last executing test programs: 765.143384ms ago: executing program 0 (id=427): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000340), 0x4) setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc) setsockopt$MRT6_FLUSH(r1, 0x29, 0xd4, &(0x7f0000000080)=0x6, 0x4) 647.491904ms ago: executing program 0 (id=436): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000009c0)={'veth0_to_team\x00', 0x2}) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x3d) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=@deltfilter={0x54, 0x2d, 0x400, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffff, 0xfff3}, {0x4, 0xe}, {0x4, 0xf}}, [@TCA_RATE={0x6, 0x5, {0xf, 0x7b}}, @TCA_RATE={0x6, 0x5, {0x9, 0xe}}, @TCA_RATE={0x6, 0x5, {0x7, 0x7}}, @TCA_CHAIN={0x8, 0xb, 0x1}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_CHAIN={0x8, 0xb, 0x9}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x34040004) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'vlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) 567.548612ms ago: executing program 0 (id=438): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='mm_page_free\x00', r0}, 0x18) socket$packet(0x11, 0xa, 0x300) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xe, 0x0, &(0x7f0000000380)="259a53f271a76d3f94e49820a749", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x300}, 0x50) 449.753913ms ago: executing program 3 (id=447): bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff"], 0x138) 449.487429ms ago: executing program 3 (id=448): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0xff, r3}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc) r5 = socket(0x10, 0x803, 0x4) sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0) ioctl$sock_ifreq(r4, 0x8946, 0x0) pidfd_getfd(0xffffffffffffffff, r1, 0x0) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r6, 0x0, 0x1}, 0x18) socket$inet6_tcp(0xa, 0x1, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r7}, 0x10) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x13, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xb}}}, 0x24}}, 0x0) 369.566914ms ago: executing program 0 (id=450): r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x20280, 0x0) ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000080)=0x14) unshare(0x62040200) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) close(r0) 228.526574ms ago: executing program 3 (id=458): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000001c0), 0x4) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000003ac0)) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x20, 0x0, 0x2, 0xfffffffffffffffd}, &(0x7f00000000c0)=0x18) 180.109284ms ago: executing program 3 (id=461): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffed7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') preadv(r2, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/215, 0xd7}], 0x1, 0xfffffffd, 0x8) 179.710062ms ago: executing program 1 (id=462): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10) r3 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x50, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x24, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x748, 0xffff8000}}, @TCA_HTB_DIRECT_QLEN={0x8, 0x5, 0x3}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x20002044}, 0x44080) 179.361189ms ago: executing program 3 (id=464): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "810000cc2b000000000000fa25ffff00ffffff"}) r1 = syz_open_pts(r0, 0x141601) write(r1, &(0x7f0000000000), 0x0) ioctl$TCFLSH(r0, 0x540b, 0x2) 179.246019ms ago: executing program 2 (id=465): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)}) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0xf, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) bind$inet6(r2, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18) sendto$inet6(r2, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 179.038722ms ago: executing program 1 (id=466): fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$SG_GET_VERSION_NUM(r1, 0x2284, &(0x7f0000000080)) 134.580814ms ago: executing program 3 (id=467): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0xfffffffffffffe71) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x5, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x6, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/4153], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x5, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x8000}, 0xe) 134.161937ms ago: executing program 1 (id=468): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000080000000000000004850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f00000191c0)=ANY=[@ANYBLOB="010000000b0000000500100002000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r1, @ANYRES32, @ANYBLOB="0000000002"], 0x48) 134.060608ms ago: executing program 1 (id=469): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000001000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 127.32436ms ago: executing program 0 (id=470): memfd_create(&(0x7f0000000000)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x95\x8a3\xbc\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19T\xff\x01\x00\x00\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbf`\'\xcb\xb6\xaf\xdc\xacD\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\xaa\xe6\x05\xe4\xc3\x90\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xe0\xf4\xc3\xf2\x93\xd2\xa9\xb1\f{a?\xd0\xe1\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0\xb2\xa0Z_\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\x02\xbaq\xb6Pr\x04\xcd\n\xc7\x1b\xb9\xc1\x84l\x00\x04\x00\x00\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x826`M\x11\x1c\xb0*K\v\x1e\xcf\x03\xd3\xe8,?\x87\x84\\/y\xed\x01#?