   T34]  #1: ffffc90002a2fbc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.502213][   T34]  #2: ffff88811c124dc0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  233.502267][   T34]  #3: ffff88811c1240b8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1eb/0xdf0
[  233.502324][   T34]  #4: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  233.502377][   T34] 5 locks held by kworker/u11:8/6691:
[  233.502387][   T34]  #0: ffff88811e23e148 ((wq_completion)hci4){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  233.502440][   T34]  #1: ffffc90002a1fbc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  233.502494][   T34]  #2: ffff88811bde4dc0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  233.502547][   T34]  #3: ffff88811bde40b8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1eb/0xdf0
[  233.502605][   T34]  #4: ffffffff8f684f48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  233.506459][   T34] 
[  233.506471][   T34] =============================================
[  233.506471][   T34] 
[  233.506480][   T34] NMI backtrace for cpu 1
[  233.506490][   T34] CPU: 1 UID: 0 PID: 34 Comm: khungtaskd Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  233.506504][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  233.506510][   T34] Call Trace:
[  233.506515][   T34]  <TASK>
[  233.506522][   T34]  dump_stack_lvl+0x189/0x250
[  233.506542][   T34]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.506557][   T34]  ? __pfx__printk+0x10/0x10
[  233.506584][   T34]  nmi_cpu_backtrace+0x39e/0x3d0
[  233.506602][   T34]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  233.506612][   T34]  ? _printk+0xcf/0x120
[  233.506633][   T34]  ? __pfx__printk+0x10/0x10
[  233.506677][   T34]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  233.506693][   T34]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  233.506709][   T34]  watchdog+0xfee/0x1030
[  233.506730][   T34]  ? watchdog+0x1de/0x1030
[  233.506755][   T34]  kthread+0x711/0x8a0
[  233.506775][   T34]  ? __pfx_watchdog+0x10/0x10
[  233.506793][   T34]  ? __pfx_kthread+0x10/0x10
[  233.506812][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[  233.506827][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.506842][   T34]  ? __pfx_kthread+0x10/0x10
[  233.506859][   T34]  ret_from_fork+0x3fc/0x770
[  233.506875][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  233.506893][   T34]  ? __switch_to_asm+0x39/0x70
[  233.506908][   T34]  ? __switch_to_asm+0x33/0x70
[  233.506923][   T34]  ? __pfx_kthread+0x10/0x10
[  233.506940][   T34]  ret_from_fork_asm+0x1a/0x30
[  233.506975][   T34]  </TASK>
[  233.506981][   T34] Sending NMI from CPU 1 to CPUs 0:
[  233.507024][    C0] NMI backtrace for cpu 0
[  233.507034][    C0] CPU: 0 UID: 0 PID: 6639 Comm: syz.1.328 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  233.507042][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  233.507046][    C0] RIP: 0010:trace_call_bpf+0x345/0x850
[  233.507056][    C0] Code: 48 8b 7c 24 28 48 89 de 2e e8 27 08 a6 09 41 89 c4 49 8d 7d 10 48 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 <74> 05 e8 a4 f0 57 00 45 21 e7 49 8b 1e 48 85 db 0f 84 13 01 00 00
[  233.507062][    C0] RSP: 0018:ffffc90000007300 EFLAGS: 00000046
[  233.507069][    C0] RAX: 1ffff11004f57f55 RBX: ffffc90004cf9048 RCX: dffffc0000000000
[  233.507074][    C0] RDX: 0000000000000100 RSI: ffffc90004cf9048 RDI: ffff888027abfaa8
[  233.507078][    C0] RBP: ffffc900000073f8 R08: ffffc9000000738f R09: 0000000000000000
[  233.507082][    C0] R10: ffffc90000007380 R11: ffffffffa0000848 R12: 0000000000000000
[  233.507086][    C0] R13: ffff888027abfa98 R14: ffff888027abfaa8 R15: 0000000000000001
[  233.507091][    C0] FS:  00007fccb23f06c0(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  233.507096][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  233.507100][    C0] CR2: 000000110c296bc6 CR3: 000000010fb16000 CR4: 00000000000006f0
[  233.507126][    C0] Call Trace:
[  233.507131][    C0]  <IRQ>
[  233.507135][    C0]  ? trace_call_bpf+0xb7/0x850
[  233.507144][    C0]  ? __pfx_trace_call_bpf+0x10/0x10
[  233.507150][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  233.507158][    C0]  ? sched_clock_cpu+0x74/0x430
[  233.507166][    C0]  ? lapic_next_event+0x11/0x20
[  233.507173][    C0]  ? clockevents_program_event+0x24d/0x360
[  233.507184][    C0]  perf_trace_run_bpf_submit+0x78/0x170
[  233.507194][    C0]  perf_trace_preemptirq_template+0x280/0x340
[  233.507204][    C0]  ? irqentry_enter+0x3d/0x60
