Warning: Permanently added '10.128.0.21' (ED25519) to the list of known hosts.
2024/05/22 21:28:44 fuzzer started
2024/05/22 21:28:44 dialing manager at 10.128.0.163:30008
[   19.789666][   T30] audit: type=1400 audit(1716413324.716:66): avc:  denied  { node_bind } for  pid=282 comm="syz-fuzzer" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   19.793177][   T30] audit: type=1400 audit(1716413324.716:67): avc:  denied  { name_bind } for  pid=282 comm="syz-fuzzer" src=6060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   19.815063][   T30] audit: type=1400 audit(1716413324.736:68): avc:  denied  { integrity } for  pid=290 comm="syz-executor" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[   19.818575][  T290] cgroup: Unknown subsys name 'net'
[   19.846705][  T290] cgroup: Unknown subsys name 'devices'
[   19.850034][   T30] audit: type=1400 audit(1716413324.736:70): avc:  denied  { mounton } for  pid=290 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   19.874616][   T30] audit: type=1400 audit(1716413324.736:71): avc:  denied  { mount } for  pid=290 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   19.896729][   T30] audit: type=1400 audit(1716413324.736:69): avc:  denied  { mounton } for  pid=291 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   19.902492][  T297] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   19.921425][   T30] audit: type=1400 audit(1716413324.766:72): avc:  denied  { mount } for  pid=291 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   19.952726][   T30] audit: type=1400 audit(1716413324.766:73): avc:  denied  { setattr } for  pid=293 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   19.975930][   T30] audit: type=1400 audit(1716413324.766:74): avc:  denied  { unmount } for  pid=290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   19.995553][   T30] audit: type=1400 audit(1716413324.856:75): avc:  denied  { relabelto } for  pid=297 comm="mkswap" name="swap-file" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   20.020824][  T295] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   20.108304][  T290] cgroup: Unknown subsys name 'hugetlb'
[   20.113724][  T290] cgroup: Unknown subsys name 'rlimit'
2024/05/22 21:28:45 starting 5 executor processes
[   20.891789][  T306] bridge0: port 1(bridge_slave_0) entered blocking state
[   20.898679][  T306] bridge0: port 1(bridge_slave_0) entered disabled state
[   20.905749][  T306] device bridge_slave_0 entered promiscuous mode
[   20.912505][  T306] bridge0: port 2(bridge_slave_1) entered blocking state
[   20.919412][  T306] bridge0: port 2(bridge_slave_1) entered disabled state
[   20.926532][  T306] device bridge_slave_1 entered promiscuous mode
[   20.997235][  T307] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.004072][  T307] bridge0: port 1(bridge_slave_0) entered disabled state
[   21.011259][  T307] device bridge_slave_0 entered promiscuous mode
[   21.027927][  T307] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.034759][  T307] bridge0: port 2(bridge_slave_1) entered disabled state
[   21.042694][  T307] device bridge_slave_1 entered promiscuous mode
[   21.054210][  T309] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.061139][  T309] bridge0: port 1(bridge_slave_0) entered disabled state
[   21.068390][  T309] device bridge_slave_0 entered promiscuous mode
[   21.076070][  T309] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.082953][  T309] bridge0: port 2(bridge_slave_1) entered disabled state
[   21.090132][  T309] device bridge_slave_1 entered promiscuous mode
[   21.117961][  T308] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.124793][  T308] bridge0: port 1(bridge_slave_0) entered disabled state
[   21.132017][  T308] device bridge_slave_0 entered promiscuous mode
[   21.143642][  T308] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.150509][  T308] bridge0: port 2(bridge_slave_1) entered disabled state
[   21.157544][  T308] device bridge_slave_1 entered promiscuous mode
[   21.201888][  T310] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.208819][  T310] bridge0: port 1(bridge_slave_0) entered disabled state
[   21.215783][  T310] device bridge_slave_0 entered promiscuous mode
[   21.232788][  T310] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.239653][  T310] bridge0: port 2(bridge_slave_1) entered disabled state
[   21.246705][  T310] device bridge_slave_1 entered promiscuous mode
[   21.367099][  T308] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.373941][  T308] bridge0: port 2(bridge_slave_1) entered forwarding state
[   21.381074][  T308] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.387844][  T308] bridge0: port 1(bridge_slave_0) entered forwarding state
[   21.403302][  T310] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.410150][  T310] bridge0: port 2(bridge_slave_1) entered forwarding state
[   21.417235][  T310] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.424024][  T310] bridge0: port 1(bridge_slave_0) entered forwarding state
[   21.433408][  T309] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.440252][  T309] bridge0: port 2(bridge_slave_1) entered forwarding state
[   21.447341][  T309] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.454125][  T309] bridge0: port 1(bridge_slave_0) entered forwarding state
[   21.467052][  T307] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.473883][  T307] bridge0: port 2(bridge_slave_1) entered forwarding state
[   21.480994][  T307] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.487786][  T307] bridge0: port 1(bridge_slave_0) entered forwarding state
