program:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000380)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf670000000000001507"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r2, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000680)=r0}, 0x20)
sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x4003e80, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x4, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x24, 0x12506, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x7602}, 0x0, 0xffffffffffffffff, r4, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

[   84.799685][ T4667] Bluetooth: hci0: command tx timeout
[   84.908150][    C0] hrtimer: interrupt took 59461 ns
[   86.704180][   T10] cfg80211: failed to load regulatory.db
[   86.851697][   T46] Bluetooth: hci0: command tx timeout
[   87.068870][ T5325] ------------[ cut here ]------------
[   87.072389][ T5325] WARNING: CPU: 0 PID: 5325 at kernel/events/core.c:7211 perf_pending_task+0x319/0x400
[   87.077035][ T5325] Modules linked in:
[   87.078644][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[   87.084011][ T5325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.089946][ T5325] RIP: 0010:perf_pending_task+0x319/0x400
[   87.092339][ T5325] Code: 85 8f 00 00 00 41 fe 4d 00 eb 05 e8 21 4f cd ff 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 8e 84 76 09 cc e8 08 4f cd ff 90 <0f> 0b 90 41 80 3c 1c 00 0f 85 02 ff ff ff e9 05 ff ff ff 44 89 e1
[   87.100953][ T5325] RSP: 0018:ffffc9000d4779d0 EFLAGS: 00010293
[   87.103717][ T5325] RAX: ffffffff81f2fe18 RBX: dffffc0000000000 RCX: ffff8880003e8000
[   87.107121][ T5325] RDX: 0000000000000000 RSI: 0000000074982edc RDI: 0000000000000000
[   87.110749][ T5325] RBP: 0000000074982edc R08: ffffffff8fa10bf7 R09: 1ffffffff1f4217e
[   87.114052][ T5325] R10: dffffc0000000000 R11: ffffffff81f2fb00 R12: 1ffff110035f99d7
[   87.117419][ T5325] R13: ffff8880003e8000 R14: ffff88801afcd118 R15: ffff88801afcceb8
[   87.121092][ T5325] FS:  0000000000000000(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[   87.124972][ T5325] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   87.127791][ T5325] CR2: 0000000100000000 CR3: 00000000513bd000 CR4: 0000000000352ef0
[   87.131415][ T5325] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   87.136520][ T5325] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   87.139700][ T5325] Call Trace:
[   87.141166][ T5325]  <TASK>
[   87.142461][ T5325]  task_work_run+0x1d1/0x260
[   87.144632][ T5325]  ? __pfx_task_work_run+0x10/0x10
[   87.146949][ T5325]  do_exit+0x6b5/0x22e0
[   87.148824][ T5325]  ? __pfx_do_exit+0x10/0x10
[   87.151102][ T5325]  ? proc_coredump_connector+0x172/0x4b0
[   87.153623][ T5325]  ? __pfx_proc_coredump_connector+0x10/0x10
[   87.156236][ T5325]  do_group_exit+0x21c/0x2d0
[   87.158345][ T5325]  ? lockdep_hardirqs_on+0x9c/0x150
[   87.160972][ T5325]  get_signal+0x1286/0x1340
[   87.163013][ T5325]  arch_do_signal_or_restart+0x9a/0x750
[   87.165438][ T5325]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[   87.168023][ T5325]  ? perf_pending_task+0x2da/0x400
[   87.170593][ T5325]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   87.173200][ T5325]  ? exit_to_user_mode_loop+0x40/0x110
[   87.175730][ T5325]  exit_to_user_mode_loop+0x75/0x110
[   87.178129][ T5325]  do_syscall_64+0x2bd/0x3b0
[   87.180168][ T5325]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.182695][ T5325]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   87.185276][ T5325]  ? clear_bhb_loop+0x60/0xb0
[   87.187064][ T5325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.189373][ T5325] RIP: 0033:0x7f615098e929
[   87.191280][ T5325] Code: Unable to access opcode bytes at 0x7f615098e8ff.
