program:
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_PMKSA(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={0x0}}, 0x0)
sendmmsg(r1, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8800)
sendmmsg(r2, &(0x7f000001a800)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x20000010) (fail_nth: 13)

[   78.450704][ T5099] Bluetooth: hci0: command tx timeout
[   79.439791][ T5114] FAULT_INJECTION: forcing a failure.
[   79.439791][ T5114] name failslab, interval 1, probability 0, space 0, times 1
[   79.448500][ T5114] CPU: 0 UID: 0 PID: 5114 Comm: syz.0.0 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[   79.452248][ T5114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.456141][ T5114] Call Trace:
[   79.457433][ T5114]  <TASK>
[   79.458602][ T5114]  dump_stack_lvl+0x241/0x360
[   79.460650][ T5114]  ? __pfx_dump_stack_lvl+0x10/0x10
[   79.462625][ T5114]  ? __pfx__printk+0x10/0x10
[   79.464486][ T5114]  ? __kmalloc_cache_noprof+0x44/0x2c0
[   79.466480][ T5114]  ? __pfx___might_resched+0x10/0x10
[   79.468348][ T5114]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.470392][ T5114]  should_fail_ex+0x3b0/0x4e0
[   79.472016][ T5114]  should_failslab+0xac/0x100
[   79.473722][ T5114]  ? dccp_feat_entry_new+0x173/0x3a0
[   79.475507][ T5114]  __kmalloc_cache_noprof+0x6c/0x2c0
[   79.477224][ T5114]  dccp_feat_entry_new+0x173/0x3a0
[   79.479341][ T5114]  dccp_feat_parse_options+0xeac/0x2c30
[   79.481639][ T5114]  ? __pfx_dccp_feat_parse_options+0x10/0x10
[   79.483981][ T5114]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[   79.486200][ T5114]  dccp_parse_options+0x13bd/0x2670
[   79.488487][ T5114]  dccp_rcv_established+0x55/0x320
[   79.490570][ T5114]  dccp_v6_do_rcv+0x28e/0xb10
[   79.492553][ T5114]  ? __pfx_dccp_v6_do_rcv+0x10/0x10
[   79.495003][ T5114]  __release_sock+0x243/0x350
[   79.496906][ T5114]  release_sock+0x61/0x1f0
[   79.498669][ T5114]  dccp_sendmsg+0x4f0/0xba0
[   79.500457][ T5114]  ? __pfx_dccp_sendmsg+0x10/0x10
[   79.502432][ T5114]  ? sock_rps_record_flow+0x1a/0x400
[   79.504314][ T5114]  ? inet_sendmsg+0x330/0x390
[   79.505994][ T5114]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   79.508055][ T5114]  ? security_socket_sendmsg+0x87/0xb0
[   79.509828][ T5114]  __sock_sendmsg+0x1a6/0x270
[   79.511426][ T5114]  ____sys_sendmsg+0x525/0x7d0
[   79.513257][ T5114]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.515289][ T5114]  ? __might_fault+0xaa/0x120
[   79.517187][ T5114]  __sys_sendmmsg+0x3b2/0x740
[   79.519063][ T5114]  ? __pfx___sys_sendmmsg+0x10/0x10
[   79.521132][ T5114]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   79.523330][ T5114]  ? ksys_write+0x23e/0x2c0
[   79.525128][ T5114]  ? __pfx_lock_release+0x10/0x10
[   79.527113][ T5114]  ? vfs_write+0x7c4/0xc90
[   79.528836][ T5114]  ? __mutex_unlock_slowpath+0x21d/0x750
[   79.530677][ T5114]  ? __pfx_vfs_write+0x10/0x10
[   79.532543][ T5114]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   79.535018][ T5114]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   79.537432][ T5114]  ? do_syscall_64+0x100/0x230
[   79.539259][ T5114]  __x64_sys_sendmmsg+0xa0/0xb0
[   79.541140][ T5114]  do_syscall_64+0xf3/0x230