\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\xa3\xcc\x9b\a\x00\x00\x00O\xc9\xb9\x14\x02\x00\x00\x00\xb8L\xbd\x1c4\xb59\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\rm\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5', 0xb) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="0000000000000000400012800c00"], 0x68}}, 0x0) r1 = socket$igmp6(0xa, 0x3, 0x2) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}}) write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72) 127.216552ms ago: executing program 2 (id=471): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000001c0), 0x4) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000003ac0)) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0x20, 0x0, 0x2, 0xfffffffffffffffd}, &(0x7f00000000c0)=0x18) 59.211869ms ago: executing program 2 (id=472): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0) sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x34, r1, 0x201, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x6}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x80000}, 0x10000000) 58.782473ms ago: executing program 1 (id=473): bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x3}, 0x18) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) socket$can_raw(0x1d, 0x3, 0x1) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000380)={0xffffffffffffffff}, 0x2, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(r2, &(0x7f0000000d40)={0x16, 0x98, 0xfa00, {0x0, 0x2, r3, 0x30, 0x1, @ib={0x1b, 0x8000, 0xfff, {"3f8c0d6cf777eaa6ace6d3ec00ed4771"}, 0x500e, 0x0, 0x5}}}, 0xa0) 58.325423ms ago: executing program 2 (id=474): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffed7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) preadv(r2, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/215, 0xd7}], 0x1, 0xfffffffd, 0x8) 57.991415ms ago: executing program 1 (id=475): r0 = socket$qrtr(0x2a, 0x2, 0x0) connect$qrtr(r0, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r2 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x20000014}) r4 = dup(r3) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f00000000c0)={0x2000}) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10) statx(0xffffffffffffff9c, 0x0, 0x6000, 0x2, 0x0) r6 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x285}, &(0x7f00000004c0)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r9 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_int(r9, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1) sendto$inet6(r9, 0x0, 0x0, 0x200c8084, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0xb}, {0x0, [0x30, 0x51, 0x5f, 0x5f, 0x5f, 0x2e, 0x5f, 0xc08c465edde14bd3, 0x5f]}}, &(0x7f00000002c0)=""/47, 0x23, 0x2f, 0x1, 0xff}, 0x28) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x2, &(0x7f0000000040)=[{0xf, 0x3, 0xa0, 0xffff}, {0x3, 0x7, 0xe, 0x1}]}) connect$inet6(r9, &(0x7f0000000280)={0xa, 0x4e20, 0x3, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x7fffffff}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791000000000000063000000000000009500050000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x26, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x23) sendto$inet6(r9, &(0x7f0000001cc0)="2501d77b330b7e73d6b1d1b8a473ff7420b4b43ce0861f000000714fa228ee1f5b48", 0xfffffffffffffe57, 0x8000, 0x0, 0x0) recvmmsg(r9, &(0x7f0000002480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002003, 0x0) syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r0, 0x0, 0x0}) io_uring_enter(r6, 0x40f9, 0x217, 0xa5, 0x0, 0xf5) 343.739µs ago: executing program 2 (id=476): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "810000cc2b000000000000fa25ffff00ffffff"}) r1 = syz_open_pts(r0, 0x141601) write(r1, &(0x7f0000000000), 0x0) ioctl$TCFLSH(r0, 0x540b, 0x2) 178.885µs ago: executing program 0 (id=477): syz_io_uring_setup(0x28e2, &(0x7f0000000140)={0x0, 0xe4d0, 0x2, 0x1, 0x35c}, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50) r0 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x4}, &(0x7f0000000300)=0x0, &(0x7f0000000580)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1}) io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0) pipe(&(0x7f0000000400)={0xffffffffffffffff}) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) splice(r3, 0x0, r4, 0x0, 0x88000cc, 0x0) 0s ago: executing program 2 (id=478): fcntl$setsig(0xffffffffffffffff, 0xa, 0x11) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$SG_GET_VERSION_NUM(r2, 0x2284, &(0x7f0000000080)) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:25004' (ED25519) to the list of known hosts. [ 41.795356][ T5892] cgroup: Unknown subsys name 'net' [ 41.995302][ T5892] cgroup: Unknown subsys name 'cpuset' [ 41.999215][ T5892] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.890363][ T5892] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 48.311104][ T5977] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 48.316225][ T5977] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 48.318985][ T5977] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 48.333677][ T5983] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 48.336410][ T5983] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 48.336848][ T5979] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 48.338869][ T5983] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 48.343032][ T5987] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 48.345289][ T5983] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 48.345547][ T5987] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 48.348296][ T5983] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 48.352219][ T5987] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 48.354907][ T5987] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 48.392601][ T5986] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 48.395571][ T5986] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 48.398470][ T5986] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 48.398856][ T5985] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 48.401655][ T5986] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 48.406517][ T5985] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 48.409031][ T5985] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 48.634071][ T5971] chnl_net:caif_netlink_parms(): no params data found [ 