last executing test programs:

42.304637601s ago: executing program 2 (id=785):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000080)={0x3, 0x3, &(0x7f0000000000)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x100001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

42.304261345s ago: executing program 2 (id=786):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000140)=@bpf_lsm={0x6, 0x4, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffc}, [@ldst={0x2, 0x0, 0x3, 0x0, 0xb}]}, &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x5}, 0x94)

42.242809466s ago: executing program 2 (id=787):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000069000010000000004000050018010000696c6c2500000000002020207b1af8ff00000000bfa1000000000000070100fef7ffffffb702000008000000b703000064000000850000001000000095"], &(0x7f0000000040)='syzkaller\x00', 0x9, 0xfcc, &(0x7f0000001e00)=""/4044, 0x100, 0x2c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbd}, 0x94)

42.242394294s ago: executing program 2 (id=788):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f00000011c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d39, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x2fc, 0x6, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f00000001c0)="b9e403c6631e39495aa05dc7cf8db7", 0x0, 0x7ab, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80100, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xb, 0x6}, 0x100904, 0x401, 0x25, 0x0, 0x1, 0x200, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0xff09, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r4, &(0x7f0000000000), 0x2a979d)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000000000000085000000050000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b703000000009c8c850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xd56}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)

42.063442922s ago: executing program 0 (id=791):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x4d}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000640)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce8102032908000000000000000000000000ac14140a000000000000000000000000ac1414aa"], 0xfdef)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f0000000000)={0x2, 0x80, 0x0, 0x1, 0x4, 0x2, 0x0, 0xede, 0x100, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x1, @perf_config_ext={0x10001, 0x6}, 0x10ea, 0xffffffffffff7fff, 0x2, 0x7, 0x10000, 0x400, 0x8, 0x0, 0x7})
r3 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18006daaed13ff00000000000000000028"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x34}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800110000000000000000000000ca6c9500000000000000ffdb360734076d08000d0ba8897489c522ba66c5439753d3e0c9b47bef3c2879fc55ce1649fcc6cff6b7eddc1ae3947efadabc0399ee4099902841e1c394783c541a69c0b2af1dcd8598b5c388992876d8e7858aed8e2f5308e47d9b93e38f092f022e25a098b85645ea1b65d5b5e38355cb7d53cb83ed9d6bc2756c81b8692e12b1b572660c0d83d23e57f5ffa19bad8b1feca88786116725e92d6d6e399a37a38899d361337c02c04a0dbda849dc41b918a60e7830677446f3280e"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r5, 0xc, &(0x7f00000000c0)={0x0, 0x1}, 0x8}, 0x94)
r6 = socket$kcm(0x10, 0x2, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500))
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f00000004c0)=0x7)
sendmsg$inet(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)=[{0x0}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x30, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe33, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x30, 0x25, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe33, 0xffffffffffffffef, 0x0, 0x0}, 0xa)

41.513417606s ago: executing program 1 (id=793):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000140)=@bpf_lsm={0x6, 0x4, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffc}, [@ldst={0x2, 0x0, 0x3, 0x0, 0xb}]}, &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x5}, 0x94)

41.449854557s ago: executing program 1 (id=794):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map=r0, r1, 0x2f, 0x2028, 0x4, @void, @void, @value=0xffffffffffffffff}, 0x20)

41.343687654s ago: executing program 1 (id=795):
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000), 0x1)

41.292789977s ago: executing program 2 (id=796):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x20, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="180200000000000000000000fdffffff85000000a400000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

41.29262328s ago: executing program 1 (id=797):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r0}, 0x10)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[], 0x18}, 0x0)
close(r1)

41.292375398s ago: executing program 1 (id=798):
r0 = socket$kcm(0x1e, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f00000014c0)={&(0x7f0000001540)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, 0x0}, 0x0)
close(r0)
socket$kcm(0x29, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x5, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xae6}, 0x1c125, 0x2e, 0xfffffbff, 0x0, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x50, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, @perf_config_ext={0x3}, 0x40, 0x0, 0x0, 0x0, 0xc360, 0xfffffffe}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x29, 0x5, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000002000000000000"], 0x0, 0x4e}, 0x28)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x8902, &(0x7f00000002c0)={r1})
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x8903, 0x0)
socket$kcm(0x2a, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)

41.24439989s ago: executing program 2 (id=799):
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x12, &(0x7f0000000080)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r4}, @generic={0x66}, @initr0, @exit, @printk={@x, {0x3, 0x3, 0x6}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0xa}, 0x94)
r5 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001040)=""/4095, 0xfff}], 0x1}, 0x0)
sendmsg$inet(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000fc0)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259aa673f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000f40)={0x3, 0x80, 0xfc, 0xe7, 0xfa, 0x9, 0x0, 0x4, 0x301e4, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x1, @perf_bp={0x0, 0x1}, 0x4a11, 0x200000000000007, 0x6, 0x0, 0x80a, 0x7, 0x4, 0x0, 0x8fc, 0x0, 0x3})
r6 = socket$kcm(0x10, 0x3, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r7, 0x401054d5, &(0x7f0000000040)={0x0, 0x0})
ioctl$TUNSETFILTEREBPF(r7, 0x800454e1, &(0x7f0000000a80)=r1)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000007c0)={&(0x7f0000000680)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x5, [@int={0x2, 0x0, 0x0, 0x1, 0x0, 0x40, 0x0, 0x7, 0x2}, @int={0xc, 0x0, 0x0, 0x1, 0x0, 0x60, 0x0, 0x44, 0x4}, @volatile={0xf, 0x0, 0x0, 0x9, 0x1}]}, {0x0, [0x0, 0x30, 0x2e]}}, &(0x7f0000000700)=""/183, 0x49, 0xb7, 0x0, 0x8}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRES32=r3], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6}}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000840)={0x6, <r9=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x9, 0x20, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xbf, 0x0, 0x0, 0x0, 0x6}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6921, 0x0, 0x0, 0x0, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}, @call={0x85, 0x0, 0x0, 0x1d}, @ldst={0x3, 0x0, 0x3, 0xa, 0xf633ffa04e149eaf, 0xfffffffffffffffe, 0x4}, @printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xb3}}, @cb_func={0x18, 0x7, 0x4, 0x0, 0xfffffffffffffffd}]}, &(0x7f0000000200)='syzkaller\x00', 0xb, 0xdc, &(0x7f0000000500)=""/220, 0x41100, 0x58, '\x00', 0x0, @fallback=0x11, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000800)={0x3, 0x9, 0x0, 0xa8d8}, 0x10, r9, 0xffffffffffffffff, 0x2, &(0x7f0000000900)=[r4, 0xffffffffffffffff, r2, r4, r4], &(0x7f0000000940)=[{0x0, 0x1, 0x9, 0x2}, {0x5, 0x3, 0xa, 0x3}], 0x10, 0x2}, 0x94)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b11d25a806f8c6394f90524fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

41.196720093s ago: executing program 0 (id=800):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000640)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xa)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r2=>0x0}, 0x8)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000002c0)=r2, 0x4)
bpf$LINK_DETACH(0x22, &(0x7f0000000340)=r3, 0x4)
r4 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000580)=r2, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000500)={r4, r1, 0x4, r1}, 0x10)

41.118886147s ago: executing program 0 (id=801):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x2, 0x40000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="8fedcb7907031175f37538e486dd630080fc00082c00db5b686158bbcfe8875a060300001123fec0"], 0xfdef)

41.118594449s ago: executing program 0 (id=802):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x4, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x9}, [@generic={0x73, 0x1, 0x1, 0xa0}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

41.07143602s ago: executing program 0 (id=803):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
close(r0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
close(r2)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r4=>0x0, <r5=>0x0})
close(r4)
setsockopt$sock_attach_bpf(r5, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
bpf$MAP_CREATE(0x0, &(0x7f0000000180), 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0800000004"], 0x50)
r6 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r6, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00\x00\v'], 0x48)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000010"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r7=>0x0, <r8=>0x0})
close(r7)
setsockopt$sock_attach_bpf(r8, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r9 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r9, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
close(r0)

