program:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x16, 0x16, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x253, 0x10, &(0x7f0000000000), 0x19f, 0x0, 0xffffffffffffffff, 0xffffffffffffff74}, 0x48)

[   85.597846][   T46] Bluetooth: hci0: command tx timeout
[   85.709725][ T5350] ------------[ cut here ]------------
[   85.712421][ T5350] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x2, 0x0] s64=[0x2, 0x0] u32=[0x2, 0x0] s32=[0x2, 0x0] var_off=(0x0, 0x0)
[   85.726278][ T5350] WARNING: kernel/bpf/verifier.c:2748 at 0x0, CPU#0: syz.0.0/5350
[   85.731538][ T5350] Modules linked in:
[   85.733478][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.737557][ T5350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.742113][ T5350] RIP: 0010:reg_bounds_sanity_check+0x3e6/0xc30
[   85.745229][ T5350] Code: 98 00 00 00 4c 8b 8c 24 88 00 00 00 41 ff 34 24 41 57 55 41 55 ff b4 24 f0 00 00 00 ff b4 24 a8 00 00 00 ff b4 24 c0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 49 bf 00 00 00 00 00 fc ff df 48 8b 84
[   85.753935][ T5350] RSP: 0018:ffffc9000b9feed0 EFLAGS: 00010246
[   85.756863][ T5350] RAX: dffffc0000000000 RBX: 1ffff11006bc7c66 RCX: 0000000000000002
[   85.760587][ T5350] RDX: ffffffff8b91cd60 RSI: ffffffff8b925520 RDI: ffffffff8fa57770
[   85.764251][ T5350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000002
[   85.768023][ T5350] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff888035e3e330
[   85.775028][ T5350] R13: 0000000000000002 R14: 1ffff11006bc7c65 R15: 0000000000000000
[   85.779043][ T5350] FS:  00007f295fd096c0(0000) GS:ffff88808d23e000(0000) knlGS:0000000000000000
[   85.783220][ T5350] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   85.789340][ T5350] CR2: 0000200000001000 CR3: 0000000043c84000 CR4: 0000000000352ef0
[   85.804274][ T5350] Call Trace:
[   85.806099][ T5350]  <TASK>
[   85.807814][ T5350]  reg_set_min_max+0x2b4/0x340
[   85.809982][ T5350]  check_cond_jmp_op+0x19c6/0x2e20
[   85.812562][ T5350]  ? __pfx_check_cond_jmp_op+0x10/0x10
[   85.815042][ T5350]  ? push_jmp_history+0x1dd/0x690
[   85.817702][ T5350]  ? bpf_reset_stack_write_marks+0x1eb/0x260
[   85.820306][ T5350]  do_check+0x58f5/0xeba0
[   85.822191][ T5350]  ? do_syscall_64+0xfa/0xf80
[   85.824271][ T5350]  ? __pfx_do_check+0x10/0x10
[   85.826537][ T5350]  ? init_func_state+0x1ab2/0x28d0
[   85.829288][ T5350]  do_check_common+0x19cc/0x25b0
[   85.831648][ T5350]  bpf_check+0x5e7a/0x1c300
[   85.833780][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   85.835930][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   85.838361][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   85.840458][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   85.842675][ T5350]  ? css_rstat_updated+0x23a/0x4f0
[   85.844864][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   85.847322][ T5350]  ? __pfx_bpf_check+0x10/0x10
[   85.849587][ T5350]  ? seqcount_lockdep_reader_access+0x122/0x1c0
[   85.852351][ T5350]  ? lockdep_hardirqs_on+0x98/0x140
[   85.854659][ T5350]  ? ktime_get_with_offset+0x93/0x2a0
[   85.857039][ T5350]  ? seqcount_lockdep_reader_access+0x174/0x1c0
[   85.859903][ T5350]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[   85.862805][ T5350]  ? __asan_memset+0x22/0x50
