last executing test programs: 3.86026377s ago: executing program 1 (id=389): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, 0x0, 0x4000004) 3.860083976s ago: executing program 1 (id=390): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x20, 0x3, 0x8, 0x401, 0x0, 0x0, {0x3, 0x0, 0x6}, [@CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @tcp}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x80) 3.769363078s ago: executing program 1 (id=391): r0 = openat$vmci(0xffffff9c, &(0x7f0000001640), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x10000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000000c0)={@hyper}) ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r0, 0x7b2, &(0x7f00000010c0)={0x0, 0x1}) ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b0, &(0x7f0000001100)={0x0}) 3.769086816s ago: executing program 1 (id=392): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x6c7f, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=0x0, &(0x7f00000001c0)=0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x3) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r6, 0x0, &(0x7f0000000100)='4', 0x1}) io_uring_enter(r2, 0x7f5f, 0x0, 0x0, 0x0, 0x0) shutdown(r5, 0x1) 2.880246084s ago: executing program 1 (id=400): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, 0x0, 0x4000004) 2.879981751s ago: executing program 1 (id=402): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000040)={0x24, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00220f0000000b574e69392bf85edacab3"], 0x0}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000c00)={0x84, &(0x7f0000000140)=ANY=[@ANYBLOB="000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$HIDIOCSFLAG(0xffffffffffffffff, 0x4004480f, &(0x7f0000000000)=0x3) ioctl$HIDIOCGUSAGE(0xffffffffffffffff, 0xc018480b, 0x0) 1.62479075s ago: executing program 2 (id=414): socket$nl_generic(0x10, 0x3, 0x10) openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) modify_ldt$write2(0x11, &(0x7f0000000000)={0x8, 0x1000, 0xffffffffffffffff, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1}, 0x10) getresuid(&(0x7f0000000200), 0x0, &(0x7f0000000580)) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0x13, 0x0, &(0x7f0000000040)) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x15) r3 = dup(r2) write$FUSE_BMAP(r3, &(0x7f0000000080)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]}) close_range(r4, 0xffffffffffffffff, 0x0) 1.519802976s ago: executing program 2 (id=415): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(camellia)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, 0x0, 0x0, 0x4) recvmmsg(r1, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)=""/68, 0x44}, {&(0x7f0000000100)=""/157, 0x9d}], 0x2}, 0x5}], 0x1, 0x40000102, 0x0) 1.084431806s ago: executing program 0 (id=418): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x18, 0x14, 0x509, 0x0, 0x0, {0x2, 0x1f, 0x0, 0x0, r2}}, 0x18}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'}) sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x0, @loopback=0x7f000000}}) 1.082849771s ago: executing program 0 (id=419): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040054}, 0x4000004) 1.009205091s ago: executing program 0 (id=420): ioperm(0x0, 0x12e, 0x8000000000008) fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f0000000300)=0x8281336) r2 = dup(r1) write$binfmt_script(r2, &(0x7f0000000640)={'#! ', './file0'}, 0xb) 1.009032881s ago: executing program 0 (id=421): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(camellia)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000004d00)=[{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000440)="6f7e6eedfbe2234e36cf758ac1df1902c6f81f3cbae3c0c66c56286d4a26b8060feda9020504705ed6ba18f0217e78a200e3dcdf5999463ee9709e49", 0x3c}], 0x1, 0x0, 0x0, 0x4}], 0x1, 0x4) recvmmsg(r1, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000000)=""/68, 0x44}], 0x1}, 0x5}], 0x1, 0x40000102, 0x0) 960.357508ms ago: executing program 3 (id=422): r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r1) sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0) 960.116827ms ago: executing program 3 (id=423): r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0xc048aec8, &(0x7f0000000080)={0x6}) setsockopt$sock_attach_bpf(r0, 0x1, 0x2f, &(0x7f0000000080), 0x24) 910.081269ms ago: executing program 3 (id=424): syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000300)={0x0, @pix_mp={0x0, 0x0, 0x20343059, 0x2, 0xb, [{}, {}, {}, {0xfffffffd, 0xe5b}, {}, {0x0, 0x1000}, {0x8}], 0x10, 0x0, 0x0, 0x1}}) r0 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) connect$nfc_raw(r0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x200002) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, 0x0, 0x4008014) syz_open_procfs(0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0xa}}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0x9, 0x0, 0x0) sched_setscheduler(0x0, 0x5, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = userfaultfd(0x1) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_CONTINUE(r3, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r4, 0xffffffffffffffff, 0x1, 0x0, @val=@netfilter={0x2, 0x0, 0x8000}}, 0x40) 649.26106ms ago: executing program 2 (id=425): syz_usb_connect$cdc_ncm(0x6, 0x6f, &(0x7f00000005c0)=ANY=[@ANYBLOB="1201000002000040251ca1a440000102030109025d00020105"], 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 110.095209ms ago: executing program 0 (id=426): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x40) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000280)={0xf, 0x0, 'client0\x00', 0x1, "359808004d3f9510", "efd391e95eec7559218f7b75d2a962ae35c05cbc884034bd4a6c2554f0997d22", 0xfffffff9}) 109.803544ms ago: executing program 2 (id=427): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) select(0x0, 0x0, 0x0, 0x0, 0x0) 109.426614ms ago: executing program 2 (id=428): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040054}, 0x4000004) 109.294114ms ago: executing program 0 (id=429): openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0x40505330, 0x0) socket(0x40000000015, 0x805, 0x0) socket$tipc(0x1e, 0x5, 0x0) socket$kcm(0x10, 0x3, 0x10) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0x40186f40, 0x20000502) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r1, 0x40046f41, 0x20000502) 102.534462ms ago: executing program 2 (id=430): r0 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x100008) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0) creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) pipe2$9p(0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15) r2 = dup(0xffffffffffffffff) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}}) truncate(&(0x7f0000000240)='./file0\x00', 0x206b12) r3 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x103680, 0x0) ioctl$TCSETS(r3, 0x40045431, 0x0) syz_open_pts(r3, 0x0) io_uring_setup(0x1009, &(0x7f0000000040)={0x0, 0x9f3, 0x400, 0x0, 0x4}) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) connect(r4, &(0x7f00000004c0)=@rc={0x1f, @any, 0x4}, 0x80) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000200)=0x8) r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r6, 0x40085112, 0x0) connect(r5, &(0x7f00000004c0)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x8}, 0x80) close_range(r1, 0xffffffffffffffff, 0x0) write$P9_RCREATE(r0, &(0x7f0000000100)={0x18, 0x73, 0x1, {{0x40, 0x3, 0x1}, 0xffffffff}}, 0x18) 73.54599ms ago: executing program 3 (id=431): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'}) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000180)) 207.943µs ago: executing program 3 (id=432): r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r1) sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0) 0s ago: executing program 3 (id=433): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x68}, 0x1, 0x0, 0x0, 0x8040}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:30616' (ED25519) to the list of known hosts. [ 41.607933][ T5933] cgroup: Unknown subsys name 'net' [ 41.769263][ T5933] cgroup: Unknown subsys name 'cpuset' [ 41.772405][ T5933] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.533150][ T5933] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 44.404018][ T5946] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 44.407631][ T5948] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 44.411205][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 44.411367][ T5956] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 44.414863][ T5948] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 44.415988][ T5956] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 44.418302][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 44.420455][ T5956] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 44.422952][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 44.424738][ T5956] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 44.426202][ T5948] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 44.428050][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 44.428591][ T5956] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 44.430819][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 44.434056][ T5959] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 44.434237][ T5956] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 44.434578][ T5956] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 44.434745][ T5956] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 44.440345][ T5958] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 44.442895][ T5959] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 44.449664][ T5299] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 44.449747][ T5959] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 44.452329][ T5299] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 44.456109][ T5299] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 44.611658][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 44.629783][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 44.663792][ T5945] chnl_net:caif_netlink_parms(): no params data found [ 44.728014][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.730649][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.732952][ T5944] bridge_slave_0: entered allmulticast mode [ 44.735638][ T5944] bridge_slave_0: entered promiscuous mode [ 44.782633][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.785546][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.788597][ T5944] bridge_slave_1: entered allmulticast mode [ 44.791768][ T5944] bridge_slave_1: entered promiscuous mode [ 44.851217][ T5952] chnl_net:caif_netlink_parms(): no params data found [ 44.855758][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.858714][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.861685][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.864597][ T5950] bridge_slave_0: entered allmulticast mode [ 44.867834][ T5950] bridge_slave_0: entered promiscuous mode [ 44.871183][ T5945] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.873293][ T5945] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.875358][ T5945] bridge_slave_0: entered allmulticast mode [ 44.878923][ T5945] bridge_slave_0: entered promiscuous mode [ 44.883824][ T5945] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.885893][ T5945] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.888188][ T5945] bridge_slave_1: entered allmulticast mode [ 44.890351][ T5945] bridge_slave_1: entered promiscuous mode [ 44.893489][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.903701][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.905836][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.909620][ T5950] bridge_slave_1: entered allmulticast mode [ 44.911835][ T5950] bridge_slave_1: entered promiscuous mode [ 44.956187][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.972932][ T5945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.977011][ T5944] team0: Port device team_slave_0 added [ 44.979709][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.007840][ T5945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.011805][ T5944] team0: Port device team_slave_1 added [ 45.061105][ T5950] team0: Port device team_slave_0 added [ 45.081482][ T5945] team0: Port device team_slave_0 added [ 45.094265][ T5950] team0: Port device team_slave_1 added [ 45.096148][ T5952] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.099468][ T5952] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.101647][ T5952] bridge_slave_0: entered allmulticast mode [ 45.103851][ T5952] bridge_slave_0: entered promiscuous mode [ 45.107510][ T5945] team0: Port device team_slave_1 added [ 45.110389][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.112547][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.123952][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.130136][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.133018][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.141007][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.154450][ T5952] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.156593][ T5952] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.159076][ T5952] bridge_slave_1: entered allmulticast mode [ 45.161312][ T5952] bridge_slave_1: entered promiscuous mode [ 45.198594][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.200704][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.208434][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.219386][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.221460][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.229678][ T5945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.242070][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.244169][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.251794][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.256501][ T5952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.259513][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.261597][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.269105][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.283258][ T5944] hsr_slave_0: entered promiscuous mode [ 45.285396][ T5944] hsr_slave_1: entered promiscuous mode [ 45.289067][ T5952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.309732][ T5952] team0: Port device team_slave_0 added [ 45.312719][ T5952] team0: Port device team_slave_1 added [ 45.330008][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.332080][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.340178][ T5952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.344042][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.346081][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.353524][ T5952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.410446][ T5950] hsr_slave_0: entered promiscuous mode [ 45.412622][ T5950] hsr_slave_1: entered promiscuous mode [ 45.415115][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.417731][ T5950] Cannot create hsr debugfs directory [ 45.423335][ T5945] hsr_slave_0: entered promiscuous mode [ 45.425487][ T5945] hsr_slave_1: entered promiscuous mode [ 45.428447][ T5945] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.430745][ T5945] Cannot create hsr debugfs directory [ 45.464125][ T5952] hsr_slave_0: entered promiscuous mode [ 45.466368][ T5952] hsr_slave_1: entered promiscuous mode [ 45.468949][ T5952] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.471248][ T5952] Cannot create hsr debugfs directory [ 45.644684][ T5944] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 45.651198][ T5944] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 45.655978][ T5944] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 45.662696][ T5944] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 45.674744][ T5952] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 45.679633][ T5952] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 45.684868][ T5952] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 45.692265][ T5952] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 45.708073][ T5945] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.715814][ T5945] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.720293][ T5945] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.732635][ T5945] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.742723][ T5950] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 45.748005][ T5950] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 