41.068623999s ago: executing program 1 (id=804):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000488c)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100cb839a46c360faa05c24", 0x2e}], 0x1}, 0x40880)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f00000001c0)={0x0, 0x190d, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb440013030e000a000d000000ba8000001201", 0x2e}], 0x1}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000100000000000001500000e3d6141f50f1c9a00009500000000000014decd00"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0xe}, 0x94)
r3 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={0x0}, 0x0, 0x10, 0xfffffffd, 0x0, 0x5, 0xa, 0x0, 0x0, 0x0, 0x0, 0x4713}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffffffffffff49, &(0x7f0000000380)=[{&(0x7f0000000040)="c01803002e000b12d25a80648c2594f90124fc60100c044002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000980)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000afcd48d6494d614dcc6fab5335ec470db2c6161dba392176dd2963038e1d69ba7ea94c500dc4ef2fad96ed406f21ca0000cf920569c00cc1199684fa7c93836d9ea2cfb0e60436e05425cc4686b066707de94a4f4d5fc79c98cda2948ef0f440d7cad29567e15a7d669f381faca0f9d9b24be41a9169bdfaf16da915b2e249ee1c6eee84309e7a23c19a39484809539fca4e0b6eab1aa7d55545a34effa077faa56d59e88254f54077f799bf168301000000bf225571f2487fc86acc2bff7d5664abebd6a0244d35b213bda84cc172afd8cc2e59a7d8b85a5e3d77ac463920e231b7ae0da8616d2b7958f91f5da6c025d0faab186d94af98af1da2b5952eb15855933a212304e035f7a35dfc72c81256a55a25f8fe3b28d7e53c78fbfe5ab0255f347160ec83070000000000004015cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72bc0480f94306720399379d9271cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2dc5e46ac1c60a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d570ecb5e8cddbed65ff702000000a3ff4f8a4cf796b07a6ff61c5552d703f7f14d8b78a602ca3cdf6a9120072a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c8ad9433269af3be5fa6a9a5c24e392955f4e979ea13201bafe4f0f6ea508000000571bed5647223c78a992810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cda6cb799c6e924966a7f90bf8fd1e75ee76bd72346cfbb526890aa7fe5e68949a3b30567e54d3504723177d356c4604bca492ede62fc28839b5301160ecec37e83efceefd7ca2533659edc8be05cc85451c6a145074343caea5c4bf690441974b155f5adc681a03c0bbb8498856175e2ce8b0cbbbe3c033e54ffcebde1d9d3d35a142a9ec9a7a3755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c39cf4b98e1fc6efb5978f51e16b678eca0b658a56008948e561a9845e4ff29e2bdb1d0b923b262341c5e093fd66a2946501559335781092cf8ce3c7c56cd31121624d76517fd3666276c3c0e812b28e2f30d035cee5d0e77a3c70008ec651cc0ae637fa474816bc59d2e2a00092419304b338a987e9d3044d856cf24f370030be3b5f79f030b8d3ebce68663ef5af469abe753314fae31651e0ecea5ece8fb11a4ee288eb149f1fa33669cc8d901fa8e46354c9c3a041a1e7b55c4e81dba1e12289ee34463baf28345bde0c195bc9f021da8f3025ee9c8e3168b4177ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f241262fa3f1dabeb4fc4bda345360200000001fbddeacd3adaa4d2715e21c772ccd44341f7fd53df58ae791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d419de1a7b5c9dc22c96295a4601adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a86407e79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb408c8a80f7f02f750d6c977a1919f9f69a6cfefdf879d447df53f3b9b70d10355b07466d1ef0056b5af553d18a6cc50feeb7bfad9b7be3283b6450d014e7712d2f1d7004548b19162cef04d18d4f5987baab97a9bfbd8f185b5671820420bf5b6522c0e21c882c66f4f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe52734093ae5aa3c0b4f3f45bfff2418a18217747ae442e31560e5b741445ea2a1acee2e98c9f3427834ba0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa6623920dacc107f532348cc21164efe794874eac73381e961f3d9c8c21578fe3245097c280abe51427a7f6cd72b5da6d0252803c66730cd5eac907f09b9695906313f8873522608c6fc01e1b9e16587bb5f721303e6b89e5c54d680ac66d09af90dbf50ee69a39265964279d17eb0000000000000000000000fa086d2a39f13f60b51136a945f780687aad0731c4b839688b22c4da2a6b00008a1949a6ba49fbf981f8265e7f1f4c2d97f4680b135f91b52fc0b241c2db99a187c228ce69418a282bffff2481a0df1774fa7d94944bb92d2b89f73f0e8b63f6316c5762f3288bc970720f48b5647dd177db6810fae05334d5a44a020000001c0d882a564d74a7c72bf9a2152b261e58fea6d2f93589cfe261dc0410b5ccc92a5a0eab327a33431d62d2b7c75ce654d556c9e1817c1abca762ab53d40da51560351b673363652e1ecb56cfe4a746a45ab13c6014e9f361ab687d1cd1795ce9e05c817b83d76046bdb3709de5df7499a02d2f636a454b85b987580ada025d83bd7b8df28a540d5ec5537942e79f2f1ab25ea5f563bc77e4f9468bd309469880c7e34150ca886d1f9ac2f7e82dbe296c877d925c38c54cc8137b29028854b6bd57ca893927c331300e16aba792289e135589d93302fc37c73c303e383cdf8ef3f6d6265fe5ee01759d24027475c8901039a898582022bc95992b86dce0710887c8a625d9cbb897bdbfaf49a3f642a169827a9bae4fcfa5212461db000000000000e6ed75ca8fcda7ef3ee336189fef3b3ffb9f38fefc5ff39c4e69e3fa1f8b10ee97123e99b61eba065b1ad67530e7c4f11f9da7ae000002000000610101ad7f79cb9bbf64a0fc109f49fe8799fe266e2ccac80fefe750151f5ddfe51833ec65ece70e07ce8ab5d97db47da8f80000664dc0b86ae2b3ff9d4e220752a6b2f3ea9f793612386496dca5af7b8952aafa796ea7b152d19612297c63bb20e1e0469f7615f67a9218cbace38f5236821314f76302b98afa93044b83989339ca10e6ae30e70e17a82f03e915b8425e8e7a91614306d2ae0bc3550d856f2d7293672b5673d264fc886b0c8bdf436a0fcd21bf9da7bdca98e34cd6e59b0a7ce4ba1b466561aaa35448dff47bb1d7df23d467689a66"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r5)

41.068293345s ago: executing program 0 (id=805):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffff08)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x21, 0x2, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=[{0x10, 0x10b}, {0x18, 0x110, 0xa, "29cfe4e5"}], 0x28}, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r2 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000340)={<r3=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000240)={<r4=>r2})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x20000000000000c8, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
r5 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r7)
recvmsg$unix(r6, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x84, 0x79, &(0x7f0000000000)=r8, 0x8)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000000)={r3})

25.992857261s ago: executing program 32 (id=805):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffff08)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x21, 0x2, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=[{0x10, 0x10b}, {0x18, 0x110, 0xa, "29cfe4e5"}], 0x28}, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r2 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000340)={<r3=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000240)={<r4=>r2})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x20000000000000c8, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
r5 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
close(r7)
recvmsg$unix(r6, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x84, 0x79, &(0x7f0000000000)=r8, 0x8)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000000)={r3})

