program:
prctl$PR_SET_FPEXC(0xc, 0x20000)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={[], [], 0x2f})
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x16, 0x16, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x253, 0x10, &(0x7f0000000000), 0x19f, 0x0, 0xffffffffffffffff, 0xffffffffffffff74}, 0x48)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3e, &(0x7f00000003c0)=0x10, 0x0)

[   93.087686][   T10] cfg80211: failed to load regulatory.db
[   93.244214][ T5333] ------------[ cut here ]------------
[   93.246840][ T5333] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x2, 0x0] s64=[0x2, 0x0] u32=[0x2, 0x0] s32=[0x2, 0x0] var_off=(0x0, 0x0)
[   93.254249][ T5333] WARNING: CPU: 0 PID: 5333 at kernel/bpf/verifier.c:2721 reg_bounds_sanity_check+0x6e6/0xc20
[   93.258957][ T5333] Modules linked in:
[   93.260808][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   93.264752][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.269679][ T5333] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[   93.272526][ T5333] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 df 2d a9 ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[   93.281306][ T5333] RSP: 0018:ffffc9000d2beee8 EFLAGS: 00010286
[   93.284134][ T5333] RAX: 05530d0675e6c700 RBX: 0000000000000000 RCX: 0000000000100000
[   93.287784][ T5333] RDX: ffffc9000edbc000 RSI: 000000000000aeaf RDI: 000000000000aeb0
[   93.291645][ T5333] RBP: 0000000000000002 R08: 0000000000000003 R09: 0000000000000004
[   93.295260][ T5333] R10: dffffc0000000000 R11: fffffbfff1bba650 R12: ffff888019eea310
[   93.298864][ T5333] R13: ffff888019eea330 R14: ffff888019eea348 R15: 0000000000000000
[   93.302642][ T5333] FS:  00007f9050bf56c0(0000) GS:ffff88808d733000(0000) knlGS:0000000000000000
[   93.306787][ T5333] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   93.310697][ T5333] CR2: 0000000000000000 CR3: 0000000019e95000 CR4: 0000000000352ef0
[   93.314303][ T5333] Call Trace:
[   93.315900][ T5333]  <TASK>
[   93.317272][ T5333]  reg_set_min_max+0x264/0x300
[   93.319681][ T5333]  check_cond_jmp_op+0x1901/0x2d50
[   93.322075][ T5333]  ? __pfx_check_cond_jmp_op+0x10/0x10
[   93.324599][ T5333]  ? push_jmp_history+0x1e8/0x700
[   93.326894][ T5333]  ? bpf_reset_stack_write_marks+0x1eb/0x260
[   93.329901][ T5333]  do_check+0x5ac2/0xee10
[   93.332023][ T5333]  ? do_check_common+0x209/0x24e0
[   93.334365][ T5333]  ? bpf_check+0x183de/0x1d720
[   93.336621][ T5333]  ? __sys_bpf+0x507/0x860
[   93.338723][ T5333]  ? do_check+0xfc0/0xee10
[   93.341331][ T5333]  ? __pfx_do_check+0x10/0x10
[   93.343482][ T5333]  ? __pfx_verbose+0x10/0x10
[   93.345589][ T5333]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   93.348136][ T5333]  do_check_common+0x1938/0x24e0
[   93.350842][ T5333]  bpf_check+0x183de/0x1d720
[   93.352990][ T5333]  ? do_raw_spin_lock+0x121/0x290
[   93.355345][ T5333]  ? __lock_acquire+0xab9/0xd20
[   93.357593][ T5333]  ? __mutex_trylock_common+0x153/0x260
[   93.360298][ T5333]  ? __pfx___mutex_trylock_common+0x10/0x10
[   93.363023][ T5333]  ? css_rstat_updated+0x23a/0x4f0
[   93.365337][ T5333]  ? __lock_acquire+0xab9/0xd20
[   93.367621][ T5333]  ? __pfx_bpf_check+0x10/0x10
[   93.369952][ T5333]  ? seqcount_lockdep_reader_access+0x122/0x1c0
[   93.372838][ T5333]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.375292][ T5333]  ? ktime_get_with_offset+0x93/0x2a0