[   79.542910][ T5114]  ? clear_bhb_loop+0x35/0x90
[   79.544748][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.546920][ T5114] RIP: 0033:0x7f2b2f979eb9
[   79.548616][ T5114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.555428][ T5114] RSP: 002b:00007f2b30719038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   79.558259][ T5114] RAX: ffffffffffffffda RBX: 00007f2b2fb15f80 RCX: 00007f2b2f979eb9
[   79.561147][ T5114] RDX: 0000000000000003 RSI: 000000002001a800 RDI: 0000000000000005
[   79.563996][ T5114] RBP: 00007f2b30719090 R08: 0000000000000000 R09: 0000000000000000
[   79.567201][ T5114] R10: 0000000020000010 R11: 0000000000000246 R12: 0000000000000002
[   79.570267][ T5114] R13: 0000000000000000 R14: 00007f2b2fb15f80 R15: 00007ffd0956e208
[   79.573147][ T5114]  </TASK>
[   79.754201][ T5114] dccp_parse_options: DCCP(ffff88803c402b00): Option 32 (len=7) error=9
[   79.764816][ T5114] ==================================================================
[   79.767880][ T5114] BUG: KASAN: slab-use-after-free in ccid2_hc_tx_packet_recv+0x1902/0x2070
[   79.771092][ T5114] Read of size 1 at addr ffff88804a4734a2 by task syz.0.0/5114
[   79.773899][ T5114] 
[   79.774703][ T5114] CPU: 0 UID: 0 PID: 5114 Comm: syz.0.0 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[   79.778649][ T5114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.782681][ T5114] Call Trace:
[   79.783846][ T5114]  <TASK>
[   79.784940][ T5114]  dump_stack_lvl+0x241/0x360
[   79.786713][ T5114]  ? __pfx_dump_stack_lvl+0x10/0x10
[   79.788600][ T5114]  ? __pfx__printk+0x10/0x10
[   79.790176][ T5114]  ? _printk+0xd5/0x120
[   79.791711][ T5114]  ? __virt_addr_valid+0x183/0x530
[   79.793627][ T5114]  ? __virt_addr_valid+0x183/0x530
[   79.795423][ T5114]  print_report+0x169/0x550
[   79.797056][ T5114]  ? __virt_addr_valid+0x183/0x530
[   79.798863][ T5114]  ? __virt_addr_valid+0x183/0x530
[   79.800667][ T5114]  ? __virt_addr_valid+0x45f/0x530
[   79.802558][ T5114]  ? __phys_addr+0xba/0x170
[   79.804334][ T5114]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   79.806633][ T5114]  kasan_report+0x143/0x180
[   79.808267][ T5114]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   79.810562][ T5114]  ccid2_hc_tx_packet_recv+0x1902/0x2070
[   79.812743][ T5114]  ? lockdep_hardirqs_on+0x99/0x150
[   79.814785][ T5114]  ? dccp_ackvec_clear_state+0x5dd/0x8b0
[   79.816823][ T5114]  ? dccp_ackvec_input+0x1d5/0xf60
[   79.818749][ T5114]  ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[   79.820868][ T5114]  ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[   79.823191][ T5114]  dccp_rcv_established+0x295/0x320
[   79.824980][ T5114]  dccp_v6_do_rcv+0x28e/0xb10
[   79.826782][ T5114]  ? __pfx_dccp_v6_do_rcv+0x10/0x10
[   79.828786][ T5114]  __release_sock+0x243/0x350
[   79.830604][ T5114]  release_sock+0x61/0x1f0
[   79.832327][ T5114]  dccp_sendmsg+0x4f0/0xba0
[   79.834117][ T5114]  ? __pfx_dccp_sendmsg+0x10/0x10
[   79.836046][ T5114]  ? sock_rps_record_flow+0x1a/0x400
[   79.838109][ T5114]  ? inet_sendmsg+0x330/0x390
[   79.839950][ T5114]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   79.842015][ T5114]  ? security_socket_sendmsg+0x87/0xb0