0s ago: executing program 33 (id=804):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000488c)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100cb839a46c360faa05c24", 0x2e}], 0x1}, 0x40880)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, 0x0, 0x0)
sendmsg$kcm(r2, &(0x7f00000001c0)={0x0, 0x190d, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb440013030e000a000d000000ba8000001201", 0x2e}], 0x1}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000100000000000001500000e3d6141f50f1c9a00009500000000000014decd00"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0xe}, 0x94)
r3 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={0x0}, 0x0, 0x10, 0xfffffffd, 0x0, 0x5, 0xa, 0x0, 0x0, 0x0, 0x0, 0x4713}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffffffffffff49, &(0x7f0000000380)=[{&(0x7f0000000040)="c01803002e000b12d25a80648c2594f90124fc60100c044002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r5)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:44553' (ED25519) to the list of known hosts.
syzkaller login: [   48.712399][ T5819] cgroup: Unknown subsys name 'net'
[   48.819458][ T5819] cgroup: Unknown subsys name 'cpuset'
[   48.823278][ T5819] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.532137][ T5819] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   54.429845][ T5830] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   54.437567][ T5830] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   54.440839][ T5830] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   54.444113][ T5830] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   54.447316][ T5830] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   54.469454][ T5830] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   54.472806][ T5830] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   54.476298][ T5830] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   54.479918][ T5830] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   54.483205][ T5830] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   54.526825][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   54.530187][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   54.533331][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   54.536460][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   54.540025][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   54.664919][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   54.706219][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   54.762974][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.765353][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.768330][ T5827] bridge_slave_0: entered allmulticast mode
[   54.771276][ T5827] bridge_slave_0: entered promiscuous mode
[   54.798256][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.801232][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.804137][ T5827] bridge_slave_1: entered allmulticast mode
[   54.808315][ T5827] bridge_slave_1: entered promiscuous mode
[   54.858732][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.872882][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.875310][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.879707][ T5831] bridge_slave_0: entered allmulticast mode
[   54.882371][ T5831] bridge_slave_0: entered promiscuous mode
[   54.886842][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.899871][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.902774][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.905698][ T5831] bridge_slave_1: entered allmulticast mode
[   54.908995][ T5831] bridge_slave_1: entered promiscuous mode
[   54.942387][ T5833] chnl_net:caif_netlink_parms(): no params data found
[   54.949561][ T5827] team0: Port device team_slave_0 added
[   54.952968][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.958742][ T5827] team0: Port device team_slave_1 added
[   54.961902][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.004391][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.007488][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.015591][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.031638][ T5831] team0: Port device team_slave_0 added
[   55.034081][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.036610][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.044791][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.055076][ T5831] team0: Port device team_slave_1 added
[   55.101112][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.103974][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.114597][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.141107][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.144032][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.146842][ T5833] bridge_slave_0: entered allmulticast mode
[   55.150735][ T5833] bridge_slave_0: entered promiscuous mode
[   55.155294][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.158329][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.161197][ T5833] bridge_slave_1: entered allmulticast mode
[   55.164405][ T5833] bridge_slave_1: entered promiscuous mode
[   55.168060][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.170821][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.181417][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.191071][ T5827] hsr_slave_0: entered promiscuous mode
[   55.194337][ T5827] hsr_slave_1: entered promiscuous mode
[   55.240827][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.262165][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.283933][ T5831] hsr_slave_0: entered promiscuous mode
[   55.286752][ T5831] hsr_slave_1: entered promiscuous mode
[   55.290454][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.293573][ T5831] Cannot create hsr debugfs directory
[   55.320937][ T5833] team0: Port device team_slave_0 added
[   55.324670][ T5833] team0: Port device team_slave_1 added
[   55.359699][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.362019][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.372002][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.394861][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.398451][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.408709][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.484987][ T5833] hsr_slave_0: entered promiscuous mode
[   55.487606][ T5833] hsr_slave_1: entered promiscuous mode
[   55.489820][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.492379][ T5833] Cannot create hsr debugfs directory
[   55.632362][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.639197][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.644624][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.654906][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.710907][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.724696][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.733948][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.755059][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.810213][ T5833] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.824278][ T5833] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.840069][ T5833] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.859377][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.861799][ T5833] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.903492][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   55.917835][  T755] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.920275][  T755] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.932868][  T755] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.935250][  T755] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.959823][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.993358][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   56.009279][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.011623][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.023140][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.025521][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.032035][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.059224][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   56.072920][ T2986] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.075352][ T2986] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.087435][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.089854][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.163756][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.205471][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.224051][ T5827] veth0_vlan: entered promiscuous mode
[   56.237465][ T5827] veth1_vlan: entered promiscuous mode
[   56.272156][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.275419][ T5831] veth0_vlan: entered promiscuous mode
[   56.285495][ T5831] veth1_vlan: entered promiscuous mode
[   56.290156][ T5827] veth0_macvtap: entered promiscuous mode
[   56.301209][ T5827] veth1_macvtap: entered promiscuous mode
[   56.340989][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.349796][ T5831] veth0_macvtap: entered promiscuous mode
[   56.356176][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.369976][ T5831] veth1_macvtap: entered promiscuous mode
[   56.374417][ T5833] veth0_vlan: entered promiscuous mode
[   56.378553][ T5827] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.382274][ T5827] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.385779][ T5827] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.390073][ T5827] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.408349][ T5833] veth1_vlan: entered promiscuous mode
[   56.419603][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.435538][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.446383][ T5831] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.450180][ T5831] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.453840][ T5831] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.457931][ T5831] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.475231][ T5833] veth0_macvtap: entered promiscuous mode
[   56.494125][ T5833] veth1_macvtap: entered promiscuous mode
[   56.498192][   T55] Bluetooth: hci0: command tx timeout
[   56.515551][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.519793][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.532713][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.546771][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.555160][ T5833] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.558390][ T5833] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.561854][ T5833] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.565113][ T5833] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.577390][ T5830] Bluetooth: hci1: command tx timeout
[   56.578966][ T3629] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.579345][   T55] Bluetooth: hci2: command tx timeout
[   56.581818][ T3629] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.622198][ T2986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.625045][ T2986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.641268][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   56.662417][ T2986] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.668682][ T2986] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.720675][ T2986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.723293][ T2986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.766168][  T755] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.769282][  T755] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.846126][ T5903] netlink: 'syz.2.3': attribute type 1 has an invalid length.
[   56.958495][ T5914] netlink: 132 bytes leftover after parsing attributes in process `syz.2.10'.
[   57.100031][ T5922] Zero length message leads to an empty skb
[   57.226981][    C0] hrtimer: interrupt took 33594 ns
[   57.361867][ T5926] syzkaller0: entered promiscuous mode
[   57.363732][ T5926] syzkaller0: entered allmulticast mode
[   57.510061][ T5928] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.18'.
[   57.745891][ T5933] netlink: 15999 bytes leftover after parsing attributes in process `syz.0.20'.
[   57.841155][ T5935] netlink: 'syz.0.21': attribute type 13 has an invalid length.
[   57.844454][ T5935] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.21'.
[   58.341599][ T5956] netlink: 40227 bytes leftover after parsing attributes in process `syz.0.31'.
[   58.435576][ T5960] syz.0.33 uses obsolete (PF_INET,SOCK_PACKET)
[   58.551360][ T5963] netlink: 40 bytes leftover after parsing attributes in process `syz.1.34'.
[   58.859890][   T55] Bluetooth: hci0: command tx timeout
[   58.862684][   T55] Bluetooth: hci2: command tx timeout
[   58.865040][   T55] Bluetooth: hci1: command tx timeout
[   59.270971][ T5975] netlink: 60 bytes leftover after parsing attributes in process `syz.1.40'.
[   59.274221][ T5975] netlink: 60 bytes leftover after parsing attributes in process `syz.1.40'.
[   59.525426][ T5989] bridge_slave_1: left allmulticast mode
[   59.529082][ T5989] bridge_slave_1: left promiscuous mode
[   59.536677][ T5989] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.741608][ T5997] netlink: 'syz.2.51': attribute type 21 has an invalid length.
[   60.005848][ T5989] bridge_slave_0: left allmulticast mode
[   60.011216][ T5989] bridge_slave_0: left promiscuous mode
[   60.016081][ T5989] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.897626][   T55] Bluetooth: hci2: command tx timeout
[   60.898989][ T5220] Bluetooth: hci0: command tx timeout
[   60.900241][   T55] Bluetooth: hci1: command tx timeout
[   61.416668][ T6016] netlink: 'syz.1.59': attribute type 21 has an invalid length.
[   61.420672][ T6016] netlink: 'syz.1.59': attribute type 20 has an invalid length.
[   61.445281][ T6018] netlink: 'syz.2.60': attribute type 10 has an invalid length.
[   61.455385][ T6018] netlink: 44 bytes leftover after parsing attributes in process `syz.2.60'.
