[   45.893798][   T39] audit: type=1400 audit(1718292940.835:82): avc:  denied  { siginh } for  pid=5172 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   46.102684][   T39] audit: type=1400 audit(1718292941.075:83): avc:  denied  { read } for  pid=4674 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   46.185000][   T39] audit: type=1400 audit(1718292941.155:84): avc:  denied  { write } for  pid=5178 comm="sftp-server" path="pipe:[2907]" dev="pipefs" ino=2907 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   47.211831][   T39] audit: type=1400 audit(1718292942.185:85): avc:  denied  { append } for  pid=4674 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   47.223461][   T39] audit: type=1400 audit(1718292942.185:86): avc:  denied  { open } for  pid=4674 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   47.233209][   T39] audit: type=1400 audit(1718292942.185:87): avc:  denied  { getattr } for  pid=4674 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
Warning: Permanently added '[localhost]:46335' (ED25519) to the list of known hosts.
[   51.181425][   T39] audit: type=1400 audit(1718292946.145:88): avc:  denied  { name_bind } for  pid=5187 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   51.224917][   T39] audit: type=1400 audit(1718292946.195:89): avc:  denied  { execute } for  pid=5189 comm="sh" name="syz-fuzzer" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   51.232560][   T39] audit: type=1400 audit(1718292946.195:90): avc:  denied  { execute_no_trans } for  pid=5189 comm="sh" path="/syz-fuzzer" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2024/06/13 15:35:46 fuzzer started
2024/06/13 15:35:46 dialing manager at localhost:30000
[   51.770618][   T39] audit: type=1400 audit(1718292946.735:91): avc:  denied  { node_bind } for  pid=5189 comm="syz-fuzzer" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   51.779051][   T39] audit: type=1400 audit(1718292946.745:92): avc:  denied  { name_bind } for  pid=5189 comm="syz-fuzzer" src=6060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   51.979597][   T39] audit: type=1400 audit(1718292946.945:93): avc:  denied  { mounton } for  pid=5202 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   51.989535][   T39] audit: type=1400 audit(1718292946.945:94): avc:  denied  { create } for  pid=5201 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   51.989580][ T5203] cgroup: Unknown subsys name 'net'
[   51.997568][   T39] audit: type=1400 audit(1718292946.945:95): avc:  denied  { write } for  pid=5201 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   52.008624][   T39] audit: type=1400 audit(1718292946.945:96): avc:  denied  { mount } for  pid=5202 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   52.024698][   T39] audit: type=1400 audit(1718292946.955:97): avc:  denied  { read } for  pid=5201 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   52.045923][ T5206] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   52.233004][ T5203] cgroup: Unknown subsys name 'rlimit'
[   53.050182][ T5204] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2024/06/13 15:35:48 starting 4 executor processes
[   53.755252][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   53.759159][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   53.763274][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   53.766781][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   53.769478][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   53.773095][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   53.942426][ T5215] chnl_net:caif_netlink_parms(): no params data found
[   54.032124][ T5215] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.035153][ T5215] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.037704][ T5215] bridge_slave_0: entered allmulticast mode
[   54.040593][ T5215] bridge_slave_0: entered promiscuous mode
[   54.046316][ T5215] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.048799][ T5215] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.051329][ T5215] bridge_slave_1: entered allmulticast mode
[   54.054543][ T5215] bridge_slave_1: entered promiscuous mode
[   54.101013][ T5215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.108479][ T5215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.151575][ T5215] team0: Port device team_slave_0 added
[   54.155989][ T5215] team0: Port device team_slave_1 added
[   54.204649][ T5215] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.207127][ T5215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.215727][ T5215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.221235][ T5215] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.223738][ T5215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.238500][ T5215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.291139][ T5215] hsr_slave_0: entered promiscuous mode
[   54.294462][ T5215] hsr_slave_1: entered promiscuous mode
[   54.463522][ T5215] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.469724][ T5215] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.475054][ T5215] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   54.480673][ T5215] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   54.500345][ T5215] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.502992][ T5215] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.506079][ T5215] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.508959][ T5215] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.580955][ T5215] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.598049][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.606572][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.621231][ T5215] 8021q: adding VLAN 0 to HW filter on device team0
[   54.632630][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.635200][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.643887][   T30] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.647028][   T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.678420][ T5215] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   54.682689][ T5215] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   54.800490][ T5215] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.841564][ T5215] veth0_vlan: entered promiscuous mode
[   54.848601][ T5215] veth1_vlan: entered promiscuous mode
[   54.869035][ T5215] veth0_macvtap: entered promiscuous mode
[   54.876094][ T5215] veth1_macvtap: entered promiscuous mode
[   54.888673][ T5215] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.898001][ T5215] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.904279][ T5215] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.907273][ T5215] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.910215][ T5215] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.913646][ T5215] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.987726][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.990907][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.022669][ T1198] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.025370][ T1198] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program 0:
ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x2e, 0xab, 0x5a, 0x40, 0x1c40, 0x534, 0x6dcc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x76, 0xdf, 0xdb}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000004c0)={0x2c, &(0x7f0000000240)={0x0, 0x0, 0x4, "7e213511"}, 0x0, 0x0, 0x0, 0x0})

[   55.381636][    T8] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   55.566744][    T8] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[   55.570088][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   55.573085][    T8] usb 5-1: Product: syz
[   55.574879][    T8] usb 5-1: Manufacturer: syz
[   55.576901][    T8] usb 5-1: SerialNumber: syz
[   55.582867][    T8] usb 5-1: config 0 descriptor??