[   21.517649][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   21.524796][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   21.531851][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   21.539132][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   21.546026][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   21.553627][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   21.561564][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   21.568830][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   21.577797][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   21.585801][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   21.594022][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   21.602076][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   21.609889][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   21.617069][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   21.624161][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   21.632153][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   21.640048][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.647147][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   21.662279][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   21.669935][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   21.678120][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   21.685996][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.692770][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   21.718684][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   21.726307][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   21.733967][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   21.741669][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   21.754688][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   21.769149][  T308] device veth0_vlan entered promiscuous mode
[   21.778771][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   21.786934][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   21.794580][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   21.801815][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   21.820963][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   21.828438][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   21.836439][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   21.844269][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   21.851502][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   21.859381][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   21.867283][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   21.874007][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   21.881361][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   21.889250][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   21.895985][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   21.903237][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   21.912815][  T310] device veth0_vlan entered promiscuous mode
[   21.920729][  T306] device veth0_vlan entered promiscuous mode
[   21.928116][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   21.935792][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   21.943721][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   21.951538][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   21.959315][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   21.967139][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   21.975220][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   21.982465][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   21.989692][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   21.997814][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   22.005734][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[   22.012575][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[   22.025920][  T308] device veth1_macvtap entered promiscuous mode
[   22.036547][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   22.044569][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   22.052549][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   22.059902][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   22.068583][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   22.076726][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   22.083572][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   22.092807][  T310] device veth1_macvtap entered promiscuous mode
[   22.106216][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   22.114236][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   22.122155][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   22.129674][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   22.137682][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   22.145859][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   22.153982][  T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   22.163415][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   22.171473][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   22.184445][  T309] device veth0_vlan entered promiscuous mode
[   22.190507][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   22.198668][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   22.206729][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   22.214890][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   22.223112][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   22.231099][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   22.239303][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   22.247443][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   22.255554][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   22.262802][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = dup2(r1, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
r3 = userfaultfd(0x80001)
readv(r3, 0x0, 0x0)

[   22.270004][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   22.277958][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   22.287926][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   22.295759][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   22.306330][  T306] device veth1_macvtap entered promiscuous mode
[   22.337939][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   22.345317][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   22.355559][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   22.365041][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   22.373172][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program 0:
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSF2(0xffffffffffffffff, 0x541d, 0xfffffffffffffffc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001380)={{r2}, &(0x7f0000001200), &(0x7f0000001240)=r3}, 0x20)
open(&(0x7f0000000340)='./file0\x00', 0x0, 0x20)
write$tcp_congestion(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r4, &(0x7f0000000000)="fa", 0xfffffdef)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f00000000c0), &(0x7f0000000200)=""/176}, 0x20)

[   22.381307][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   22.389287][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   22.406798][  T309] device veth1_macvtap entered promiscuous mode
[   22.414996][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   22.422568][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   22.430757][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   22.442812][  T307] device veth0_vlan entered promiscuous mode
[   22.455585][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   22.463532][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000080000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
ftruncate(r0, 0xc17a)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/156, 0x1000000, 0x800}, 0xeb)

[   22.486721][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   22.494206][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   22.518544][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   22.526537][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
executing program 1:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r1 = syz_open_pts(r0, 0x141601)
write(r1, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "7823d5f2fd71a6a76177920ea7e60c0ac7a4a5"})
close_range(r0, 0xffffffffffffffff, 0x0)

[   22.547160][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   22.555190][  T327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   22.575922][  T307] device veth1_macvtap entered promiscuous mode
[   22.599116][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   22.621482][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   22.631705][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   22.657581][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   22.673483][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   22.688199][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
executing program 3:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00220f"], 0x0}, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

[   22.700620][  T336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
unshare(0x4000400)
unshare(0x64000600)

executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth0_to_batadv\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000200)=0x5, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0x200, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f040e03f007120006001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xb318, 0x0, &(0x7f0000000540)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0x0, 0x0)

executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x5, 0x8, 0x1}, 0x48)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000940)={r0, &(0x7f0000000780), &(0x7f0000000900)=@udp=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0x0, 0xe, 0x0, &(0x7f0000000380)="0000ffffffffa00076b8638b6b0a", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

executing program 1:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r2}, 0x10)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x1005}, 0x4)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'wg0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f0000000180)="0b03feffe2ff020002004788aa96a13bb1000011000088ca1a00", 0x10543, 0x0, &(0x7f0000000140)={0x11, 0x0, r5}, 0x14)

[  122.846752][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  122.853225][    C1] rcu: 	1-...!: (1 GPs behind) idle=939/1/0x4000000000000000 softirq=2271/2290 fqs=0 last_accelerate: 9338/ba7f dyntick_enabled: 1
[  122.866492][    C1] 	(t=10000 jiffies g=857 q=124)
[  122.871261][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 9999 jiffies! g857 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  122.883154][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=385
[  122.890714][    C1] rcu: rcu_preempt kthread starved for 10000 jiffies! g857 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  122.901813][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  122.911621][    C1] rcu: RCU grace-period kthread stack dump:
[  122.917357][    C1] task:rcu_preempt     state:I stack:28328 pid:   14 ppid:     2 flags:0x00004000
[  122.926386][    C1] Call Trace:
[  122.929508][    C1]  <TASK>
[  122.932282][    C1]  __schedule+0xccc/0x1590
[  122.936533][    C1]  ? __sched_text_start+0x8/0x8
[  122.941217][    C1]  ? __kasan_check_write+0x14/0x20
[  122.946164][    C1]  schedule+0x11f/0x1e0
[  122.950158][    C1]  schedule_timeout+0x18c/0x370
[  122.954844][    C1]  ? _raw_spin_unlock_irq+0x4e/0x70
[  122.959884][    C1]  ? console_conditional_schedule+0x30/0x30
[  122.965605][    C1]  ? update_process_times+0x200/0x200
[  122.970813][    C1]  ? prepare_to_swait_event+0x308/0x320
[  122.976199][    C1]  rcu_gp_fqs_loop+0x2af/0xf80
[  122.980798][    C1]  ? debug_smp_processor_id+0x17/0x20
[  122.986002][    C1]  ? __note_gp_changes+0x4ab/0x920
[  122.990949][    C1]  ? rcu_gp_init+0xc30/0xc30
[  122.995377][    C1]  ? _raw_spin_unlock_irq+0x4e/0x70
[  123.000410][    C1]  ? rcu_gp_init+0x9cf/0xc30
[  123.004838][    C1]  rcu_gp_kthread+0xa4/0x350
[  123.009264][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  123.013951][    C1]  ? rcu_barrier_callback+0x50/0x50
[  123.018985][    C1]  ? __kasan_check_read+0x11/0x20
[  123.023845][    C1]  ? __kthread_parkme+0xb2/0x200
[  123.028628][    C1]  kthread+0x421/0x510
[  123.032526][    C1]  ? rcu_barrier_callback+0x50/0x50
[  123.037558][    C1]  ? kthread_blkcg+0xd0/0xd0
[  123.041985][    C1]  ret_from_fork+0x1f/0x30
[  123.046239][    C1]  </TASK>