[   79.844070][ T5114]  __sock_sendmsg+0x1a6/0x270
[   79.845896][ T5114]  ____sys_sendmsg+0x525/0x7d0
[   79.847759][ T5114]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.849874][ T5114]  ? __might_fault+0xaa/0x120
[   79.851709][ T5114]  __sys_sendmmsg+0x3b2/0x740
[   79.853283][ T5114]  ? __pfx___sys_sendmmsg+0x10/0x10
[   79.855255][ T5114]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   79.857476][ T5114]  ? ksys_write+0x23e/0x2c0
[   79.859306][ T5114]  ? __pfx_lock_release+0x10/0x10
[   79.861322][ T5114]  ? vfs_write+0x7c4/0xc90
[   79.863079][ T5114]  ? __mutex_unlock_slowpath+0x21d/0x750
[   79.865298][ T5114]  ? __pfx_vfs_write+0x10/0x10
[   79.867154][ T5114]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   79.869404][ T5114]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   79.871785][ T5114]  ? do_syscall_64+0x100/0x230
[   79.873868][ T5114]  __x64_sys_sendmmsg+0xa0/0xb0
[   79.875912][ T5114]  do_syscall_64+0xf3/0x230
[   79.877613][ T5114]  ? clear_bhb_loop+0x35/0x90
[   79.879227][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.881414][ T5114] RIP: 0033:0x7f2b2f979eb9
[   79.883035][ T5114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.889750][ T5114] RSP: 002b:00007f2b30719038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   79.892888][ T5114] RAX: ffffffffffffffda RBX: 00007f2b2fb15f80 RCX: 00007f2b2f979eb9
[   79.895925][ T5114] RDX: 0000000000000003 RSI: 000000002001a800 RDI: 0000000000000005
[   79.898947][ T5114] RBP: 00007f2b30719090 R08: 0000000000000000 R09: 0000000000000000
[   79.901844][ T5114] R10: 0000000020000010 R11: 0000000000000246 R12: 0000000000000002
[   79.904516][ T5114] R13: 0000000000000000 R14: 00007f2b2fb15f80 R15: 00007ffd0956e208
[   79.907258][ T5114]  </TASK>
[   79.908355][ T5114] 
[   79.909165][ T5114] Allocated by task 5114:
[   79.910707][ T5114]  kasan_save_track+0x3f/0x80
[   79.912554][ T5114]  __kasan_kmalloc+0x98/0xb0
[   79.914413][ T5114]  __kmalloc_node_track_caller_noprof+0x225/0x440
[   79.916842][ T5114]  kmalloc_reserve+0x111/0x2a0
[   79.918620][ T5114]  __alloc_skb+0x1f3/0x440
[   79.920251][ T5114]  dccp_send_ack+0xaa/0x310
[   79.921790][ T5114]  ccid2_hc_rx_packet_recv+0x10c/0x1c0
[   79.923662][ T5114]  dccp_rcv_established+0x1bb/0x320
[   79.925562][ T5114]  dccp_v6_do_rcv+0x28e/0xb10
[   79.927330][ T5114]  __sk_receive_skb+0x82b/0x8b0
[   79.929185][ T5114]  dccp_v6_rcv+0x1189/0x1640
[   79.930972][ T5114]  ip6_protocol_deliver_rcu+0x105b/0x1580
[   79.933016][ T5114]  ip6_input_finish+0x187/0x2d0
[   79.934562][ T5114]  NF_HOOK+0x3a4/0x450
[   79.935863][ T5114]  NF_HOOK+0x3a4/0x450
[   79.937240][ T5114]  __netif_receive_skb+0x1ea/0x650
[   79.938854][ T5114]  process_backlog+0x662/0x15b0
[   79.940716][ T5114]  __napi_poll+0xcb/0x490
[   79.942449][ T5114]  net_rx_action+0x89b/0x1240
[   79.944239][ T5114]  handle_softirqs+0x2c4/0x970
[   79.945926][ T5114]  do_softirq+0x11b/0x1e0
[   79.947374][ T5114]  __local_bh_enable_ip+0x1bb/0x200
[   79.949149][ T5114]  __dev_queue_xmit+0x1763/0x3e90
[   79.950857][ T5114]  ip6_finish_output2+0xfc9/0x1730
[   79.952519][ T5114]  ip6_finish_output+0x41e/0x810
[   79.954412][ T5114]  ip6_xmit+0xef8/0x18b0
