Warning: Permanently added '10.128.1.132' (ED25519) to the list of known hosts.
2024/05/13 06:04:16 fuzzer started
2024/05/13 06:04:16 dialing manager at 10.128.0.163:30001
[   31.085999][   T23] audit: type=1400 audit(1715580256.240:66): avc:  denied  { node_bind } for  pid=348 comm="syz-fuzzer" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   31.108675][   T23] audit: type=1400 audit(1715580256.260:67): avc:  denied  { name_bind } for  pid=348 comm="syz-fuzzer" src=6060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   31.179578][   T23] audit: type=1400 audit(1715580256.330:68): avc:  denied  { mounton } for  pid=358 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   31.183471][  T358] cgroup1: Unknown subsys name 'net'
[   31.202214][   T23] audit: type=1400 audit(1715580256.330:69): avc:  denied  { mount } for  pid=358 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   31.208094][  T358] cgroup1: Unknown subsys name 'net_prio'
[   31.235145][  T358] cgroup1: Unknown subsys name 'devices'
[   31.242714][   T23] audit: type=1400 audit(1715580256.390:70): avc:  denied  { unmount } for  pid=358 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   31.419258][  T358] cgroup1: Unknown subsys name 'hugetlb'
[   31.425387][  T358] cgroup1: Unknown subsys name 'rlimit'
[   31.590490][   T23] audit: type=1400 audit(1715580256.740:71): avc:  denied  { mounton } for  pid=358 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   31.615318][   T23] audit: type=1400 audit(1715580256.740:72): avc:  denied  { mount } for  pid=358 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   31.638340][   T23] audit: type=1400 audit(1715580256.740:73): avc:  denied  { setattr } for  pid=358 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=9263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   31.655404][  T360] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   31.670643][   T23] audit: type=1400 audit(1715580256.820:74): avc:  denied  { relabelto } for  pid=360 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   31.696047][   T23] audit: type=1400 audit(1715580256.820:75): avc:  denied  { write } for  pid=360 comm="mkswap" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2024/05/13 06:04:16 code coverage: enabled
2024/05/13 06:04:16 comparison tracing: enabled
2024/05/13 06:04:16 extra coverage: enabled
2024/05/13 06:04:16 delay kcov mmap: mmap returned an invalid pointer
2024/05/13 06:04:16 setuid sandbox: enabled
2024/05/13 06:04:16 namespace sandbox: enabled
2024/05/13 06:04:16 Android sandbox: enabled
2024/05/13 06:04:16 fault injection: enabled
2024/05/13 06:04:16 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2024/05/13 06:04:16 net packet injection: enabled
2024/05/13 06:04:16 net device setup: enabled
2024/05/13 06:04:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2024/05/13 06:04:16 devlink PCI setup: PCI device 0000:00:10.0 is not available
2024/05/13 06:04:16 NIC VF setup: PCI device 0000:00:11.0 is not available
2024/05/13 06:04:16 USB emulation: enabled
2024/05/13 06:04:16 hci packet injection: /dev/vhci does not exist
2024/05/13 06:04:16 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
2024/05/13 06:04:16 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
2024/05/13 06:04:16 swap file: enabled
2024/05/13 06:04:16 starting 5 executor processes
[   31.805683][  T358] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   32.769626][  T371] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.776687][  T371] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.784788][  T371] device bridge_slave_0 entered promiscuous mode
[   32.792504][  T371] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.799364][  T371] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.807692][  T371] device bridge_slave_1 entered promiscuous mode
[   32.826208][  T373] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.833451][  T373] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.841370][  T373] device bridge_slave_0 entered promiscuous mode
[   32.864295][  T373] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.871183][  T373] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.879442][  T373] device bridge_slave_1 entered promiscuous mode
[   33.039148][  T372] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.046063][  T372] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.054114][  T372] device bridge_slave_0 entered promiscuous mode
[   33.070142][  T372] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.077063][  T372] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.085045][  T372] device bridge_slave_1 entered promiscuous mode
[   33.257083][  T374] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.264392][  T374] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.272318][  T374] device bridge_slave_0 entered promiscuous mode
[   33.309462][  T374] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.316368][  T374] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.324563][  T374] device bridge_slave_1 entered promiscuous mode
[   33.384686][  T375] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.391560][  T375] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.399885][  T375] device bridge_slave_0 entered promiscuous mode
[   33.436306][  T375] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.443705][  T375] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.451723][  T375] device bridge_slave_1 entered promiscuous mode
[   33.611710][  T371] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.618612][  T371] bridge0: port 2(bridge_slave_1) entered forwarding state
[   33.625912][  T371] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.632795][  T371] bridge0: port 1(bridge_slave_0) entered forwarding state
[   33.719025][  T373] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.726035][  T373] bridge0: port 2(bridge_slave_1) entered forwarding state
[   33.733362][  T373] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.740243][  T373] bridge0: port 1(bridge_slave_0) entered forwarding state
[   33.782044][  T378] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.789567][  T378] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.796843][  T378] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.804072][  T378] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.975006][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   33.983569][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.009614][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   34.018024][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.053003][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   34.061637][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   34.070140][  T108] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.077174][  T108] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.109143][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   34.117867][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   34.126495][  T376] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.133379][  T376] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.140704][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   34.149382][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   34.157746][  T376] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.164643][  T376] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.171979][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   34.180653][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   34.189181][  T376] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.196060][  T376] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.248415][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   34.257079][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.273177][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   34.281746][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.290430][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   34.298796][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.314914][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   34.322948][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.347010][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   34.355611][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.368214][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   34.377468][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   34.386129][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.392999][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.400545][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   34.408283][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   34.428803][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   34.436973][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   34.445908][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   34.454420][  T378] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.461278][  T378] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.469240][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   34.477470][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.485883][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   34.494447][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   34.503050][  T378] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.509904][  T378] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.517392][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   34.525971][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   34.534748][  T378] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.541591][  T378] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.549436][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   34.576464][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   34.585192][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   34.594608][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   34.603636][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   34.611852][  T376] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.618737][  T376] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.626130][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   34.656994][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   34.665946][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   34.675003][  T376] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.681862][  T376] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.718469][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.726722][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   34.736009][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   34.755047][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   34.764144][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.773501][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   34.781677][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.790444][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.812769][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   34.821243][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   34.830074][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   34.838661][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   34.866839][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   34.875930][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   34.884589][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   34.892858][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   34.944657][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   34.953514][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   34.961823][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   34.970638][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   35.002579][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   35.011272][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.020838][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   35.029283][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   35.063406][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   35.072038][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   35.081428][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   35.090518][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   35.099477][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   35.108309][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   35.116912][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   35.125870][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   35.142541][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   35.150944][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   35.188841][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   35.197317][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000240)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0xb6}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='ext4_journal_start\x00', r2}, 0x10)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)