[   85.865092][ T5350]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[   85.867475][ T5350]  ? security_bpf_prog_load+0x125/0x3f0
[   85.870165][ T5350]  bpf_prog_load+0x13ba/0x1a10
[   85.872715][ T5350]  ? __pfx_bpf_prog_load+0x10/0x10
[   85.875251][ T5350]  ? bpf_lsm_bpf+0x9/0x20
[   85.877504][ T5350]  ? security_bpf+0x7e/0x300
[   85.879819][ T5350]  __sys_bpf+0x507/0x860
[   85.881943][ T5350]  ? __pfx___sys_bpf+0x10/0x10
[   85.884302][ T5350]  ? irqentry_exit+0x5dd/0x660
[   85.886526][ T5350]  ? rcu_is_watching+0x15/0xb0
[   85.892427][ T5350]  __x64_sys_bpf+0x7c/0x90
[   85.894781][ T5350]  do_syscall_64+0xfa/0xf80
[   85.897069][ T5350]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.899901][ T5350]  ? clear_bhb_loop+0x60/0xb0
[   85.902252][ T5350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.904906][ T5350] RIP: 0033:0x7f295ed8f7c9
[   85.906795][ T5350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.914470][ T5350] RSP: 002b:00007f295fd09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.918423][ T5350] RAX: ffffffffffffffda RBX: 00007f295efe5fa0 RCX: 00007f295ed8f7c9
[   85.921849][ T5350] RDX: 0000000000000048 RSI: 0000200000000100 RDI: 0000000000000005
[   85.925444][ T5350] RBP: 00007f295ee13f91 R08: 0000000000000000 R09: 0000000000000000
[   85.929075][ T5350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.932568][ T5350] R13: 00007f295efe6038 R14: 00007f295efe5fa0 R15: 00007ffe90441998
[   85.935989][ T5350]  </TASK>
[   85.937876][ T5350] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   85.941018][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   85.944977][ T5350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.949765][ T5350] Call Trace:
[   85.951254][ T5350]  <TASK>
[   85.952666][ T5350]  dump_stack_lvl+0x99/0x250
[   85.954910][ T5350]  ? __asan_memcpy+0x40/0x70
[   85.957072][ T5350]  ? __pfx_dump_stack_lvl+0x10/0x10
[   85.959340][ T5350]  ? __pfx__printk+0x10/0x10
[   85.961421][ T5350]  vpanic+0x237/0x6d0
[   85.963305][ T5350]  ? __pfx_vpanic+0x10/0x10
[   85.965317][ T5350]  ? is_bpf_text_address+0x292/0x2b0
[   85.967680][ T5350]  ? is_bpf_text_address+0x26/0x2b0
[   85.969949][ T5350]  panic+0xb9/0xc0
[   85.971507][ T5350]  ? __pfx_panic+0x10/0x10
[   85.973490][ T5350]  __warn+0x317/0x4b0
[   85.975311][ T5350]  __report_bug+0x288/0x500
[   85.977464][ T5350]  ? __pfx___report_bug+0x10/0x10
[   85.979830][ T5350]  ? reg_bounds_sanity_check+0x3eb/0xc30
[   85.982286][ T5350]  ? reg_bounds_sanity_check+0x3e6/0xc30
[   85.984608][ T5350]  report_bug_entry+0x16a/0x220
[   85.986800][ T5350]  ? reg_bounds_sanity_check+0x3e6/0xc30
[   85.989349][ T5350]  ? reg_bounds_sanity_check+0x3eb/0xc30
[   85.991694][ T5350]  handle_bug+0xca/0x200
[   85.993553][ T5350]  exc_invalid_op+0x1a/0x50
[   85.995429][ T5350]  asm_exc_invalid_op+0x1a/0x20
[   85.997575][ T5350] RIP: 0010:reg_bounds_sanity_check+0x3e6/0xc30
[   86.000277][ T5350] Code: 98 00 00 00 4c 8b 8c 24 88 00 00 00 41 ff 34 24 41 57 55 41 55 ff b4 24 f0 00 00 00 ff b4 24 a8 00 00 00 ff b4 24 c0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 49 bf 00 00 00 00 00 fc ff df 48 8b 84
[   86.008299][ T5350] RSP: 0018:ffffc9000b9feed0 EFLAGS: 00010246
[   86.010984][ T5350] RAX: dffffc0000000000 RBX: 1ffff11006bc7c66 RCX: 0000000000000002
