last executing test programs:

11.331159815s ago: executing program 0 (id=1):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000810087406d040e0a759400000001090212000100000000090400200003"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

11.123676569s ago: executing program 1 (id=4):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x40, r1, 0x101, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x6}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x80}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x84)

10.871601856s ago: executing program 1 (id=5):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000005280)=@newtaction={0x5c, 0x31, 0x103, 0x0, 0x0, {}, [{0x48, 0x1, [@m_skbmod={0x44, 0x1, 0x0, 0x0, {{0x6}, {0x4}, {0x15, 0x6, "2496ebf8909db6618522fd3fac8341b71d"}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x5c}}, 0x0)

10.692944327s ago: executing program 1 (id=6):
socket(0x10, 0x803, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x2, 0x3, 0x0, 0x9, 0x5, 0x0, 0x6fc, 0x0, [@sadb_address={0x3, 0x6, 0xb8, 0x30, 0x0, @in={0x2, 0x1, @local}}]}, 0x28}, 0x1, 0x7}, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newchain={0x2c, 0x66, 0x1, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x6, 0x1}, {}, {0x6}}, [@TCA_CHAIN={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40001}, 0x20000000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={@map, 0x5, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$setregs(0xd, r1, 0xb3, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cbd678cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ptrace$getregset(0x4205, r1, 0x1, &(0x7f0000000080)={0x0})

10.50280553s ago: executing program 1 (id=7):
socket$inet6(0xa, 0x3, 0x7)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r4 = socket$inet6(0xa, 0x3, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@rand_addr=0x64010102, 0x4e24, 0x0, 0x4, 0x0, 0xa}, {0x0, 0x7, 0x0, 0xfffffffffffffff9, 0x9, 0x6, 0x0, 0x40000000000000}, {0xffffffffffffffff, 0x1000000000, 0x53e5, 0x20}, 0xfffffff7, 0x1, 0x1, 0x0, 0x3, 0x2}, {{@in=@dev={0xac, 0x14, 0x14, 0x36}, 0x1, 0x32}, 0xa, @in=@private=0xa010100, 0x1502, 0x4, 0x0, 0x0, 0xc36, 0xfffffffd}}, 0xe8)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b00000000314010026bd7000fcdbdf250900020073797a3200000000080041007278650014003300766c616e3000000000000000000000000900020073797a3200000000080041007369770014003300636169663000000000000000000000000900020073797a300000000008004100727865001400330074756e4c3000000000000000000000000900020073797a310000000008004100727865001400330076657468305f746f5f7465616d0000008078d3bb065c0b9f7d11da3689fb75e89699eef64c3dca34a904cc4802188f45d182228246a3082847b86c1527ff319db2402d338f8fc5a1d7b2c7927237a9c9cd0c4d278923e82e790924eba06c82d56a4eee969011240e6dfde0eb3b37b28d9dc57260473ee36296ce62e39e7c9d518773fcbf1d0a96ccee6da825296576fedaeec3de359d50"], 0xb0}, 0x1, 0x0, 0x0, 0x8011}, 0x0)
sendmsg$RDMA_NLDEV_CMD_SET(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000801}, 0x40810)

5.511233947s ago: executing program 1 (id=8):
r0 = syz_io_uring_setup(0x5ce, &(0x7f0000000480)={0x0, 0x9cd6, 0x80, 0x0, 0x34f}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x82e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0xb2752a96f73d6e14, 0x0, 0x0, 0x0, 0x23456})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

5.253809214s ago: executing program 1 (id=9):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xd1e2, 0x47fffffff}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xb)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000001000)=@abs={0x0, 0x0, 0xce27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000140)={0x0, <r5=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0xa}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r5}]}]}, 0x28}}, 0x0)