45.751246][ T5950] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 45.760510][ T5950] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 45.802965][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.808835][ T5952] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.820949][ T5952] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.838485][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.842444][ T159] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.844591][ T159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.848384][ T159] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.850463][ T159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.854573][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.861859][ T159] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.863985][ T159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.871392][ T5945] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.877111][ T159] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.879318][ T159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.883029][ T159] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.885235][ T159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.898245][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.900343][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.905058][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.929355][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.939930][ T159] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.942042][ T159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.950974][ T84] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.953042][ T84] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.970704][ T5950] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 46.008069][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.020227][ T5952] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.030867][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.051435][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.054795][ T5944] veth0_vlan: entered promiscuous mode [ 46.068464][ T5952] veth0_vlan: entered promiscuous mode [ 46.074967][ T5944] veth1_vlan: entered promiscuous mode [ 46.082284][ T5952] veth1_vlan: entered promiscuous mode [ 46.085058][ T5945] veth0_vlan: entered promiscuous mode [ 46.091389][ T5945] veth1_vlan: entered promiscuous mode [ 46.097809][ T5950] veth0_vlan: entered promiscuous mode [ 46.104306][ T5944] veth0_macvtap: entered promiscuous mode [ 46.108732][ T5950] veth1_vlan: entered promiscuous mode [ 46.111574][ T5944] veth1_macvtap: entered promiscuous mode [ 46.119329][ T5952] veth0_macvtap: entered promiscuous mode [ 46.123358][ T5952] veth1_macvtap: entered promiscuous mode [ 46.128537][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.135209][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.138912][ T5944] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.141614][ T5944] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.144214][ T5944] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.146995][ T5944] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.151097][ T5945] veth0_macvtap: entered promiscuous mode [ 46.155834][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.160066][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.163610][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.168242][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.171257][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.174553][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.181262][ T5945] veth1_macvtap: entered promiscuous mode [ 46.189881][ T5952] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.193186][ T5952] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.195851][ T5952] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.198532][ T5952] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.205574][ T5950] veth0_macvtap: entered promiscuous mode [ 46.210975][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.214110][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.218542][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.221591][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.225087][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.229711][ T5950] veth1_macvtap: entered promiscuous mode [ 46.234402][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.237667][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.240546][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.243566][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.247415][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.259849][ T5945] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.262455][ T5945] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.264976][ T5945] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.267738][ T5945] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.287926][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.292228][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.295429][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.298733][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.301570][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.304694][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.308908][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.313525][ T159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.316021][ T159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.319696][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.319789][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.322054][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.325047][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.325054][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.325062][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.336611][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.340002][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.343801][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.357019][ T5950] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.359618][ T5950] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.362236][ T5950] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.364815][ T5950] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.376885][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.379143][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.381625][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.383884][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.408958][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.413982][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.425581][ T5952] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 46.444373][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.445193][ T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.447303][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.450203][ T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.468844][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.471231][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.486094][ T6005] netlink: 'syz.3.4': attribute type 11 has an invalid length. [ 46.509914][ T5946] Bluetooth: hci0: command tx timeout [ 46.509920][ T5959] Bluetooth: hci3: command tx timeout [ 46.511893][ T5946] Bluetooth: hci2: command tx timeout [ 46.514419][ T5951] Bluetooth: hci1: command tx timeout [ 46.518997][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.537031][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.737366][ T6023] tipc: Started in network mode [ 46.738926][ T6023] tipc: Node identity ac1414aa, cluster identity 4711 [ 46.758054][ T6023] tipc: Enabled bearer , priority 10 [ 47.426911][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.566458][ T6039] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11'. [ 47.700313][ T6041] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 47.777381][ T6003] tipc: Node number set to 2886997162 [ 48.180228][ T6046] sch_fq: defrate 0 ignored. [ 48.272800][ T6043] fuse: Bad value for 'fd' [ 48.556847][ T6003] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 48.586893][ T5951] Bluetooth: hci1: command tx timeout [ 48.586921][ T5299] Bluetooth: hci3: command tx timeout [ 48.586936][ T5946] Bluetooth: hci0: command tx timeout [ 48.709837][ T6003] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 48.713376][ T6003] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 48.717219][ T6003] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 48.720302][ T6003] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 48.724153][ T6003] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 48.726938][ T6003] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 48.731244][ T6003] usb 6-1: config 0 descriptor?? [ 49.015426][ T6058] process 'syz.0.17' launched './file1' with NULL argv: empty string added [ 49.144400][ T6003] plantronics 0003:047F:FFFF.0002: ignoring exceeding usage max [ 49.150984][ T6003] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 49.162279][ T6003] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 49.168353][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 49.975175][ T1451] usb 6-1: USB disconnect, device number 2 [ 50.212548][ T6078] overlayfs: upper fs does not support file handles, falling back to index=off. [ 50.266840][ T5299] Bluetooth: hci2: command tx timeout [ 50.666836][ T5299] Bluetooth: hci1: command tx timeout [ 50.667430][ T5951] Bluetooth: hci0: command tx timeout [ 50.676812][ T5951] Bluetooth: hci3: command tx timeout [ 51.387396][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 52.180829][ T6106] netlink: 24 bytes leftover after parsing attributes in process `syz.2.28'. [ 52.183517][ T6107] vivid-002: disconnect [ 52.271651][ T6111] 9pnet_fd: Insufficient options for proto=fd [ 52.357446][ T5299] Bluetooth: hci2: command tx timeout [ 52.484461][ T6115] vivid-002: reconnect [ 52.747548][ T5299] Bluetooth: hci3: command tx timeout [ 52.749279][ T5299] Bluetooth: hci0: command tx timeout [ 52.750861][ T5299] Bluetooth: hci1: command tx timeout [ 53.086907][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 53.089366][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 53.106850][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 53.157804][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 53.186902][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 54.196479][ T6141] Zero length message leads to an empty skb [ 54.426808][ T5946] Bluetooth: hci2: command 0x0405 tx timeout [ 55.857460][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.0.47'. [ 55.892141][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.0.47'. [ 56.685984][ T6196] netlink: 'syz.2.56': attribute type 11 has an invalid length. [ 57.807859][ T6240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.73'. [ 58.745009][ T6272] netlink: 'syz.1.89': attribute type 11 has an invalid length. [ 58.812874][ T6278] 9pnet_fd: Insufficient options