48.923123][ T5981] chnl_net:caif_netlink_parms(): no params data found [ 49.155129][ T5971] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.157753][ T5971] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.160205][ T5971] bridge_slave_0: entered allmulticast mode [ 49.163081][ T5971] bridge_slave_0: entered promiscuous mode [ 49.168637][ T5971] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.170888][ T5971] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.173634][ T5971] bridge_slave_1: entered allmulticast mode [ 49.176376][ T5971] bridge_slave_1: entered promiscuous mode [ 49.290733][ T5971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.330828][ T5971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.364595][ T5981] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.366872][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.369104][ T5981] bridge_slave_0: entered allmulticast mode [ 49.371651][ T5981] bridge_slave_0: entered promiscuous mode [ 49.391831][ T5981] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.394413][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.396629][ T5981] bridge_slave_1: entered allmulticast mode [ 49.399234][ T5981] bridge_slave_1: entered promiscuous mode [ 49.401754][ T5970] chnl_net:caif_netlink_parms(): no params data found [ 49.406250][ T5980] chnl_net:caif_netlink_parms(): no params data found [ 49.416760][ T5971] team0: Port device team_slave_0 added [ 49.444605][ T5971] team0: Port device team_slave_1 added [ 49.464929][ T5981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.516987][ T5981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.575622][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.577802][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.585884][ T5971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.590996][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 49.594347][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.602115][ T5971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 49.726975][ T5981] team0: Port device team_slave_0 added [ 49.729359][ T5970] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.732096][ T5970] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.736172][ T5970] bridge_slave_0: entered allmulticast mode [ 49.739487][ T5970] bridge_slave_0: entered promiscuous mode [ 49.782935][ T5971] hsr_slave_0: entered promiscuous mode [ 49.785370][ T5971] hsr_slave_1: entered promiscuous mode [ 49.788856][ T5981] team0: Port device team_slave_1 added [ 49.791000][ T5970] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.794174][ T5970] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.797214][ T5970] bridge_slave_1: entered allmulticast mode [ 49.801315][ T5970] bridge_slave_1: entered promiscuous mode [ 49.805072][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.807303][ T5980] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.809540][ T5980] bridge_slave_0: entered allmulticast mode [ 49.812141][ T5980] bridge_slave_0: entered promiscuous mode [ 49.816279][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.818560][ T5980] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.820801][ T5980] bridge_slave_1: entered allmulticast mode [ 49.823610][ T5980] bridge_slave_1: entered promiscuous mode [ 49.956447][ T5980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.959793][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.961989][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.970323][ T5981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.976649][ T5970] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.997547][ T5980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 50.017000][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.019884][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.031869][ T5981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.039635][ T5970] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 50.269075][ T5980] team0: Port device team_slave_0 added [ 50.275980][ T5970] team0: Port device team_slave_0 added [ 50.284136][ T5970] team0: Port device team_slave_1 added [ 50.288121][ T5980] team0: Port device team_slave_1 added [ 50.366239][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 50.368563][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.377203][ T5980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 50.393974][ T5986] Bluetooth: hci0: command tx timeout [ 50.395686][ T5970] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 50.397920][ T5970] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.402662][ T5986] Bluetooth: hci2: command tx timeout [ 50.406852][ T5970] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 50.428430][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.430595][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.438658][ T5980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.442387][ T5970] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.444897][ T5970] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.452810][ T5970] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.458594][ T5981] hsr_slave_0: entered promiscuous mode [ 50.460802][ T5981] hsr_slave_1: entered promiscuous mode [ 50.463174][ T5981] debugfs: 'hsr0' already exists in 'hsr' [ 50.465068][ T5981] Cannot create hsr debugfs directory [ 50.472972][ T5986] Bluetooth: hci3: command tx timeout [ 50.482748][ T5986] Bluetooth: hci1: command tx timeout [ 50.630330][ T5980] hsr_slave_0: entered promiscuous mode [ 50.634748][ T5980] hsr_slave_1: entered promiscuous mode [ 50.638448][ T5980] debugfs: 'hsr0' already exists in 'hsr' [ 50.640827][ T5980] Cannot create hsr debugfs directory [ 50.650565][ T5970] hsr_slave_0: entered promiscuous mode [ 50.653795][ T5970] hsr_slave_1: entered promiscuous mode [ 50.656713][ T5970] debugfs: 'hsr0' already exists in 'hsr' [ 50.658942][ T5970] Cannot create hsr debugfs directory [ 51.024987][ T5971] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 51.033084][ T5971] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 51.093248][ T5971] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 51.098739][ T5971] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 51.165282][ T5981] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 51.170063][ T5981] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 51.177492][ T5981] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 51.182814][ T5981] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 51.226871][ T5980] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 51.233297][ T5980] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 51.237403][ T5980] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 51.243951][ T5980] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 51.319688][ T5970] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 51.324446][ T5970] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 51.329933][ T5970] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 51.334988][ T5970] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 51.386842][ T5971] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.417528][ T5980] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.423002][ T5971] 8021q: adding VLAN 0 to HW filter on device team0 [ 51.438380][ T5981] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.451535][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.453939][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.458978][ T5980] 8021q: adding VLAN 0 to HW filter on device team0 [ 51.467858][ T1179] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.470049][ T1179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.478969][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.481185][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.492990][ T5981] 8021q: adding VLAN 0 to HW filter on device team0 [ 51.504034][ T1173] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.506286][ T1173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.509915][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.512073][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.523498][ T5970] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.529460][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.531884][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.561862][ T5970] 8021q: adding VLAN 0 to HW filter on device team0 [ 51.576368][ T1179] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.579317][ T1179] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.622297][ T5980] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 51.626657][ T5980] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 51.636823][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.639743][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.746937][ T5971] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.774901][ T5981] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.779490][ T5980] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.789016][ T5971] veth0_vlan: entered promiscuous mode [ 51.801212][ T5971] veth1_vlan: entered promiscuous mode [ 51.817225][ T5970] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 51.838050][ T5981] veth0_vlan: entered promiscuous mode [ 51.843484][ T5971] veth0_macvtap: entered promiscuous mode [ 51.851049][ T5971] veth1_macvtap: entered promiscuous mode [ 51.861493][ T5981] veth1_vlan: entered promiscuous mode [ 51.877259][ T5980] veth0_vlan: entered promiscuous mode [ 51.882747][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 51.891841][ T5980] veth1_vlan: entered promiscuous mode [ 51.899059][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 51.912327][ T1173] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.916130][ T1173] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.921363][ T1173] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.927972][ T5981] veth0_macvtap: entered promiscuous mode [ 51.930905][ T1173] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.935384][ T5970] veth0_vlan: entered promiscuous mode [ 51.944039][ T5981] veth1_macvtap: entered promiscuous mode [ 51.966457][ T5970] veth1_vlan: entered promiscuous mode [ 52.009674][ T5980] veth0_macvtap: entered promiscuous mode [ 52.031750][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.036804][ T5980] veth1_macvtap: entered promiscuous mode [ 52.078554][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.174619][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.181637][ T5970] veth0_macvtap: entered promiscuous mode [ 52.407331][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.410094][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.417371][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.420421][ T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.424258][ T5970] veth1_macvtap: entered promiscuous mode [ 52.434197][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.450795][ T1173] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.459890][ T1173] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.462672][ T1173] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.472680][ T5978] Bluetooth: hci0: command tx timeout [ 52.474434][ T5986] Bluetooth: hci2: command tx timeout [ 52.479235][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.481702][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.486976][ T5970] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.489427][ T1173] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.507653][ T5970] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.513427][ T1139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.514029][ T1179] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.515963][ T1139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.525180][ T1179] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.529994][ T1179] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.543826][ T1179] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.552711][ T5986] Bluetooth: hci1: command tx timeout [ 52.558171][ T1179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.560613][ T1179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.563020][ T5986] Bluetooth: hci3: command tx timeout [ 52.569650][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.573139][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.598891][ T5981] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 52.600741][ T1139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.606262][ T1139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.631961][ T1173] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.636234][ T1173] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.656273][ T6061] syz.2.3 uses obsolete (PF_INET,SOCK_PACKET) [ 52.672251][ T1179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.675432][ T1179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.680670][ T1179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 52.683830][ T1179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.751332][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.755019][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.757348][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.759591][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.761891][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.764613][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.767004][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.769296][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.771521][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.776936][ T72] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 52.783660][ T72] hid-generic 0000:0000:0000.0002: hidraw1: HID v0.00 Device [sy] on syz0 [ 52.820742][ T6068] netlink: 224 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.824079][ T6068] ksmbd: Unknown IPC event: 4, ignore. [ 52.829490][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.832463][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.835960][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.841831][ T6070] fido_id[6070]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 52.879301][ T6074] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6'. [ 52.883172][ T6074] netlink: 112 bytes leftover after parsing attributes in process `syz.1.6'. [ 52.887620][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.889880][ T6074] netlink: 5 bytes leftover after parsing attributes in process `syz.1.6'. [ 52.890312][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.896482][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'. [ 52.899756][ T6074] 0ªî{X¹¦: renamed from gretap0 (while UP) [ 52.907215][ T6074] 0ªî{X¹¦: entered allmulticast mode [ 52.909866][ T6074] A link change request failed with some changes committed already. Interface 30ªî{X¹¦ may have been left with an inconsistent configuration, please check. [ 54.150582][ T6104] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 54.252641][ T6112] geneve2: entered promiscuous mode [ 54.254706][ T6112] geneve2: entered allmulticast mode [ 54.259554][ T6115] ======================================================= [ 54.259554][ T6115] WARNING: The mand mount option has been deprecated and [ 54.259554][ T6115] and is ignored by this kernel. Remove the mand [ 54.259554][ T6115] option from the mount to silence this warning. [ 54.259554][ T6115] ======================================================= [ 54.400259][ T6125] serio: Serial port ptm1 [ 54.553804][ T5986] Bluetooth: hci2: command tx timeout [ 54.555556][ T5986] Bluetooth: hci0: command tx timeout [ 54.632609][ T5978] Bluetooth: hci1: command tx timeout [ 54.635085][ T5986] Bluetooth: hci3: command tx timeout [ 54.879547][ T6151] usb usb9: usbfs: process 6151 (syz.1.31) did not claim interface 0 before use [ 54.900571][ T40] audit: type=1326 audit(1756717427.435:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.920222][ T40] audit: type=1326 audit(1756717427.445:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.937637][ T40] audit: type=1326 audit(1756717427.445:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.948182][ T40] audit: type=1326 audit(1756717427.445:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.955513][ T40] audit: type=1326 audit(1756717427.445:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.961685][ T40] audit: type=1326 audit(1756717427.445:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.968420][ T40] audit: type=1326 audit(1756717427.445:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.975733][ T40] audit: type=1326 audit(1756717427.445:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.982929][ T40] audit: type=1326 audit(1756717427.445:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 54.989333][ T40] audit: type=1326 audit(1756717427.445:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6156 comm="syz.0.34" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 55.137441][ T6182] netlink: 'syz.2.45': attribute type 4 has an invalid length. [ 55.220929][ T34] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [sy] on syz0 [ 55.295042][ T6198] fido_id[6198]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 55.495017][ T6213] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 55.495017][ T6213] program syz.3.58 not setting count and/or reply_len properly [ 56.241088][ T10] hid-generic 0000:0000:0000.0004: hidraw1: HID v0.00 Device [sy] on syz0 [ 56.305283][ T6230] fido_id[6230]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 56.622848][ T6245] netlink: 'syz.0.70': attribute type 4 has an invalid length. [ 56.633138][ T5986] Bluetooth: hci2: command tx timeout [ 56.635902][ T5986] Bluetooth: hci0: command tx timeout [ 56.714015][ T5986] Bluetooth: hci3: command tx timeout [ 56.714028][ T5978] Bluetooth: hci1: command tx timeout [ 58.139036][ T6376] __nla_validate_parse: 5 callbacks suppressed [ 58.139047][ T6376] netlink: 4 bytes leftover after parsing attributes in process `syz.3.98'. [ 58.255926][ T72] hid_parser_main: 86 callbacks suppressed [ 