[   55.589899][    T8] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 002
[   55.842380][   T65] Bluetooth: hci0: command tx timeout
[   56.202821][    T8] i2c i2c-2: failure reading functionality
[   56.209441][    T8] i2c i2c-2: connected i2c-tiny-usb device
[   56.215647][    T8] usb 5-1: USB disconnect, device number 2
[   56.752619][ T4637] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   56.757407][ T4637] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   56.762108][ T4637] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   56.773037][ T4637] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   56.776332][ T4637] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   56.779241][ T4637] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   56.781545][   T39] kauditd_printk_skb: 29 callbacks suppressed
[   56.781555][   T39] audit: type=1400 audit(1718292951.745:127): avc:  denied  { create } for  pid=5238 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   56.793739][   T39] audit: type=1400 audit(1718292951.745:128): avc:  denied  { setopt } for  pid=5238 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   56.801030][   T39] audit: type=1400 audit(1718292951.745:129): avc:  denied  { prog_load } for  pid=5238 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   56.811024][   T39] audit: type=1400 audit(1718292951.745:130): avc:  denied  { bpf } for  pid=5238 comm="syz-executor.0" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   56.818306][   T39] audit: type=1400 audit(1718292951.745:131): avc:  denied  { perfmon } for  pid=5238 comm="syz-executor.0" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   56.834411][   T39] audit: type=1400 audit(1718292951.765:132): avc:  denied  { prog_run } for  pid=5238 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
executing program 0:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
getgroups(0x2, &(0x7f0000001080)=[0xee01, <r1=>0xffffffffffffffff])
keyctl$chown(0x4, r0, 0xee01, r1)
keyctl$setperm(0x5, r0, 0x29022001)
r2 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3e, &(0x7f0000000080)=0xa, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000000100)=0x5)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_RCVMTU(r5, 0x112, 0xd, 0x0, &(0x7f0000001080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
syz_open_dev$mouse(&(0x7f0000000040), 0x0, 0x0)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r8, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}}, 0x1c)
r9 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x92003)
write$evdev(r9, &(0x7f00000009c0)=[{{}, 0x2, 0x0, 0x7fff}], 0x18)
unshare(0x22020600)

[   56.842998][ T5241] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   56.856425][   T39] audit: type=1400 audit(1718292951.765:133): avc:  denied  { mounton } for  pid=5236 comm="syz-executor.2" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   56.868785][ T5217] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   56.873357][ T5217] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   56.878246][ T5217] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   56.882601][ T5217] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   56.886508][ T5217] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   56.892641][   T39] audit: type=1400 audit(1718292951.775:134): avc:  denied  { getopt } for  pid=5238 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   56.921236][ T4637] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   56.937130][ T5241] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   56.941839][ T5241] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   56.948008][ T4637] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   56.951889][ T4637] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   56.955046][ T4637] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   57.083083][   T39] audit: type=1400 audit(1718292952.055:135): avc:  denied  { read } for  pid=5238 comm="syz-executor.0" name="mouse0" dev="devtmpfs" ino=867 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   57.094645][   T39] audit: type=1400 audit(1718292952.055:136): avc:  denied  { open } for  pid=5238 comm="syz-executor.0" path="/dev/input/mouse0" dev="devtmpfs" ino=867 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[   57.229699][ T5236] chnl_net:caif_netlink_parms(): no params data found
[   57.359797][ T5243] chnl_net:caif_netlink_parms(): no params data found
[   57.447220][ T5236] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.450379][ T5236] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.453692][ T5236] bridge_slave_0: entered allmulticast mode
[   57.457551][ T5236] bridge_slave_0: entered promiscuous mode
[   57.489747][ T5240] chnl_net:caif_netlink_parms(): no params data found
[   57.504046][ T5236] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.507714][ T5236] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.511071][ T5236] bridge_slave_1: entered allmulticast mode