for proto=fd [ 59.783435][ T6320] 9pnet_fd: Insufficient options for proto=fd [ 59.907495][ T6341] 9pnet_fd: Insufficient options for proto=fd [ 59.992402][ T6351] sch_fq: defrate 0 ignored. [ 60.118710][ T8] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 60.287339][ T8] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 60.290673][ T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 60.293953][ T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 60.296806][ T8] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 60.300442][ T8] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 60.303570][ T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.307119][ T8] usb 7-1: config 0 descriptor?? [ 60.717726][ T8] plantronics 0003:047F:FFFF.0003: ignoring exceeding usage max [ 60.721082][ T8] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving [ 60.725306][ T8] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 60.772655][ T6369] 9pnet_fd: Insufficient options for proto=fd [ 60.913681][ T6394] 9pnet_fd: Insufficient options for proto=fd [ 61.101733][ T6415] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 61.160820][ T6421] 9pnet_fd: Insufficient options for proto=fd [ 61.531083][ T6056] usb 7-1: USB disconnect, device number 2 [ 61.879001][ T6443] 9pnet_fd: Insufficient options for proto=fd [ 63.066625][ T6487] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 63.068899][ T6487] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 63.076768][ T6487] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 63.080570][ T6487] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 63.082405][ T6487] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 63.085409][ T6487] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 63.094743][ T6487] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 63.099258][ T6487] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 63.125228][ T6487] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 63.133498][ T6487] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 63.135381][ T6487] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 63.140730][ T6487] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 64.519503][ T6535] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 64.522203][ T6535] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 64.524659][ T6535] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 64.528326][ T6535] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 65.896792][ T1448] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 65.976835][ T71] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 66.036849][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout [ 66.049237][ T1448] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 66.052671][ T1448] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 66.055867][ T1448] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 66.058808][ T1448] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 66.062617][ T1448] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 66.065343][ T1448] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 66.068775][ T1448] usb 7-1: config 0 descriptor?? [ 66.126778][ T71] usb 6-1: Using ep0 maxpacket: 32 [ 66.129684][ T71] usb 6-1: config index 0 descriptor too short (expected 156, got 27) [ 66.132201][ T71] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 66.135303][ T71] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 66.138729][ T71] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 66.142533][ T71] usb 6-1: config 0 interface 0 has no altsetting 0 [ 66.145928][ T71] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 66.148661][ T71] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 66.151241][ T71] usb 6-1: Product: syz [ 66.152548][ T71] usb 6-1: Manufacturer: syz [ 66.153989][ T71] usb 6-1: SerialNumber: syz [ 66.156503][ T71] usb 6-1: config 0 descriptor?? [ 66.159971][ T71] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 66.164810][ T71] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 66.474617][ T1448] plantronics 0003:047F:FFFF.0004: ignoring exceeding usage max [ 66.478054][ T1448] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 66.481881][ T1448] plantronics 0003:047F:FFFF.0004: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 66.586871][ T5946] Bluetooth: hci3: command 0x0c1a tx timeout [ 66.586905][ T5299] Bluetooth: hci2: command 0x0405 tx timeout [ 66.588735][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout [ 66.622918][ T6002] usb 6-1: USB disconnect, device number 3 [ 66.628700][ T6002] ldusb 6-1:0.0: LD USB Device #0 now disconnected [ 67.685160][ T6632] netlink: 12 bytes leftover after parsing attributes in process `syz.0.239'. [ 68.117332][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout [ 68.536544][ T6650] block device autoloading is deprecated and will be removed. [ 68.666840][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout [ 68.672220][ T25] usb 7-1: USB disconnect, device number 3 [ 68.680397][ T5946] Bluetooth: hci2: command 0x0405 tx timeout [ 68.682258][ T5946] Bluetooth: hci3: command 0x0c1a tx timeout [ 68.786132][ T6658] Invalid ELF header magic: != ELF [ 69.474511][ T6666] infiniband syz2: set active [ 69.477731][ T6666] infiniband syz2: added veth0_to_bond [ 69.496832][ T6666] RDS/IB: syz2: added [ 69.498352][ T6666] smc: adding ib device syz2 with port count 1 [ 69.500305][ T6666] smc: ib device syz2 port 1 has pnetid [ 70.195153][ T5299] Bluetooth: hci0: command 0x0c1a tx