[  123.049109][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  123.055271][    C1] Sending NMI from CPU 1 to CPUs 0:
[  123.060327][    C0] NMI backtrace for cpu 0
[  123.060347][    C0] CPU: 0 PID: 362 Comm: syz-executor.2 Not tainted 5.15.149-syzkaller-00490-g5d96939590c0 #0
[  123.060363][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  123.060375][    C0] RIP: 0010:kvm_wait+0x147/0x180
[  123.060397][    C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  123.060408][    C0] RSP: 0018:ffffc90005346ac0 EFLAGS: 00000246
[  123.060422][    C0] RAX: 0000000000000003 RBX: 1ffff92000a68d5c RCX: ffffffff8154fa7f
[  123.060433][    C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810baef808
[  123.060443][    C0] RBP: ffffc90005346b70 R08: dffffc0000000000 R09: ffffed102175df02
[  123.060454][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  123.060464][    C0] R13: ffff88810baef808 R14: 0000000000000003 R15: 1ffff92000a68d60
[  123.060474][    C0] FS:  00007f2c347006c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  123.060487][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  123.060498][    C0] CR2: 0000001b2ea21000 CR3: 0000000129f4a000 CR4: 00000000003506b0
[  123.060514][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  123.060522][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  123.060531][    C0] Call Trace:
[  123.060536][    C0]  <NMI>
[  123.060541][    C0]  ? show_regs+0x58/0x60
[  123.060557][    C0]  ? nmi_cpu_backtrace+0x29f/0x300
[  123.060575][    C0]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  123.060592][    C0]  ? kvm_wait+0x147/0x180
[  123.060604][    C0]  ? kvm_wait+0x147/0x180
[  123.060617][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  123.060633][    C0]  ? nmi_handle+0xa8/0x280
[  123.060647][    C0]  ? kvm_wait+0x147/0x180
[  123.060660][    C0]  ? default_do_nmi+0x69/0x160
[  123.060676][    C0]  ? exc_nmi+0xaf/0x120
[  123.060689][    C0]  ? end_repeat_nmi+0x16/0x31
[  123.060704][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  123.060722][    C0]  ? kvm_wait+0x147/0x180
[  123.060735][    C0]  ? kvm_wait+0x147/0x180
[  123.060748][    C0]  ? kvm_wait+0x147/0x180
[  123.060761][    C0]  </NMI>
[  123.060765][    C0]  <TASK>
[  123.060770][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  123.060784][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  123.060798][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  123.060815][    C0]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  123.060832][    C0]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  123.060848][    C0]  ? 0xffffffffa00282b4
[  123.060859][    C0]  ? is_bpf_text_address+0x172/0x190
[  123.060875][    C0]  _raw_spin_lock_bh+0x139/0x1b0
[  123.060891][    C0]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  123.060907][    C0]  ? sock_hash_bucket_hash+0x36d/0x7e0
[  123.060924][    C0]  sock_hash_delete_elem+0xb1/0x2f0
[  123.060939][    C0]  ? sock_map_unref+0x352/0x4d0
[  123.060958][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0xd4c
[  123.060971][    C0]  bpf_trace_run2+0xec/0x210
[  123.060988][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  123.061002][    C0]  ? sock_map_unref+0x352/0x4d0
[  123.061017][    C0]  ? sock_map_unref+0x352/0x4d0
[  123.061031][    C0]  __bpf_trace_kfree+0x6f/0x90
[  123.061045][    C0]  ? sock_map_unref+0x352/0x4d0
[  123.061059][    C0]  kfree+0x1f3/0x220
[  123.061076][    C0]  sock_map_unref+0x352/0x4d0
[  123.061091][    C0]  sock_hash_delete_elem+0x274/0x2f0
[  123.061106][    C0]  ? kvfree+0x35/0x40
[  123.061119][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0xd4c
[  123.061131][    C0]  bpf_trace_run2+0xec/0x210
[  123.061146][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  123.061160][    C0]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[  123.061176][    C0]  ? kvfree+0x35/0x40
[  123.061188][    C0]  ? free_unref_page+0x2b3/0x750
[  123.061204][    C0]  ? kvfree+0x35/0x40
[  123.061216][    C0]  __bpf_trace_kfree+0x6f/0x90
[  123.061230][    C0]  ? kvfree+0x35/0x40
[  123.061242][    C0]  kfree+0x1f3/0x220
[  123.061257][    C0]  kvfree+0x35/0x40
[  123.061269][    C0]  __vunmap+0x850/0x8f0
[  123.061284][    C0]  vfree+0x7f/0xb0
[  123.061296][    C0]  bpf_prog_calc_tag+0x69a/0x8f0
[  123.061312][    C0]  ? __bpf_prog_free+0xe0/0xe0
[  123.061330][    C0]  resolve_pseudo_ldimm64+0xe2/0x1240
[  123.061347][    C0]  ? check_attach_btf_id+0x40f/0xef0
[  123.061362][    C0]  ? bpf_check+0x12bf0/0x12bf0
[  123.061377][    C0]  ? check_attach_btf_id+0xef0/0xef0
[  123.061391][    C0]  ? __mark_reg_known+0x1b0/0x1b0
[  123.061406][    C0]  ? security_capable+0x87/0xb0
[  123.061422][    C0]  bpf_check+0x3174/0x12bf0
[  123.061443][    C0]  ? 0xffffffffa00282b4
[  123.061452][    C0]  ? is_bpf_text_address+0x172/0x190
[  123.061467][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  123.061482][    C0]  ? __kernel_text_address+0x9b/0x110
[  123.061496][    C0]  ? unwind_get_return_address+0x4d/0x90
[  123.061512][    C0]  ? bpf_get_btf_vmlinux+0x60/0x60
[  123.061526][    C0]  ? arch_stack_walk+0xf3/0x140
[  123.061543][    C0]  ? stack_trace_save+0x113/0x1c0
[  123.061557][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  123.061571][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  123.061586][    C0]  ? __stack_depot_save+0x34/0x470
[  123.061603][    C0]  ? ____kasan_kmalloc+0xed/0x110
[  123.061616][    C0]  ? ____kasan_kmalloc+0xdb/0x110
[  123.061629][    C0]  ? __kasan_kmalloc+0x9/0x10
[  123.061641][    C0]  ? kmem_cache_alloc_trace+0x115/0x210
[  123.061656][    C0]  ? selinux_bpf_prog_alloc+0x51/0x140
[  123.061669][    C0]  ? security_bpf_prog_alloc+0x62/0x90
[  123.061683][    C0]  ? bpf_prog_load+0x9ee/0x1b50
[  123.061696][    C0]  ? __sys_bpf+0x4bc/0x760
[  123.061709][    C0]  ? __x64_sys_bpf+0x7c/0x90
[  123.061721][    C0]  ? do_syscall_64+0x3d/0xb0
[  123.061734][    C0]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  123.061758][    C0]  ? __kasan_kmalloc+0x9/0x10
[  123.061771][    C0]  ? memset+0x35/0x40
[  123.061785][    C0]  ? bpf_obj_name_cpy+0x196/0x1e0