[   35.232857][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   35.243557][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.252001][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   35.262100][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   35.271079][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
executing program 2:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0xc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40286608, &(0x7f0000000180))

[   35.286607][  T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   35.319134][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   35.328841][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
executing program 3:
socketpair(0x0, 0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040)}, 0x38)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x100003}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\\\x00\x00 \x00'})

[   35.368912][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   35.379968][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.389910][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   35.399224][  T376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='io.stat\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r0, 0x8b19, &(0x7f0000000000)={'wlan1\x00', @random="0200002000"})

[   35.429752][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   35.443576][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   35.462393][    C1] hrtimer: interrupt took 27010 ns
[   35.476311][  T402] EXT4-fs warning (device sda1): verify_group_input:147: Cannot add at group 0 (only 8 groups)
[   35.522715][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   35.531337][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.542094][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   35.551769][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   35.579943][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   35.589829][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   35.599384][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   35.607962][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program 0:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200000002000000000000000000008500000027000000850000002a0000009500f9ff000000001644ac29eb3946cfc7968102c7dc48c4a4fbacec981fda152b211e2853579a66e749e3368079af8ecb3664"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x0}, 0x90)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000a80)={r0, 0x20, &(0x7f0000000a40)={0x0, 0x0, 0x0, &(0x7f0000000a00)=""/6, 0x6}}, 0x10)

executing program 4:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00'})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xf101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="0004f678ec630000000066"], 0xd)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x8202)
close(r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x60, 0x60, 0x2, [@enum={0x0, 0x200002d5, 0x0, 0x6, 0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, @union]}}, 0x0, 0x7a}, 0x20)
close(r0)

executing program 1:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280), 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r0, @ANYBLOB="0000000002000000630002040000000095"], &(0x7f0000000d40)='syzkaller\x00'}, 0x90)

executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x99, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0x40086607, 0x20001417)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc080661a, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

executing program 3:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000980)='pids.events\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000100)={{}, 0x0, 0x0}, 0x20)
bpf$ITER_CREATE(0x21, &(0x7f0000000480), 0x8)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r2, &(0x7f0000000100)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001f80)={0x18, 0x0, 0x0, &(0x7f0000001200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001e80)={0x0, 0x2}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000001ec0)=[r2], &(0x7f0000001f00)=[{0x4, 0x0, 0xe, 0x7}, {}]}, 0x90)

executing program 0:
gettid()
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x37, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x2}})

executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200), 0x43400)
perf_event_open(&(0x7f0000001080)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001080)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10)
bpf$ITER_CREATE(0x8, 0x0, 0x2)

executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0x1}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x6, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000020000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000580)={r1, 0x0, 0x0}, 0x10)

executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x8, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000800000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xca}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0xe)

[   36.016637][  T410] device syzkaller0 entered promiscuous mode
executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const]}}, 0x0, 0x26}, 0x20)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x4030582a, &(0x7f0000000040))
write$cgroup_int(r1, &(0x7f0000000200), 0x42400)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040))

executing program 2:
perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0xed, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x894c, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0x12)

executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$unix(r3, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r4], 0x18}, 0x0)
sendmsg$unix(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r4], 0x18}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r4)
close(r5)

executing program 3:
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.freeze\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40086607, &(0x7f0000000040))
ioctl$TUNSETOFFLOAD(r0, 0x40086607, 0x0)

executing program 2:
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

executing program 4:
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.current\x00', 0x7a05, 0x1700)
write$cgroup_pid(r1, &(0x7f0000000340), 0x20001341)

executing program 2:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0xc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40286608, &(0x7f0000000180))

executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000f1ff0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_freezer_state(r2, &(0x7f0000000140), 0x2, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'geneve1\x00', 0x2})

executing program 1:
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000680)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[], 0xffe6)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[], 0x1b)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x43400)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={0x0, 0x0}, 0x20)
socketpair(0x10, 0x2, 0x9, &(0x7f00000000c0))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[   36.336061][  T447] EXT4-fs warning (device sda1): verify_group_input:147: Cannot add at group 0 (only 8 groups)
executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

executing program 1:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x9d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000040)={r2, &(0x7f0000000240), 0x0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='ext4_allocate_blocks\x00', r3}, 0x10)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, r4, 0x0, 0x3}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='ext4_allocate_blocks\x00', r5}, 0x10)
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)

executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000080)='ext4_es_insert_delayed_block\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x7)
bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r4, 0x0, 0x0}, 0x10)

[   36.663056][  T435] syz-executor.0 (435) used greatest stack depth: 21848 bytes left
executing program 0:
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], 0x0}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000001cc0)=ANY=[@ANYBLOB="8fedcb7907031175f37538e486dd630080fc00000000db5b686158bbcfe8875a060300001123000000000000000000000000ac1414aa3b200007"], 0xfdef)