[   79.956056][ T5114]  inet6_csk_xmit+0x468/0x710
[   79.957855][ T5114]  dccp_transmit_skb+0xf41/0x16a0
[   79.959854][ T5114]  dccp_xmit_packet+0x376/0x610
[   79.961827][ T5114]  dccp_write_xmit+0x138/0x220
[   79.963742][ T5114]  dccp_sendmsg+0x76f/0xba0
[   79.965526][ T5114]  __sock_sendmsg+0x1a6/0x270
[   79.967351][ T5114]  ____sys_sendmsg+0x525/0x7d0
[   79.969151][ T5114]  __sys_sendmmsg+0x3b2/0x740
[   79.970954][ T5114]  __x64_sys_sendmmsg+0xa0/0xb0
[   79.972834][ T5114]  do_syscall_64+0xf3/0x230
[   79.974563][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.976904][ T5114] 
[   79.977894][ T5114] Freed by task 5114:
[   79.979404][ T5114]  kasan_save_track+0x3f/0x80
[   79.981230][ T5114]  kasan_save_free_info+0x40/0x50
[   79.983031][ T5114]  poison_slab_object+0xe0/0x150
[   79.984933][ T5114]  __kasan_slab_free+0x37/0x60
[   79.986725][ T5114]  kfree+0x149/0x360
[   79.988227][ T5114]  skb_release_data+0x676/0x880
[   79.989966][ T5114]  sk_skb_reason_drop+0x1a5/0x3d0
[   79.991814][ T5114]  dccp_v6_do_rcv+0x133/0xb10
[   79.993624][ T5114]  __release_sock+0x243/0x350
[   79.995450][ T5114]  release_sock+0x61/0x1f0
[   79.997202][ T5114]  dccp_sendmsg+0x4f0/0xba0
[   79.998973][ T5114]  __sock_sendmsg+0x1a6/0x270
[   80.000745][ T5114]  ____sys_sendmsg+0x525/0x7d0
[   80.002536][ T5114]  __sys_sendmmsg+0x3b2/0x740
[   80.004313][ T5114]  __x64_sys_sendmmsg+0xa0/0xb0
[   80.006016][ T5114]  do_syscall_64+0xf3/0x230
[   80.007308][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.009228][ T5114] 
[   80.010068][ T5114] The buggy address belongs to the object at ffff88804a473000
[   80.010068][ T5114]  which belongs to the cache kmalloc-2k of size 2048
[   80.014551][ T5114] The buggy address is located 1186 bytes inside of
[   80.014551][ T5114]  freed 2048-byte region [ffff88804a473000, ffff88804a473800)
[   80.018821][ T5114] 
[   80.019547][ T5114] The buggy address belongs to the physical page:
[   80.021614][ T5114] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a470
[   80.024742][ T5114] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   80.027751][ T5114] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[   80.030255][ T5114] page_type: 0xfdffffff(slab)
[   80.031853][ T5114] raw: 04fff00000000040 ffff88801ac42000 dead000000000122 0000000000000000
[   80.034910][ T5114] raw: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000
[   80.037942][ T5114] head: 04fff00000000040 ffff88801ac42000 dead000000000122 0000000000000000
[   80.041235][ T5114] head: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000
[   80.044765][ T5114] head: 04fff00000000003 ffffea0001291c01 ffffffffffffffff 0000000000000000
[   80.048509][ T5114] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[   80.052394][ T5114] page dumped because: kasan: bad access detected
[   80.055363][ T5114] page_owner tracks the page as allocated
[   80.057917][ T5114] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5114, tgid 5113 (syz.0.0), ts 79439101340, free_ts 79211244345
[   80.066301][ T5114]  post_alloc_hook+0x1f3/0x230
[   80.068137][ T5114]  get_page_from_freelist+0x2e4c/0x2f10
[   80.070214][ T5114]  __alloc_pages_noprof+0x256/0x6c0