[   61.475564][ T6020] netlink: 132 bytes leftover after parsing attributes in process `syz.1.62'.
[   61.623139][ T6029] syzkaller1: tun_chr_ioctl cmd 1074025673
[   62.926821][ T6071] netlink: 'syz.2.83': attribute type 21 has an invalid length.
[   63.091416][ T6073] netlink: 149044 bytes leftover after parsing attributes in process `syz.0.82'.
[   63.100317][ T6011] Bluetooth: hci2: command tx timeout
[   63.102111][ T6011] Bluetooth: hci1: command tx timeout
[   63.103877][ T5830] Bluetooth: hci0: command tx timeout
[   63.780578][ T6093] netlink: 10 bytes leftover after parsing attributes in process `syz.1.90'.
[   63.984999][ T6110] netlink: 'syz.1.100': attribute type 6 has an invalid length.
[   63.990242][ T6110] netlink: 44 bytes leftover after parsing attributes in process `syz.1.100'.
[   64.005527][ T6111] netlink: 60 bytes leftover after parsing attributes in process `syz.0.98'.
[   64.009372][ T6106] netlink: 60 bytes leftover after parsing attributes in process `syz.0.98'.
[   64.013137][ T6106] netlink: 60 bytes leftover after parsing attributes in process `syz.0.98'.
[   64.190332][ T6126] netlink: 14568 bytes leftover after parsing attributes in process `syz.0.107'.
[   64.286856][ T6133] netlink: 26 bytes leftover after parsing attributes in process `syz.0.109'.
[   64.362006][ T6140] netlink: 'syz.0.113': attribute type 29 has an invalid length.
[   64.366374][ T6140] netlink: 'syz.0.113': attribute type 29 has an invalid length.
[   64.371985][ T6140] netlink: 'syz.0.113': attribute type 29 has an invalid length.
[   64.413114][ T6142] !: renamed from dummy0 (while UP)
[   64.526755][ T6148] Illegal XDP return value 4269234036 on prog  (id 37) dev N/A, expect packet loss!
[   68.114270][ T6251] sctp: [Deprecated]: syz.0.162 (pid 6251) Use of struct sctp_assoc_value in delayed_ack socket option.
[   68.114270][ T6251] Use struct sctp_sack_info instead
[   69.969571][ T6320] netlink: 188 bytes leftover after parsing attributes in process `syz.0.190'.
[   70.497740][ T5830] Bluetooth: hci2: unexpected event 0x06 length: 15 > 3
[   70.772180][ T6365] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.829618][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   70.832587][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   71.030741][ T6372] warning: `syz.1.214' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   71.854206][ T6397] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.224'.
[   71.867883][ T6397] netlink: zone id is out of range
[   71.869914][ T6397] netlink: zone id is out of range
[   71.871891][ T6397] netlink: get zone limit has 8 unknown bytes
[   72.099624][ T6418] netlink: 'syz.1.235': attribute type 21 has an invalid length.
[   72.102181][ T6418] netlink: 128 bytes leftover after parsing attributes in process `syz.1.235'.
[   72.105206][ T6418] netlink: 'syz.1.235': attribute type 5 has an invalid length.
[   72.108254][ T6418] netlink: 'syz.1.235': attribute type 6 has an invalid length.
[   72.110788][ T6418] netlink: 3 bytes leftover after parsing attributes in process `syz.1.235'.
[   72.415372][ T6439] netlink: 128 bytes leftover after parsing attributes in process `syz.0.244'.
[   73.099122][ T6477] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.262'.
[   73.167374][ T6483] netlink: 'syz.2.265': attribute type 10 has an invalid length.
[   73.170057][ T6483] netlink: 'syz.2.265': attribute type 19 has an invalid length.
[   73.172561][ T6483] netlink: 14536 bytes leftover after parsing attributes in process `syz.2.265'.
[   73.309721][ T6492] -1: renamed from syzkaller0
[   73.316575][ T6495] netlink: 'syz.2.271': attribute type 10 has an invalid length.
[   73.373337][ T6495] veth0_vlan: left promiscuous mode
[   73.390143][ T6495] veth0_vlan: entered promiscuous mode
[   73.411788][ T6495] team0: Device veth0_vlan failed to register rx_handler
[   73.561289][ T6495] syz.2.271 (6495) used greatest stack depth: 18088 bytes left
[   73.800374][ T6519] netlink: 'syz.2.281': attribute type 2 has an invalid length.
[   73.803133][ T6519] netlink: 17267 bytes leftover after parsing attributes in process `syz.2.281'.
[   74.271399][ T6559] netlink: 168 bytes leftover after parsing attributes in process `syz.1.301'.
[   74.549666][ T6579] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.311'.
[   74.553670][ T6579] netlink: zone id is out of range
[   74.555398][ T6579] netlink: get zone limit has 8 unknown bytes
[   74.766488][ T6594] netlink: 'syz.1.318': attribute type 29 has an invalid length.
[   74.841662][   T55] Bluetooth: hci2: unexpected event 0x3d length: 151 > 14
[   74.865989][ T6600] tc_dump_action: action bad kind
[   75.090325][ T6618] netlink: 'syz.2.330': attribute type 21 has an invalid length.
[   75.092967][ T6618] __nla_validate_parse: 2 callbacks suppressed
[   75.092974][ T6618] netlink: 156 bytes leftover after parsing attributes in process `syz.2.330'.
[   75.529655][   T55] Bluetooth: hci2: unexpected event 0x31 length: 15 > 6
[   75.823223][ T6658] netlink: 'syz.2.349': attribute type 10 has an invalid length.
[   75.956153][ T6658] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   76.667205][ T5830] Bluetooth: hci2: command 0x0406 tx timeout
[   78.131318][ T6755] veth0_vlan: entered allmulticast mode
[   78.436201][ T6757] netlink: 'syz.0.394': attribute type 11 has an invalid length.
[   78.472315][ T6757] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.394'.
[   78.533390][ T6757] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   78.704243][ T6758] veth0_vlan: left promiscuous mode
[   78.930859][ T6758] veth0_vlan: entered promiscuous mode
[   78.939178][ T6760] syzkaller0: entered promiscuous mode
[   78.947439][ T6760] syzkaller0: entered allmulticast mode
[   79.266204][ T6795] netlink: 'syz.1.408': attribute type 16 has an invalid length.
[   79.276043][ T6795] netlink: 168 bytes leftover after parsing attributes in process `syz.1.408'.
[   79.856414][ T5830] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[   81.059972][  T790] cfg80211: failed to load regulatory.db
[   81.233167][ T6909] netlink: 495 bytes leftover after parsing attributes in process `syz.1.457'.
[   82.744014][ T6967] netlink: 146936 bytes leftover after parsing attributes in process `syz.1.483'.
[   82.751156][ T6967] openvswitch: netlink: Message has 6 unknown bytes.
[   82.858145][ T6977] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   82.861326][ T6977] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[   83.090436][ T6981] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x32
[   83.584518][ T6986] netlink: 'syz.2.491': attribute type 21 has an invalid length.
[   83.588338][ T6986] netlink: 'syz.2.491': attribute type 15 has an invalid length.
[   83.591035][ T6986] netlink: 156 bytes leftover after parsing attributes in process `syz.2.491'.
[   83.594124][ T6986] IPv6: NLM_F_CREATE should be specified when creating new route
[   83.596717][ T6986] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   83.599284][ T6986] IPv6: NLM_F_CREATE should be set when creating new route
[   83.601720][ T6986] IPv6: NLM_F_CREATE should be set when creating new route
[   83.604140][ T6986] IPv6: NLM_F_CREATE should be set when creating new route
[   83.840554][ T7008] netlink: 'syz.2.502': attribute type 21 has an invalid length.
[   84.036900][ T7020] netlink: 'syz.1.508': attribute type 33 has an invalid length.
[   85.372777][ T7048] netlink: 10 bytes leftover after parsing attributes in process `syz.2.521'.
[   85.450039][ T7054] syzkaller0: entered promiscuous mode
[   85.451924][ T7054] syzkaller0: entered allmulticast mode
[   85.583529][ T7063] netlink: 'syz.0.527': attribute type 21 has an invalid length.
[   86.907604][ T7090] IPv6: NLM_F_REPLACE set, but no existing node found!
[   87.309806][ T7099] syzkaller0: entered promiscuous mode
[   87.312507][ T7099] syzkaller0: entered allmulticast mode
[   87.634717][ T7120] pim6reg1: entered allmulticast mode
[   87.639209][ T7120] pim6reg1: left allmulticast mode
[   87.714909][ T7124] netlink: 'syz.2.554': attribute type 12 has an invalid length.
[   87.740601][ T7124] netlink: 132 bytes leftover after parsing attributes in process `syz.2.554'.
[   88.052512][ T7148] netlink: 'syz.1.565': attribute type 8 has an invalid length.
[   88.055314][ T7148] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.565'.
[   88.192369][ T5830] Bluetooth: hci0: SCO packet for unknown connection handle 0
[   88.342327][ T7177] netlink: 'syz.1.578': attribute type 3 has an invalid length.
[   88.348296][ T7177] netlink: 'syz.1.578': attribute type 2 has an invalid length.
[   88.351610][ T7177] netlink: 130532 bytes leftover after parsing attributes in process `syz.1.578'.
[   88.504495][ T7195] tap0: tun_chr_ioctl cmd 1074025672
[   88.506330][ T7195] tap0: ignored: set checksum enabled
[   88.611061][ T7205] netlink: 14601 bytes leftover after parsing attributes in process `syz.0.592'.
[   91.852067][ T7241] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.608'.
[   91.963233][ T7250] raw_sendmsg: syz.0.612 forgot to set AF_INET. Fix it!
[   92.320502][ T7260] netlink: 60 bytes leftover after parsing attributes in process `syz.1.616'.
[   92.324750][ T7260] netlink: 60 bytes leftover after parsing attributes in process `syz.1.616'.
[   92.329275][ T7259] netlink: 60 bytes leftover after parsing attributes in process `syz.1.616'.
[   92.685445][ T7279] dvmrp1: tun_chr_ioctl cmd 1074025677
[   92.689321][ T7279] dvmrp1: linktype set to 773
[   93.631072][ T7313] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.640'.
[   93.724506][ T7325] netlink: 166 bytes leftover after parsing attributes in process `syz.2.644'.
[   93.919083][ T7335] netlink: 5 bytes leftover after parsing attributes in process `syz.1.649'.
[   94.000069][ T7339] netlink: 4 bytes leftover after parsing attributes in process `syz.2.650'.
[   94.600517][ T7358] netlink: 24032 bytes leftover after parsing attributes in process `syz.0.658'.
[   94.603591][ T7358] netlink: 104088 bytes leftover after parsing attributes in process `syz.0.658'.
[   94.606642][ T7358] netlink: 24032 bytes leftover after parsing attributes in process `syz.0.658'.
[   96.442204][ T7388] netlink: 'syz.0.671': attribute type 2 has an invalid length.
[   97.198711][ T7442] netlink: 'syz.1.696': attribute type 13 has an invalid length.
[   97.387412][ T7449] netlink: 128 bytes leftover after parsing attributes in process `syz.1.699'.
[   97.391945][ T7449] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[   97.558881][ T7449] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   97.672037][ T7456] netlink: zone id is out of range
[   97.674857][ T7456] netlink: zone id is out of range
[   97.702849][ T7456] netlink: zone id is out of range
[   97.705079][ T7456] netlink: zone id is out of range
[   97.714304][ T7456] netlink: zone id is out of range
[   97.717895][ T7456] netlink: zone id is out of range
[   97.720068][ T7456] netlink: zone id is out of range
[   97.722293][ T7456] netlink: zone id is out of range
[   97.773260][ T7464] netlink: 'syz.1.706': attribute type 25 has an invalid length.
[   97.775774][ T7464] netlink: 2418 bytes leftover after parsing attributes in process `syz.1.706'.
[   97.900969][ T7476] netlink: 60 bytes leftover after parsing attributes in process `syz.0.712'.
[   98.692323][ T7501] __nla_validate_parse: 1 callbacks suppressed
[   98.692364][ T7501] netlink: 68 bytes leftover after parsing attributes in process `syz.1.723'.
[   98.922974][ T5830] Bluetooth: hci2: unknown advertising packet type: 0x20
[   99.780449][    C1] clocksource: Long readout interval, skipping watchdog check: cs_nsec: 1033413131 wd_nsec: 1033413109
[   99.844255][ T7532] netlink: 'syz.1.739': attribute type 6 has an invalid length.
[   99.850894][ T7532] netlink: 164 bytes leftover after parsing attributes in process `syz.1.739'.
[   99.864378][ T7535] Q6\bY4: renamed from lo (while UP)
[  101.000607][ T7582] blkio.reset_stats is deprecated
[  101.302648][ T5830] Bluetooth: hci2: unexpected event 0x1c length: 151 > 5
[  101.586836][ T7617] netlink: 'syz.0.776': attribute type 2 has an invalid length.
[  101.769671][ T7630] netlink: 'syz.2.782': attribute type 1 has an invalid length.
[  101.772434][ T7630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.782'.
[  103.132787][ T7678] netlink: 'syz.1.804': attribute type 10 has an invalid length.
[  103.136481][ T7678] bridge0: port 3(team0) entered blocking state
[  103.140543][ T7678] bridge0: port 3(team0) entered disabled state
[  103.145139][ T7678] team0: entered allmulticast mode
[  103.148789][ T7678] team_slave_0: entered allmulticast mode
[  103.151866][ T7678] team_slave_1: entered allmulticast mode
[  103.155258][ T7678] team0: entered promiscuous mode
[  103.158986][ T7678] team_slave_0: entered promiscuous mode
[  103.161514][ T7678] team_slave_1: entered promiscuous mode
[  103.165901][ T7678] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[  103.166490][ T7681] netlink: 60 bytes leftover after parsing attributes in process `syz.2.799'.
[  103.180417][ T7668] netlink: 60 bytes leftover after parsing attributes in process `syz.2.799'.
[  103.214364][ T7668] netlink: 'syz.2.799': attribute type 3 has an invalid length.
[  103.221561][ T7668] netlink: 'syz.2.799': attribute type 3 has an invalid length.
[  103.224541][ T7668] netlink: 'syz.2.799': attribute type 2 has an invalid length.