[  136.642453][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  136.648959][    C1] rcu: 	1-...!: (9999 ticks this GP) idle=7e2/1/0x4000000000000004 softirq=2016/2016 fqs=5 last_accelerate: 984a/bf74, Nonlazy posted: ..D
[  136.662897][    C1] 	(t=10002 jiffies g=2093 q=612)
[  136.667774][    C1] rcu: rcu_preempt kthread starved for 9978 jiffies! g2093 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  136.678597][    C1] rcu: RCU grace-period kthread stack dump:
[  136.684337][    C1] rcu_preempt     R  running task    28856    11      2 0x80004000
[  136.692067][    C1] Call Trace:
[  136.695254][    C1]  __schedule+0xb05/0x1320
[  136.699453][    C1]  ? is_mmconf_reserved+0x430/0x430
[  136.704475][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  136.709773][    C1]  ? _raw_spin_unlock_irq+0x4a/0x60
[  136.714811][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  136.719499][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  136.724452][    C1]  schedule+0x12c/0x1d0
[  136.728440][    C1]  schedule_timeout+0x188/0x3d0
[  136.733129][    C1]  ? prepare_to_swait_event+0x35c/0x3a0
[  136.738514][    C1]  ? console_conditional_schedule+0x10/0x10
[  136.744238][    C1]  ? run_local_timers+0x160/0x160
[  136.749188][    C1]  ? finish_swait+0xa5/0x1a0
[  136.753610][    C1]  ? find_next_bit+0xc3/0x100
[  136.758129][    C1]  rcu_gp_kthread+0xea0/0x1d10
[  136.762896][    C1]  ? _raw_spin_unlock_irq+0x4a/0x60
[  136.767938][    C1]  ? dyntick_save_progress_counter+0x1b0/0x1b0
[  136.773937][    C1]  ? rcu_barrier_callback+0x50/0x50
[  136.778957][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  136.783645][    C1]  ? is_mmconf_reserved+0x430/0x430
[  136.788677][    C1]  ? __wake_up_locked+0xb7/0x110
[  136.793453][    C1]  ? __kthread_parkme+0xb0/0x1b0
[  136.798225][    C1]  kthread+0x2da/0x360
[  136.802126][    C1]  ? rcu_barrier_callback+0x50/0x50
[  136.807167][    C1]  ? kthread_blkcg+0xd0/0xd0
[  136.811676][    C1]  ret_from_fork+0x1f/0x30
[  136.815951][    C1] NMI backtrace for cpu 1
[  136.820116][    C1] CPU: 1 PID: 445 Comm: syz-executor.4 Not tainted 5.4.268-syzkaller-00012-g51cf29fc2bfc #0
[  136.829981][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  136.839870][    C1] Call Trace:
[  136.843002][    C1]  <IRQ>
[  136.845703][    C1]  dump_stack+0x1d8/0x241
[  136.849865][    C1]  ? panic+0x896/0x896
[  136.853773][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  136.859347][    C1]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[  136.864995][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  136.869686][    C1]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  136.875596][    C1]  nmi_trigger_cpumask_backtrace+0x28c/0x2d0
[  136.881515][    C1]  rcu_dump_cpu_stacks+0x183/0x280
[  136.886542][    C1]  rcu_sched_clock_irq+0xc5e/0x13f0
[  136.891580][    C1]  update_process_times+0x147/0x1b0
[  136.896601][    C1]  tick_sched_timer+0x22d/0x3c0
[  136.901288][    C1]  ? tick_setup_sched_timer+0x460/0x460
[  136.906940][    C1]  __hrtimer_run_queues+0x3e9/0xb90
[  136.911969][    C1]  ? raise_softirq_irqoff+0x8/0x70
[  136.917299][    C1]  ? hrtimer_interrupt+0x890/0x890
[  136.922211][    C1]  ? ktime_get+0xf9/0x130
[  136.926385][    C1]  hrtimer_interrupt+0x38a/0x890
[  136.931181][    C1]  smp_apic_timer_interrupt+0x110/0x460
[  136.936559][    C1]  apic_timer_interrupt+0xf/0x20
[  136.941302][    C1]  ? apic_timer_interrupt+0xa/0x20
[  136.946249][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  136.951121][    C1]  ? stack_trace_consume_entry+0x162/0x240
[  136.956759][    C1]  ? unwind_next_frame+0x8/0x1ea0
[  136.962049][    C1]  ? arch_stack_walk+0x111/0x140
[  136.966829][    C1]  ? apic_timer_interrupt+0xf/0x20
[  136.971777][    C1]  ? stack_trace_save+0x118/0x1c0
[  136.976641][    C1]  ? stack_trace_snprint+0x170/0x170
[  136.981758][    C1]  ? kill_fasync+0x1f9/0x230
[  136.986192][    C1]  ? __kasan_kmalloc+0x171/0x210
[  136.990954][    C1]  ? __kasan_kmalloc+0x171/0x210
[  136.995728][    C1]  ? kmem_cache_alloc+0xd9/0x250
[  137.000503][    C1]  ? dst_alloc+0x154/0x4c0
[  137.004747][    C1]  ? icmp6_dst_alloc+0xf1/0x550
[  137.009439][    C1]  ? ndisc_send_skb+0x262/0xc30
[  137.014123][    C1]  ? addrconf_rs_timer+0x2d1/0x600
[  137.019087][    C1]  ? call_timer_fn+0x36/0x390
[  137.023593][    C1]  ? __run_timers+0x879/0xbe0
[  137.028098][    C1]  ? run_timer_softirq+0x63/0xf0
[  137.033088][    C1]  ? __do_softirq+0x23b/0x6b7
[  137.037589][    C1]  ? irq_exit+0x195/0x1c0
[  137.041808][    C1]  ? smp_apic_timer_interrupt+0x11a/0x460
[  137.047300][    C1]  ? apic_timer_interrupt+0xf/0x20
[  137.052329][    C1]  ? dst_alloc+0x154/0x4c0
[  137.056598][    C1]  ? kmem_cache_alloc+0xd9/0x250
[  137.061373][    C1]  ? ipv6_sysctl_rtcache_flush+0x110/0x110
[  137.067001][    C1]  ? dst_alloc+0x154/0x4c0
[  137.071257][    C1]  ? icmp6_dst_alloc+0xf1/0x550
[  137.076156][    C1]  ? memcpy+0x38/0x50
[  137.079971][    C1]  ? selinux_sk_getsecid+0x24/0xb0
[  137.085096][    C1]  ? ndisc_send_skb+0x262/0xc30
[  137.089814][    C1]  ? ndisc_alloc_skb+0x2c0/0x2c0
[  137.094640][    C1]  ? __alloc_skb+0x29e/0x4d0
[  137.099088][    C1]  ? ndisc_send_rs+0x517/0x6a0
[  137.103679][    C1]  ? addrconf_rs_timer+0x2d1/0x600
[  137.108620][    C1]  ? addrconf_disable_policy_idev+0x360/0x360
[  137.114605][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  137.119573][    C1]  ? _raw_spin_lock_irqsave+0x210/0x210
[  137.125047][    C1]  ? addrconf_disable_policy_idev+0x360/0x360
[  137.130941][    C1]  ? call_timer_fn+0x36/0x390
[  137.135451][    C1]  ? addrconf_disable_policy_idev+0x360/0x360
[  137.141363][    C1]  ? __run_timers+0x879/0xbe0
[  137.145875][    C1]  ? enqueue_timer+0x300/0x300
[  137.150640][    C1]  ? irq_work_interrupt+0xf/0x20
[  137.155418][    C1]  ? run_timer_softirq+0x1e/0xf0
[  137.160332][    C1]  ? run_timer_softirq+0x63/0xf0
[  137.165097][    C1]  ? __do_softirq+0x23b/0x6b7
[  137.169622][    C1]  ? irq_exit+0x195/0x1c0
[  137.173778][    C1]  ? smp_apic_timer_interrupt+0x11a/0x460
[  137.179333][    C1]  ? apic_timer_interrupt+0xf/0x20
[  137.184264][    C1]  </IRQ>
[  137.187331][    C1]  ? futex_wait+0x31d/0x890
[  137.191651][    C1]  ? futex_wait+0x41d/0x890
[  137.196004][    C1]  ? __sanitizer_cov_trace_pc+0x31/0x50
[  137.201477][    C1]  ? futex_wait+0x41d/0x890
[  137.205824][    C1]  ? do_futex+0x19f0/0x19f0
[  137.210192][    C1]  ? do_futex+0x13c1/0x19f0
[  137.214484][    C1]  ? ctx_pinned_sched_in+0x160/0x160
[  137.219640][    C1]  ? perf_event_context_sched_in+0x3a0/0x490
[  137.225516][    C1]  ? __perf_event_task_sched_in+0x219/0x2a0
[  137.231261][    C1]  ? futex_exit_release+0x1e0/0x1e0
[  137.236272][    C1]  ? debug_smp_processor_id+0x20/0x20
[  137.241489][    C1]  ? perf_sched_cb_inc+0x240/0x240
[  137.246451][    C1]  ? finish_task_switch+0x1bb/0x590
[  137.251474][    C1]  ? check_preemption_disabled+0x153/0x320
[  137.257107][    C1]  ? __se_sys_futex+0x355/0x470
[  137.261798][    C1]  ? __x64_sys_futex+0xf0/0xf0
[  137.266396][    C1]  ? __x64_sys_futex+0x34/0xf0
[  137.270997][    C1]  ? do_syscall_64+0xca/0x1c0
[  137.275615][    C1]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[  137.309794][   T24] cfg80211: failed to load regulatory.db
executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
close(r0)

