SELinux: unrecognized netlink message: protocol=6 nlmsg_type=56315 sclass=netlink_xfrm_socket pid=4878 comm=syz-executor.2
loop0: detected capacity change from 0 to 256
FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor.1:4875]
Modules linked in:
irq event stamp: 5994887
hardirqs last  enabled at (5994886): [<ffffffff84400d06>] asm_sysvec_apic_timer_interrupt+0x16/0x20
hardirqs last disabled at (5994887): [<ffffffff841de94b>] sysvec_apic_timer_interrupt+0xb/0xc0
softirqs last  enabled at (5985510): [<ffffffff8116c6ab>] __irq_exit_rcu+0x11b/0x180
softirqs last disabled at (5985513): [<ffffffff8116c6ab>] __irq_exit_rcu+0x11b/0x180
CPU: 0 PID: 4875 Comm: syz-executor.1 Not tainted 5.19.0-rc8-next-20220728 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
RIP: 0010:perf_tp_event+0x289/0xbd0
Code: ff 41 83 e7 03 4c 89 fe e8 a4 2a f0 ff 4d 85 ff 74 74 e8 ca 2d f0 ff 48 8d bb e0 02 00 00 48 89 f8 48 c1 e8 03 42 80 3c 20 00 <0f> 85 0c 08 00 00 4c 8b bb e0 02 00 00 4d 85 ff 4c 0f 44 fb e8 9e
RSP: 0018:ffff88806ce09340 EFLAGS: 00000246
RAX: 1ffff110010cf115 RBX: ffff8880086785c8 RCX: 0000000000000100
RDX: ffff888017c98000 RSI: ffffffff81557c36 RDI: ffff8880086788a8
RBP: ffff88806ce095b0 R08: 0000000000000001 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
R13: ffff88806ce33928 R14: 0000000000000001 R15: 0000000000000000
FS:  00007fb387e4e700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f4081f7c6f4 CR3: 0000000041ac8000 CR4: 0000000000350ef0
Call Trace:
 <IRQ>
 perf_trace_run_bpf_submit+0xf5/0x1d0
 perf_trace_lock+0x308/0x560
 lock_release+0x4ae/0x750
 __is_insn_slot_addr+0x144/0x250
 kernel_text_address+0x57/0xb0
 __kernel_text_address+0x9/0x40
 unwind_get_return_address+0x55/0xa0
 arch_stack_walk+0x99/0xf0
 stack_trace_save+0x8c/0xc0
 kasan_save_stack+0x1e/0x40
 __kasan_record_aux_stack+0x97/0xb0
 call_rcu+0x6a/0xa30
 kmem_cache_free+0xc1/0x610
 kfree_skbmem+0xef/0x1b0
 consume_skb+0xcf/0x160
 mac80211_hwsim_tx_frame+0x1f6/0x2a0
 mac80211_hwsim_beacon_tx+0x562/0xaa0
 __iterate_interfaces+0x2d3/0x560
 ieee80211_iterate_active_interfaces_atomic+0x70/0x180
 mac80211_hwsim_beacon+0x101/0x200
 __hrtimer_run_queues+0x5de/0xbd0
 hrtimer_run_softirq+0x172/0x340
 __do_softirq+0x1c8/0x8d0
 __irq_exit_rcu+0x11b/0x180
 irq_exit_rcu+0x5/0x20
 sysvec_apic_timer_interrupt+0x8e/0xc0
 </IRQ>
 <TASK>
 asm_sysvec_apic_timer_interrupt+0x16/0x20
RIP: 0010:qlist_free_all+0xb3/0x1a0
Code: 0f 82 f8 00 00 00 48 c7 c0 00 00 00 80 48 2b 05 53 0f 9b 03 48 01 d0 48 c1 e8 0c 48 c1 e0 06 48 03 05 31 0f 9b 03 48 8b 48 08 <48> 89 c2 f6 c1 01 0f 85 ba 00 00 00 0f 1f 44 00 00 48 8b 02 f6 c4
RSP: 0018:ffff888047257728 EFLAGS: 00000286
RAX: ffffea00006e1c00 RBX: ffff88801b870c80 RCX: ffffea0000399a08
RDX: ffff88809b870c80 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: ffff88801b870c80 R09: ffffffff86ca37cf
R10: fffffbfff0d946f9 R11: 0000000000000001 R12: dffffc0000000000
R13: ffff888047257768 R14: 0000000000000000 R15: ffff88800db6a1b0
 kasan_quarantine_reduce+0x184/0x210
 __kasan_kmalloc+0x97/0xa0
 __register_sysctl_table+0x9ef/0x1150
 ipv6_sysctl_net_init+0x122/0x2a0
 ops_init+0xb2/0x480
 setup_net+0x40c/0x9d0
 copy_net_ns+0x318/0x760
 create_new_namespaces+0x3f6/0xb30
 copy_namespaces+0x395/0x480
 copy_process+0x2ca7/0x6de0
 kernel_clone+0xe7/0xa60
 __do_sys_clone3+0x1d5/0x2e0
 do_syscall_64+0x3b/0x90
 entry_SYSCALL_64_after_hwframe+0x63/0xcd
RIP: 0033:0x7fb38a8d8b19
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb387e4e188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
RAX: ffffffffffffffda RBX: 00007fb38a9ebf60 RCX: 00007fb38a8d8b19
RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020004c00
RBP: 00007fb38a932f6d R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffccec309ef R14: 00007fb387e4e300 R15: 0000000000022000
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1 skipped: idling at default_idle+0xb/0x10
----------------
Code disassembly (best guess):
   0:	ff 41 83             	incl   -0x7d(%rcx)
   3:	e7 03                	out    %eax,$0x3
   5:	4c 89 fe             	mov    %r15,%rsi
   8:	e8 a4 2a f0 ff       	callq  0xfff02ab1
   d:	4d 85 ff             	test   %r15,%r15
  10:	74 74                	je     0x86
  12:	e8 ca 2d f0 ff       	callq  0xfff02de1
  17:	48 8d bb e0 02 00 00 	lea    0x2e0(%rbx),%rdi
  1e:	48 89 f8             	mov    %rdi,%rax
  21:	48 c1 e8 03          	shr    $0x3,%rax
  25:	42 80 3c 20 00       	cmpb   $0x0,(%rax,%r12,1)
* 2a:	0f 85 0c 08 00 00    	jne    0x83c <-- trapping instruction
  30:	4c 8b bb e0 02 00 00 	mov    0x2e0(%rbx),%r15
  37:	4d 85 ff             	test   %r15,%r15
  3a:	4c 0f 44 fb          	cmove  %rbx,%r15
  3e:	e8                   	.byte 0xe8
  3f:	9e                   	sahf