[  132.261079][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  132.261178][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  144.589672][ T6011] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  144.590364][ T6011] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  144.590631][ T6011] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  144.591123][ T6011] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  144.591422][ T6011] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  144.613746][   T55] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  144.614538][   T55] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  144.615462][   T55] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  144.616892][   T55] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  144.617891][   T55] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  144.636860][ T5830] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  144.637664][ T5830] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  144.637987][ T5830] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  144.638661][ T5830] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  144.639108][ T5830] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  146.657908][ T5830] Bluetooth: hci5: command tx timeout
[  146.658137][ T5830] Bluetooth: hci3: command tx timeout
[  146.658244][ T5830] Bluetooth: hci4: command tx timeout
[  148.747339][   T55] Bluetooth: hci4: command tx timeout
[  148.747379][   T55] Bluetooth: hci3: command tx timeout
[  148.747404][   T55] Bluetooth: hci5: command tx timeout
[  150.819415][ T5830] Bluetooth: hci5: command tx timeout
[  150.819455][ T5830] Bluetooth: hci3: command tx timeout
[  150.819479][ T5830] Bluetooth: hci4: command tx timeout
[  152.897211][ T5830] Bluetooth: hci3: command tx timeout
[  152.897238][ T5830] Bluetooth: hci5: command tx timeout
[  152.897279][   T55] Bluetooth: hci4: command tx timeout
[  178.921432][ T7702] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  178.922991][ T7702] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  178.923232][ T7702] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  178.923648][ T7702] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  178.924172][ T7702] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  178.924468][ T7702] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  178.930491][ T7702] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  178.931629][ T7702] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  178.933827][ T7702] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  178.934171][ T7702] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  180.420029][ T7706] Bluetooth: hci2: command 0x0406 tx timeout
[  180.420059][ T7706] Bluetooth: hci0: command 0x0406 tx timeout
[  180.420076][ T7706] Bluetooth: hci1: command 0x0406 tx timeout
[  180.977320][ T7705] Bluetooth: hci7: command tx timeout
[  180.977676][ T7705] Bluetooth: hci6: command tx timeout
[  183.067275][ T7706] Bluetooth: hci6: command tx timeout
[  183.067322][ T7706] Bluetooth: hci7: command tx timeout
[  185.137177][ T7705] Bluetooth: hci7: command tx timeout
[  185.137216][ T7705] Bluetooth: hci6: command tx timeout
[  187.227331][ T7706] Bluetooth: hci6: command tx timeout
[  187.227371][ T7706] Bluetooth: hci7: command tx timeout
[  193.703100][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  193.703146][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  208.216997][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  208.217008][    C1] rcu: 	1-....: (10499 ticks this GP) idle=b23c/1/0x4000000000000000 softirq=21348/21348 fqs=4645
[  208.217272][    C1] rcu: 	         hardirqs   softirqs   csw/system
[  208.217276][    C1] rcu: 	 number:   983631          0            0
[  208.217281][    C1] rcu: 	cputime:    24103      28376           94   ==> 52480(ms)
[  208.217287][    C1] rcu: 	(t=10500 jiffies g=13753 q=2859 ncpus=2)
[  208.217296][    C1] CPU: 1 UID: 0 PID: 7668 Comm: syz.2.799 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  208.217304][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  208.217308][    C1] RIP: 0010:rcu_read_unlock_special+0x87/0x4c0
[  208.217323][    C1] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 92 37 f8 10 41 f7 c6 00 00 f0 00 74 49 <48> c7 44 24 40 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  208.217328][    C1] RSP: 0018:ffffc900001e0600 EFLAGS: 00000206
[  208.217336][    C1] RAX: 3173698023a93c00 RBX: 1ffff9200003c0c8 RCX: 3173698023a93c00
[  208.217340][    C1] RDX: 0000000000000002 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  208.217345][    C1] RBP: ffffc900001e06f8 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  208.217349][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffffffff8e144400
[  208.217353][    C1] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000002
[  208.217358][    C1] FS:  00007f26e79f66c0(0000) GS:ffff8881a3c1f000(0000) knlGS:0000000000000000
[  208.217363][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.217367][    C1] CR2: 0000200000034000 CR3: 000000011de7a000 CR4: 00000000000006f0
[  208.217394][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.217400][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  208.217403][    C1] Call Trace:
[  208.217406][    C1]  <IRQ>
[  208.217409][    C1]  ? __lock_acquire+0xab9/0xd20
[  208.217420][    C1]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[  208.217432][    C1]  ? unwind_next_frame+0xa5/0x2390
[  208.217443][    C1]  __rcu_read_unlock+0x84/0xe0
[  208.217453][    C1]  ? unwind_next_frame+0xa5/0x2390
[  208.217460][    C1]  unwind_next_frame+0x19ae/0x2390
[  208.217470][    C1]  ? unwind_next_frame+0xa5/0x2390
[  208.217477][    C1]  ? __nla_parse+0x40/0x60
[  208.217489][    C1]  ? rcu_core+0xc34/0x1710
[  208.217495][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  208.217504][    C1]  arch_stack_walk+0x11c/0x150
[  208.217515][    C1]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  208.217528][    C1]  stack_trace_save+0x9c/0xe0
[  208.217537][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  208.217578][    C1]  ? __lock_acquire+0xab9/0xd20
[  208.217587][    C1]  kasan_save_track+0x3e/0x80
[  208.217597][    C1]  ? kasan_save_track+0x3e/0x80
[  208.217605][    C1]  ? kasan_save_free_info+0x46/0x50
[  208.217613][    C1]  ? __kasan_slab_free+0x62/0x70
[  208.217618][    C1]  ? slab_free_after_rcu_debug+0x129/0x2a0
[  208.217627][    C1]  ? rcu_core+0xca8/0x1710
[  208.217633][    C1]  ? handle_softirqs+0x286/0x870
[  208.217640][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  208.217647][    C1]  ? irq_exit_rcu+0x9/0x30
[  208.217653][    C1]  ? sysvec_apic_timer_interrupt+0xa6/0xc0
[  208.217661][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  208.217668][    C1]  ? console_flush_all+0x7f7/0xc40
[  208.217676][    C1]  ? console_unlock+0xc4/0x270
[  208.217683][    C1]  ? vprintk_emit+0x5b7/0x7a0
[  208.217690][    C1]  ? _printk+0xcf/0x120
[  208.217698][    C1]  ? __nla_validate_parse+0x1719/0x2d40
[  208.217706][    C1]  ? __nla_parse+0x40/0x60
[  208.217733][    C1]  kasan_save_free_info+0x46/0x50
[  208.217741][    C1]  __kasan_slab_free+0x62/0x70
[  208.217747][    C1]  slab_free_after_rcu_debug+0x129/0x2a0
[  208.217756][    C1]  ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[  208.217764][    C1]  ? rcu_core+0xc34/0x1710
[  208.217770][    C1]  rcu_core+0xca8/0x1710
[  208.217785][    C1]  ? __pfx_rcu_core+0x10/0x10
[  208.217796][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  208.217803][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  208.217820][    C1]  handle_softirqs+0x286/0x870
[  208.217829][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  208.217839][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  208.217849][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  208.217860][    C1]  __irq_exit_rcu+0xca/0x1f0
[  208.217867][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  208.217878][    C1]  irq_exit_rcu+0x9/0x30
[  208.217885][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  208.217893][    C1]  </IRQ>
[  208.217895][    C1]  <TASK>
[  208.217898][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  208.217909][    C1] RIP: 0010:console_flush_all+0x7f7/0xc40
[  208.217918][    C1] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  208.217923][    C1] RSP: 0018:ffffc90002f0ed40 EFLAGS: 00000287
[  208.217929][    C1] RAX: 1ffffffff1d36927 RBX: ffffffff8e9b4938 RCX: 0000000000080000
[  208.217933][    C1] RDX: ffffc900087aa000 RSI: 0000000000003a7a RDI: 0000000000003a7b
[  208.217937][    C1] RBP: ffffc90002f0ee90 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  208.217942][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  208.217946][    C1] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8e9b48e0
[  208.217960][    C1]  ? console_flush_all+0x13a/0xc40
[  208.217971][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  208.217981][    C1]  ? trace_call_bpf+0xb7/0x850
[  208.217991][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  208.218002][    C1]  console_unlock+0xc4/0x270
[  208.218011][    C1]  ? __pfx_console_unlock+0x10/0x10
[  208.218021][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  208.218032][    C1]  vprintk_emit+0x5b7/0x7a0
[  208.218041][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  208.218048][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  208.218056][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  208.218071][    C1]  _printk+0xcf/0x120
[  208.218079][    C1]  ? __pfx____ratelimit+0x10/0x10
[  208.218089][    C1]  ? __pfx__printk+0x10/0x10
[  208.218103][    C1]  __nla_validate_parse+0x1719/0x2d40
[  208.218112][    C1]  ? __sock_sendmsg+0x21c/0x270
[  208.218120][    C1]  ? ____sys_sendmsg+0x505/0x830
[  208.218135][    C1]  ? __pfx___nla_validate_parse+0x10/0x10
[  208.218157][    C1]  __nla_parse+0x40/0x60
[  208.218169][    C1]  genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  208.218181][    C1]  genl_family_rcv_msg_doit+0xb8/0x300
[  208.218192][    C1]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  208.218203][    C1]  ? rcu_is_watching+0x15/0xb0
[  208.218211][    C1]  ? apparmor_capable+0x137/0x1b0
[  208.218219][    C1]  ? bpf_lsm_capable+0x9/0x20
[  208.218226][    C1]  ? security_capable+0x7e/0x2e0
[  208.218237][    C1]  genl_rcv_msg+0x60e/0x790
[  208.218249][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.218256][    C1]  ? ref_tracker_free+0x63a/0x7d0
[  208.218264][    C1]  ? __pfx_mptcp_pm_nl_set_limits_doit+0x10/0x10
[  208.218274][    C1]  ? __pfx_ref_tracker_free+0x10/0x10
[  208.218287][    C1]  netlink_rcv_skb+0x208/0x470
[  208.218295][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.218304][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  208.218318][    C1]  ? down_read+0x1ad/0x2e0
[  208.218328][    C1]  genl_rcv+0x28/0x40
[  208.218335][    C1]  netlink_unicast+0x75c/0x8e0
[  208.218350][    C1]  netlink_sendmsg+0x805/0xb30
[  208.218361][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.218369][    C1]  ? aa_sock_msg_perm+0x94/0x160
[  208.218378][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  208.218387][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.218394][    C1]  __sock_sendmsg+0x21c/0x270
[  208.218405][    C1]  ____sys_sendmsg+0x505/0x830
[  208.218415][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.218426][    C1]  ? import_iovec+0x74/0xa0
[  208.218435][    C1]  ___sys_sendmsg+0x21f/0x2a0
[  208.218444][    C1]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.218467][    C1]  ? __fget_files+0x2a/0x420
[  208.218474][    C1]  ? __fget_files+0x3a0/0x420
[  208.218486][    C1]  __x64_sys_sendmsg+0x19b/0x260
[  208.218492][    C1]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  208.218502][    C1]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  208.218514][    C1]  ? rcu_is_watching+0x15/0xb0
[  208.218523][    C1]  ? do_syscall_64+0xbe/0x3b0
[  208.218534][    C1]  do_syscall_64+0xfa/0x3b0
[  208.218543][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.218568][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  208.218578][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.218584][    C1] RIP: 0033:0x7f26e9b8eb69
[  208.218592][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.218597][    C1] RSP: 002b:00007f26e79f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.218603][    C1] RAX: ffffffffffffffda RBX: 00007f26e9db5fa0 RCX: 00007f26e9b8eb69
[  208.218608][    C1] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  208.218611][    C1] RBP: 00007f26e9c11df1 R08: 0000000000000000 R09: 0000000000000000
[  208.218615][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.218619][    C1] R13: 0000000000000000 R14: 00007f26e9db5fa0 R15: 00007ffd59b43ab8
[  208.218630][    C1]  </TASK>
[  213.285445][ T7706] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  213.286261][ T7706] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  213.286733][ T7706] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  213.290331][ T7706] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  213.291912][ T7706] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  234.667283][   T18] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 1-.... } 13144 jiffies s: 8729 root: 0x2/.
[  234.667328][   T18] rcu: blocking rcu_node structures (internal RCU debug):
[  234.667344][   T18] Sending NMI from CPU 0 to CPUs 1:
[  234.667403][    C1] NMI backtrace for cpu 1
[  234.667414][    C1] CPU: 1 UID: 0 PID: 7668 Comm: syz.2.799 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  234.667422][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  234.667426][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[  234.667440][    C1] Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 cc cc cc cc cc f3 0f 1e fa 89 f6 31 d2 e9 e2 d0 86 03 66
[  234.667446][    C1] RSP: 0018:ffffc900001e0738 EFLAGS: 00000046
[  234.667452][    C1] RAX: 000000000000019e RBX: ffff888136623900 RCX: 0000000000000838
[  234.667457][    C1] RDX: 0000000000000000 RSI: 000000000000019e RDI: 0000000000000838
[  234.667461][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff81aebece
[  234.667465][    C1] R10: 0000000000000003 R11: ffffffff81702490 R12: 00000000100006b5
[  234.667470][    C1] R13: dffffc0000000000 R14: 000000000000019e R15: 0000000000000020
[  234.667474][    C1] FS:  00007f26e79f66c0(0000) GS:ffff8881a3c1f000(0000) knlGS:0000000000000000
[  234.667479][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  234.667484][    C1] CR2: 0000200000034000 CR3: 000000011de7a000 CR4: 00000000000006f0