[   80.072259][ T5114]  alloc_slab_page+0x5f/0x120
[   80.074109][ T5114]  allocate_slab+0x5a/0x2f0
[   80.075834][ T5114]  ___slab_alloc+0xcd1/0x14b0
[   80.077603][ T5114]  __slab_alloc+0x58/0xa0
[   80.079125][ T5114]  __kmalloc_node_track_caller_noprof+0x281/0x440
[   80.081508][ T5114]  kmalloc_reserve+0x111/0x2a0
[   80.083217][ T5114]  __alloc_skb+0x1f3/0x440
[   80.084892][ T5114]  alloc_skb_with_frags+0xc3/0x770
[   80.086685][ T5114]  sock_alloc_send_pskb+0x91a/0xa60
[   80.088497][ T5114]  dccp_sendmsg+0x3f1/0xba0
[   80.090213][ T5114]  __sock_sendmsg+0x1a6/0x270
[   80.091905][ T5114]  ____sys_sendmsg+0x525/0x7d0
[   80.093676][ T5114]  __sys_sendmmsg+0x3b2/0x740
[   80.095328][ T5114] page last free pid 9 tgid 9 stack trace:
[   80.097366][ T5114]  free_unref_page+0xd22/0xea0
[   80.098980][ T5114]  __put_partials+0xeb/0x130
[   80.100429][ T5114]  put_cpu_partial+0x17c/0x250
[   80.102088][ T5114]  __slab_free+0x2ea/0x3d0
[   80.103644][ T5114]  qlist_free_all+0x9e/0x140
[   80.105425][ T5114]  kasan_quarantine_reduce+0x14f/0x170
[   80.107428][ T5114]  __kasan_slab_alloc+0x23/0x80
[   80.109223][ T5114]  kmem_cache_alloc_node_noprof+0x16b/0x320
[   80.111380][ T5114]  __alloc_skb+0x1c3/0x440
[   80.113089][ T5114]  alloc_skb_with_frags+0xc3/0x770
[   80.114876][ T5114]  sock_alloc_send_pskb+0x91a/0xa60
[   80.116705][ T5114]  mld_newpack+0x1c3/0xa90
[   80.118364][ T5114]  add_grec+0x1492/0x19a0
[   80.120014][ T5114]  mld_send_initial_cr+0x228/0x4b0
[   80.121952][ T5114]  mld_dad_work+0x44/0x500
[   80.123576][ T5114]  process_scheduled_works+0xa2c/0x1830
[   80.125692][ T5114] 
[   80.126624][ T5114] Memory state around the buggy address:
[   80.128748][ T5114]  ffff88804a473380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   80.131439][ T5114]  ffff88804a473400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   80.134114][ T5114] >ffff88804a473480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   80.136632][ T5114]                                ^
[   80.138384][ T5114]  ffff88804a473500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   80.141339][ T5114]  ffff88804a473580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   80.144267][ T5114] ==================================================================
[   80.508888][ T5099] Bluetooth: hci0: command tx timeout
[   80.578455][ T5114] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   80.581128][ T5114] CPU: 0 UID: 0 PID: 5114 Comm: syz.0.0 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[   80.584881][ T5114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.588709][ T5114] Call Trace:
[   80.589970][ T5114]  <TASK>
[   80.591040][ T5114]  dump_stack_lvl+0x241/0x360
[   80.592832][ T5114]  ? __pfx_dump_stack_lvl+0x10/0x10
[   80.594725][ T5114]  ? __pfx__printk+0x10/0x10
[   80.596399][ T5114]  ? preempt_schedule+0xe1/0xf0
[   80.598117][ T5114]  ? vscnprintf+0x5d/0x90
[   80.599626][ T5114]  panic+0x349/0x860
[   80.601229][ T5114]  ? check_panic_on_warn+0x21/0xb0
[   80.603351][ T5114]  ? __pfx_panic+0x10/0x10
[   80.605119][ T5114]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   80.607358][ T5114]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   80.609727][ T5114]  ? print_report+0x502/0x550