[   87.194055][ T5325] RSP: 002b:00007f614cdf50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   87.197206][ T5325] RAX: 0000000000000001 RBX: 00007f6150bb5fa8 RCX: 00007f615098e929
[   87.200735][ T5325] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6150bb5fac
[   87.204566][ T5325] RBP: 00007f6150bb5fa0 R08: 7fffffffffffffff R09: 0000000000000000
[   87.208136][ T5325] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f6150bb5fac
[   87.211749][ T5325] R13: 0000000000000000 R14: 00007ffd8029fdb0 R15: 00007ffd8029fe98
[   87.215211][ T5325]  </TASK>
[   87.216560][ T5325] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   87.219857][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) 
[   87.225232][ T5325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.229979][ T5325] Call Trace:
[   87.231841][ T5325]  <TASK>
[   87.233361][ T5325]  dump_stack_lvl+0x99/0x250
[   87.235730][ T5325]  ? __asan_memcpy+0x40/0x70
[   87.238069][ T5325]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.240782][ T5325]  ? __pfx__printk+0x10/0x10
[   87.243703][ T5325]  panic+0x2db/0x790
[   87.245882][ T5325]  ? __pfx_panic+0x10/0x10
[   87.247898][ T5325]  __warn+0x31b/0x4b0
[   87.249701][ T5325]  ? perf_pending_task+0x319/0x400
[   87.251913][ T5325]  ? perf_pending_task+0x319/0x400
[   87.254060][ T5325]  report_bug+0x2be/0x4f0
[   87.255987][ T5325]  ? perf_pending_task+0x319/0x400
[   87.258275][ T5325]  ? perf_pending_task+0x319/0x400
[   87.260614][ T5325]  ? perf_pending_task+0x31b/0x400
[   87.262857][ T5325]  handle_bug+0x84/0x160
[   87.264731][ T5325]  exc_invalid_op+0x1a/0x50
[   87.266811][ T5325]  asm_exc_invalid_op+0x1a/0x20
[   87.269016][ T5325] RIP: 0010:perf_pending_task+0x319/0x400
[   87.271645][ T5325] Code: 85 8f 00 00 00 41 fe 4d 00 eb 05 e8 21 4f cd ff 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 8e 84 76 09 cc e8 08 4f cd ff 90 <0f> 0b 90 41 80 3c 1c 00 0f 85 02 ff ff ff e9 05 ff ff ff 44 89 e1
[   87.279952][ T5325] RSP: 0018:ffffc9000d4779d0 EFLAGS: 00010293
[   87.282585][ T5325] RAX: ffffffff81f2fe18 RBX: dffffc0000000000 RCX: ffff8880003e8000
[   87.286225][ T5325] RDX: 0000000000000000 RSI: 0000000074982edc RDI: 0000000000000000
[   87.289676][ T5325] RBP: 0000000074982edc R08: ffffffff8fa10bf7 R09: 1ffffffff1f4217e
[   87.293090][ T5325] R10: dffffc0000000000 R11: ffffffff81f2fb00 R12: 1ffff110035f99d7
[   87.296567][ T5325] R13: ffff8880003e8000 R14: ffff88801afcd118 R15: ffff88801afcceb8
[   87.299978][ T5325]  ? __pfx_perf_pending_task+0x10/0x10
[   87.302499][ T5325]  ? perf_pending_task+0x318/0x400
[   87.304824][ T5325]  task_work_run+0x1d1/0x260
[   87.306693][ T5325]  ? __pfx_task_work_run+0x10/0x10
[   87.308838][ T5325]  do_exit+0x6b5/0x22e0
[   87.310579][ T5325]  ? __pfx_do_exit+0x10/0x10
[   87.312521][ T5325]  ? proc_coredump_connector+0x172/0x4b0
[   87.314537][ T5325]  ? __pfx_proc_coredump_connector+0x10/0x10
[   87.316922][ T5325]  do_group_exit+0x21c/0x2d0
[   87.318823][ T5325]  ? lockdep_hardirqs_on+0x9c/0x150
[   87.321024][ T5325]  get_signal+0x1286/0x1340
[   87.323250][ T5325]  arch_do_signal_or_restart+0x9a/0x750
[   87.325718][ T5325]  ? __rseq_handle_notify_resume+0x37e/0x11f0
[   87.328439][ T5325]  ? perf_pending_task+0x2da/0x400
[   87.330753][ T5325]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   87.333605][ T5325]  ? exit_to_user_mode_loop+0x40/0x110
[   87.336064][ T5325]  exit_to_user_mode_loop+0x75/0x110
[   87.338558][ T5325]  do_syscall_64+0x2bd/0x3b0
[   87.340547][ T5325]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.343233][ T5325]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   87.346030][ T5325]  ? clear_bhb_loop+0x60/0xb0
[   87.348156][ T5325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.350715][ T5325] RIP: 0033:0x7f615098e929
[   87.352596][ T5325] Code: Unable to access opcode bytes at 0x7f615098e8ff.
[   87.355407][ T5325] RSP: 002b:00007f614cdf50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   87.359054][ T5325] RAX: 0000000000000001 RBX: 00007f6150bb5fa8 RCX: 00007f615098e929
[   87.362289][ T5325] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6150bb5fac
[   87.365671][ T5325] RBP: 00007f6150bb5fa0 R08: 7fffffffffffffff R09: 0000000000000000
[   87.369109][ T5325] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f6150bb5fac
[   87.372386][ T5325] R13: 0000000000000000 R14: 00007ffd8029fdb0 R15: 00007ffd8029fe98
[   87.375723][ T5325]  </TASK>
[   87.377433][ T5325] Kernel Offset: disabled
[   87.379350][ T5325] Rebooting in 86400 seconds..