0s ago: executing program 0 (id=10):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x27}]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:4812' (ED25519) to the list of known hosts.
syzkaller login: [   85.719433][ T3311] cgroup: Unknown subsys name 'net'
[   85.907027][ T3311] cgroup: Unknown subsys name 'cpuset'
[   85.929039][ T3311] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   86.555575][ T3311] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   94.930354][ T3316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   95.040778][ T3316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   95.105381][ T3318] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   95.169104][ T3318] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   96.237777][ T3316] hsr_slave_0: entered promiscuous mode
[   96.245774][ T3316] hsr_slave_1: entered promiscuous mode
[   96.416353][ T3318] hsr_slave_0: entered promiscuous mode
[   96.418506][ T3318] hsr_slave_1: entered promiscuous mode
[   96.430350][ T3318] debugfs: 'hsr0' already exists in 'hsr'
[   96.431002][ T3318] Cannot create hsr debugfs directory
[   97.278944][ T3316] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   97.349633][ T3316] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   97.366033][ T3316] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   97.402928][ T3316] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   97.529697][ T3318] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   97.542266][ T3318] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   97.566984][ T3318] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   97.590362][ T3318] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   98.431393][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.580105][ T3318] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.878471][ T3318] veth0_vlan: entered promiscuous mode
[  101.919971][ T3318] veth1_vlan: entered promiscuous mode
[  102.042798][ T3318] veth0_macvtap: entered promiscuous mode
[  102.066038][ T3318] veth1_macvtap: entered promiscuous mode
[  102.217514][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.218897][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.219052][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.219188][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.278510][ T3316] veth0_vlan: entered promiscuous mode
[  102.446448][ T3316] veth1_vlan: entered promiscuous mode
[  102.688141][ T3316] veth0_macvtap: entered promiscuous mode
[  102.721642][ T3316] veth1_macvtap: entered promiscuous mode
[  102.777321][ T3318] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  103.024678][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.034789][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.035366][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.035577][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.136322][ T3476] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5'.
[  104.257139][   T11] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  104.443941][   T11] usb 1-1: config 0 interface 0 has no altsetting 0
[  104.445054][   T11] usb 1-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  104.445180][   T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.473979][   T11] usb 1-1: config 0 descriptor??
[  104.511510][   T11] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  108.289861][ T3483] infiniband syz1: set down
[  108.290467][ T3483] infiniband syz1: added veth0_to_team
[  108.301078][ T3483] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[  108.309362][ T3483] infiniband syz1: Couldn't open port 1
[  108.387546][ T3483] RDS/IB: syz1: added
[  108.388616][ T3483] smc: adding ib device syz1 with port count 1
[  108.388990][ T3483] smc:    ib device syz1 port 1 has no pnetid
[  111.097891][ T3497] IPv6: NLM_F_CREATE should be specified when creating new route
[  114.737173][ T3464] usb 1-1: USB disconnect, device number 2
[  115.171130][ T3502] ==================================================================
[  115.175458][ T3502] BUG: KASAN: invalid-access in __memcpy+0xc/0x54
[  115.177947][ T3502] Write at addr f5ff800083c5d180 by task syz.0.10/3502
[  115.178497][ T3502] Pointer tag: [f5], memory tag: [fe]
[  115.178664][ T3502] 
[  115.179590][ T3502] CPU: 0 UID: 0 PID: 3502 Comm: syz.0.10 Not tainted syzkaller #0 PREEMPT 
[  115.179934][ T3502] Hardware name: linux,dummy-virt (DT)
[  115.180305][ T3502] Call trace:
[  115.180640][ T3502]  show_stack+0x18/0x24 (C)
[  115.181083][ T3502]  dump_stack_lvl+0x78/0x90
[  115.181206][ T3502]  print_report+0x108/0x61c
[  115.181274][ T3502]  kasan_report+0x88/0xac
[  115.181328][ T3502]  __do_kernel_fault+0x170/0x1c8
[  115.181387][ T3502]  do_bad_area+0x68/0x78
[  115.181442][ T3502]  do_tag_check_fault+0x34/0x44
[  115.181564][ T3502]  do_mem_abort+0x44/0x94
[  115.181715][ T3502]  el1_abort+0x44/0x68
[  115.181786][ T3502]  el1h_64_sync_handler+0x50/0xac
[  115.181843][ T3502]  el1h_64_sync+0x6c/0x70
[  115.182040][ T3502]  __memcpy+0xc/0x54 (P)
[  115.182107][ T3502]  convert_ctx_accesses+0x698/0xb2c
[  115.182169][ T3502]  bpf_check+0x1374/0x293c
[  115.182230][ T3502]  bpf_prog_load+0x63c/0xd40
[  115.182284][ T3502]  __sys_bpf+0x2e0/0x1a88
[  115.182336][ T3502]  __arm64_sys_bpf+0x24/0x34
[  115.182388][ T3502]  invoke_syscall+0x48/0x110
[  115.182444][ T3502]  el0_svc_common.constprop.0+0x40/0xe0
[  115.182502][ T3502]  do_el0_svc+0x1c/0x28
[  115.182566][ T3502]  el0_svc+0x34/0x128
[  115.182621][ T3502]  el0t_64_sync_handler+0xa0/0xe4
[  115.182710][ T3502]  el0t_64_sync+0x1a4/0x1a8
[  115.182991][ T3502] 
[  115.183258][ T3502] The buggy address belongs to a 1-page vmalloc region starting at 0xf5ff800083c5d000 allocated at bpf_check+0x8c/0x293c
[  115.185040][ T3502] The buggy address belongs to the physical page:
[  115.185509][ T3502] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x45c98
[  115.185906][ T3502] flags: 0x1ffe80000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0xa)
[  115.187062][ T3502] raw: 01ffe80000000000 0000000000000000 dead000000000122 0000000000000000
[  115.187129][ T3502] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  115.187264][ T3502] page dumped because: kasan: bad access detected
[  115.187315][ T3502] 
[  115.187352][ T3502] Memory state around the buggy address:
[  115.187954][ T3502] Unable to handle kernel paging request at virtual address ffff800083c5cf00
[  115.188118][ T3502] Mem abort info:
[  115.188158][ T3502]   ESR = 0x0000000096000007
[  115.188235][ T3502]   EC = 0x25: DABT (current EL), IL = 32 bits
[  115.188305][ T3502]   SET = 0, FnV = 0
[  115.188361][ T3502]   EA = 0, S1PTW = 0
[  115.188419][ T3502]   FSC = 0x07: level 3 translation fault
[  115.188485][ T3502] Data abort info:
[  115.188536][ T3502]   ISV = 0, ISS = 0x00000007, ISS2 = 0x00000000
[  115.188654][ T3502]   CM = 0, WnR = 0, TnD = 0, TagAccess = 0
[  115.188723][ T3502]   GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0
[  115.188878][ T3502] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000042a58000
[  115.189007][ T3502] [ffff800083c5cf00] pgd=1000000042fcc003, p4d=1000000042fcd003, pud=1000000042fce003, pmd=10000000453b7403, pte=0000000000000000
[  115.190840][ T3502] Internal error: Oops: 0000000096000007 [#1]  SMP
[  115.216768][ T3502] Modules linked in:
[  115.217922][ T3502] CPU: 0 UID: 0 PID: 3502 Comm: syz.0.10 Not tainted syzkaller #0 PREEMPT 
[  115.218873][ T3502] Hardware name: linux,dummy-virt (DT)
[  115.219568][ T3502] pstate: 624020c9 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[  115.220159][ T3502] pc : kasan_metadata_fetch_row+0xc/0x28
[  115.221376][ T3502] lr : print_report+0x29c/0x61c
[  115.222106][ T3502] sp : ffff800089c735e0
[  115.222611][ T3502] x29: ffff800089c735e0 x28: fcf000000b185280 x27: f4ff800083c55060
[  115.223518][ T3502] x26: 0000000000000060 x25: ffff800082517dc0 x24: ffff800082517dc8
[  115.224161][ T3502] x23: ffff800083c5d180 x22: ffff8000824e8698 x21: ffff800083c5d000
[  115.224765][ T3502] x20: 00000000fffffffe x19: ffff800083c5cf00 x18: 0000000000000010
[  115.225414][ T3502] x17: 0000000000000000 x16: 0000000000000000 x15: ffff800089c73460
[  115.226182][ T3502] x14: ffff800089c7365c x13: ffff800089c73649 x12: ffff800082adf268
[  115.226909][ T3502] x11: 0000000000000001 x10: 0000000000000001 x9 : 000000000002ffe8
[  115.227568][ T3502] x8 : fcf000000b185280 x7 : 0000000000000010 x6 : ffff800081ce18c0
[  115.228404][ T3502] x5 : 0000000000000030 x4 : 0000000000000002 x3 : ffff800083c5d000
[  115.228933][ T3502] x2 : ffff800083c5cf00 x1 : ffff800083c5cf10 x0 : ffff800089c73638
[  115.230319][ T3502] Call trace:
[  115.230981][ T3502]  kasan_metadata_fetch_row+0xc/0x28 (P)
[  115.231650][ T3502]  kasan_report+0x88/0xac
[  115.232171][ T3502]  __do_kernel_fault+0x170/0x1c8
[  115.232548][ T3502]  do_bad_area+0x68/0x78
[  115.232940][ T3502]  do_tag_check_fault+0x34/0x44
[  115.233373][ T3502]  do_mem_abort+0x44/0x94
[  115.233906][ T3502]  el1_abort+0x44/0x68
[  115.234252][ T3502]  el1h_64_sync_handler+0x50/0xac
[  115.234646][ T3502]  el1h_64_sync+0x6c/0x70
[  115.235326][ T3502]  __memcpy+0xc/0x54 (P)
[  115.235707][ T3502]  convert_ctx_accesses+0x698/0xb2c
[  115.236164][ T3502]  bpf_check+0x1374/0x293c
[  115.236531][ T3502]  bpf_prog_load+0x63c/0xd40
[  115.236911][ T3502]  __sys_bpf+0x2e0/0x1a88
[  115.237250][ T3502]  __arm64_sys_bpf+0x24/0x34
[  115.237591][ T3502]  invoke_syscall+0x48/0x110
[  115.237981][ T3502]  el0_svc_common.constprop.0+0x40/0xe0
[  115.238381][ T3502]  do_el0_svc+0x1c/0x28
[  115.238825][ T3502]  el0_svc+0x34/0x128
[  115.239163][ T3502]  el0t_64_sync_handler+0xa0/0xe4
[  115.239685][ T3502]  el0t_64_sync+0x1a4/0x1a8
[  115.240507][ T3502] Code: d65f03c0 91040023 aa0103e2 91004021 (d9600042) 
[  115.241807][ T3502] ---[ end trace 0000000000000000 ]---
[  115.243218][ T3502] Kernel panic - not syncing: Oops: Fatal exception
[  115.243985][ T3502] SMP: stopping secondary CPUs
[  115.245255][ T3502] Kernel Offset: disabled
[  115.245634][ T3502] CPU features: 0x000000,00068cc1,7ef8cf80,957fff3f
[  115.246401][ T3502] Memory Limit: none
[  115.247474][ T3502] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:37:36  Registers:
info registers vcpu 0