executing program 2:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x2e0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0xfe, 0x60000000, 0x0, 0x13, &(0x7f0000000040), &(0x7f0000000380)="af5fa441b438b5156d8a9fcc090fdcc8539ffc", 0x0, 0x3}, 0x50)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={0x0, &(0x7f0000000300)=""/11, 0x0, 0xb, 0x9, 0x7}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x20001400)
close(r3)

executing program 1:
perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0xed, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x894c, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0x12)

executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200), 0x43400)
perf_event_open(&(0x7f0000001080)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x5}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001080)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7602, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
ioctl$TUNGETVNETLE(0xffffffffffffffff, 0x800454dd, &(0x7f0000000040))
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_pressure(r0, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)

[  237.932390][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  237.938881][    C1] rcu: 	1-...!: (1 GPs behind) idle=7e2/1/0x4000000000000004 softirq=2016/2018 fqs=43 last_accelerate: 984a/e705, Nonlazy posted: ..D
[  237.952391][    C1] 	(t=10002 jiffies g=2097 q=1699)
[  237.957335][    C1] rcu: rcu_preempt kthread starved for 8340 jiffies! g2097 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  237.968162][    C1] rcu: RCU grace-period kthread stack dump:
[  237.973897][    C1] rcu_preempt     R  running task    28856    11      2 0x80004000
[  237.981616][    C1] Call Trace:
[  237.984785][    C1]  __schedule+0xb05/0x1320
[  237.989024][    C1]  ? is_mmconf_reserved+0x430/0x430
[  237.994039][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  237.999336][    C1]  ? _raw_spin_unlock_irq+0x4a/0x60
[  238.004378][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  238.009144][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  238.014098][    C1]  schedule+0x12c/0x1d0
[  238.018094][    C1]  schedule_timeout+0x188/0x3d0
[  238.022787][    C1]  ? prepare_to_swait_event+0x35c/0x3a0
[  238.028157][    C1]  ? console_conditional_schedule+0x10/0x10
[  238.033891][    C1]  ? run_local_timers+0x160/0x160
[  238.038751][    C1]  ? finish_swait+0xa5/0x1a0
[  238.043258][    C1]  ? find_next_bit+0xc3/0x100
[  238.047782][    C1]  rcu_gp_kthread+0xea0/0x1d10
[  238.052372][    C1]  ? _raw_spin_unlock_irq+0x4a/0x60
[  238.057414][    C1]  ? dyntick_save_progress_counter+0x1b0/0x1b0
[  238.063420][    C1]  ? rcu_barrier_callback+0x50/0x50
[  238.068433][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  238.073119][    C1]  ? is_mmconf_reserved+0x430/0x430
[  238.078156][    C1]  ? __wake_up_locked+0xb7/0x110
[  238.082924][    C1]  ? __kthread_parkme+0xb0/0x1b0
[  238.087700][    C1]  kthread+0x2da/0x360
[  238.091713][    C1]  ? rcu_barrier_callback+0x50/0x50
[  238.096732][    C1]  ? kthread_blkcg+0xd0/0xd0
[  238.101168][    C1]  ret_from_fork+0x1f/0x30
[  238.105428][    C1] NMI backtrace for cpu 1
[  238.109771][    C1] CPU: 1 PID: 445 Comm: syz-executor.4 Not tainted 5.4.268-syzkaller-00012-g51cf29fc2bfc #0
[  238.119644][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  238.129619][    C1] Call Trace:
[  238.132749][    C1]  <IRQ>
[  238.135455][    C1]  dump_stack+0x1d8/0x241
[  238.139618][    C1]  ? panic+0x896/0x896
[  238.143523][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  238.148822][    C1]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[  238.154465][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  238.159245][    C1]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  238.165141][    C1]  nmi_trigger_cpumask_backtrace+0x28c/0x2d0
[  238.170966][    C1]  rcu_dump_cpu_stacks+0x183/0x280
[  238.175918][    C1]  rcu_sched_clock_irq+0xc5e/0x13f0
[  238.181033][    C1]  update_process_times+0x147/0x1b0
[  238.186061][    C1]  tick_sched_timer+0x22d/0x3c0
[  238.190752][    C1]  ? tick_setup_sched_timer+0x460/0x460
[  238.196245][    C1]  __hrtimer_run_queues+0x3e9/0xb90
[  238.201250][    C1]  ? raise_softirq_irqoff+0x8/0x70
[  238.206211][    C1]  ? hrtimer_interrupt+0x890/0x890
[  238.211156][    C1]  ? __rcu_read_unlock+0x95/0x110
[  238.216011][    C1]  ? ktime_get_update_offsets_now+0x26c/0x280
[  238.221909][    C1]  hrtimer_interrupt+0x38a/0x890
[  238.226707][    C1]  smp_apic_timer_interrupt+0x110/0x460
[  238.232065][    C1]  apic_timer_interrupt+0xf/0x20
[  238.236836][    C1]  ? apic_timer_interrupt+0xa/0x20