[  233.507212][    C0]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[  233.507221][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  233.507229][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  233.507236][    C0]  ? irqentry_enter+0x3d/0x60
[  233.507244][    C0]  trace_irq_disable+0xee/0x110
[  233.507254][    C0]  irqentry_enter+0x3d/0x60
[  233.507262][    C0]  sysvec_apic_timer_interrupt+0xe/0xc0
[  233.507269][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  233.507276][    C0] RIP: 0010:console_flush_all+0x7f7/0xc40
[  233.507286][    C0] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  233.507291][    C0] RSP: 0018:ffffc90000007620 EFLAGS: 00000246
[  233.507296][    C0] RAX: 1ffffffff1d902ff RBX: ffffffff8ec817f8 RCX: ffff888020e60000
[  233.507301][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  233.507304][    C0] RBP: ffffc90000007770 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  233.507309][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  233.507313][    C0] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8ec817a0
[  233.507323][    C0]  ? console_flush_all+0x13a/0xc40
[  233.507333][    C0]  ? __pfx_console_flush_all+0x10/0x10
[  233.507344][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  233.507355][    C0]  console_unlock+0xc4/0x270
[  233.507363][    C0]  ? __pfx_console_unlock+0x10/0x10
[  233.507371][    C0]  ? is_printk_cpu_sync_owner+0x32/0x40
[  233.507381][    C0]  vprintk_emit+0x5b7/0x7a0
[  233.507389][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  233.507396][    C0]  ? irq_work_single+0x1ac/0x240
[  233.507404][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  233.507414][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  233.507422][    C0]  _printk+0xcf/0x120
[  233.507432][    C0]  ? __pfx__printk+0x10/0x10
[  233.507444][    C0]  clocksource_watchdog+0xdca/0x11c0
[  233.507451][    C0]  ? __lock_acquire+0xab9/0xd20
[  233.507460][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  233.507467][    C0]  ? __irq_exit_rcu+0xd8/0x1f0
[  233.507476][    C0]  call_timer_fn+0x17e/0x5f0
[  233.507482][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  233.507488][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.507495][    C0]  ? call_timer_fn+0xbe/0x5f0
[  233.507501][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  233.507510][    C0]  ? __pfx_clocksource_watchdog+0x10/0x10
[  233.507517][    C0]  __run_timer_base+0x61a/0x860
[  233.507525][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  233.507538][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  233.507551][    C0]  run_timer_softirq+0x67/0x180
[  233.507560][    C0]  handle_softirqs+0x286/0x870
[  233.507568][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  233.507576][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  233.507583][    C0]  ? irq_work_single+0x1ac/0x240
[  233.507590][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  233.507599][    C0]  __irq_exit_rcu+0xca/0x1f0
[  233.507606][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  233.507614][    C0]  ? rcu_is_watching+0x15/0xb0
[  233.507623][    C0]  irq_exit_rcu+0x9/0x30
[  233.507629][    C0]  sysvec_irq_work+0xa3/0xc0
[  233.507636][    C0]  </IRQ>
[  233.507666][    C0]  <TASK>
[  233.507671][    C0]  asm_sysvec_irq_work+0x1a/0x20
[  233.507678][    C0] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  233.507688][    C0] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 92 37 f8 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  233.507693][    C0] RSP: 0018:ffffc90006a97840 EFLAGS: 00000206
[  233.507699][    C0] RAX: 7b3128540e133d00 RBX: 1ffff92000d52f10 RCX: 7b3128540e133d00
[  233.507704][    C0] RDX: 0000000000000006 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  233.507708][    C0] RBP: ffffc90006a97938 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  233.507712][    C0] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffffffff8e144400
[  233.507716][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
[  233.507726][    C0]  ? irqentry_exit+0x74/0x90
[  233.507734][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.507741][    C0]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  233.507753][    C0]  ? percpu_ref_get_many+0x19/0x140
[  233.507762][    C0]  __rcu_read_unlock+0x84/0xe0
[  233.507771][    C0]  refill_obj_stock+0x254/0x850
[  233.507782][    C0]  ? refill_obj_stock+0x116/0x850
[  233.507792][    C0]  obj_cgroup_charge_account+0x116/0x660
[  233.507802][    C0]  ? obj_cgroup_charge_account+0x13b/0x660