[   80.611503][ T5114]  check_panic_on_warn+0x86/0xb0
[   80.613461][ T5114]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   80.615641][ T5114]  end_report+0x77/0x160
[   80.617440][ T5114]  kasan_report+0x154/0x180
[   80.619204][ T5114]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   80.621439][ T5114]  ccid2_hc_tx_packet_recv+0x1902/0x2070
[   80.623577][ T5114]  ? lockdep_hardirqs_on+0x99/0x150
[   80.625607][ T5114]  ? dccp_ackvec_clear_state+0x5dd/0x8b0
[   80.627745][ T5114]  ? dccp_ackvec_input+0x1d5/0xf60
[   80.629725][ T5114]  ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[   80.631885][ T5114]  ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[   80.634267][ T5114]  dccp_rcv_established+0x295/0x320
[   80.636109][ T5114]  dccp_v6_do_rcv+0x28e/0xb10
[   80.637920][ T5114]  ? __pfx_dccp_v6_do_rcv+0x10/0x10
[   80.639770][ T5114]  __release_sock+0x243/0x350
[   80.641518][ T5114]  release_sock+0x61/0x1f0
[   80.643158][ T5114]  dccp_sendmsg+0x4f0/0xba0
[   80.644767][ T5114]  ? __pfx_dccp_sendmsg+0x10/0x10
[   80.646548][ T5114]  ? sock_rps_record_flow+0x1a/0x400
[   80.648602][ T5114]  ? inet_sendmsg+0x330/0x390
[   80.650434][ T5114]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   80.652474][ T5114]  ? security_socket_sendmsg+0x87/0xb0
[   80.654397][ T5114]  __sock_sendmsg+0x1a6/0x270
[   80.656115][ T5114]  ____sys_sendmsg+0x525/0x7d0
[   80.657716][ T5114]  ? __pfx_____sys_sendmsg+0x10/0x10
[   80.659636][ T5114]  ? __might_fault+0xaa/0x120
[   80.661448][ T5114]  __sys_sendmmsg+0x3b2/0x740
[   80.663564][ T5114]  ? __pfx___sys_sendmmsg+0x10/0x10
[   80.665786][ T5114]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   80.668281][ T5114]  ? ksys_write+0x23e/0x2c0
[   80.669974][ T5114]  ? __pfx_lock_release+0x10/0x10
[   80.671724][ T5114]  ? vfs_write+0x7c4/0xc90
[   80.673402][ T5114]  ? __mutex_unlock_slowpath+0x21d/0x750
[   80.675521][ T5114]  ? __pfx_vfs_write+0x10/0x10
[   80.677207][ T5114]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   80.679619][ T5114]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   80.681940][ T5114]  ? do_syscall_64+0x100/0x230
[   80.683734][ T5114]  __x64_sys_sendmmsg+0xa0/0xb0
[   80.685396][ T5114]  do_syscall_64+0xf3/0x230
[   80.687007][ T5114]  ? clear_bhb_loop+0x35/0x90
[   80.688725][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.690847][ T5114] RIP: 0033:0x7f2b2f979eb9
[   80.692478][ T5114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.699879][ T5114] RSP: 002b:00007f2b30719038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   80.703004][ T5114] RAX: ffffffffffffffda RBX: 00007f2b2fb15f80 RCX: 00007f2b2f979eb9
[   80.705776][ T5114] RDX: 0000000000000003 RSI: 000000002001a800 RDI: 0000000000000005
[   80.708424][ T5114] RBP: 00007f2b30719090 R08: 0000000000000000 R09: 0000000000000000
[   80.711434][ T5114] R10: 0000000020000010 R11: 0000000000000246 R12: 0000000000000002
[   80.714591][ T5114] R13: 0000000000000000 R14: 00007f2b2fb15f80 R15: 00007ffd0956e208
[   80.717768][ T5114]  </TASK>
[   80.719328][ T5114] Kernel Offset: disabled
[   80.721086][ T5114] Rebooting in 86400 seconds..