[  238.241783][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  238.246643][    C1]  ? stack_trace_consume_entry+0x162/0x240
[  238.252297][    C1]  ? unwind_next_frame+0x1/0x1ea0
[  238.257147][    C1]  ? arch_stack_walk+0x111/0x140
[  238.261924][    C1]  ? icmp6_dst_alloc+0x349/0x550
[  238.266708][    C1]  ? stack_trace_save+0x118/0x1c0
[  238.271742][    C1]  ? stack_trace_snprint+0x170/0x170
[  238.276871][    C1]  ? __rcu_read_unlock+0x110/0x110
[  238.281895][    C1]  ? __kasan_kmalloc+0x171/0x210
[  238.286666][    C1]  ? __kasan_kmalloc+0x171/0x210
[  238.291433][    C1]  ? kmem_cache_alloc_trace+0xdc/0x260
[  238.296733][    C1]  ? dst_cow_metrics_generic+0x52/0x1b0
[  238.302121][    C1]  ? icmp6_dst_alloc+0x349/0x550
[  238.307028][    C1]  ? kmem_cache_alloc_trace+0xdc/0x260
[  238.312281][    C1]  ? dst_cow_metrics_generic+0x52/0x1b0
[  238.317656][    C1]  ? dst_cow_metrics_generic+0x52/0x1b0
[  238.323115][    C1]  ? icmp6_dst_alloc+0x349/0x550
[  238.327900][    C1]  ? ndisc_send_skb+0x262/0xc30
[  238.332586][    C1]  ? ndisc_alloc_skb+0x2c0/0x2c0
[  238.337350][    C1]  ? __alloc_skb+0x29e/0x4d0
[  238.341800][    C1]  ? ndisc_send_rs+0x517/0x6a0
[  238.346393][    C1]  ? addrconf_rs_timer+0x2d1/0x600
[  238.351337][    C1]  ? addrconf_disable_policy_idev+0x360/0x360
[  238.357227][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  238.362277][    C1]  ? _raw_spin_lock_irqsave+0x210/0x210
[  238.367647][    C1]  ? addrconf_disable_policy_idev+0x360/0x360
[  238.373546][    C1]  ? call_timer_fn+0x36/0x390
[  238.378060][    C1]  ? addrconf_disable_policy_idev+0x360/0x360
[  238.383960][    C1]  ? __run_timers+0x879/0xbe0
[  238.388490][    C1]  ? enqueue_timer+0x300/0x300
[  238.393073][    C1]  ? rcu_irq_exit+0x104/0x250
[  238.397589][    C1]  ? check_preemption_disabled+0x9f/0x320
[  238.403256][    C1]  ? check_preemption_disabled+0x91/0x320
[  238.408817][    C1]  ? run_timer_softirq+0x63/0xf0
[  238.413578][    C1]  ? __do_softirq+0x23b/0x6b7
[  238.418092][    C1]  ? sched_clock_cpu+0x18/0x3a0
[  238.422888][    C1]  ? irq_exit+0x195/0x1c0
[  238.427032][    C1]  ? smp_apic_timer_interrupt+0x11a/0x460
[  238.432593][    C1]  ? apic_timer_interrupt+0xf/0x20
[  238.437522][    C1]  </IRQ>
[  238.440400][    C1]  ? finish_task_switch+0x1bb/0x590
[  238.445346][    C1]  ? __update_load_avg_blocked_se+0x481/0x7f0
[  238.451249][    C1]  ? debug_smp_processor_id+0x20/0x20
[  238.456458][    C1]  ? task_dead_fair+0x68/0x1a0
[  238.461052][    C1]  ? task_fork_fair+0x260/0x260
[  238.465752][    C1]  ? finish_task_switch+0x23e/0x590
[  238.470782][    C1]  ? __schedule+0xb0d/0x1320
[  238.475221][    C1]  ? preempt_schedule_notrace+0x140/0x140
[  238.480770][    C1]  ? is_mmconf_reserved+0x430/0x430
[  238.485799][    C1]  ? check_preemption_disabled+0x149/0x320
[  238.491448][    C1]  ? preempt_schedule_irq+0xc7/0x140
[  238.496566][    C1]  ? preempt_schedule_notrace+0x140/0x140
[  238.502112][    C1]  ? futex_wait_queue_me+0x366/0x690
[  238.507330][    C1]  ? futex_wait_queue_me+0x378/0x690
[  238.512453][    C1]  ? retint_kernel+0x1b/0x1b
[  238.516872][    C1]  ? futex_wait+0x31d/0x890
[  238.521201][    C1]  ? futex_wait+0x41d/0x890
[  238.525548][    C1]  ? __sanitizer_cov_trace_pc+0x31/0x50
[  238.530928][    C1]  ? futex_wait+0x41d/0x890
[  238.535288][    C1]  ? do_futex+0x19f0/0x19f0
[  238.539645][    C1]  ? do_futex+0x13c1/0x19f0
[  238.543955][    C1]  ? ctx_pinned_sched_in+0x160/0x160
[  238.549086][    C1]  ? perf_event_context_sched_in+0x3a0/0x490
[  238.554897][    C1]  ? __perf_event_task_sched_in+0x219/0x2a0
[  238.560625][    C1]  ? futex_exit_release+0x1e0/0x1e0
[  238.565662][    C1]  ? debug_smp_processor_id+0x20/0x20
[  238.570864][    C1]  ? perf_sched_cb_inc+0x240/0x240
[  238.575812][    C1]  ? finish_task_switch+0x1bb/0x590
[  238.580854][    C1]  ? check_preemption_disabled+0x153/0x320
[  238.586489][    C1]  ? __se_sys_futex+0x355/0x470
[  238.591266][    C1]  ? __x64_sys_futex+0xf0/0xf0
[  238.595865][    C1]  ? __x64_sys_futex+0x34/0xf0
[  238.600465][    C1]  ? do_syscall_64+0xca/0x1c0
[  238.604982][    C1]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[  266.073768][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 119s! [syz-executor.1:458]
[  266.082124][    C0] Modules linked in:
[  266.085884][    C0] CPU: 0 PID: 458 Comm: syz-executor.1 Not tainted 5.4.268-syzkaller-00012-g51cf29fc2bfc #0
[  266.095753][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  266.105683][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x50
[  266.111611][    C0] Code: 00 00 00 0f 1f 00 be 0c 00 00 00 48 c7 c7 a0 a6 f1 85 e8 3f dc 2f 00 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 8b 04 24 <65> 48 8b 0d 54 46 9e 7e 65 8b 15 59 46 9e 7e f7 c2 00 01 1f 00 74
