program:
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x20, 0x480783, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x7602, 0x403, 0x6, 0x0, 0x34d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), 0x0, 0xb, r0}, 0x38)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x1b, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480))
socketpair(0x1, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x37}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
[ 85.563857][ T4669] Bluetooth: hci0: command tx timeout
[ 86.409329][ T5325] ------------[ cut here ]------------
[ 86.412207][ T5325] WARNING: CPU: 0 PID: 5325 at kernel/events/core.c:7211 perf_pending_task+0x319/0x400
[ 86.417235][ T5325] Modules linked in:
[ 86.419026][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller #0 PREEMPT(full)
[ 86.423615][ T5325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.428470][ T5325] RIP: 0010:perf_pending_task+0x319/0x400
[ 86.431112][ T5325] Code: 85 8f 00 00 00 41 fe 4d 00 eb 05 e8 21 4f cd ff 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 4e 34 76 09 cc e8 08 4f cd ff 90 <0f> 0b 90 41 80 3c 1c 00 0f 85 02 ff ff ff e9 05 ff ff ff 44 89 e1
[ 86.439041][ T5325] RSP: 0018:ffffc9000d6b79d0 EFLAGS: 00010293
[ 86.441613][ T5325] RAX: ffffffff81f2fe18 RBX: dffffc0000000000 RCX: ffff888000128000
[ 86.445143][ T5325] RDX: 0000000000000000 RSI: 00000000749ace0f RDI: 0000000000000000
[ 86.448377][ T5325] RBP: 00000000749ace0f R08: ffffffff8fa10af7 R09: 1ffffffff1f4215e
[ 86.451881][ T5325] R10: dffffc0000000000 R11: ffffffff81f2fb00 R12: 1ffff110035f390f
[ 86.455428][ T5325] R13: ffff888000128000 R14: ffff88801af9cad8 R15: ffff88801af9c878
[ 86.458814][ T5325] FS: 0000000000000000(0000) GS:ffff88808d251000(0000) knlGS:0000000000000000
[ 86.462635][ T5325] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 86.465503][ T5325] CR2: 00007ff791934a90 CR3: 0000000051a07000 CR4: 0000000000352ef0
[ 86.468667][ T5325] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 86.471795][ T5325] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 86.475227][ T5325] Call Trace:
[ 86.476561][ T5325]
[ 86.477825][ T5325] task_work_run+0x1d1/0x260
[ 86.479862][ T5325] ? __pfx_task_work_run+0x10/0x10
[ 86.482297][ T5325] do_exit+0x6b5/0x22e0
[ 86.484473][ T5325] ? __pfx_do_exit+0x10/0x10
[ 86.486791][ T5325] ? proc_coredump_connector+0x172/0x4b0
[ 86.489237][ T5325] ? __pfx_proc_coredump_connector+0x10/0x10
[ 86.491874][ T5325] do_group_exit+0x21c/0x2d0
[ 86.493964][ T5325] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.496377][ T5325] get_signal+0x1286/0x1340
[ 86.498418][ T5325] arch_do_signal_or_restart+0x9a/0x750
[ 86.500952][ T5325] ? __rseq_handle_notify_resume+0x37e/0x11f0
[ 86.503676][ T5325] ? perf_pending_task+0x2da/0x400
[ 86.505940][ T5325] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 86.508769][ T5325] ? exit_to_user_mode_loop+0x40/0x110
[ 86.511508][ T5325] exit_to_user_mode_loop+0x75/0x110
[ 86.514326][ T5325] do_syscall_64+0x2bd/0x3b0
[ 86.516164][ T5325] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.518373][ T5325] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.520879][ T5325] ? clear_bhb_loop+0x60/0xb0
[ 86.522689][ T5325] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.525243][ T5325] RIP: 0033:0x7ff790b8e929
[ 86.527003][ T5325] Code: Unable to access opcode bytes at 0x7ff790b8e8ff.