[  234.667510][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  234.667515][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  234.667519][    C1] Call Trace:
[  234.667523][    C1]  <IRQ>
[  234.667525][    C1]  lapic_next_event+0x11/0x20
[  234.667534][    C1]  clockevents_program_event+0x1cf/0x360
[  234.667547][    C1]  hrtimer_interrupt+0x620/0xaa0
[  234.667559][    C1]  __sysvec_apic_timer_interrupt+0x10b/0x410
[  234.667567][    C1]  sysvec_apic_timer_interrupt+0x52/0xc0
[  234.667577][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  234.667584][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xa8/0x110
[  234.667592][    C1] Code: 74 05 e8 9b 93 56 f6 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4f f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> e3 c1 1f f6 65 8b 05 bc f9 2e 07 85 c0 74 40 48 c7 04 24 0e 36
[  234.667597][    C1] RSP: 0018:ffffc900001e09a0 EFLAGS: 00000206
[  234.667603][    C1] RAX: 3173698023a93c00 RBX: 0000000000000a02 RCX: 3173698023a93c00
[  234.667607][    C1] RDX: 0000000000000002 RSI: ffffffff8d998701 RDI: 0000000000000001
[  234.667611][    C1] RBP: ffffc900001e0a30 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  234.667615][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  234.667620][    C1] R13: ffffc900001e0aa8 R14: ffff888107a3e100 R15: 1ffff9200003c134
[  234.667628][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  234.667636][    C1]  ? __irq_exit_rcu+0xd8/0x1f0
[  234.667644][    C1]  skb_queue_purge_reason+0x21c/0x360
[  234.667654][    C1]  ? irqentry_exit+0x74/0x90
[  234.667662][    C1]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  234.667672][    C1]  ? rcu_core+0xc34/0x1710
[  234.667679][    C1]  ? rcu_is_watching+0x15/0xb0
[  234.667686][    C1]  ? __pfx_netlink_sock_destruct+0x10/0x10
[  234.667693][    C1]  netlink_sock_destruct+0x2d/0x1a0
[  234.667700][    C1]  __sk_destruct+0x89/0x660
[  234.667707][    C1]  ? __pfx_deferred_put_nlk_sk+0x10/0x10
[  234.667714][    C1]  ? rcu_core+0xc34/0x1710
[  234.667720][    C1]  rcu_core+0xca8/0x1710
[  234.667729][    C1]  ? __pfx_rcu_core+0x10/0x10
[  234.667737][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  234.667743][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  234.667755][    C1]  handle_softirqs+0x286/0x870
[  234.667763][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  234.667770][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  234.667778][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  234.667788][    C1]  __irq_exit_rcu+0xca/0x1f0
[  234.667794][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  234.667803][    C1]  irq_exit_rcu+0x9/0x30
[  234.667809][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  234.667817][    C1]  </IRQ>
[  234.667819][    C1]  <TASK>
[  234.667822][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  234.667828][    C1] RIP: 0010:console_flush_all+0x7f7/0xc40
[  234.667837][    C1] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  234.667842][    C1] RSP: 0018:ffffc90002f0ed40 EFLAGS: 00000287
[  234.667847][    C1] RAX: 1ffffffff1d36927 RBX: ffffffff8e9b4938 RCX: 0000000000080000
[  234.667851][    C1] RDX: ffffc900087aa000 RSI: 0000000000003a7a RDI: 0000000000003a7b
[  234.667856][    C1] RBP: ffffc90002f0ee90 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  234.667860][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  234.667864][    C1] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8e9b48e0
[  234.667872][    C1]  ? console_flush_all+0x13a/0xc40
[  234.667882][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  234.667890][    C1]  ? trace_call_bpf+0xb7/0x850
[  234.667898][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  234.667908][    C1]  console_unlock+0xc4/0x270
[  234.667916][    C1]  ? __pfx_console_unlock+0x10/0x10
[  234.667924][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  234.667933][    C1]  vprintk_emit+0x5b7/0x7a0
[  234.667941][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  234.667948][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  234.667955][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  234.667965][    C1]  _printk+0xcf/0x120
[  234.667974][    C1]  ? __pfx____ratelimit+0x10/0x10
[  234.667982][    C1]  ? __pfx__printk+0x10/0x10
[  234.667997][    C1]  __nla_validate_parse+0x1719/0x2d40
[  234.668008][    C1]  ? __sock_sendmsg+0x21c/0x270
[  234.668016][    C1]  ? ____sys_sendmsg+0x505/0x830
[  234.668026][    C1]  ? __pfx___nla_validate_parse+0x10/0x10
[  234.668040][    C1]  __nla_parse+0x40/0x60
[  234.668050][    C1]  genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  234.668060][    C1]  genl_family_rcv_msg_doit+0xb8/0x300
[  234.668069][    C1]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  234.668078][    C1]  ? rcu_is_watching+0x15/0xb0
[  234.668085][    C1]  ? apparmor_capable+0x137/0x1b0
[  234.668092][    C1]  ? bpf_lsm_capable+0x9/0x20
[  234.668098][    C1]  ? security_capable+0x7e/0x2e0
[  234.668108][    C1]  genl_rcv_msg+0x60e/0x790
[  234.668117][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  234.668124][    C1]  ? ref_tracker_free+0x63a/0x7d0
[  234.668132][    C1]  ? __pfx_mptcp_pm_nl_set_limits_doit+0x10/0x10
[  234.668141][    C1]  ? __pfx_ref_tracker_free+0x10/0x10
[  234.668151][    C1]  netlink_rcv_skb+0x208/0x470
[  234.668157][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  234.668165][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  234.668174][    C1]  ? down_read+0x1ad/0x2e0
[  234.668184][    C1]  genl_rcv+0x28/0x40
[  234.668191][    C1]  netlink_unicast+0x75c/0x8e0
[  234.668202][    C1]  netlink_sendmsg+0x805/0xb30
[  234.668210][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  234.668217][    C1]  ? aa_sock_msg_perm+0x94/0x160
[  234.668225][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  234.668233][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  234.668240][    C1]  __sock_sendmsg+0x21c/0x270
[  234.668249][    C1]  ____sys_sendmsg+0x505/0x830
[  234.668258][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  234.668266][    C1]  ? import_iovec+0x74/0xa0
[  234.668273][    C1]  ___sys_sendmsg+0x21f/0x2a0
[  234.668280][    C1]  ? __pfx____sys_sendmsg+0x10/0x10
[  234.668293][    C1]  ? __fget_files+0x2a/0x420
[  234.668301][    C1]  ? __fget_files+0x3a0/0x420
[  234.668309][    C1]  __x64_sys_sendmsg+0x19b/0x260
[  234.668316][    C1]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  234.668325][    C1]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  234.668333][    C1]  ? rcu_is_watching+0x15/0xb0
[  234.668341][    C1]  ? do_syscall_64+0xbe/0x3b0
[  234.668350][    C1]  do_syscall_64+0xfa/0x3b0
[  234.668392][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.668400][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  234.668407][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.668414][    C1] RIP: 0033:0x7f26e9b8eb69
[  234.668421][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.668426][    C1] RSP: 002b:00007f26e79f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  234.668433][    C1] RAX: ffffffffffffffda RBX: 00007f26e9db5fa0 RCX: 00007f26e9b8eb69
[  234.668438][    C1] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  234.668442][    C1] RBP: 00007f26e9c11df1 R08: 0000000000000000 R09: 0000000000000000
[  234.668445][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  234.668449][    C1] R13: 0000000000000000 R14: 00007f26e9db5fa0 R15: 00007ffd59b43ab8
[  234.668456][    C1]  </TASK>
[  239.259742][ T7702] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  239.269489][ T7702] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  239.270232][ T7702] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  239.271136][ T7702] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  239.271718][ T7702] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  239.454771][ T5220] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  239.458424][ T5220] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  239.459243][ T5220] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  239.460143][ T5220] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  239.460725][ T5220] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  255.141652][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  255.141704][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  267.462391][ T7729] Bluetooth: hci4: command 0x0406 tx timeout
[  267.462456][ T7729] Bluetooth: hci3: command 0x0406 tx timeout
[  267.462484][ T7729] Bluetooth: hci5: command 0x0406 tx timeout
[  303.302315][ T7729] Bluetooth: hci6: command 0x0406 tx timeout
[  303.302359][ T7729] Bluetooth: hci7: command 0x0406 tx timeout
[  316.585525][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  316.585576][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  375.735750][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 266s! [syz.2.799:7668]
[  375.735762][    C1] Modules linked in:
[  375.735768][    C1] irq event stamp: 10266613
[  375.735770][    C1] hardirqs last  enabled at (10266612): [<ffffffff8b6e9424>] irqentry_exit+0x74/0x90
[  375.735785][    C1] hardirqs last disabled at (10266613): [<ffffffff8b6e7f6e>] sysvec_apic_timer_interrupt+0xe/0xc0
[  375.735795][    C1] softirqs last  enabled at (5460): [<ffffffff8185bd4a>] __irq_exit_rcu+0xca/0x1f0
[  375.735803][    C1] softirqs last disabled at (5553): [<ffffffff8185bd4a>] __irq_exit_rcu+0xca/0x1f0
[  375.735814][    C1] CPU: 1 UID: 0 PID: 7668 Comm: syz.2.799 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  375.735822][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  375.735826][    C1] RIP: 0010:free_large_kmalloc+0x111/0x200
[  375.735834][    C1] Code: a5 24 af ff 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00 02 00 00 0f 85 8c 00 00 00 41 f7 c7 00 02 00 00 74 01 fb 8b 43 30 <83> f8 ff 74 17 25 00 00 00 ff 3d 00 00 00 f8 0f 85 c3 00 00 00 c7
[  375.735840][    C1] RSP: 0018:ffffc900001e0958 EFLAGS: 00000206
[  375.735846][    C1] RAX: 00000000f8000000 RBX: ffffea0004772000 RCX: 3173698023a93c00
[  375.735850][    C1] RDX: 0000000000000002 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  375.735855][    C1] RBP: 0000000000000006 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  375.735859][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffff88811dcbfec2
[  375.735864][    C1] R13: 1ffff1100512ff19 R14: fffffffffffc0000 R15: 0000000000000287
[  375.735868][    C1] FS:  00007f26e79f66c0(0000) GS:ffff8881a3c1f000(0000) knlGS:0000000000000000
[  375.735873][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  375.735878][    C1] CR2: 0000200000034000 CR3: 000000011de7a000 CR4: 00000000000006f0
[  375.735903][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  375.735909][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  375.735913][    C1] Call Trace:
[  375.735916][    C1]  <IRQ>
[  375.735921][    C1]  skb_release_data+0x62d/0x7c0
[  375.735936][    C1]  sk_skb_reason_drop+0x127/0x170
[  375.735944][    C1]  skb_queue_purge_reason+0x2c8/0x360
[  375.735953][    C1]  ? irqentry_exit+0x74/0x90
[  375.735964][    C1]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  375.735977][    C1]  ? rcu_core+0xc34/0x1710
[  375.735989][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.736001][    C1]  ? __pfx_netlink_sock_destruct+0x10/0x10
[  375.736013][    C1]  netlink_sock_destruct+0x2d/0x1a0
[  375.736025][    C1]  __sk_destruct+0x89/0x660
[  375.736037][    C1]  ? __pfx_deferred_put_nlk_sk+0x10/0x10
[  375.736048][    C1]  ? rcu_core+0xc34/0x1710
[  375.736059][    C1]  rcu_core+0xca8/0x1710
[  375.736084][    C1]  ? __pfx_rcu_core+0x10/0x10
[  375.736104][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  375.736118][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  375.736149][    C1]  handle_softirqs+0x286/0x870
[  375.736167][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  375.736183][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  375.736193][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  375.736205][    C1]  __irq_exit_rcu+0xca/0x1f0
[  375.736213][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  375.736224][    C1]  irq_exit_rcu+0x9/0x30
[  375.736230][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  375.736238][    C1]  </IRQ>
[  375.736241][    C1]  <TASK>
[  375.736244][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  375.736251][    C1] RIP: 0010:console_flush_all+0x7f7/0xc40
[  375.736260][    C1] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  375.736265][    C1] RSP: 0018:ffffc90002f0ed40 EFLAGS: 00000287
[  375.736271][    C1] RAX: 1ffffffff1d36927 RBX: ffffffff8e9b4938 RCX: 0000000000080000
[  375.736275][    C1] RDX: ffffc900087aa000 RSI: 0000000000003a7a RDI: 0000000000003a7b
[  375.736279][    C1] RBP: ffffc90002f0ee90 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  375.736284][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  375.736288][    C1] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8e9b48e0
[  375.736301][    C1]  ? console_flush_all+0x13a/0xc40
[  375.736313][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  375.736322][    C1]  ? trace_call_bpf+0xb7/0x850
[  375.736332][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  375.736343][    C1]  console_unlock+0xc4/0x270
[  375.736386][    C1]  ? __pfx_console_unlock+0x10/0x10
[  375.736397][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  375.736409][    C1]  vprintk_emit+0x5b7/0x7a0
[  375.736418][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  375.736425][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  375.736433][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  375.736448][    C1]  _printk+0xcf/0x120
[  375.736458][    C1]  ? __pfx____ratelimit+0x10/0x10
[  375.736467][    C1]  ? __pfx__printk+0x10/0x10
[  375.736481][    C1]  __nla_validate_parse+0x1719/0x2d40
[  375.736491][    C1]  ? __sock_sendmsg+0x21c/0x270