[  123.061798][    C0]  bpf_prog_load+0x12ac/0x1b50
[  123.061814][    C0]  ? map_freeze+0x370/0x370
[  123.061830][    C0]  ? selinux_bpf+0xcb/0x100
[  123.061843][    C0]  ? security_bpf+0x82/0xb0
[  123.061856][    C0]  __sys_bpf+0x4bc/0x760
[  123.061869][    C0]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[  123.061886][    C0]  ? __kasan_check_read+0x11/0x20
[  123.061901][    C0]  __x64_sys_bpf+0x7c/0x90
[  123.061914][    C0]  do_syscall_64+0x3d/0xb0
[  123.061927][    C0]  ? sysvec_apic_timer_interrupt+0x55/0xc0
[  123.061942][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  123.061963][    C0] RIP: 0033:0x7f2c3598bee9
[  123.061985][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  123.061995][    C0] RSP: 002b:00007f2c347000c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  123.062010][    C0] RAX: ffffffffffffffda RBX: 00007f2c35abaf80 RCX: 00007f2c3598bee9
[  123.062020][    C0] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  123.062029][    C0] RBP: 00007f2c359d849e R08: 0000000000000000 R09: 0000000000000000
[  123.062038][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  123.062047][    C0] R13: 000000000000000b R14: 00007f2c35abaf80 R15: 00007ffe219fa9f8
[  123.062059][    C0]  </TASK>
[  123.062377][    C1] NMI backtrace for cpu 1
[  123.738041][    C1] CPU: 1 PID: 351 Comm: syz-executor.4 Not tainted 5.15.149-syzkaller-00490-g5d96939590c0 #0
[  123.748012][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  123.757907][    C1] Call Trace:
[  123.761029][    C1]  <IRQ>
[  123.763724][    C1]  dump_stack_lvl+0x151/0x1b7
[  123.768232][    C1]  ? io_uring_drop_tctx_refs+0x190/0x190
[  123.773803][    C1]  ? ttwu_do_wakeup+0x187/0x430
[  123.778487][    C1]  dump_stack+0x15/0x17
[  123.782479][    C1]  nmi_cpu_backtrace+0x2f7/0x300
[  123.787254][    C1]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  123.793241][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  123.798536][    C1]  ? __kasan_check_write+0x14/0x20
[  123.803482][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  123.808179][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  123.814072][    C1]  nmi_trigger_cpumask_backtrace+0x15d/0x270
[  123.819886][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  123.825789][    C1]  arch_trigger_cpumask_backtrace+0x10/0x20
[  123.831519][    C1]  rcu_dump_cpu_stacks+0x1d8/0x330
[  123.836466][    C1]  print_cpu_stall+0x315/0x5f0
[  123.841066][    C1]  rcu_sched_clock_irq+0x989/0x12f0
[  123.846101][    C1]  ? rcu_boost_kthread_setaffinity+0x340/0x340
[  123.852089][    C1]  ? hrtimer_run_queues+0x15f/0x440
[  123.857123][    C1]  update_process_times+0x198/0x200
[  123.862156][    C1]  tick_sched_timer+0x188/0x240
[  123.866844][    C1]  ? tick_setup_sched_timer+0x480/0x480
[  123.872224][    C1]  __hrtimer_run_queues+0x41a/0xad0
[  123.877260][    C1]  ? hrtimer_interrupt+0xaa0/0xaa0
[  123.882204][    C1]  ? clockevents_program_event+0x22f/0x300
[  123.887847][    C1]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  123.893748][    C1]  hrtimer_interrupt+0x40c/0xaa0
[  123.898531][    C1]  __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  123.904251][    C1]  sysvec_apic_timer_interrupt+0x95/0xc0
[  123.909719][    C1]  </IRQ>
[  123.912496][    C1]  <TASK>
[  123.915273][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  123.921090][    C1] RIP: 0010:kvm_wait+0x147/0x180
[  123.925864][    C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  123.945305][    C1] RSP: 0018:ffffc90000a37860 EFLAGS: 00000246
[  123.951205][    C1] RAX: 0000000000000001 RBX: 1ffff92000146f10 RCX: 1ffffffff0d1aa9c
[  123.959018][    C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7137ed4
[  123.966828][    C1] RBP: ffffc90000a37910 R08: dffffc0000000000 R09: ffffed103ee26fdb
[  123.974642][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  123.982453][    C1] R13: ffff8881f7137ed4 R14: 0000000000000001 R15: 1ffff92000146f14
[  123.990268][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  123.996252][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  124.001201][    C1]  ? __pv_queued_spin_lock_slowpath+0x1ef/0xc40
[  124.007274][    C1]  __pv_queued_spin_lock_slowpath+0x41b/0xc40
[  124.013176][    C1]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  124.019424][    C1]  ? do_group_exit+0x141/0x310
[  124.024025][    C1]  ? do_syscall_64+0x3d/0xb0
[  124.028450][    C1]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  124.034355][    C1]  _raw_spin_lock_bh+0x139/0x1b0
[  124.039127][    C1]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  124.044161][    C1]  ? sock_hash_bucket_hash+0x36d/0x7e0
[  124.049456][    C1]  sock_hash_delete_elem+0xb1/0x2f0
[  124.054491][    C1]  ? kvfree+0x35/0x40
[  124.058311][    C1]  bpf_prog_2c29ac5cdc6b1842+0x3a/0xd4c
[  124.063690][    C1]  bpf_trace_run2+0xec/0x210
[  124.068116][    C1]  ? bpf_trace_run1+0x1c0/0x1c0
[  124.072802][    C1]  ? kvfree+0x35/0x40
[  124.076622][    C1]  ? down_read+0x947/0xf80
[  124.080875][    C1]  ? kvfree+0x35/0x40
[  124.084692][    C1]  __bpf_trace_kfree+0x6f/0x90
[  124.089294][    C1]  ? kvfree+0x35/0x40
[  124.093111][    C1]  kfree+0x1f3/0x220
[  124.096848][    C1]  kvfree+0x35/0x40
[  124.100491][    C1]  put_files_struct+0x284/0x320
[  124.105177][    C1]  exit_files+0x80/0xa0
[  124.109171][    C1]  do_exit+0xc11/0x2ca0
[  124.113162][    C1]  ? try_invoke_on_locked_down_task+0x2a0/0x2a0
[  124.119238][    C1]  ? __kasan_check_write+0x14/0x20
[  124.124188][    C1]  ? put_task_struct+0x80/0x80
[  124.128785][    C1]  ? __kasan_check_write+0x14/0x20
[  124.133731][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  124.138680][    C1]  ? zap_other_threads+0x237/0x270
[  124.143634][    C1]  do_group_exit+0x141/0x310
[  124.148054][    C1]  __x64_sys_exit_group+0x3f/0x40
[  124.152912][    C1]  do_syscall_64+0x3d/0xb0
[  124.157166][    C1]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  124.162895][    C1] RIP: 0033:0x7fdffd90cee9
[  124.167147][    C1] Code: Unable to access opcode bytes at RIP 0x7fdffd90cebf.