[  266.131580][    C0] RSP: 0018:ffff8881f6e099d8 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[  266.139829][    C0] RAX: ffffffff823165f9 RBX: ffffffff85293020 RCX: ffff8881eea70fc0
[  266.147642][    C0] RDX: 0000000000000101 RSI: 0000000000000101 RDI: ffffffff85293020
[  266.155462][    C0] RBP: 0000607e08e28e30 R08: ffffffff82316361 R09: ffffffff838087d8
[  266.163264][    C0] R10: ffff8881eea70fc0 R11: 0000000000000002 R12: dffffc0000000000
[  266.171077][    C0] R13: ffff8881d68b6dc8 R14: ffff8881eb955c80 R15: ffff8881d41b9000
[  266.178894][    C0] FS:  00007f60739556c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  266.187938][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  266.194618][    C0] CR2: 00007f6e641732c0 CR3: 00000001ee178000 CR4: 00000000003406b0
[  266.202770][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  266.210583][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  266.218827][    C0] Call Trace:
[  266.221949][    C0]  <IRQ>
[  266.224657][    C0]  ? watchdog_timer_fn+0x53d/0x600
[  266.229695][    C0]  ? proc_watchdog_cpumask+0xc0/0xc0
[  266.234811][    C0]  ? __hrtimer_run_queues+0x3e9/0xb90
[  266.240009][    C0]  ? _raw_read_lock+0x40/0x40
[  266.244542][    C0]  ? hrtimer_interrupt+0x890/0x890
[  266.249480][    C0]  ? kill_fasync+0x1f9/0x230
[  266.253898][    C0]  ? ktime_get+0xf9/0x130
[  266.258070][    C0]  ? ktime_get_update_offsets_now+0x26c/0x280
[  266.263979][    C0]  ? hrtimer_interrupt+0x38a/0x890
[  266.268943][    C0]  ? smp_apic_timer_interrupt+0x110/0x460
[  266.274482][    C0]  ? apic_timer_interrupt+0xf/0x20
[  266.279426][    C0]  ? apic_timer_interrupt+0xa/0x20
[  266.284373][    C0]  ? __netif_receive_skb_core+0x4a8/0x37e0
[  266.290013][    C0]  ? check_preemption_disabled+0x91/0x320
[  266.295569][    C0]  ? __this_cpu_preempt_check+0x9/0x20
[  266.300871][    C0]  ? __sanitizer_cov_trace_pc+0x4/0x50
[  266.306180][    C0]  __this_cpu_preempt_check+0x9/0x20
[  266.311279][    C0]  ip6_rcv_core+0x14f/0x1270
[  266.316153][    C0]  ipv6_rcv+0xca/0x280
[  266.320049][    C0]  ? ip6_rcv_finish+0x350/0x350
[  266.324735][    C0]  ? asan.module_dtor+0x20/0x20
[  266.329426][    C0]  ? debug_smp_processor_id+0x20/0x20
[  266.334668][    C0]  ? check_preemption_disabled+0x9f/0x320
[  266.340184][    C0]  ? kvm_sched_clock_read+0x14/0x40
[  266.345216][    C0]  ? ip6_rcv_finish+0x350/0x350
[  266.349903][    C0]  __netif_receive_skb+0x1c6/0x530
[  266.354856][    C0]  ? irqtime_account_irq+0xb9/0x1b0
[  266.359886][    C0]  ? deliver_ptype_list_skb+0x3b0/0x3b0
[  266.365288][    C0]  ? rcu_irq_exit+0x104/0x250
[  266.369781][    C0]  ? irq_work_interrupt+0xf/0x20
[  266.374555][    C0]  ? irq_work_interrupt+0xa/0x20
[  266.379334][    C0]  process_backlog+0x34f/0x680
[  266.383949][    C0]  net_rx_action+0x53f/0x1160
[  266.388455][    C0]  ? net_tx_action+0x5c0/0x5c0
[  266.393041][    C0]  ? debug_smp_processor_id+0x20/0x20
[  266.398254][    C0]  ? net_tx_action+0x56c/0x5c0
[  266.402859][    C0]  __do_softirq+0x23b/0x6b7
[  266.407200][    C0]  ? sched_clock_cpu+0x18/0x3a0
[  266.411888][    C0]  irq_exit+0x195/0x1c0
[  266.415876][    C0]  smp_apic_timer_interrupt+0x11a/0x460
[  266.421262][    C0]  apic_timer_interrupt+0xf/0x20
[  266.426019][    C0]  </IRQ>
[  266.428813][    C0]  ? check_preemption_disabled+0x149/0x320
[  266.434451][    C0]  ? _raw_write_unlock_irq+0x10/0x60
[  266.439581][    C0]  ? preempt_schedule_irq+0xc2/0x140
[  266.444735][    C0]  ? preempt_schedule_notrace+0x140/0x140
[  266.450295][    C0]  ? switch_mm_irqs_off+0x6b5/0xab0
[  266.455282][    C0]  ? retint_kernel+0x1b/0x1b
[  266.459720][    C0]  ? blocking_notifier_call_chain+0x56/0x160
[  266.465527][    C0]  ? __down_read+0x4/0x210
[  266.469785][    C0]  ? blocking_notifier_call_chain+0x68/0x160
[  266.475606][    C0]  ? do_exit+0x201/0x2bc0
[  266.479765][    C0]  ? preempt_schedule_irq+0xe7/0x140
[  266.484880][    C0]  ? preempt_schedule_notrace+0x140/0x140
[  266.490433][    C0]  ? put_task_struct+0x80/0x80
[  266.495117][    C0]  ? preempt_schedule+0xd9/0xe0
[  266.499820][    C0]  ? retint_kernel+0x1b/0x1b
[  266.504292][    C0]  ? do_group_exit+0x91/0x300
[  266.508750][    C0]  ? do_group_exit+0x138/0x300
[  266.513374][    C0]  ? get_signal+0xdb1/0x1440
[  266.517783][    C0]  ? __schedule+0xb0d/0x1320
[  266.522204][    C0]  ? do_signal+0xb0/0x11f0
[  266.526460][    C0]  ? is_mmconf_reserved+0x430/0x430
[  266.531590][    C0]  ? _raw_write_unlock_irq+0x10/0x60
[  266.536792][    C0]  ? signal_fault+0x1e0/0x1e0