[ 86.530027][ T5325] RSP: 002b:00007ff79192c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 86.533984][ T5325] RAX: fffffffffffffff2 RBX: 00007ff790db5fa0 RCX: 00007ff790b8e929
[ 86.537608][ T5325] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[ 86.541237][ T5325] RBP: 00007ff790c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 86.544864][ T5325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.548303][ T5325] R13: 0000000000000000 R14: 00007ff790db5fa0 R15: 00007ffdb80d35f8
[ 86.551649][ T5325]
[ 86.553117][ T5325] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 86.556298][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: syz.0.0 Not tainted 6.16.0-rc3-syzkaller #0 PREEMPT(full)
[ 86.560920][ T5325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.565621][ T5325] Call Trace:
[ 86.567112][ T5325]
[ 86.568384][ T5325] dump_stack_lvl+0x99/0x250
[ 86.570533][ T5325] ? __asan_memcpy+0x40/0x70
[ 86.572622][ T5325] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.574888][ T5325] ? __pfx__printk+0x10/0x10
[ 86.576995][ T5325] panic+0x2db/0x790
[ 86.578795][ T5325] ? __pfx_panic+0x10/0x10
[ 86.580930][ T5325] __warn+0x31b/0x4b0
[ 86.582748][ T5325] ? perf_pending_task+0x319/0x400
[ 86.585109][ T5325] ? perf_pending_task+0x319/0x400
[ 86.587366][ T5325] report_bug+0x2be/0x4f0
[ 86.589349][ T5325] ? perf_pending_task+0x319/0x400
[ 86.591692][ T5325] ? perf_pending_task+0x319/0x400
[ 86.593985][ T5325] ? perf_pending_task+0x31b/0x400
[ 86.596341][ T5325] handle_bug+0x84/0x160
[ 86.598374][ T5325] exc_invalid_op+0x1a/0x50
[ 86.600604][ T5325] asm_exc_invalid_op+0x1a/0x20
[ 86.602813][ T5325] RIP: 0010:perf_pending_task+0x319/0x400
[ 86.605245][ T5325] Code: 85 8f 00 00 00 41 fe 4d 00 eb 05 e8 21 4f cd ff 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d e9 4e 34 76 09 cc e8 08 4f cd ff 90 <0f> 0b 90 41 80 3c 1c 00 0f 85 02 ff ff ff e9 05 ff ff ff 44 89 e1
[ 86.613393][ T5325] RSP: 0018:ffffc9000d6b79d0 EFLAGS: 00010293
[ 86.616270][ T5325] RAX: ffffffff81f2fe18 RBX: dffffc0000000000 RCX: ffff888000128000
[ 86.620065][ T5325] RDX: 0000000000000000 RSI: 00000000749ace0f RDI: 0000000000000000
[ 86.623611][ T5325] RBP: 00000000749ace0f R08: ffffffff8fa10af7 R09: 1ffffffff1f4215e
[ 86.626874][ T5325] R10: dffffc0000000000 R11: ffffffff81f2fb00 R12: 1ffff110035f390f
[ 86.630469][ T5325] R13: ffff888000128000 R14: ffff88801af9cad8 R15: ffff88801af9c878
[ 86.634268][ T5325] ? __pfx_perf_pending_task+0x10/0x10
[ 86.636642][ T5325] ? perf_pending_task+0x318/0x400
[ 86.638865][ T5325] task_work_run+0x1d1/0x260
[ 86.640998][ T5325] ? __pfx_task_work_run+0x10/0x10
[ 86.643324][ T5325] do_exit+0x6b5/0x22e0
[ 86.645492][ T5325] ? __pfx_do_exit+0x10/0x10
[ 86.647522][ T5325] ? proc_coredump_connector+0x172/0x4b0
[ 86.650262][ T5325] ? __pfx_proc_coredump_connector+0x10/0x10
[ 86.653178][ T5325] do_group_exit+0x21c/0x2d0
[ 86.655273][ T5325] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.657637][ T5325] get_signal+0x1286/0x1340
[ 86.659854][ T5325] arch_do_signal_or_restart+0x9a/0x750
[ 86.662824][ T5325] ? __rseq_handle_notify_resume+0x37e/0x11f0
[ 86.666247][ T5325] ? perf_pending_task+0x2da/0x400
[ 86.668510][ T5325] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 86.671298][ T5325] ? exit_to_user_mode_loop+0x40/0x110
[ 86.673770][ T5325] exit_to_user_mode_loop+0x75/0x110
[ 86.676058][ T5325] do_syscall_64+0x2bd/0x3b0
[ 86.678252][ T5325] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.680580][ T5325] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.683453][ T5325] ? clear_bhb_loop+0x60/0xb0
[ 86.685850][ T5325] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.688697][ T5325] RIP: 0033:0x7ff790b8e929
[ 86.690859][ T5325] Code: Unable to access opcode bytes at 0x7ff790b8e8ff.
[ 86.694026][ T5325] RSP: 002b:00007ff79192c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 86.697813][ T5325] RAX: fffffffffffffff2 RBX: 00007ff790db5fa0 RCX: 00007ff790b8e929
[ 86.702073][ T5325] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[ 86.705722][ T5325] RBP: 00007ff790c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 86.709272][ T5325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.712428][ T5325] R13: 0000000000000000 R14: 00007ff790db5fa0 R15: 00007ffdb80d35f8
[ 86.715964][ T5325]
[ 86.717924][ T5325] Kernel Offset: disabled
[ 86.720141][ T5325] Rebooting in 86400 seconds..