[  124.174349][    C1] RSP: 002b:00007ffe7e4c4228 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  124.182595][    C1] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fdffd90cee9
[  124.190407][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  124.198218][    C1] RBP: 0000000000000001 R08: 0000000000000d9e R09: 0000000000000000
[  124.206031][    C1] R10: 0000001b2ed20000 R11: 0000000000000246 R12: 0000000000000000
[  124.213840][    C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[  124.221656][    C1]  </TASK>
[  265.037512][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 246s! [syz-executor.2:362]
[  265.045843][    C0] Modules linked in:
[  265.049572][    C0] CPU: 0 PID: 362 Comm: syz-executor.2 Not tainted 5.15.149-syzkaller-00490-g5d96939590c0 #0
[  265.059546][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  265.069449][    C0] RIP: 0010:kvm_wait+0x147/0x180
[  265.074217][    C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  265.094002][    C0] RSP: 0018:ffffc90005346ac0 EFLAGS: 00000246
[  265.099904][    C0] RAX: 0000000000000003 RBX: 1ffff92000a68d5c RCX: ffffffff8154fa7f
[  265.107717][    C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810baef808
[  265.115527][    C0] RBP: ffffc90005346b70 R08: dffffc0000000000 R09: ffffed102175df02
[  265.123338][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  265.131149][    C0] R13: ffff88810baef808 R14: 0000000000000003 R15: 1ffff92000a68d60
[  265.138961][    C0] FS:  00007f2c347006c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  265.147730][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  265.154150][    C0] CR2: 0000001b2ea21000 CR3: 0000000129f4a000 CR4: 00000000003506b0
[  265.161964][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  265.169773][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  265.177585][    C0] Call Trace:
[  265.180712][    C0]  <IRQ>
[  265.183496][    C0]  ? show_regs+0x58/0x60
[  265.187478][    C0]  ? watchdog_timer_fn+0x4b1/0x5f0
[  265.192426][    C0]  ? proc_watchdog_cpumask+0xd0/0xd0
[  265.197548][    C0]  ? __hrtimer_run_queues+0x41a/0xad0
[  265.202756][    C0]  ? hrtimer_interrupt+0xaa0/0xaa0
[  265.207701][    C0]  ? clockevents_program_event+0x22f/0x300
[  265.213467][    C0]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  265.219365][    C0]  ? hrtimer_interrupt+0x40c/0xaa0
[  265.224311][    C0]  ? __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  265.230212][    C0]  ? sysvec_apic_timer_interrupt+0x95/0xc0
[  265.235852][    C0]  </IRQ>
[  265.238630][    C0]  <TASK>
[  265.241406][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  265.247397][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  265.253526][    C0]  ? kvm_wait+0x147/0x180
[  265.257639][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  265.263627][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  265.268578][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  265.274649][    C0]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  265.280553][    C0]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  265.286801][    C0]  ? 0xffffffffa00282b4
[  265.290794][    C0]  ? is_bpf_text_address+0x172/0x190
[  265.295913][    C0]  _raw_spin_lock_bh+0x139/0x1b0
[  265.300689][    C0]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  265.305721][    C0]  ? sock_hash_bucket_hash+0x36d/0x7e0
[  265.311016][    C0]  sock_hash_delete_elem+0xb1/0x2f0
[  265.316048][    C0]  ? sock_map_unref+0x352/0x4d0
[  265.320737][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0xd4c
[  265.326120][    C0]  bpf_trace_run2+0xec/0x210
[  265.330547][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  265.335234][    C0]  ? sock_map_unref+0x352/0x4d0
[  265.339920][    C0]  ? sock_map_unref+0x352/0x4d0
[  265.344617][    C0]  __bpf_trace_kfree+0x6f/0x90
[  265.349207][    C0]  ? sock_map_unref+0x352/0x4d0
[  265.353891][    C0]  kfree+0x1f3/0x220
[  265.357624][    C0]  sock_map_unref+0x352/0x4d0
[  265.362137][    C0]  sock_hash_delete_elem+0x274/0x2f0
[  265.367257][    C0]  ? kvfree+0x35/0x40
[  265.371076][    C0]  bpf_prog_2c29ac5cdc6b1842+0x3a/0xd4c
[  265.376457][    C0]  bpf_trace_run2+0xec/0x210