[  266.541300][    C0]  ? __schedule+0xb0d/0x1320
[  266.545727][    C0]  ? debug_smp_processor_id+0x20/0x20
[  266.550940][    C0]  ? exit_to_usermode_loop+0x62/0x1a0
[  266.556149][    C0]  ? exit_to_usermode_loop+0xc0/0x1a0
[  266.561350][    C0]  ? prepare_exit_to_usermode+0x199/0x200
[  266.566903][    C0]  ? ret_from_intr+0x1c/0x1c
[  266.571341][    C0] Sending NMI from CPU 0 to CPUs 1:
[  266.578820][    C1] NMI backtrace for cpu 1
[  266.578840][    C1] CPU: 1 PID: 445 Comm: syz-executor.4 Not tainted 5.4.268-syzkaller-00012-g51cf29fc2bfc #0
[  266.578853][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  266.578861][    C1] RIP: 0010:native_apic_msr_write+0x35/0x50
[  266.578886][    C1] Code: 74 2d 83 ff 30 74 28 eb 10 81 ff d0 00 00 00 74 1e 81 ff e0 00 00 00 74 16 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <0f> 1f 44 00 00 c3 89 f6 31 d2 e9 2c 19 1a 01 66 66 2e 0f 1f 84 00
[  266.578894][    C1] RSP: 0018:ffff8881f6f091a8 EFLAGS: 00000046
[  266.578909][    C1] RAX: 000000000000003e RBX: ffffffff856311e0 RCX: 0000000000000838
[  266.578919][    C1] RDX: 0000000000000000 RSI: 000000000000003e RDI: 0000000000000838
[  266.578930][    C1] RBP: 000000000000003e R08: ffffffff8157cddb R09: ffffffff8157cd67
[  266.578940][    C1] R10: ffff8881ecc0af40 R11: 0000000000000002 R12: dffffc0000000000
[  266.578951][    C1] R13: 0000000000000002 R14: 000000000000003e R15: dffffc0000000000
[  266.578963][    C1] FS:  00007ffb5ba3f6c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[  266.578972][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  266.578982][    C1] CR2: 00007f54b022e038 CR3: 00000001eeef3000 CR4: 00000000003406a0
[  266.578993][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  266.579003][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  266.579008][    C1] Call Trace:
[  266.579012][    C1]  <NMI>
[  266.579020][    C1]  ? nmi_cpu_backtrace+0x112/0x130
[  266.579027][    C1]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  266.579033][    C1]  ? nmi_handle+0xad/0x2f0
[  266.579041][    C1]  ? native_apic_msr_write+0x35/0x50
[  266.579047][    C1]  ? do_nmi+0x251/0x610
[  266.579053][    C1]  ? end_repeat_nmi+0x16/0x2c
[  266.579061][    C1]  ? clockevents_program_event+0x77/0x2c0
[  266.579069][    C1]  ? clockevents_program_event+0xeb/0x2c0
[  266.579076][    C1]  ? native_apic_msr_write+0x35/0x50
[  266.579083][    C1]  ? native_apic_msr_write+0x35/0x50
[  266.579091][    C1]  ? native_apic_msr_write+0x35/0x50
[  266.579095][    C1]  </NMI>
[  266.579099][    C1]  <IRQ>
[  266.579106][    C1]  lapic_next_event+0x5b/0x70
[  266.579114][    C1]  clockevents_program_event+0x199/0x2c0
[  266.579121][    C1]  hrtimer_interrupt+0x4b3/0x890
[  266.579128][    C1]  smp_apic_timer_interrupt+0x110/0x460
[  266.579135][    C1]  apic_timer_interrupt+0xf/0x20
[  266.579142][    C1]  ? apic_timer_interrupt+0xa/0x20
[  266.579150][    C1]  ? unwind_next_frame+0x1538/0x1ea0
[  266.579156][    C1]  ? arch_stack_walk+0xdd/0x140
[  266.579164][    C1]  ? unwind_get_return_address_ptr+0xa0/0xa0
[  266.579172][    C1]  ? dev_hard_start_xmit+0x641/0x6b0
[  266.579179][    C1]  ? stack_trace_save+0x118/0x1c0
[  266.579186][    C1]  ? _raw_spin_unlock+0x49/0x60
[  266.579193][    C1]  ? sch_direct_xmit+0x38c/0xa10
[  266.579200][    C1]  ? check_preemption_disabled+0x9f/0x320
[  266.579208][    C1]  ? check_preemption_disabled+0x9f/0x320
[  266.579216][    C1]  ? debug_smp_processor_id+0x20/0x20
[  266.579223][    C1]  ? pfifo_fast_dequeue+0x7f5/0x2370
[  266.579231][    C1]  ? check_preemption_disabled+0x9f/0x320
[  266.579237][    C1]  ? asan.module_dtor+0x20/0x20
[  266.579245][    C1]  ? debug_smp_processor_id+0x20/0x20
[  266.579252][    C1]  ? __raise_softirq_irqoff+0x1d/0x110
[  266.579259][    C1]  ? __unwind_start+0x708/0x890
[  266.579266][    C1]  ? deref_stack_reg+0x1f0/0x1f0
[  266.579272][    C1]  ? qdisc_run+0x196/0x300
[  266.579279][    C1]  ? __local_bh_enable_ip+0x4f/0x70
[  266.579287][    C1]  ? __dev_queue_xmit+0x1444/0x27e0
[  266.579294][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  266.579300][    C1]  ? arch_stack_walk+0xdd/0x140
[  266.579307][    C1]  ? stack_trace_save+0x118/0x1c0
[  266.579314][    C1]  ? stack_trace_save+0x118/0x1c0
[  266.579329][    C1]  ? stack_trace_snprint+0x170/0x170
[  266.579336][    C1]  ? irq_work_interrupt+0xa/0x20
[  266.579343][    C1]  ? __kasan_kmalloc+0x171/0x210
[  266.579349][    C1]  ? __alloc_skb+0x7a/0x4d0
[  266.579356][    C1]  ? kmem_cache_alloc+0xd9/0x250
[  266.579363][    C1]  ? __alloc_skb+0x7a/0x4d0
[  266.579370][    C1]  ? __rcu_read_unlock+0x95/0x110
[  266.579378][    C1]  ? __neigh_notify+0x7c/0x130