[   57.515870][ T5236] bridge_slave_1: entered promiscuous mode
[   57.655187][ T5243] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.658345][ T5243] bridge0: port 1(bridge_slave_0) entered disabled state
executing program 0:
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev}, 0x1c)

[   57.662315][ T5243] bridge_slave_0: entered allmulticast mode
[   57.667315][ T5243] bridge_slave_0: entered promiscuous mode
[   57.685310][ T5236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.688373][ T5243] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.691320][ T5243] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.694413][ T5243] bridge_slave_1: entered allmulticast mode
[   57.698018][ T5243] bridge_slave_1: entered promiscuous mode
executing program 0:
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x800004, &(0x7f0000000100), 0x1, 0x769, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000ac0)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f00000002c0)={0x1, 0x0, 0x1000, 0x5f, 0x0, 0x0, 0x0, 0x0})

[   57.738662][ T5267] loop0: detected capacity change from 0 to 2048
[   57.757551][ T5267] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.763197][ T5267] ext4 filesystem being mounted at /syzkaller-testdir3571344097/syzkaller.BsYYCt/3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.775677][ T5236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
executing program 0:
io_setup(0x8, &(0x7f0000000180))
io_setup(0xff, &(0x7f0000000040))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000"], 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x4e0, 0x2f0, 0xb, 0x148, 0x2f0, 0x148, 0x448, 0x240, 0x240, 0x448, 0x215, 0x3, 0x0, {[{{@ip={@local, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth0\x00'}, 0x0, 0x2c8, 0x2f0, 0x0, {0xff0f000000000000}, [@common=@inet=@socket1={{0x28, 'socket\x00', 0x2}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x83, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0xec010000, 0x138, 0x158, 0x0, {}, [@common=@unspec=@conntrack3={{0xc8}, {{@ipv6=@private1, [], @ipv6=@local, [], @ipv4=@broadcast, [], @ipv6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x540)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0xffffffffffffffb9}, 0x48)

[   57.792793][ T5215] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.837721][ T5243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.886060][ T5240] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.889217][ T5240] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.892474][ T5240] bridge_slave_0: entered allmulticast mode
[   57.895890][ T5240] bridge_slave_0: entered promiscuous mode
[   57.900700][ T5240] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.904914][ T5240] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.907867][ T5240] bridge_slave_1: entered allmulticast mode
[   57.911018][ T5240] bridge_slave_1: entered promiscuous mode
[   57.922458][ T5217] Bluetooth: hci0: command tx timeout
[   57.958126][ T5240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.964218][ T5240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.014755][ T5240] team0: Port device team_slave_0 added
[   58.042572][ T5243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.048604][ T5240] team0: Port device team_slave_1 added
[   58.084302][ T5236] team0: Port device team_slave_0 added
[   58.090344][ T5236] team0: Port device team_slave_1 added
[   58.250191][ T5243] team0: Port device team_slave_0 added
[   58.254080][ T5240] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.257484][ T5240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.268961][ T5240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.303589][ T5243] team0: Port device team_slave_1 added
[   58.306806][ T5240] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.310106][ T5240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.320005][ T5240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.324998][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.327993][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.337616][ T5236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.372527][ T5236] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.375558][ T5236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.386661][ T5236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.477603][ T5243] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.480711][ T5243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.495731][ T5243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.503011][ T5243] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.506188][ T5243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.518384][ T5243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.599483][ T5236] hsr_slave_0: entered promiscuous mode
[   58.602724][ T5236] hsr_slave_1: entered promiscuous mode
[   58.605570][ T5236] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.608840][ T5236] Cannot create hsr debugfs directory