[  265.380885][    C0]  ? bpf_trace_run1+0x1c0/0x1c0
[  265.385569][    C0]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[  265.391213][    C0]  ? kvfree+0x35/0x40
[  265.395030][    C0]  ? free_unref_page+0x2b3/0x750
[  265.399835][    C0]  ? kvfree+0x35/0x40
[  265.403623][    C0]  __bpf_trace_kfree+0x6f/0x90
[  265.408224][    C0]  ? kvfree+0x35/0x40
[  265.412043][    C0]  kfree+0x1f3/0x220
[  265.415775][    C0]  kvfree+0x35/0x40
[  265.419425][    C0]  __vunmap+0x850/0x8f0
[  265.423412][    C0]  vfree+0x7f/0xb0
[  265.426970][    C0]  bpf_prog_calc_tag+0x69a/0x8f0
[  265.431746][    C0]  ? __bpf_prog_free+0xe0/0xe0
[  265.436345][    C0]  resolve_pseudo_ldimm64+0xe2/0x1240
[  265.441554][    C0]  ? check_attach_btf_id+0x40f/0xef0
[  265.446674][    C0]  ? bpf_check+0x12bf0/0x12bf0
[  265.451275][    C0]  ? check_attach_btf_id+0xef0/0xef0
[  265.456393][    C0]  ? __mark_reg_known+0x1b0/0x1b0
[  265.461253][    C0]  ? security_capable+0x87/0xb0
[  265.465942][    C0]  bpf_check+0x3174/0x12bf0
[  265.470286][    C0]  ? 0xffffffffa00282b4
[  265.474273][    C0]  ? is_bpf_text_address+0x172/0x190
[  265.479393][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  265.484254][    C0]  ? __kernel_text_address+0x9b/0x110
[  265.489462][    C0]  ? unwind_get_return_address+0x4d/0x90
[  265.494936][    C0]  ? bpf_get_btf_vmlinux+0x60/0x60
[  265.499876][    C0]  ? arch_stack_walk+0xf3/0x140
[  265.504565][    C0]  ? stack_trace_save+0x113/0x1c0
[  265.509424][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  265.514371][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  265.519318][    C0]  ? __stack_depot_save+0x34/0x470
[  265.524280][    C0]  ? ____kasan_kmalloc+0xed/0x110
[  265.529127][    C0]  ? ____kasan_kmalloc+0xdb/0x110
[  265.533987][    C0]  ? __kasan_kmalloc+0x9/0x10
[  265.538502][    C0]  ? kmem_cache_alloc_trace+0x115/0x210
[  265.543881][    C0]  ? selinux_bpf_prog_alloc+0x51/0x140
[  265.549263][    C0]  ? security_bpf_prog_alloc+0x62/0x90
[  265.554558][    C0]  ? bpf_prog_load+0x9ee/0x1b50
[  265.559246][    C0]  ? __sys_bpf+0x4bc/0x760
[  265.563498][    C0]  ? __x64_sys_bpf+0x7c/0x90
[  265.567922][    C0]  ? do_syscall_64+0x3d/0xb0
[  265.572349][    C0]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  265.578264][    C0]  ? __kasan_kmalloc+0x9/0x10
[  265.582765][    C0]  ? memset+0x35/0x40
[  265.586584][    C0]  ? bpf_obj_name_cpy+0x196/0x1e0
[  265.591445][    C0]  bpf_prog_load+0x12ac/0x1b50
[  265.596057][    C0]  ? map_freeze+0x370/0x370
[  265.600385][    C0]  ? selinux_bpf+0xcb/0x100
[  265.604724][    C0]  ? security_bpf+0x82/0xb0
[  265.609063][    C0]  __sys_bpf+0x4bc/0x760
[  265.613231][    C0]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[  265.618439][    C0]  ? __kasan_check_read+0x11/0x20
[  265.623296][    C0]  __x64_sys_bpf+0x7c/0x90
[  265.627556][    C0]  do_syscall_64+0x3d/0xb0
[  265.631802][    C0]  ? sysvec_apic_timer_interrupt+0x55/0xc0
[  265.637444][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  265.643174][    C0] RIP: 0033:0x7f2c3598bee9
[  265.647436][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  265.666870][    C0] RSP: 002b:00007f2c347000c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  265.675111][    C0] RAX: ffffffffffffffda RBX: 00007f2c35abaf80 RCX: 00007f2c3598bee9
[  265.682923][    C0] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  265.690736][    C0] RBP: 00007f2c359d849e R08: 0000000000000000 R09: 0000000000000000
[  265.698547][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  265.706359][    C0] R13: 000000000000000b R14: 00007f2c35abaf80 R15: 00007ffe219fa9f8
[  265.714173][    C0]  </TASK>
[  265.717036][    C0] Sending NMI from CPU 0 to CPUs 1:
[  265.722091][    C1] NMI backtrace for cpu 1
[  265.722107][    C1] CPU: 1 PID: 351 Comm: syz-executor.4 Not tainted 5.15.149-syzkaller-00490-g5d96939590c0 #0
[  265.722123][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  265.722132][    C1] RIP: 0010:kvm_wait+0x147/0x180
[  265.722152][    C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  265.722163][    C1] RSP: 0018:ffffc90000a37860 EFLAGS: 00000246