CPU#0
 PC=ffff800081b91fc4 X00=ffff800082d85050 X01=00000000000000c0
X02=ffff800082d85030 X03=0000000000000000 X04=0000000000000000
X05=000000000000000a X06=2a5e5a474f4f585a X07=0000000000000000
X08=7f7f7f7f7f7f7f7f X09=ffff800082badf58 X10=0000000000000001
X11=ffff800089c73100 X12=ffff800082adf268 X13=ffff800089c72edd
X14=ffff800089c72ee8 X15=ffff800089c72d50 X16=0000000000000000
X17=0000000000000000 X18=00000000ffffffff X19=00000000000000c0
X20=f9f0000003049400 X21=ffff80008092e5c4 X22=0000000000000f01
X23=0000000000000000 X24=0000000000000000 X25=00000000000000c0
X26=ffffffffffffffff X27=ffff800082751000 X28=ffffffffffffffff
X29=ffff800089c73010 X30=ffff800080897024  SP=ffff800089c73010
PSTATE=604020c9 -ZC- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000000000000000 P01=0000000000000000 P02=0000000000000000
P03=0000000000000000 P04=0000000000000000 P05=0000000000000000
P06=0000000000000000 P07=0000000000000000 P08=0000000000000000
P09=0000000000000000 P10=0000000000000000 P11=0000000000000000
P12=0000000000000000 P13=0000000000000000 P14=0000000000000000
P15=0000000000000000 FFR=0000000000000000
Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:1300000000000000:1300000000000000
Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000001300000000:0000000000000000
Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000013:0000000000000000
Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00d000a800000000:0000000000000000
Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000002
Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000013:0000000000000002
Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88
Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0
Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffc9afe210:0000ffffc9afe210
Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffc9afe1e0
Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
info registers vcpu 1