[   58.616451][ T5240] hsr_slave_0: entered promiscuous mode
[   58.619220][ T5240] hsr_slave_1: entered promiscuous mode
[   58.622151][ T5240] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.624774][ T5240] Cannot create hsr debugfs directory
[   58.728008][ T5243] hsr_slave_0: entered promiscuous mode
[   58.731077][ T5243] hsr_slave_1: entered promiscuous mode
[   58.734485][ T5243] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.737840][ T5243] Cannot create hsr debugfs directory
[   58.881800][ T5217] Bluetooth: hci1: command tx timeout
executing program 0:
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x1, 0xabb, &(0x7f0000000340)="$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")
open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x851800, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[], 0x118)

[   58.944743][ T5277] loop0: detected capacity change from 0 to 2048
[   58.962248][ T5217] Bluetooth: hci2: command tx timeout
[   58.967811][ T5278] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   59.041711][ T5217] Bluetooth: hci3: command tx timeout
[   59.061882][ T5277] loop0: detected capacity change from 2048 to 0
[   59.066819][    C1] I/O error, dev loop0, sector 84 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   59.070593][ T5279] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r1, &(0x7f00000002c0)=[{&(0x7f00000010c0)="c021", 0x2}, {0x0}], 0x2, 0x8, 0x0)

[   59.095120][ T5215] syz-executor.0: attempt to access beyond end of device
[   59.095120][ T5215] loop0: rw=0, sector=100, nr_sectors = 2 limit=0
[   59.102243][ T5215] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=226)
[   59.103788][ T5243] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   59.106262][ T5215] NILFS (loop0): error -5 truncating bmap (ino=15)
[   59.113731][ T5215] syz-executor.0: attempt to access beyond end of device
[   59.113731][ T5215] loop0: rw=0, sector=66, nr_sectors = 2 limit=0
[   59.114221][ T5243] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   59.118747][ T5215] NILFS (loop0): I/O error reading b-tree node block (ino=16, blocknr=15)
[   59.125228][ T5215] NILFS (loop0): error -5 truncating bmap (ino=16)
[   59.128334][ T5215] syz-executor.0: attempt to access beyond end of device
[   59.128334][ T5215] loop0: rw=0, sector=90, nr_sectors = 2 limit=0
[   59.128687][ T5243] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   59.133633][ T5215] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=34)
[   59.140897][ T5215] NILFS (loop0): error -5 truncating bmap (ino=17)
[   59.144451][ T5243] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   59.154109][ T5278] segctord: attempt to access beyond end of device
[   59.154109][ T5278] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.158723][ T5278] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.163839][ T5278] segctord: attempt to access beyond end of device
[   59.163839][ T5278] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.168559][ T5278] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.172323][ T5278] segctord: attempt to access beyond end of device
[   59.172323][ T5278] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.177374][ T5278] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.183574][ T5278] segctord: attempt to access beyond end of device
[   59.183574][ T5278] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.191793][ T5278] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.197884][ T5215] syz-executor.0: attempt to access beyond end of device
[   59.197884][ T5215] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.207063][ T5215] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.211011][ T5215] syz-executor.0: attempt to access beyond end of device
[   59.211011][ T5215] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.216136][ T5215] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.220091][ T5215] syz-executor.0: attempt to access beyond end of device
[   59.220091][ T5215] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   59.226042][ T5215] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.230156][ T5215] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   59.231041][ T5236] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   59.233772][ T5215] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[   59.242696][ T5215] Buffer I/O error on dev loop0, logical block 1020, lost sync page write
[   59.244008][ T5236] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   59.246522][ T5215] NILFS (loop0): unable to write superblock: err=-5
[   59.252542][ T5215] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   59.254445][ T5236] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   59.255388][ T5215] NILFS (loop0): unable to write superblock: err=-5
[   59.272053][ T5236] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   59.327084][ T5240] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   59.335472][ T5240] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   59.337223][ T5212] ==================================================================