[  265.722176][    C1] RAX: 0000000000000001 RBX: 1ffff92000146f10 RCX: 1ffffffff0d1aa9c
[  265.722186][    C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7137ed4
[  265.722195][    C1] RBP: ffffc90000a37910 R08: dffffc0000000000 R09: ffffed103ee26fdb
[  265.722206][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  265.722216][    C1] R13: ffff8881f7137ed4 R14: 0000000000000001 R15: 1ffff92000146f14
[  265.722226][    C1] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  265.722239][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  265.722249][    C1] CR2: 0000001b2e925000 CR3: 0000000129cbb000 CR4: 00000000003506a0
[  265.722263][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  265.722271][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  265.722280][    C1] Call Trace:
[  265.722285][    C1]  <NMI>
[  265.722290][    C1]  ? show_regs+0x58/0x60
[  265.722306][    C1]  ? nmi_cpu_backtrace+0x29f/0x300
[  265.722323][    C1]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  265.722340][    C1]  ? kvm_wait+0x147/0x180
[  265.722353][    C1]  ? kvm_wait+0x147/0x180
[  265.722366][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  265.722382][    C1]  ? nmi_handle+0xa8/0x280
[  265.722396][    C1]  ? kvm_wait+0x147/0x180
[  265.722409][    C1]  ? default_do_nmi+0x69/0x160
[  265.722425][    C1]  ? exc_nmi+0xaf/0x120
[  265.722438][    C1]  ? end_repeat_nmi+0x16/0x31
[  265.722454][    C1]  ? kvm_wait+0x147/0x180
[  265.722467][    C1]  ? kvm_wait+0x147/0x180
[  265.722480][    C1]  ? kvm_wait+0x147/0x180
[  265.722493][    C1]  </NMI>
[  265.722497][    C1]  <TASK>
[  265.722501][    C1]  ? asm_common_interrupt+0x27/0x40
[  265.722514][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  265.722530][    C1]  __pv_queued_spin_lock_slowpath+0x41b/0xc40
[  265.722550][    C1]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  265.722565][    C1]  ? do_group_exit+0x141/0x310
[  265.722580][    C1]  ? do_syscall_64+0x3d/0xb0
[  265.722593][    C1]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  265.722612][    C1]  _raw_spin_lock_bh+0x139/0x1b0
[  265.722627][    C1]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  265.722643][    C1]  ? sock_hash_bucket_hash+0x36d/0x7e0
[  265.722660][    C1]  sock_hash_delete_elem+0xb1/0x2f0
[  265.722675][    C1]  ? kvfree+0x35/0x40
[  265.722688][    C1]  bpf_prog_2c29ac5cdc6b1842+0x3a/0xd4c
[  265.722701][    C1]  bpf_trace_run2+0xec/0x210
[  265.722717][    C1]  ? bpf_trace_run1+0x1c0/0x1c0
[  265.722732][    C1]  ? kvfree+0x35/0x40
[  265.722744][    C1]  ? down_read+0x947/0xf80
[  265.722764][    C1]  ? kvfree+0x35/0x40
[  265.722777][    C1]  __bpf_trace_kfree+0x6f/0x90
[  265.722790][    C1]  ? kvfree+0x35/0x40
[  265.722802][    C1]  kfree+0x1f3/0x220
[  265.722819][    C1]  kvfree+0x35/0x40
[  265.722831][    C1]  put_files_struct+0x284/0x320
[  265.722846][    C1]  exit_files+0x80/0xa0
[  265.722858][    C1]  do_exit+0xc11/0x2ca0
[  265.722872][    C1]  ? try_invoke_on_locked_down_task+0x2a0/0x2a0
[  265.722890][    C1]  ? __kasan_check_write+0x14/0x20
[  265.722904][    C1]  ? put_task_struct+0x80/0x80
[  265.722918][    C1]  ? __kasan_check_write+0x14/0x20
[  265.722932][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  265.722948][    C1]  ? zap_other_threads+0x237/0x270
[  265.722964][    C1]  do_group_exit+0x141/0x310
[  265.722979][    C1]  __x64_sys_exit_group+0x3f/0x40
[  265.722993][    C1]  do_syscall_64+0x3d/0xb0
[  265.723006][    C1]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  265.723022][    C1] RIP: 0033:0x7fdffd90cee9
[  265.723033][    C1] Code: Unable to access opcode bytes at RIP 0x7fdffd90cebf.
[  265.723040][    C1] RSP: 002b:00007ffe7e4c4228 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  265.723054][    C1] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007fdffd90cee9
[  265.723064][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  265.723072][    C1] RBP: 0000000000000001 R08: 0000000000000d9e R09: 0000000000000000
[  265.723080][    C1] R10: 0000001b2ed20000 R11: 0000000000000246 R12: 0000000000000000
[  265.723090][    C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[  265.723101][    C1]  </TASK>