[  375.736499][    C1]  ? ____sys_sendmsg+0x505/0x830
[  375.736513][    C1]  ? __pfx___nla_validate_parse+0x10/0x10
[  375.736534][    C1]  __nla_parse+0x40/0x60
[  375.736546][    C1]  genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  375.736558][    C1]  genl_family_rcv_msg_doit+0xb8/0x300
[  375.736569][    C1]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  375.736579][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.736588][    C1]  ? apparmor_capable+0x137/0x1b0
[  375.736595][    C1]  ? bpf_lsm_capable+0x9/0x20
[  375.736604][    C1]  ? security_capable+0x7e/0x2e0
[  375.736622][    C1]  genl_rcv_msg+0x60e/0x790
[  375.736639][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.736651][    C1]  ? ref_tracker_free+0x63a/0x7d0
[  375.736665][    C1]  ? __pfx_mptcp_pm_nl_set_limits_doit+0x10/0x10
[  375.736682][    C1]  ? __pfx_ref_tracker_free+0x10/0x10
[  375.736706][    C1]  netlink_rcv_skb+0x208/0x470
[  375.736719][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.736734][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  375.736763][    C1]  ? down_read+0x1ad/0x2e0
[  375.736775][    C1]  genl_rcv+0x28/0x40
[  375.736783][    C1]  netlink_unicast+0x75c/0x8e0
[  375.736797][    C1]  netlink_sendmsg+0x805/0xb30
[  375.736808][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.736816][    C1]  ? aa_sock_msg_perm+0x94/0x160
[  375.736826][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  375.736834][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.736841][    C1]  __sock_sendmsg+0x21c/0x270
[  375.736852][    C1]  ____sys_sendmsg+0x505/0x830
[  375.736862][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  375.736874][    C1]  ? import_iovec+0x74/0xa0
[  375.736882][    C1]  ___sys_sendmsg+0x21f/0x2a0
[  375.736891][    C1]  ? __pfx____sys_sendmsg+0x10/0x10
[  375.736913][    C1]  ? __fget_files+0x2a/0x420
[  375.736920][    C1]  ? __fget_files+0x3a0/0x420
[  375.736932][    C1]  __x64_sys_sendmsg+0x19b/0x260
[  375.736938][    C1]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  375.736947][    C1]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  375.736959][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.736969][    C1]  ? do_syscall_64+0xbe/0x3b0
[  375.736980][    C1]  do_syscall_64+0xfa/0x3b0
[  375.736988][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.736996][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  375.737005][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.737011][    C1] RIP: 0033:0x7f26e9b8eb69
[  375.737019][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.737023][    C1] RSP: 002b:00007f26e79f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  375.737030][    C1] RAX: ffffffffffffffda RBX: 00007f26e9db5fa0 RCX: 00007f26e9b8eb69
[  375.737035][    C1] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  375.737039][    C1] RBP: 00007f26e9c11df1 R08: 0000000000000000 R09: 0000000000000000
[  375.737042][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  375.737046][    C1] R13: 0000000000000000 R14: 00007f26e9db5fa0 R15: 00007ffd59b43ab8
[  375.737057][    C1]  </TASK>
[  375.737060][    C1] Sending NMI from CPU 1 to CPUs 0:
[  375.737118][    C0] NMI backtrace for cpu 0
[  375.737132][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  375.737145][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  375.737150][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  375.737168][    C0] Code: d3 de 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d d3 ad 19 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  375.737176][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 00000282
[  375.737187][    C0] RAX: 3fcaa7b65dd08000 RBX: ffffffff81975f18 RCX: 3fcaa7b65dd08000
[  375.737195][    C0] RDX: 0000000000000001 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  375.737203][    C0] RBP: ffffffff8de07ea8 R08: ffff88804b032f9b R09: 1ffff110096065f3
[  375.737209][    C0] R10: dffffc0000000000 R11: ffffed10096065f4 R12: ffffffff8fa1e8f0
[  375.737218][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a50
[  375.737224][    C0] FS:  0000000000000000(0000) GS:ffff8880b861f000(0000) knlGS:0000000000000000
[  375.737234][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  375.737240][    C0] CR2: 00007f7d9272a050 CR3: 0000000109154000 CR4: 00000000000006f0
[  375.737273][    C0] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000
[  375.737281][    C0] DR3: 0000200000000300 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  375.737288][    C0] Call Trace:
[  375.737293][    C0]  <TASK>
[  375.737297][    C0]  default_idle+0x13/0x20
[  375.737312][    C0]  default_idle_call+0x74/0xb0
[  375.737328][    C0]  do_idle+0x1e8/0x510
[  375.737342][    C0]  ? __pfx_do_idle+0x10/0x10
[  375.737396][    C0]  cpu_startup_entry+0x44/0x60
[  375.737408][    C0]  rest_init+0x2de/0x300
[  375.737419][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  375.737430][    C0]  start_kernel+0x47d/0x500
[  375.737445][    C0]  x86_64_start_reservations+0x24/0x30
[  375.737462][    C0]  x86_64_start_kernel+0x143/0x1c0
[  375.737477][    C0]  common_startup_64+0x13e/0x147
[  375.737497][    C0]  </TASK>
[  375.738090][    C1] Kernel panic - not syncing: softlockup: hung tasks
[  375.738098][    C1] CPU: 1 UID: 0 PID: 7668 Comm: syz.2.799 Tainted: G             L      6.16.0-rc6-syzkaller-00434-gcd7c97f4584a-dirty #0 PREEMPT(full) 
[  375.738108][    C1] Tainted: [L]=SOFTLOCKUP
[  375.738111][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  375.738114][    C1] Call Trace:
[  375.738118][    C1]  <IRQ>
[  375.738122][    C1]  dump_stack_lvl+0x99/0x250
[  375.738132][    C1]  ? __asan_memcpy+0x40/0x70
[  375.738142][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  375.738150][    C1]  ? __pfx__printk+0x10/0x10
[  375.738165][    C1]  panic+0x2db/0x790
[  375.738175][    C1]  ? __pfx_panic+0x10/0x10
[  375.738183][    C1]  ? nmi_backtrace_stall_check+0x433/0x440
[  375.738199][    C1]  watchdog_timer_fn+0x862/0x870
[  375.738209][    C1]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  375.738217][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  375.738225][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  375.738235][    C1]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  375.738242][    C1]  ? __pfx_watchdog_timer_fn+0x10/0x10
[  375.738249][    C1]  __hrtimer_run_queues+0x4e0/0xc60
[  375.738274][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  375.738284][    C1]  ? ktime_get_update_offsets_now+0x3ab/0x3d0
[  375.738308][    C1]  hrtimer_interrupt+0x45b/0xaa0
[  375.738345][    C1]  __sysvec_apic_timer_interrupt+0x10b/0x410
[  375.738389][    C1]  sysvec_apic_timer_interrupt+0x52/0xc0
[  375.738404][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  375.738418][    C1] RIP: 0010:free_large_kmalloc+0x111/0x200
[  375.738429][    C1] Code: a5 24 af ff 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00 02 00 00 0f 85 8c 00 00 00 41 f7 c7 00 02 00 00 74 01 fb 8b 43 30 <83> f8 ff 74 17 25 00 00 00 ff 3d 00 00 00 f8 0f 85 c3 00 00 00 c7
[  375.738435][    C1] RSP: 0018:ffffc900001e0958 EFLAGS: 00000206
[  375.738442][    C1] RAX: 00000000f8000000 RBX: ffffea0004772000 RCX: 3173698023a93c00
[  375.738447][    C1] RDX: 0000000000000002 RSI: ffffffff8d998701 RDI: ffffffff8be29f80
[  375.738452][    C1] RBP: 0000000000000006 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  375.738457][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: ffff88811dcbfec2
[  375.738461][    C1] R13: 1ffff1100512ff19 R14: fffffffffffc0000 R15: 0000000000000287
[  375.738476][    C1]  skb_release_data+0x62d/0x7c0
[  375.738488][    C1]  sk_skb_reason_drop+0x127/0x170
[  375.738497][    C1]  skb_queue_purge_reason+0x2c8/0x360
[  375.738507][    C1]  ? irqentry_exit+0x74/0x90
[  375.738517][    C1]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  375.738531][    C1]  ? rcu_core+0xc34/0x1710
[  375.738540][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.738547][    C1]  ? __pfx_netlink_sock_destruct+0x10/0x10
[  375.738555][    C1]  netlink_sock_destruct+0x2d/0x1a0
[  375.738562][    C1]  __sk_destruct+0x89/0x660
[  375.738570][    C1]  ? __pfx_deferred_put_nlk_sk+0x10/0x10
[  375.738577][    C1]  ? rcu_core+0xc34/0x1710
[  375.738584][    C1]  rcu_core+0xca8/0x1710
[  375.738598][    C1]  ? __pfx_rcu_core+0x10/0x10
[  375.738609][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  375.738617][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  375.738634][    C1]  handle_softirqs+0x286/0x870
[  375.738644][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  375.738654][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  375.738664][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  375.738676][    C1]  __irq_exit_rcu+0xca/0x1f0
[  375.738684][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  375.738696][    C1]  irq_exit_rcu+0x9/0x30
[  375.738703][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  375.738711][    C1]  </IRQ>
[  375.738713][    C1]  <TASK>
[  375.738717][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  375.738724][    C1] RIP: 0010:console_flush_all+0x7f7/0xc40
[  375.738733][    C1] Code: 48 21 c3 0f 85 e9 01 00 00 e8 75 e7 1e 00 48 8b 5c 24 20 4d 85 f6 75 07 e8 66 e7 1e 00 eb 06 e8 5f e7 1e 00 fb 48 8b 44 24 28 <42> 80 3c 20 00 74 08 48 89 df e8 ea 0a 82 00 48 8b 1b 48 8b 44 24
[  375.738738][    C1] RSP: 0018:ffffc90002f0ed40 EFLAGS: 00000287
[  375.738748][    C1] RAX: 1ffffffff1d36927 RBX: ffffffff8e9b4938 RCX: 0000000000080000
[  375.738753][    C1] RDX: ffffc900087aa000 RSI: 0000000000003a7a RDI: 0000000000003a7b
[  375.738758][    C1] RBP: ffffc90002f0ee90 R08: ffffffff8fa1e8f7 R09: 1ffffffff1f43d1e
[  375.738763][    C1] R10: dffffc0000000000 R11: fffffbfff1f43d1f R12: dffffc0000000000
[  375.738767][    C1] R13: 0000000000000001 R14: 0000000000000200 R15: ffffffff8e9b48e0
[  375.738781][    C1]  ? console_flush_all+0x13a/0xc40
[  375.738792][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  375.738802][    C1]  ? trace_call_bpf+0xb7/0x850
[  375.738812][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  375.738824][    C1]  console_unlock+0xc4/0x270
[  375.738833][    C1]  ? __pfx_console_unlock+0x10/0x10
[  375.738843][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  375.738855][    C1]  vprintk_emit+0x5b7/0x7a0
[  375.738864][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  375.738872][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  375.738880][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  375.738895][    C1]  _printk+0xcf/0x120
[  375.738904][    C1]  ? __pfx____ratelimit+0x10/0x10
[  375.738919][    C1]  ? __pfx__printk+0x10/0x10
[  375.738943][    C1]  __nla_validate_parse+0x1719/0x2d40
[  375.738959][    C1]  ? __sock_sendmsg+0x21c/0x270
[  375.738973][    C1]  ? ____sys_sendmsg+0x505/0x830
[  375.738999][    C1]  ? __pfx___nla_validate_parse+0x10/0x10
[  375.739040][    C1]  __nla_parse+0x40/0x60
[  375.739062][    C1]  genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  375.739077][    C1]  genl_family_rcv_msg_doit+0xb8/0x300
[  375.739088][    C1]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  375.739099][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.739107][    C1]  ? apparmor_capable+0x137/0x1b0
[  375.739115][    C1]  ? bpf_lsm_capable+0x9/0x20
[  375.739122][    C1]  ? security_capable+0x7e/0x2e0
[  375.739133][    C1]  genl_rcv_msg+0x60e/0x790
[  375.739145][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.739152][    C1]  ? ref_tracker_free+0x63a/0x7d0
[  375.739162][    C1]  ? __pfx_mptcp_pm_nl_set_limits_doit+0x10/0x10
[  375.739172][    C1]  ? __pfx_ref_tracker_free+0x10/0x10
[  375.739186][    C1]  netlink_rcv_skb+0x208/0x470
[  375.739193][    C1]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.739203][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  375.739216][    C1]  ? down_read+0x1ad/0x2e0
[  375.739227][    C1]  genl_rcv+0x28/0x40
[  375.739235][    C1]  netlink_unicast+0x75c/0x8e0
[  375.739249][    C1]  netlink_sendmsg+0x805/0xb30
[  375.739260][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.739268][    C1]  ? aa_sock_msg_perm+0x94/0x160
[  375.739278][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  375.739287][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.739294][    C1]  __sock_sendmsg+0x21c/0x270
[  375.739305][    C1]  ____sys_sendmsg+0x505/0x830
[  375.739315][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[  375.739327][    C1]  ? import_iovec+0x74/0xa0
[  375.739336][    C1]  ___sys_sendmsg+0x21f/0x2a0
[  375.739345][    C1]  ? __pfx____sys_sendmsg+0x10/0x10
[  375.739390][    C1]  ? __fget_files+0x2a/0x420
[  375.739398][    C1]  ? __fget_files+0x3a0/0x420
[  375.739411][    C1]  __x64_sys_sendmsg+0x19b/0x260
[  375.739418][    C1]  ? perf_trace_run_bpf_submit+0xf9/0x170
[  375.739428][    C1]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  375.739440][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.739450][    C1]  ? do_syscall_64+0xbe/0x3b0
[  375.739460][    C1]  do_syscall_64+0xfa/0x3b0
[  375.739470][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.739476][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  375.739485][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.739492][    C1] RIP: 0033:0x7f26e9b8eb69
[  375.739498][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.739503][    C1] RSP: 002b:00007f26e79f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  375.739511][    C1] RAX: ffffffffffffffda RBX: 00007f26e9db5fa0 RCX: 00007f26e9b8eb69
[  375.739515][    C1] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 000000000000000b
[  375.739520][    C1] RBP: 00007f26e9c11df1 R08: 0000000000000000 R09: 0000000000000000
[  375.739524][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  375.739528][    C1] R13: 0000000000000000 R14: 00007f26e9db5fa0 R15: 00007ffd59b43ab8
[  375.739539][    C1]  </TASK>
[  375.740295][    C1] Kernel Offset: disabled