[   59.341818][ T5212] BUG: KASAN: slab-use-after-free in lru_add_fn+0x192/0xd70
[   59.344813][ T5212] Read of size 8 at addr ffff8880339104a8 by task udevd/5212
[   59.349157][ T5212] 
[   59.350518][ T5212] CPU: 2 PID: 5212 Comm: udevd Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0
[   59.354319][ T5212] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   59.358601][ T5212] Call Trace:
[   59.360046][ T5212]  <TASK>
[   59.361306][ T5212]  dump_stack_lvl+0x116/0x1f0
[   59.363245][ T5212]  print_report+0xc3/0x620
[   59.365014][ T5212]  ? __virt_addr_valid+0x5e/0x580
[   59.367267][ T5212]  ? __phys_addr+0xc6/0x150
[   59.369315][ T5212]  kasan_report+0xd9/0x110
[   59.371310][ T5212]  ? lru_add_fn+0x192/0xd70
[   59.373377][ T5212]  ? lru_add_fn+0x192/0xd70
[   59.375324][ T5212]  kasan_check_range+0xef/0x1a0
[   59.377442][ T5212]  lru_add_fn+0x192/0xd70
[   59.379078][ T5212]  ? folio_lruvec_lock_irqsave+0x16a/0x240
[   59.381278][ T5212]  folio_batch_move_lru+0x243/0x400
[   59.383563][ T5212]  ? __pfx_lru_add_fn+0x10/0x10
[   59.385839][ T5212]  ? __pfx_folio_batch_move_lru+0x10/0x10
[   59.388585][ T5212]  ? __pfx_lock_acquire+0x10/0x10
[   59.391177][ T5212]  ? filemap_remove_folio+0x162/0x210
[   59.393782][ T5212]  ? __pfx_lock_release+0x10/0x10
[   59.396101][ T5212]  lru_add_drain_cpu+0x534/0x860
[   59.398324][ T5212]  lru_add_drain+0x109/0x440
[   59.400544][ T5212]  __folio_batch_release+0x68/0xb0
[   59.402889][ T5212]  shmem_undo_range+0x5a1/0x1160
[   59.405542][ T5212]  ? __pfx_shmem_undo_range+0x10/0x10
[   59.408498][ T5212]  ? __pfx_mark_lock+0x10/0x10
[   59.410733][ T5212]  ? __pfx_mark_lock+0x10/0x10
[   59.412426][ T5212]  ? __pfx_mark_lock+0x10/0x10
[   59.414342][ T5212]  ? __pfx___lock_acquire+0x10/0x10
[   59.416191][ T5212]  ? __pfx___lock_acquire+0x10/0x10
[   59.418027][ T5212]  ? __pfx___lock_acquire+0x10/0x10
[   59.419936][ T5212]  shmem_evict_inode+0x3a3/0xbb0
[   59.421783][ T5212]  ? find_held_lock+0x2d/0x110
[   59.423720][ T5212]  ? __pfx_shmem_evict_inode+0x10/0x10
[   59.425903][ T5212]  ? evict+0x2b7/0x6c0
[   59.427772][ T5212]  ? __pfx_lock_release+0x10/0x10
[   59.430046][ T5212]  ? __pfx_wake_bit_function+0x10/0x10
[   59.432500][ T5212]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   59.434446][ T5212]  ? __pfx_shmem_evict_inode+0x10/0x10
[   59.436268][ T5212]  evict+0x2ed/0x6c0
[   59.437604][ T5212]  iput.part.0+0x5a8/0x7f0
[   59.439205][ T5212]  ? __pfx_generic_delete_inode+0x10/0x10
[   59.441329][ T5212]  iput+0x5c/0x80
[   59.442803][ T5212]  dentry_unlink_inode+0x295/0x480
[   59.445161][ T5212]  __dentry_kill+0x1d0/0x600
[   59.447305][ T5212]  dput.part.0+0x4b1/0x9b0
[   59.448958][ T5212]  dput+0x1f/0x30
[   59.450263][ T5212]  do_renameat2+0xc64/0xdc0
[   59.451896][ T5212]  ? __pfx_do_renameat2+0x10/0x10
[   59.454028][ T5212]  ? __check_object_size+0x48e/0x720
[   59.456443][ T5212]  ? strncpy_from_user+0x213/0x300
[   59.458648][ T5212]  ? getname_flags.part.0+0x1e1/0x4f0
[   59.460557][ T5212]  __x64_sys_rename+0x81/0xa0
[   59.462252][ T5212]  do_syscall_64+0xcd/0x250
[   59.464106][ T5212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.466258][ T5212] RIP: 0033:0x7f0aeea9a93b
[   59.467851][ T5212] Code: 48 8b 15 f0 64 15 00 83 c8 ff 64 83 3a 15 75 0e 48 8b 7c 24 08 e8 d5 d4 07 00 f7 d8 19 c0 48 83 c4 18 c3 b8 52 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 10 48 8b 15 be 64 15 00 f7 d8 64 89 02 48 83
[   59.474642][ T5212] RSP: 002b:00007ffc9e5200a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000052
[   59.477629][ T5212] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0aeea9a93b
[   59.480334][ T5212] RDX: 000055f863769c61 RSI: 00007ffc9e5200c8 RDI: 00007ffc9e5204c8
[   59.482967][ T5212] RBP: 000055fd3ca8d480 R08: 0000000000000006 R09: 2fbd04888a8d20a1
[   59.485706][ T5212] R10: 00000000000001b6 R11: 0000000000000202 R12: 000055fd3ca91e80
[   59.488474][ T5212] R13: 00007ffc9e5200c8 R14: 00007ffc9e5204c8 R15: 000055fcfce5f160
[   59.491479][ T5212]  </TASK>
[   59.492594][ T5212] 
[   59.493472][ T5212] Allocated by task 5277:
[   59.495047][ T5212]  kasan_save_stack+0x33/0x60
[   59.496812][ T5212]  kasan_save_track+0x14/0x30
[   59.498522][ T5212]  __kasan_slab_alloc+0x89/0x90
[   59.500276][ T5212]  kmem_cache_alloc_lru_noprof+0x121/0x2f0
[   59.502304][ T5212]  nilfs_alloc_inode+0x26/0x150
[   59.503912][ T5212]  alloc_inode+0x5d/0x230
[   59.505420][ T5212]  iget5_locked+0x1c9/0x2c0
[   59.506979][ T5212]  nilfs_iget_locked+0xa1/0xe0
[   59.508653][ T5212]  nilfs_ifile_read+0x2f/0x1e0
[   59.510299][ T5212]  nilfs_attach_checkpoint+0x12d/0x1d0
[   59.512354][ T5212]  nilfs_get_tree+0x951/0x1000
[   59.514342][ T5212]  vfs_get_tree+0x8f/0x380
[   59.515998][ T5212]  path_mount+0x14e6/0x1f20
[   59.517719][ T5212]  __x64_sys_mount+0x297/0x320
[   59.519555][ T5212]  do_syscall_64+0xcd/0x250