[   93.377734][ T5333]  ? seqcount_lockdep_reader_access+0x174/0x1c0
[   93.380767][ T5333]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[   93.383613][ T5333]  ? __asan_memset+0x22/0x50
[   93.385536][ T5333]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[   93.387736][ T5333]  ? security_bpf_prog_load+0x125/0x3f0
[   93.390315][ T5333]  bpf_prog_load+0x13ba/0x19e0
[   93.392349][ T5333]  ? __pfx_bpf_prog_load+0x10/0x10
[   93.394528][ T5333]  ? bpf_lsm_bpf+0x9/0x20
[   93.396263][ T5333]  ? security_bpf+0x7e/0x300
[   93.398384][ T5333]  __sys_bpf+0x507/0x860
[   93.400380][ T5333]  ? __pfx___sys_bpf+0x10/0x10
[   93.402366][ T5333]  ? rcu_is_watching+0x15/0xb0
[   93.404330][ T5333]  ? rcu_is_watching+0x15/0xb0
[   93.406346][ T5333]  __x64_sys_bpf+0x7c/0x90
[   93.408258][ T5333]  do_syscall_64+0xfa/0xfa0
[   93.410366][ T5333]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.412568][ T5333]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.415157][ T5333]  ? clear_bhb_loop+0x60/0xb0
[   93.417292][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.420144][ T5333] RIP: 0033:0x7f905478efc9
[   93.422249][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.430938][ T5333] RSP: 002b:00007f9050bf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   93.434680][ T5333] RAX: ffffffffffffffda RBX: 00007f90549e6180 RCX: 00007f905478efc9
[   93.438284][ T5333] RDX: 0000000000000048 RSI: 0000200000000100 RDI: 0000000000000005
[   93.442419][ T5333] RBP: 00007f9054811f91 R08: 0000000000000000 R09: 0000000000000000
[   93.446061][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   93.450151][ T5333] R13: 00007f90549e6218 R14: 00007f90549e6180 R15: 00007ffd76becb78
[   93.453866][ T5333]  </TASK>
[   93.455367][ T5333] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   93.458748][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   93.462862][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.467750][ T5333] Call Trace:
[   93.469315][ T5333]  <TASK>
[   93.470724][ T5333]  dump_stack_lvl+0x99/0x250
[   93.472882][ T5333]  ? __asan_memcpy+0x40/0x70
[   93.474996][ T5333]  ? __pfx_dump_stack_lvl+0x10/0x10
[   93.477333][ T5333]  ? __pfx__printk+0x10/0x10
[   93.479515][ T5333]  vpanic+0x237/0x6d0
[   93.481348][ T5333]  ? __pfx_vpanic+0x10/0x10
[   93.483497][ T5333]  panic+0xb9/0xc0
[   93.485249][ T5333]  ? __pfx_panic+0x10/0x10
[   93.487354][ T5333]  __warn+0x31b/0x4b0
[   93.489257][ T5333]  ? reg_bounds_sanity_check+0x6e6/0xc20
[   93.491911][ T5333]  ? reg_bounds_sanity_check+0x6e6/0xc20
[   93.494518][ T5333]  report_bug+0x2be/0x4f0
[   93.496489][ T5333]  ? reg_bounds_sanity_check+0x6e6/0xc20
[   93.500240][ T5333]  ? reg_bounds_sanity_check+0x6e6/0xc20
[   93.502932][ T5333]  ? reg_bounds_sanity_check+0x6e8/0xc20
[   93.505502][ T5333]  handle_bug+0x84/0x160
[   93.507423][ T5333]  exc_invalid_op+0x1a/0x50
[   93.509477][ T5333]  asm_exc_invalid_op+0x1a/0x20
[   93.511702][ T5333] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[   93.514557][ T5333] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 df 2d a9 ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[   93.523093][ T5333] RSP: 0018:ffffc9000d2beee8 EFLAGS: 00010286
[   93.525748][ T5333] RAX: 05530d0675e6c700 RBX: 0000000000000000 RCX: 0000000000100000
[   93.529153][ T5333] RDX: ffffc9000edbc000 RSI: 000000000000aeaf RDI: 000000000000aeb0
[   93.532361][ T5333] RBP: 0000000000000002 R08: 0000000000000003 R09: 0000000000000004