[  233.507812][    C0]  __memcg_slab_post_alloc_hook+0x3e6/0x7f0
[  233.507827][    C0]  kmem_cache_alloc_lru_noprof+0x2c7/0x3d0
[  233.507834][    C0]  ? __d_alloc+0x31/0x6f0
[  233.507843][    C0]  __d_alloc+0x31/0x6f0
[  233.507853][    C0]  d_alloc_pseudo+0x1f/0xb0
[  233.507862][    C0]  alloc_file_pseudo+0xcc/0x210
[  233.507871][    C0]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  233.507878][    C0]  ? find_get_pmu_context+0x7cd/0x890
[  233.507890][    C0]  anon_inode_getfile+0xc5/0x1a0
[  233.507899][    C0]  __se_sys_perf_event_open+0xf20/0x1d70
[  233.507907][    C0]  ? perf_trace_preemptirq_template+0x280/0x340
[  233.507919][    C0]  ? __pfx___se_sys_perf_event_open+0x10/0x10
[  233.507934][    C0]  ? __x64_sys_perf_event_open+0x20/0xc0
[  233.507943][    C0]  do_syscall_64+0xfa/0x3b0
[  233.507952][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.507962][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  233.507970][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.507976][    C0] RIP: 0033:0x7fccb158eb69
[  233.507982][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.507987][    C0] RSP: 002b:00007fccb23f0038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  233.507993][    C0] RAX: ffffffffffffffda RBX: 00007fccb17b5fa0 RCX: 00007fccb158eb69
[  233.507998][    C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000000040
[  233.508002][    C0] RBP: 00007fccb1611df1 R08: 0000000000000000 R09: 0000000000000000
[  233.508005][    C0] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  233.508009][    C0] R13: 0000000000000000 R14: 00007fccb17b5fa0 R15: 00007fff50577958
[  233.508017][    C0]  </TASK>
[  233.509024][   T34] Kernel panic - not syncing: hung_task: blocked tasks
[  233.509035][   T34] CPU: 1 UID: 0 PID: 34 Comm: khungtaskd Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  233.509050][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  233.509057][   T34] Call Trace:
[  233.509062][   T34]  <TASK>
[  233.509068][   T34]  dump_stack_lvl+0x99/0x250
[  233.509084][   T34]  ? __asan_memcpy+0x40/0x70
[  233.509102][   T34]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.509117][   T34]  ? __pfx__printk+0x10/0x10
[  233.509143][   T34]  panic+0x2db/0x790
[  233.509164][   T34]  ? __pfx_panic+0x10/0x10
[  233.509178][   T34]  ? nmi_backtrace_stall_check+0x433/0x440
[  233.509198][   T34]  ? irq_work_queue+0xc3/0x140
[  233.509218][   T34]  watchdog+0x102d/0x1030
[  233.509239][   T34]  ? watchdog+0x1de/0x1030
[  233.509263][   T34]  kthread+0x711/0x8a0
[  233.509284][   T34]  ? __pfx_watchdog+0x10/0x10
[  233.509303][   T34]  ? __pfx_kthread+0x10/0x10
[  233.509322][   T34]  ? _raw_spin_unlock_irq+0x23/0x50
[  233.509337][   T34]  ? lockdep_hardirqs_on+0x9c/0x150
[  233.509352][   T34]  ? __pfx_kthread+0x10/0x10
[  233.509370][   T34]  ret_from_fork+0x3fc/0x770
[  233.509386][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  233.509405][   T34]  ? __switch_to_asm+0x39/0x70
[  233.509420][   T34]  ? __switch_to_asm+0x33/0x70
[  233.509435][   T34]  ? __pfx_kthread+0x10/0x10
[  233.509453][   T34]  ret_from_fork_asm+0x1a/0x30
[  233.509482][   T34]  </TASK>
[  233.510356][   T34] Kernel Offset: disabled

VM DIAGNOSIS:
02:18:45  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff81680ea6 RBX=0000000000000000 RCX=ffff888020e60000 RDX=0000000000010100
RSI=0000000000000008 RDI=ffffffff92a52460 RBP=ffffc90000007548 RSP=ffffc900000074c0
R8 =ffffffff92a52467 R9 =1ffffffff254a48c R10=dffffc0000000000 R11=fffffbfff254a48d
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff81680ea7 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fccb23f06c0 ffffffff 00c00000
GS =0000 ffff8880b861f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c296bc6 CR3=000000010fb16000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffffffffffff ffffffffffffffff
XMM02=0000000000000000 0000000000000000 XMM03=ffffffffffffffff ffffffffffffffff
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 000000524f525245 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007fccb1612f89
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000006c RBX=000000000000006c RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000068f7b0
R8 =ffff888108780237 R9 =1ffff110210f0046 R10=dffffc0000000000 R11=ffffffff85471fa0
R12=dffffc0000000000 R13=ffffffff99af58be R14=ffffffff99dfa1e0 R15=0000000000000000
RIP=ffffffff8547201c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005631e4ab3e08 CR3=0000000026818000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000000ff XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