[   59.521468][ T5212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.523698][ T5212] 
[   59.524528][ T5212] Freed by task 24:
[   59.525860][ T5212]  kasan_save_stack+0x33/0x60
[   59.527530][ T5212]  kasan_save_track+0x14/0x30
[   59.529164][ T5212]  kasan_save_free_info+0x3b/0x60
[   59.531047][ T5212]  poison_slab_object+0xf7/0x160
[   59.532844][ T5212]  __kasan_slab_free+0x32/0x50
[   59.534921][ T5212]  kmem_cache_free+0x12f/0x3a0
[   59.536759][ T5212]  i_callback+0x43/0x70
[   59.538263][ T5212]  rcu_core+0x828/0x16b0
[   59.539788][ T5212]  handle_softirqs+0x216/0x8f0
[   59.541502][ T5212]  run_ksoftirqd+0x3a/0x60
[   59.543041][ T5212]  smpboot_thread_fn+0x661/0xa10
[   59.544896][ T5212]  kthread+0x2c1/0x3a0
[   59.546726][ T5212]  ret_from_fork+0x45/0x80
[   59.548756][ T5212]  ret_from_fork_asm+0x1a/0x30
[   59.551155][ T5212] 
[   59.552246][ T5212] Last potentially related work creation:
[   59.554954][ T5212]  kasan_save_stack+0x33/0x60
[   59.557031][ T5212]  __kasan_record_aux_stack+0xba/0xd0
[   59.559330][ T5212]  __call_rcu_common.constprop.0+0x9a/0x790
[   59.561954][ T5212]  destroy_inode+0x12c/0x1b0
[   59.563673][ T5212]  iput.part.0+0x5a8/0x7f0
[   59.565149][ T5212]  iput+0x5c/0x80
[   59.566639][ T5212]  nilfs_put_root+0xae/0xe0
[   59.568364][ T5212]  nilfs_detach_log_writer+0x5ef/0xaa0
[   59.570290][ T5212]  nilfs_put_super+0x43/0x1b0
[   59.572260][ T5212]  generic_shutdown_super+0x159/0x3d0
[   59.574612][ T5212]  kill_block_super+0x3b/0x90
[   59.576618][ T5212]  deactivate_locked_super+0xbe/0x1a0
[   59.578950][ T5212]  deactivate_super+0xde/0x100
[   59.580549][ T5212]  cleanup_mnt+0x222/0x450
[   59.582054][ T5212]  task_work_run+0x14e/0x250
[   59.583960][ T5212]  syscall_exit_to_user_mode+0x278/0x2a0
[   59.586177][ T5212]  do_syscall_64+0xda/0x250
[   59.587729][ T5212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.589841][ T5212] 
[   59.590760][ T5212] The buggy address belongs to the object at ffff888033910000
[   59.590760][ T5212]  which belongs to the cache nilfs2_inode_cache of size 1512
[   59.596289][ T5212] The buggy address is located 1192 bytes inside of
[   59.596289][ T5212]  freed 1512-byte region [ffff888033910000, ffff8880339105e8)
[   59.601123][ T5212] 
[   59.601973][ T5212] The buggy address belongs to the physical page:
[   59.604388][ T5212] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33910
[   59.607719][ T5212] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   59.610875][ T5212] memcg:ffff88801b6b1a01
[   59.612588][ T5212] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[   59.615456][ T5212] page_type: 0xffffefff(slab)
[   59.617159][ T5212] raw: 00fff00000000040 ffff88801a988500 dead000000000122 0000000000000000
[   59.620099][ T5212] raw: 0000000000000000 0000000080130013 00000001ffffefff ffff88801b6b1a01
[   59.623122][ T5212] head: 00fff00000000040 ffff88801a988500 dead000000000122 0000000000000000
[   59.626833][ T5212] head: 0000000000000000 0000000080130013 00000001ffffefff ffff88801b6b1a01
[   59.631028][ T5212] head: 00fff00000000003 ffffea0000ce4401 ffffffffffffffff 0000000000000000
[   59.634208][ T5212] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[   59.637224][ T5212] page dumped because: kasan: bad access detected
[   59.639453][ T5212] page_owner tracks the page as allocated
[   59.641418][ T5212] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 5277, tgid 5276 (syz-executor.0), ts 58965175609, free_ts 0
[   59.649510][ T5212]  post_alloc_hook+0x2d1/0x350
[   59.651215][ T5212]  get_page_from_freelist+0x136a/0x2e50
[   59.653282][ T5212]  __alloc_pages_noprof+0x22b/0x2460
[   59.655193][ T5212]  alloc_slab_page+0x56/0x110
[   59.657114][ T5212]  new_slab+0x84/0x260
[   59.658561][ T5212]  ___slab_alloc+0xdac/0x1870
[   59.660239][ T5212]  __slab_alloc.constprop.0+0x56/0xb0
[   59.662131][ T5212]  kmem_cache_alloc_lru_noprof+0x2a0/0x2f0
[   59.664359][ T5212]  nilfs_alloc_inode+0x26/0x150
[   59.666175][ T5212]  alloc_inode+0x5d/0x230
[   59.668568][ T5212]  iget5_locked+0x1c9/0x2c0
[   59.670558][ T5212]  nilfs_iget_locked+0xa1/0xe0
[   59.672316][ T5212]  nilfs_ifile_read+0x2f/0x1e0
[   59.674065][ T5212]  nilfs_attach_checkpoint+0x12d/0x1d0
[   59.676358][ T5212]  nilfs_get_tree+0x951/0x1000
[   59.678664][ T5212]  vfs_get_tree+0x8f/0x380
[   59.680553][ T5212] page_owner free stack trace missing
[   59.682782][ T5212] 
[   59.683803][ T5212] Memory state around the buggy address:
[   59.686266][ T5212]  ffff888033910380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   59.689682][ T5212]  ffff888033910400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   59.692670][ T5212] >ffff888033910480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   59.695762][ T5212]                                   ^
[   59.697731][ T5212]  ffff888033910500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   59.701030][ T5212]  ffff888033910580: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[   59.704389][ T5212] ==================================================================