[  266.579386][    C1]  ? neigh_timer_handler+0xa7d/0xf00
[  266.579393][    C1]  ? neigh_release+0x80/0x80
[  266.579400][    C1]  ? call_timer_fn+0x36/0x390
[  266.579407][    C1]  ? neigh_release+0x80/0x80
[  266.579415][    C1]  ? __run_timers+0x879/0xbe0
[  266.579422][    C1]  ? enqueue_timer+0x300/0x300
[  266.579430][    C1]  ? rcu_irq_exit+0x104/0x250
[  266.579438][    C1]  ? check_preemption_disabled+0x9f/0x320
[  266.579447][    C1]  ? check_preemption_disabled+0x91/0x320
[  266.579455][    C1]  ? run_timer_softirq+0x63/0xf0
[  266.579462][    C1]  ? __do_softirq+0x23b/0x6b7
[  266.579470][    C1]  ? sched_clock_cpu+0x18/0x3a0
[  266.579476][    C1]  ? irq_exit+0x195/0x1c0
[  266.579485][    C1]  ? smp_apic_timer_interrupt+0x11a/0x460
[  266.579493][    C1]  ? apic_timer_interrupt+0xf/0x20
[  266.579498][    C1]  </IRQ>
[  266.579506][    C1]  ? finish_task_switch+0x1bb/0x590
[  266.579515][    C1]  ? __update_load_avg_blocked_se+0x481/0x7f0
[  266.579523][    C1]  ? debug_smp_processor_id+0x20/0x20
[  266.579531][    C1]  ? task_dead_fair+0x68/0x1a0
[  266.579539][    C1]  ? task_fork_fair+0x260/0x260
[  266.579547][    C1]  ? finish_task_switch+0x23e/0x590
[  266.579554][    C1]  ? __schedule+0xb0d/0x1320
[  266.579562][    C1]  ? preempt_schedule_notrace+0x140/0x140
[  266.579570][    C1]  ? is_mmconf_reserved+0x430/0x430
[  266.579579][    C1]  ? check_preemption_disabled+0x149/0x320
[  266.579587][    C1]  ? preempt_schedule_irq+0xc7/0x140
[  266.579596][    C1]  ? preempt_schedule_notrace+0x140/0x140
[  266.579604][    C1]  ? futex_wait_queue_me+0x366/0x690
[  266.579612][    C1]  ? futex_wait_queue_me+0x378/0x690
[  266.579620][    C1]  ? retint_kernel+0x1b/0x1b
[  266.579627][    C1]  ? futex_wait+0x31d/0x890
[  266.579634][    C1]  ? futex_wait+0x41d/0x890
[  266.579643][    C1]  ? __sanitizer_cov_trace_pc+0x31/0x50
[  266.579650][    C1]  ? futex_wait+0x41d/0x890
[  266.579657][    C1]  ? do_futex+0x19f0/0x19f0
[  266.579664][    C1]  ? do_futex+0x13c1/0x19f0
[  266.579672][    C1]  ? ctx_pinned_sched_in+0x160/0x160
[  266.579681][    C1]  ? perf_event_context_sched_in+0x3a0/0x490
[  266.579691][    C1]  ? __perf_event_task_sched_in+0x219/0x2a0
[  266.579699][    C1]  ? futex_exit_release+0x1e0/0x1e0
[  266.579707][    C1]  ? debug_smp_processor_id+0x20/0x20
[  266.579715][    C1]  ? perf_sched_cb_inc+0x240/0x240
[  266.579723][    C1]  ? finish_task_switch+0x1bb/0x590
[  266.579732][    C1]  ? check_preemption_disabled+0x153/0x320
[  266.579739][    C1]  ? __se_sys_futex+0x355/0x470
[  266.579747][    C1]  ? __x64_sys_futex+0xf0/0xf0
[  266.579754][    C1]  ? __x64_sys_futex+0x34/0xf0
[  266.579762][    C1]  ? do_syscall_64+0xca/0x1c0
[  266.579771][    C1]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[  267.212982][   T13] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 1-... } 12629 jiffies s: 385 root: 0x2/.
[  267.283200][   T13] rcu: blocking rcu_node structures:
[  267.288348][   T13] Task dump for CPU 1:
[  267.292252][   T13] syz-executor.4  R  running task    27128   445    374 0x8000400c
[  267.300451][   T13] Call Trace:
[  267.303753][   T13]  ? __schedule+0xb0d/0x1320
[  267.308303][   T13]  ? preempt_schedule_notrace+0x140/0x140
[  267.314022][   T13]  ? is_mmconf_reserved+0x430/0x430
[  267.319112][   T13]  ? check_preemption_disabled+0x149/0x320
[  267.324796][   T13]  ? preempt_schedule_irq+0xc7/0x140
[  267.330043][   T13]  ? preempt_schedule_notrace+0x140/0x140
[  267.335622][   T13]  ? futex_wait_queue_me+0x366/0x690
[  267.340813][   T13]  ? futex_wait_queue_me+0x378/0x690
[  267.345952][   T13]  ? retint_kernel+0x1b/0x1b
[  267.350608][   T13]  ? futex_wait+0x31d/0x890
[  267.354978][   T13]  ? futex_wait+0x41d/0x890
[  267.359287][   T13]  ? __sanitizer_cov_trace_pc+0x31/0x50
[  267.364733][   T13]  ? futex_wait+0x41d/0x890
[  267.369040][   T13]  ? do_futex+0x19f0/0x19f0
[  267.373497][   T13]  ? do_futex+0x13c1/0x19f0
[  267.377768][   T13]  ? ctx_pinned_sched_in+0x160/0x160
[  267.382932][   T13]  ? perf_event_context_sched_in+0x3a0/0x490
[  267.388713][   T13]  ? __perf_event_task_sched_in+0x219/0x2a0
[  267.394481][   T13]  ? futex_exit_release+0x1e0/0x1e0
[  267.399475][   T13]  ? debug_smp_processor_id+0x20/0x20
[  267.404728][   T13]  ? perf_sched_cb_inc+0x240/0x240
[  267.409643][   T13]  ? finish_task_switch+0x1bb/0x590
[  267.414710][   T13]  ? check_preemption_disabled+0x153/0x320
[  267.420311][   T13]  ? __se_sys_futex+0x355/0x470
[  267.425035][   T13]  ? __x64_sys_futex+0xf0/0xf0
[  267.429610][   T13]  ? __x64_sys_futex+0x34/0xf0
[  267.434264][   T13]  ? do_syscall_64+0xca/0x1c0
[  267.438883][   T13]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1