CPU#1
 PC=ffff8000816d05a4 X00=f9f0000009045728 X01=f1f000000b5ca100
X02=ffff800089bcbd60 X03=0000000000000000 X04=0000000000000000
X05=ffff8000816cedc0 X06=0000000000000000 X07=f1f000000b5ca100
X08=0000000000000000 X09=0000000000000000 X10=912b08169debd4d7
X11=f1f000000b5ca100 X12=ffff800082a012d0 X13=00000000000002d9
X14=00000000000002d9 X15=0000000020efe7c0 X16=0000000000000000
X17=0000000000000000 X18=0000000000000000 X19=f1f0000006a4cf00
X20=f9f0000009045680 X21=f9f00000090459c8 X22=0000000000000000
X23=0000000000000002 X24=ffff800089bcbb48 X25=0000000020efe7c8
X26=fbf00000067c8e41 X27=0000000000000002 X28=000000000003bf9d
X29=ffff800089bcbb10 X30=ffff8000816b3ed4  SP=ffff800089bcbb60
PSTATE=61402009 -ZC- EL2h  SVCR=00000000 --  BTYPE=0     FPCR=00000000 FPSR=00000000
P00=0000000000000000 P01=0000000000000000 P02=0000000000000000
P03=0000000000000000 P04=0000000000000000 P05=0000000000000000
P06=0000000000000000 P07=0000000000000000 P08=0000000000000000
P09=0000000000000000 P10=0000000000000000 P11=0000000000000000
P12=0000000000000000 P13=0000000000000000 P14=0000000000000000
P15=0000000000000000 FFR=0000000000000000
Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:2c2c2c2c2c2c2c2c:2c2c2c2c2c2c2c2c
Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:676e697070696b53:0000000000006572
Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:cccccccccccc0000
Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:3333333333333333:3333333333333333
Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000000cccccc00
Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000073:0000aaaae3eb8c90
Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000074:0000aaaae3eb5f70
Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffd33b0f60:0000ffffd33b0f60
Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffd33b0f30
Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000
Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000