[   86.014517][ T5350] RDX: ffffffff8b91cd60 RSI: ffffffff8b925520 RDI: ffffffff8fa57770
[   86.017858][ T5350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000002
[   86.021325][ T5350] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff888035e3e330
[   86.024630][ T5350] R13: 0000000000000002 R14: 1ffff11006bc7c65 R15: 0000000000000000
[   86.028005][ T5350]  reg_set_min_max+0x2b4/0x340
[   86.030161][ T5350]  check_cond_jmp_op+0x19c6/0x2e20
[   86.032440][ T5350]  ? __pfx_check_cond_jmp_op+0x10/0x10
[   86.034867][ T5350]  ? push_jmp_history+0x1dd/0x690
[   86.037057][ T5350]  ? bpf_reset_stack_write_marks+0x1eb/0x260
[   86.039731][ T5350]  do_check+0x58f5/0xeba0
[   86.041554][ T5350]  ? do_syscall_64+0xfa/0xf80
[   86.043699][ T5350]  ? __pfx_do_check+0x10/0x10
[   86.045792][ T5350]  ? init_func_state+0x1ab2/0x28d0
[   86.047885][ T5350]  do_check_common+0x19cc/0x25b0
[   86.049906][ T5350]  bpf_check+0x5e7a/0x1c300
[   86.051774][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   86.053786][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   86.055779][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   86.057727][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   86.059714][ T5350]  ? css_rstat_updated+0x23a/0x4f0
[   86.061896][ T5350]  ? __lock_acquire+0x6b6/0x2cf0
[   86.064198][ T5350]  ? __pfx_bpf_check+0x10/0x10
[   86.066419][ T5350]  ? seqcount_lockdep_reader_access+0x122/0x1c0
[   86.069157][ T5350]  ? lockdep_hardirqs_on+0x98/0x140
[   86.071461][ T5350]  ? ktime_get_with_offset+0x93/0x2a0
[   86.073771][ T5350]  ? seqcount_lockdep_reader_access+0x174/0x1c0
[   86.076490][ T5350]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[   86.079325][ T5350]  ? __asan_memset+0x22/0x50
[   86.081351][ T5350]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[   86.083613][ T5350]  ? security_bpf_prog_load+0x125/0x3f0
[   86.086058][ T5350]  bpf_prog_load+0x13ba/0x1a10
[   86.088274][ T5350]  ? __pfx_bpf_prog_load+0x10/0x10
[   86.090769][ T5350]  ? bpf_lsm_bpf+0x9/0x20
[   86.093053][ T5350]  ? security_bpf+0x7e/0x300
[   86.095390][ T5350]  __sys_bpf+0x507/0x860
[   86.097254][ T5350]  ? __pfx___sys_bpf+0x10/0x10
[   86.099269][ T5350]  ? irqentry_exit+0x5dd/0x660
[   86.101419][ T5350]  ? rcu_is_watching+0x15/0xb0
[   86.103595][ T5350]  __x64_sys_bpf+0x7c/0x90
[   86.105580][ T5350]  do_syscall_64+0xfa/0xf80
[   86.107557][ T5350]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.110281][ T5350]  ? clear_bhb_loop+0x60/0xb0
[   86.112410][ T5350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.115002][ T5350] RIP: 0033:0x7f295ed8f7c9
[   86.116992][ T5350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.125262][ T5350] RSP: 002b:00007f295fd09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.128898][ T5350] RAX: ffffffffffffffda RBX: 00007f295efe5fa0 RCX: 00007f295ed8f7c9
[   86.132743][ T5350] RDX: 0000000000000048 RSI: 0000200000000100 RDI: 0000000000000005
[   86.136664][ T5350] RBP: 00007f295ee13f91 R08: 0000000000000000 R09: 0000000000000000
[   86.140846][ T5350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.145176][ T5350] R13: 00007f295efe6038 R14: 00007f295efe5fa0 R15: 00007ffe90441998
[   86.148663][ T5350]  </TASK>
[   86.150349][ T5350] Kernel Offset: disabled
[   86.152219][ T5350] Rebooting in 86400 seconds..