[   93.535527][ T5333] R10: dffffc0000000000 R11: fffffbfff1bba650 R12: ffff888019eea310
[   93.538941][ T5333] R13: ffff888019eea330 R14: ffff888019eea348 R15: 0000000000000000
[   93.542507][ T5333]  reg_set_min_max+0x264/0x300
[   93.544727][ T5333]  check_cond_jmp_op+0x1901/0x2d50
[   93.546960][ T5333]  ? __pfx_check_cond_jmp_op+0x10/0x10
[   93.549439][ T5333]  ? push_jmp_history+0x1e8/0x700
[   93.551682][ T5333]  ? bpf_reset_stack_write_marks+0x1eb/0x260
[   93.554412][ T5333]  do_check+0x5ac2/0xee10
[   93.556423][ T5333]  ? do_check_common+0x209/0x24e0
[   93.558739][ T5333]  ? bpf_check+0x183de/0x1d720
[   93.561248][ T5333]  ? __sys_bpf+0x507/0x860
[   93.563624][ T5333]  ? do_check+0xfc0/0xee10
[   93.565794][ T5333]  ? __pfx_do_check+0x10/0x10
[   93.567904][ T5333]  ? __pfx_verbose+0x10/0x10
[   93.569959][ T5333]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   93.572299][ T5333]  do_check_common+0x1938/0x24e0
[   93.574571][ T5333]  bpf_check+0x183de/0x1d720
[   93.576799][ T5333]  ? do_raw_spin_lock+0x121/0x290
[   93.579222][ T5333]  ? __lock_acquire+0xab9/0xd20
[   93.581492][ T5333]  ? __mutex_trylock_common+0x153/0x260
[   93.584011][ T5333]  ? __pfx___mutex_trylock_common+0x10/0x10
[   93.586683][ T5333]  ? css_rstat_updated+0x23a/0x4f0
[   93.589066][ T5333]  ? __lock_acquire+0xab9/0xd20
[   93.591319][ T5333]  ? __pfx_bpf_check+0x10/0x10
[   93.593506][ T5333]  ? seqcount_lockdep_reader_access+0x122/0x1c0
[   93.596308][ T5333]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.598444][ T5333]  ? ktime_get_with_offset+0x93/0x2a0
[   93.600627][ T5333]  ? seqcount_lockdep_reader_access+0x174/0x1c0
[   93.603157][ T5333]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[   93.605835][ T5333]  ? __asan_memset+0x22/0x50
[   93.607794][ T5333]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[   93.609848][ T5333]  ? security_bpf_prog_load+0x125/0x3f0
[   93.612196][ T5333]  bpf_prog_load+0x13ba/0x19e0
[   93.614301][ T5333]  ? __pfx_bpf_prog_load+0x10/0x10
[   93.616561][ T5333]  ? bpf_lsm_bpf+0x9/0x20
[   93.618459][ T5333]  ? security_bpf+0x7e/0x300
[   93.620610][ T5333]  __sys_bpf+0x507/0x860
[   93.622525][ T5333]  ? __pfx___sys_bpf+0x10/0x10
[   93.624686][ T5333]  ? rcu_is_watching+0x15/0xb0
[   93.626868][ T5333]  ? rcu_is_watching+0x15/0xb0
[   93.629074][ T5333]  __x64_sys_bpf+0x7c/0x90
[   93.631141][ T5333]  do_syscall_64+0xfa/0xfa0
[   93.633127][ T5333]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.635534][ T5333]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.638246][ T5333]  ? clear_bhb_loop+0x60/0xb0
[   93.640351][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.643039][ T5333] RIP: 0033:0x7f905478efc9
[   93.645040][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.653986][ T5333] RSP: 002b:00007f9050bf5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   93.659361][ T5333] RAX: ffffffffffffffda RBX: 00007f90549e6180 RCX: 00007f905478efc9
[   93.665331][ T5333] RDX: 0000000000000048 RSI: 0000200000000100 RDI: 0000000000000005
[   93.670630][ T5333] RBP: 00007f9054811f91 R08: 0000000000000000 R09: 0000000000000000
[   93.675287][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   93.679520][ T5333] R13: 00007f90549e6218 R14: 00007f90549e6180 R15: 00007ffd76becb78
[   93.683023][ T5333]  </TASK>
[   93.684762][ T5333] Kernel Offset: disabled
[   93.686723][ T5333] Rebooting in 86400 seconds..