58.255937][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.260161][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.262462][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.264983][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.267313][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.269611][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.271959][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.274607][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.276956][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.279377][ T72] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 58.283383][ T72] hid-generic 0000:0000:0000.0005: hidraw1: HID v0.00 Device [sy] on syz0 [ 58.309744][ T6385] fido_id[6385]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 58.446529][ T6404] netlink: 'syz.0.111': attribute type 4 has an invalid length. [ 58.471035][ T72] hid-generic 0000:0000:0000.0006: hidraw1: HID v0.00 Device [sy] on syz0 [ 58.505335][ T6410] fido_id[6410]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 58.598255][ T72] hid-generic 0000:0000:0000.0007: hidraw1: HID v0.00 Device [sy] on syz0 [ 58.629327][ T6430] fido_id[6430]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 58.852275][ T1335] hid-generic 0000:0000:0000.0008: hidraw1: HID v0.00 Device [sy] on syz0 [ 58.896492][ T6465] capability: warning: `syz.2.138' uses deprecated v2 capabilities in a way that may be insecure [ 58.914241][ T6461] fido_id[6461]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 59.032036][ T34] hid-generic 0000:0000:0000.0009: hidraw1: HID v0.00 Device [sy] on syz0 [ 59.078025][ T6488] fido_id[6488]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 60.218354][ T29] hid-generic 0000:0000:0000.000A: hidraw1: HID v0.00 Device [sy] on syz0 [ 60.350258][ T6557] infiniband syz!: set active [ 60.359421][ T6557] infiniband syz!: added team_slave_0 [ 60.360199][ T6580] fido_id[6580]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 60.424386][ T6557] RDS/IB: syz!: added [ 60.425991][ T6557] smc: adding ib device syz! with port count 1 [ 60.428063][ T6557] smc: ib device syz! port 1 has pnetid [ 60.773834][ T1335] hid-generic 0000:0000:0000.000B: hidraw1: HID v0.00 Device [sy] on syz0 [ 60.833208][ T6624] fido_id[6624]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 61.227260][ T6676] netlink: 256 bytes leftover after parsing attributes in process `syz.0.232'. [ 61.230101][ T6676] ksmbd: Unknown IPC event: 3, ignore. [ 61.250351][ T6680] netlink: 28 bytes leftover after parsing attributes in process `syz.1.233'. [ 61.397878][ T40] kauditd_printk_skb: 1402 callbacks suppressed [ 61.397892][ T40] audit: type=1326 audit(1756717433.935:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.243" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 61.414074][ T40] audit: type=1326 audit(1756717433.945:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.243" exe="/syz-executor" sig=0 arch=40000003 syscall=375 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 61.423174][ T40] audit: type=1326 audit(1756717433.965:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.243" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 61.430636][ T40] audit: type=1326 audit(1756717433.965:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.243" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 61.463112][ T6704] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 61.463112][ T6704] program syz.1.246 not setting count and/or reply_len properly [ 61.594017][ T6724] Zero length message leads to an empty skb [ 61.615801][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.652926][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.679644][ T40] audit: type=1326 audit(1756717434.215:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.0.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 61.687316][ T40] audit: type=1326 audit(1756717434.215:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.0.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 61.696336][ T40] audit: type=1326 audit(1756717434.215:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.0.262" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 61.703737][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.704521][ T40] audit: type=1326 audit(1756717434.215:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.0.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 61.707130][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.714124][ T40] audit: type=1326 audit(1756717434.215:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.0.262" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 61.722851][ T40] audit: type=1326 audit(1756717434.225:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.0.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000 [ 61.750929][ T6743] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 61.750929][ T6743] program syz.2.265 not setting count and/or reply_len properly [ 61.912770][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.106628][ T6777] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 62.106628][ T6777] program syz.0.280 not setting count and/or reply_len properly [ 62.198072][ T6784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.283'. [ 62.236863][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.240710][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.243806][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.260144][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 63.425897][ T6870] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 63.427115][ T34] IPVS: starting estimator thread 0... [ 63.523382][ T6877] IPVS: using max 46 ests per chain, 110400 per kthread [ 63.757039][ T6900] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 64.026094][ T6945] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 64.026094][ T6945] program syz.3.355 not setting count and/or reply_len properly [ 64.256809][ T6969] $Hÿ: renamed from bond0 (while UP) [ 64.282984][ T6969] $Hÿ: entered