[   59.707848][ T5212] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   59.710644][ T5212] CPU: 2 PID: 5212 Comm: udevd Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0
[   59.713991][ T5212] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   59.717926][ T5212] Call Trace:
[   59.719268][ T5212]  <TASK>
[   59.720322][ T5212]  dump_stack_lvl+0x3d/0x1f0
[   59.721958][ T5212]  panic+0x6f5/0x7a0
[   59.723330][ T5212]  ? __pfx_panic+0x10/0x10
[   59.724961][ T5212]  ? rcu_is_watching+0x12/0xc0
[   59.726678][ T5212]  ? __pfx_lock_release+0x10/0x10
[   59.728465][ T5212]  ? check_panic_on_warn+0x1f/0xb0
[   59.730397][ T5212]  check_panic_on_warn+0xab/0xb0
[   59.732276][ T5212]  end_report+0x117/0x180
[   59.734096][ T5212]  kasan_report+0xe9/0x110
[   59.735838][ T5212]  ? lru_add_fn+0x192/0xd70
[   59.737593][ T5212]  ? lru_add_fn+0x192/0xd70
[   59.739479][ T5212]  kasan_check_range+0xef/0x1a0
[   59.741709][ T5212]  lru_add_fn+0x192/0xd70
[   59.743716][ T5212]  ? folio_lruvec_lock_irqsave+0x16a/0x240
[   59.746540][ T5212]  folio_batch_move_lru+0x243/0x400
[   59.748939][ T5212]  ? __pfx_lru_add_fn+0x10/0x10
[   59.751139][ T5212]  ? __pfx_folio_batch_move_lru+0x10/0x10
[   59.753812][ T5212]  ? __pfx_lock_acquire+0x10/0x10
[   59.756112][ T5212]  ? filemap_remove_folio+0x162/0x210
[   59.758388][ T5212]  ? __pfx_lock_release+0x10/0x10
[   59.760420][ T5212]  lru_add_drain_cpu+0x534/0x860
[   59.762120][ T5212]  lru_add_drain+0x109/0x440
[   59.763789][ T5212]  __folio_batch_release+0x68/0xb0
[   59.765685][ T5212]  shmem_undo_range+0x5a1/0x1160
[   59.767424][ T5212]  ? __pfx_shmem_undo_range+0x10/0x10
[   59.769252][ T5212]  ? __pfx_mark_lock+0x10/0x10
[   59.771052][ T5212]  ? __pfx_mark_lock+0x10/0x10
[   59.772821][ T5212]  ? __pfx_mark_lock+0x10/0x10
[   59.774611][ T5212]  ? __pfx___lock_acquire+0x10/0x10
[   59.776648][ T5212]  ? __pfx___lock_acquire+0x10/0x10
[   59.779126][ T5212]  ? __pfx___lock_acquire+0x10/0x10
[   59.781175][ T5212]  shmem_evict_inode+0x3a3/0xbb0
[   59.782873][ T5212]  ? find_held_lock+0x2d/0x110
[   59.784527][ T5212]  ? __pfx_shmem_evict_inode+0x10/0x10
[   59.786375][ T5212]  ? evict+0x2b7/0x6c0
[   59.787783][ T5212]  ? __pfx_lock_release+0x10/0x10
[   59.789494][ T5212]  ? __pfx_wake_bit_function+0x10/0x10
[   59.791596][ T5212]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   59.793868][ T5212]  ? __pfx_shmem_evict_inode+0x10/0x10
[   59.795843][ T5212]  evict+0x2ed/0x6c0
[   59.797176][ T5212]  iput.part.0+0x5a8/0x7f0
[   59.798695][ T5212]  ? __pfx_generic_delete_inode+0x10/0x10
[   59.801119][ T5212]  iput+0x5c/0x80
[   59.802775][ T5212]  dentry_unlink_inode+0x295/0x480
[   59.805156][ T5212]  __dentry_kill+0x1d0/0x600
[   59.807127][ T5212]  dput.part.0+0x4b1/0x9b0
[   59.809024][ T5212]  dput+0x1f/0x30
[   59.810568][ T5212]  do_renameat2+0xc64/0xdc0
[   59.812490][ T5212]  ? __pfx_do_renameat2+0x10/0x10
[   59.814630][ T5212]  ? __check_object_size+0x48e/0x720
[   59.816935][ T5212]  ? strncpy_from_user+0x213/0x300
[   59.819212][ T5212]  ? getname_flags.part.0+0x1e1/0x4f0
[   59.821471][ T5212]  __x64_sys_rename+0x81/0xa0
[   59.823327][ T5212]  do_syscall_64+0xcd/0x250
[   59.825302][ T5212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.827812][ T5212] RIP: 0033:0x7f0aeea9a93b
[   59.829740][ T5212] Code: 48 8b 15 f0 64 15 00 83 c8 ff 64 83 3a 15 75 0e 48 8b 7c 24 08 e8 d5 d4 07 00 f7 d8 19 c0 48 83 c4 18 c3 b8 52 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 10 48 8b 15 be 64 15 00 f7 d8 64 89 02 48 83
[   59.836986][ T5212] RSP: 002b:00007ffc9e5200a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000052
[   59.840024][ T5212] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0aeea9a93b
[   59.843111][ T5212] RDX: 000055f863769c61 RSI: 00007ffc9e5200c8 RDI: 00007ffc9e5204c8
[   59.845944][ T5212] RBP: 000055fd3ca8d480 R08: 0000000000000006 R09: 2fbd04888a8d20a1
[   59.848678][ T5212] R10: 00000000000001b6 R11: 0000000000000202 R12: 000055fd3ca91e80
[   59.851429][ T5212] R13: 00007ffc9e5200c8 R14: 00007ffc9e5204c8 R15: 000055fcfce5f160
[   59.854522][ T5212]  </TASK>
[   60.938238][ T5212] Shutting down cpus with NMI
[   60.941213][ T5212] Kernel Offset: disabled
[   60.943174][ T5212] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:35:54  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc9000370f4b8 RCX=ffffffff813cd93d RDX=ffff88802002c880
RSI=0000000000007987 RDI=0000000000000004 RBP=0000000000000001 RSP=ffffc9000370f438
R8 =0000000000000004 R9 =0000000000007987 R10=00000000000a2000 R11=0000000000000200
R12=ffffffff81798794 R13=0000000000007987 R14=00000000000a2000 R15=ffffc9000370f4ed
RIP=ffffffff813cd93d RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055556a0c5480 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbf7f5abf84 CR3=0000000049dcc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffefff0 Opmask01=0000000000000000 Opmask02=00000000ff7ff7ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcf9c58520 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8dc8