VM DIAGNOSIS:
02:04:26  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff81680ea6 RBX=0000000000000000 RCX=ffffffff8de95280 RDX=0000000000010000
RSI=0000000000000008 RDI=ffffffff92a52460 RBP=ffffc90000007fe0 RSP=ffffc90000007f60
R8 =ffffffff92a52467 R9 =1ffffffff254a48c R10=dffffc0000000000 R11=fffffbfff254a48d
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff81680ea7 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f7d9272a050 CR3=0000000109154000 CR4=000006f0
DR0=0000200000000300 DR1=0000000000000000 DR2=0000000000000000 DR3=0000200000000300 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000001 XMM01=0000000000000000 00007fa337d87d20
XMM02=0000000500000007 0301be0200000001 XMM03=d8f80360020001d8 f6035c020001d8f4
XMM04=0000000000000000 000000000000000e XMM05=0000000000000000 000000000003bf12
XMM06=fe000800029ac803 0008000200000007 XMM07=0800029a00000000 00029ab003408008
XMM08=00029aa8037a0800 029aa00300000006 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002f RBX=000000000000002f RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900001dff90
R8 =ffff888021ab8237 R9 =1ffff11004357046 R10=dffffc0000000000 R11=ffffffff85471fa0
R12=dffffc0000000000 R13=ffffffff99af58e8 R14=ffffffff99dfa1e0 R15=0000000000000000
RIP=ffffffff8547201c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f26e79f66c0 ffffffff 00c00000
GS =0000 ffff8881a3c1f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000034000 CR3=000000011de7a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffffffffff00 ffffffffffffffff
XMM02=ffffffffffffffff ffffffffffffff00 XMM03=ffffffffffffff00 ffffffffffffff00
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 00007f470fe12f89
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