promiscuous mode [ 64.285071][ T6969] bond_slave_0: entered promiscuous mode [ 64.287340][ T6969] bond_slave_1: entered promiscuous mode [ 64.335682][ T6975] tmpfs: Bad value for 'mpol' [ 64.406434][ T6985] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 64.406434][ T6985] program syz.0.373 not setting count and/or reply_len properly [ 64.689100][ T7014] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 64.908321][ T7034] netlink: 87 bytes leftover after parsing attributes in process `syz.2.397'. [ 65.248593][ T7060] netlink: 224 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.251446][ T7060] ksmbd: Unknown IPC event: 4, ignore. [ 65.257796][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.261309][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.264960][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.285868][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.288614][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.291352][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 65.329563][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 66.078947][ T7106] pim6reg: entered allmulticast mode [ 66.084297][ T7106] pim6reg: left allmulticast mode [ 66.176134][ T7120] netlink: 'syz.3.434': attribute type 4 has an invalid length. [ 66.188516][ T7120] netlink: 'syz.3.434': attribute type 4 has an invalid length. [ 66.473660][ T40] kauditd_printk_skb: 223 callbacks suppressed [ 66.473671][ T40] audit: type=1326 audit(1756717439.015:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.2.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 66.485302][ T40] audit: type=1326 audit(1756717439.015:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.2.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 66.493651][ T40] audit: type=1326 audit(1756717439.015:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.2.452" exe="/syz-executor" sig=0 arch=40000003 syscall=428 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 66.502719][ T40] audit: type=1326 audit(1756717439.015:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7154 comm="syz.2.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 66.816428][ T7190] ------------[ cut here ]------------ [ 66.818193][ T7190] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0x1f, 0x1f] s64=[0x1f, 0x1f] u32=[0x1f, 0x17] s32=[0x1f, 0x1f] var_off=(0x1f, 0x0)(1) [ 66.823536][ T7190] WARNING: CPU: 0 PID: 7190 at kernel/bpf/verifier.c:2722 reg_bounds_sanity_check+0x62b/0x1200 [ 66.826759][ T7190] Modules linked in: [ 66.828046][ T7190] CPU: 0 UID: 0 PID: 7190 Comm: syz.3.467 Not tainted syzkaller #0 PREEMPT(full) [ 66.831936][ T7190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 66.835499][ T7190] RIP: 0010:reg_bounds_sanity_check+0x62b/0x1200 [ 66.837456][ T7190] Code: 45 ac 50 8b 45 b0 50 8b 45 b4 50 ff 75 b8 4c 8b 4d c0 4c 8b 45 c8 48 8b 95 58 ff ff ff 48 8b b5 60 ff ff ff e8 b6 b8 ab ff 90 <0f> 0b 90 90 48 8b 95 40 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 00 [ 66.843468][ T7190] RSP: 0018:ffffc9000794f2e8 EFLAGS: 00010282 [ 66.845336][ T7190] RAX: 0000000000000000 RBX: 000000000000001f RCX: ffffc9000c001000 [ 66.847734][ T7190] RDX: 0000000000080000 RSI: ffffffff817a02d5 RDI: 0000000000000001 [ 66.850315][ T7190] RBP: ffffc9000794f3e0 R08: 0000000000000001 R09: 0000000000000000 [ 66.852993][ T7190] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88806b818000 [ 66.855355][ T7190] R13: ffff888050a491bc R14: ffff888050a491b4 R15: ffff888050a49168 [ 66.857792][ T7190] FS: 0000000000000000(0000) GS:ffff8880974c0000(0063) knlGS:00000000f54beb40 [ 66.860540][ T7190] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 66.862701][ T7190] CR2: 0000000031f21ff8 CR3: 000000004f705000 CR4: 0000000000352ef0 [ 66.865190][ T7190] Call Trace: [ 66.866256][ T7190] [ 66.867211][ T7190] reg_set_min_max+0x183/0x2c0 [ 66.868701][ T7190] check_cond_jmp_op+0x19b0/0x72d0 [ 66.870290][ T7190] ? __pfx_check_cond_jmp_op+0x10/0x10 [ 66.871962][ T7190] ? push_jmp_history+0x294/0x790 [ 66.873648][ T7190] do_check_common+0xa13e/0xb410 [ 66.875201][ T7190] ? __pfx_do_check_common+0x10/0x10 [ 66.876854][ T7190] ? local_clock_noinstr+0xb1/0xe0 [ 66.878431][ T7190] ? kfree+0x2b4/0x4d0 [ 66.879688][ T7190] ? bpf_check+0x7cf8/0xc4d0 [ 66.881118][ T7190] bpf_check+0x8763/0xc4d0 [ 66.882602][ T7190] ? __pfx_bpf_check+0x10/0x10 [ 66.884158][ T7190] ? __lock_acquire+0xb97/0x1ce0 [ 66.885711][ T7190] ? __asan_memset+0x23/0x50 [ 66.887134][ T7190] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 66.888685][ T7190] bpf_prog_load+0xe41/0x2490 [ 66.890140][ T7190] ? __pfx_bpf_prog_load+0x10/0x10 [ 66.891733][ T7190] __sys_bpf+0x4a3f/0x4de0 [ 66.893252][ T7190] ? __pfx___sys_bpf+0x10/0x10 [ 66.894712][ T7190] ? unix_dgram_connect+0x4e5/0xc80 [ 66.896282][ T7190] ? do_futex+0x122/0x350 [ 66.897592][ T7190] ? __pfx_do_futex+0x10/0x10 [ 66.899035][ T7190] ? xfd_validate_state+0x61/0x180 [ 66.900610][ T7190] __ia32_sys_bpf+0x76/0xe0 [ 66.902037][ T7190] __do_fast_syscall_32+0x7c/0x3a0 [ 66.903694][ T7190] do_fast_syscall_32+0x32/0x80 [ 66.905238][ T7190] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 66.907192][ T7190] RIP: 0023:0xf70ce579 [ 66.908463][ T7190] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 66.914311][ T7190] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 66.916881][ T7190] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0 [ 66.919264][ T7190] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 66.921767][ T7190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 66.924313][ T7190] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 66.926823][ T7190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 66.929309][ T7190] [ 66.930306][ T7190] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 66.932587][ T7190] CPU: 0 UID: 0 PID: 7190 Comm: syz.3.467 Not tainted syzkaller #0 PREEMPT(full) [ 66.935439][ T7190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 66.938770][ T7190] Call Trace: [ 66.939836][ T7190] [ 66.940826][ T7190] dump_stack_lvl+0x3d/0x1f0 [ 66.942296][ T7190] vpanic+0x6e8/0x7a0 [ 66.943585][ T7190] ? __pfx_vpanic+0x10/0x10 [ 66.945044][ T7190] ? reg_bounds_sanity_check+0x62b/0x1200 [ 66.946850][ T7190] panic+0xca/0xd0 [ 66.948113][ T7190] ? __pfx_panic+0x10/0x10 [ 66.949551][ T7190] check_panic_on_warn+0xab/0xb0 [ 66.951114][ T7190] __warn+0xf6/0x3c0 [ 66.952362][ T7190] ? reg_bounds_sanity_check+0x62b/0x1200 [ 66.954170][ T7190] report_bug+0x3c3/0x580 [ 66.955535][ T7190] ? reg_bounds_sanity_check+0x62b/0x1200 [ 66.957346][ T7190] handle_bug+0x184/0x210 [ 66.958714][ T7190] exc_invalid_op+0x17/0x50 [ 66.960150][ T7190] asm_exc_invalid_op+0x1a/0x20 [ 66.961693][ T7190] RIP: 0010:reg_bounds_sanity_check+0x62b/0x1200 [ 66.963670][ T7190] Code: 45 ac 50 8b 45 b0 50 8b 45 b4 50 ff 75 b8 4c 8b 4d c0 4c 8b 45 c8 48 8b 95 58 ff ff ff 48 8b b5 60 ff ff ff e8 b6 b8 ab ff 90 <0f> 0b 90 90 48 8b 95 40 ff ff ff 48 83 c4 38 48 b8 00 00 00 00 00 [ 66.969643][ T7190] RSP: 0018:ffffc9000794f2e8 EFLAGS: 00010282 [ 66.971539][ T7190] RAX: 0000000000000000 RBX: 000000000000001f RCX: ffffc9000c001000 [ 66.973996][ T7190] RDX: 0000000000080000 RSI: ffffffff817a02d5 RDI: 0000000000000001 [ 66.976452][ T7190] RBP: ffffc9000794f3e0 R08: 0000000000000001 R09: 0000000000000000 [ 66.978886][ T7190] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88806b818000 [ 66.981361][ T7190] R13: ffff888050a491bc R14: ffff888050a491b4 R15: ffff888050a49168 [ 66.983827][ T7190] ? __warn_printk+0x1a5/0x350 [ 66.985368][ T7190] ? reg_bounds_sanity_check+0x62a/0x1200 [ 66.987187][ T7190] reg_set_min_max+0x183/0x2c0 [ 66.988709][ T7190] check_cond_jmp_op+0x19b0/0x72d0 [ 66.990346][ T7190] ? __pfx_check_cond_jmp_op+0x10/0x10 [ 66.992056][ T7190] ? push_jmp_history+0x294/0x790 [ 66.993649][ T7190] do_check_common+0xa13e/0xb410 [ 66.995226][ T7190] ? __pfx_do_check_common+0x10/0x10 [ 66.996905][ T7190] ? local_clock_noinstr+0xb1/0xe0 [ 66.998520][ T7190] ? kfree+0x2b4/0x4d0 [ 66.999811][ T7190] ? bpf_check+0x7cf8/0xc4d0 [ 67.001284][ T7190] bpf_check+0x8763/0xc4d0 [ 67.002709][ T7190] ? __pfx_bpf_check+0x10/0x10 [ 67.004231][ T7190] ? __lock_acquire+0xb97/0x1ce0 [ 67.005811][ T7190] ? __asan_memset+0x23/0x50 [ 67.007278][ T7190] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 67.008880][ T7190] bpf_prog_load+0xe41/0x2490 [ 67.010373][ T7190] ? __pfx_bpf_prog_load+0x10/0x10 [ 67.012005][ T7190] __sys_bpf+0x4a3f/0x4de0 [ 67.013433][ T7190] ? __pfx___sys_bpf+0x10/0x10 [ 67.014991][ T7190] ? unix_dgram_connect+0x4e5/0xc80 [ 67.016649][ T7190] ? do_futex+0x122/0x350 [ 67.018033][ T7190] ? __pfx_do_futex+0x10/0x10 [ 67.019530][ T7190] ? xfd_validate_state+0x61/0x180 [ 67.021152][ T7190] __ia32_sys_bpf+0x76/0xe0 [ 67.022596][ T7190] __do_fast_syscall_32+0x7c/0x3a0 [ 67.024219][ T7190] do_fast_syscall_32+0x32/0x80 [ 67.025769][ T7190] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 67.027775][ T7190] RIP: 0023:0xf70ce579 [ 67.029096][ T7190] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 67.035030][ T7190] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 67.037639][ T7190] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0 [ 67.040100][ T7190] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 67.042569][ T7190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 67.045038][ T7190] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 67.047489][ T7190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 67.049945][ T7190] [ 67.051588][ T7190] Kernel Offset: disabled [ 67.052969][ T7190] Rebooting in 86400 seconds.. VM DIAGNOSIS: 09:03:59 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff856170b5 RDI=ffffffff9b0fc700 RBP=ffffffff9b0fc6c0 RSP=ffffc9000794ec50 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b0fc6c0 R15=ffffffff85617050 RIP=ffffffff856170df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880974c0000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000031f21ff8 CR3=000000004f705000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000005cadf RBX=0000000000000001 RCX=ffffffff8b90dbf9 RDX=0000000000000000 RSI=ffffffff8de4d2e1 RDI=ffffffff8c162e00 RBP=ffffed1003bdb488 RSP=ffffc9000046fdf8 R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801deda440 R14=ffffffff90ab8890 R15=0000000000000000 RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880975c0000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f549dda4 CR3=00000000272af000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005632092ebc50 00005632092ebc50 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd4a71ece0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5b3d343673205d66 317830202c663178 305b3d343675206e 6f6974616c6f6976 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2931282930783020 2c66317830283d66 666f5f726176205d 66317830202c6631 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 78305b3d32337320 5d37317830202c66 3178305b3d323375 205d66317830202c ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 663178305b3d3436 73205d6631783020 2c663178305b3d34 3675206e6f697461 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6f69762073646e 756f622065676e61 72203a2931676572 5f6575727428204e ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000065d01 RBX=0000000000000002 RCX=ffffffff8b90dbf9 RDX=0000000000000000 RSI=ffffffff8de4d2e1 RDI=ffffffff8c162e00 RBP=ffffed1003bdb910 RSP=ffffc9000047fdf8 R8 =0000000000000001 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000000 R12=0000000000000002 R13=ffff88801dedc880 R14=ffffffff90ab8890 R15=0000000000000000 RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880976c0000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000800017c0 CR3=000000006f381000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 EAX=0c2e987d EBX=0c230000 ECX=00000000 EDX=00000001 ESI=f170c3e8 EDI=ffffffff EBP=f7fb5610 ESP=ffd6d9c0 EIP=f711e7a0 EFL=00000202 [-------] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 56bde440 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000c3f59eb CR3=000000006f381000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000