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8dd5
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8dcf
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8de3
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8e69
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8f47
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 702474616e65706f 0030707470247461 6e65706f00786d74 702474616e65706f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2e006a64615f65 726f63735f6d6f6f 2f666c65732f636f 72702f0030303031
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0b004f41445f40 574a46565f484a4a 0a434940560a464a 57550a0015151514
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88806b13fd40 RCX=ffffffff8181cab8 RDX=ffff888017eb0000
RSI=ffffffff8181ca93 RDI=0000000000000005 RBP=ffffc90000167d60 RSP=ffffc90000167c40
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=ffffffff8dbbc9f0
R12=1ffff9200002cf8c R13=0000000000000001 R14=0000000000000003 R15=ffffed100d627fa9
RIP=ffffffff8181ca95 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f737fed35c0 CR3=000000001f216000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fec8cc00 Opmask01=0000000000000fff Opmask02=00000000ffffbfef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000001 0000004400000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8d9d
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8d95
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8dc8
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8dd5
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8dcf
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8de3
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8e69
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3800ec8f47
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 697376656474656e 0001000e00000107 0000000100000000 0022001700000070
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000002004e0008 00000000004d0006 0000000000940005 0000000031687465
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fdd7a5 RDI=ffffffff94de0460 RBP=ffffffff94de0420 RSP=ffffc9000343efd0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=0000000000000020 R14=ffffffff84fdd740 R15=0000000000000000
RIP=ffffffff84fdd7cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f0aeef9e280 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b31a26000 CR3=000000002fbc6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000010000002 Opmask01=0000000000004211 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4b5f5455504e495f 4449006b636f6c62
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9e520080 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffff000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff00ff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c 2c2c2c2c2c2c2c2c
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 727265006d25203a 7d73257b52545441 20676e6974697277 20726f7272650065
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5e5e490041090c16 515f095752545441 0c4b424558455e5b 0c5e435e5e490049
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 756d006469766976 000055fd3ca81ebe 0000000000000051 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343d736500000000 303a37622f626562 3361613164313232 382d613431382d64
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 383a263c3b383a26 4f3a383a26493a38 3a26483a383a264b 3a383a26333a383a
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a003e4b 383a263b4b383a26
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 3

CPU#3
RAX=1ffffffff2624d67 RBX=0000000000000000 RCX=ffffc900043ec000 RDX=0000000000040000
RSI=ffffffff84822637 RDI=0000000000000000 RBP=ffffffff93126b38 RSP=ffffc9000373f478
R8 =0000000000000006 R9 =0000000000005cc0 R10=0000000000040000 R11=0000000000000002
R12=0000000000005cc0 R13=0000000000040000 R14=dffffc0000000000 R15=0000000000000003
RIP=ffffffff8482264e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fbf801ca6c0 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbf7f5ac018 CR3=0000000049dcc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffefff0 Opmask01=0000000000000000 Opmask02=00000000ff7ff7ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8dc8
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8dd5
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8dcf
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8de3
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8e69
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f4c8f47
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbf7f57f840 00007fbf7f57f848 00007fbf7f57f840 00007fbf800db020
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2e006a64615f65 726f63735f6d6f6f 2f666c65732f636f 72702f0030303031
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0b004f41445f40 574a46565f484a4a 0a434940560a464a 57550a0015151514
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000