timeout [ 70.747372][ T5299] Bluetooth: hci3: command 0x0c1a tx timeout [ 70.747396][ T5946] Bluetooth: hci2: command 0x0405 tx timeout [ 70.750917][ T5299] Bluetooth: hci1: command 0x0c1a tx timeout [ 70.828665][ T1413] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.830689][ T1413] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.997402][ T5946] Bluetooth: hci3: unexpected event for opcode 0x0000 [ 71.226868][ T6003] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 71.388540][ T6003] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 71.391983][ T6003] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 71.395294][ T6003] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 71.398475][ T6003] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 71.402285][ T6003] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 71.404938][ T6003] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.408267][ T6003] usb 7-1: config 0 descriptor?? [ 71.820436][ T6003] plantronics 0003:047F:FFFF.0005: ignoring exceeding usage max [ 71.825035][ T6003] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving [ 71.829016][ T6003] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 72.440789][ T6739] netlink: 20 bytes leftover after parsing attributes in process `syz.1.272'. [ 72.485841][ T6745] netlink: 16 bytes leftover after parsing attributes in process `syz.1.273'. [ 72.641976][ T6002] usb 7-1: USB disconnect, device number 4 [ 72.836803][ T5946] Bluetooth: hci2: command 0x0405 tx timeout [ 73.409056][ T6794] netlink: 12 bytes leftover after parsing attributes in process `syz.1.285'. [ 73.565681][ T6813] syz_tun: entered allmulticast mode [ 73.573250][ T6812] syz_tun: left allmulticast mode [ 73.682024][ T6822] netlink: 12 bytes leftover after parsing attributes in process `syz.1.298'. [ 74.490937][ T6838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.305'. [ 74.907368][ T5299] Bluetooth: hci2: command 0x0405 tx timeout [ 74.965196][ T6867] netlink: 12 bytes leftover after parsing attributes in process `syz.3.314'. [ 75.077952][ T5946] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 75.080759][ T5946] Bluetooth: hci3: Injecting HCI hardware error event [ 75.084011][ T5299] Bluetooth: hci3: hardware error 0x00 [ 76.166969][ T71] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 76.319100][ T71] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 76.322605][ T71] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 76.325828][ T71] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 76.328993][ T71] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 76.332887][ T71] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 76.335604][ T71] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.340029][ T71] usb 5-1: config 0 descriptor?? [ 76.377741][ T6926] block nbd2: NBD_DISCONNECT [ 76.380010][ T6926] block nbd2: Send disconnect failed -107 [ 76.382254][ T6926] block nbd2: Send disconnect failed -107 [ 76.384855][ T6921] block nbd2: Disconnected due to user request. [ 76.387625][ T6921] block nbd2: shutting down sockets [ 76.749828][ T71] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max [ 76.753200][ T71] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 76.756500][ T71] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 76.996958][ T5946] Bluetooth: hci2: command 0x0405 tx timeout [ 77.157172][ T5299] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 77.217952][ T6953] netlink: 32 bytes leftover after parsing attributes in process `syz.3.349'. [ 77.867760][ T8] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 78.051202][ T8] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 78.054876][ T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 78.058048][ T8] usb 6-1: Product: syz [ 78.059685][ T8] usb 6-1: Manufacturer: syz [ 78.061487][ T8] usb 6-1: SerialNumber: syz [ 78.065253][ T8] usb 6-1: config 0 descriptor?? [ 78.274408][ T6056] usb 6-1: USB disconnect, device number 4 [ 78.696052][ T6982] 9pnet_fd: Insufficient options for proto=fd [ 78.953979][ T8] usb 5-1: USB disconnect, device number 2 [ 79.068438][ T5299] Bluetooth: hci2: command 0x0405 tx timeout [ 79.246840][ T6003] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 79.418113][ T6003] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 79.421625][ T6003] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 79.424828][ T6003] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 79.429095][ T6003] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 79.432048][ T6003] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 79.436479][ T6003] usb 6-1: config 0 descriptor?? [ 79.728445][ T39] audit: type=1326 audit(1735915172.973:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.736006][ T39] audit: type=1326 audit(1735915172.973:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.755744][ T39] audit: type=1326 audit(1735915172.973:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.762569][ T39] audit: type=1326 audit(1735915172.973:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.769692][ T39] audit: type=1326 audit(1735915172.973:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.776021][ T39] audit: type=1326 audit(1735915172.973:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.782665][ T39] audit: type=1326 audit(1735915172.973:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.789604][ T39] audit: type=1326 audit(1735915172.973:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.795904][ T39] audit: type=1326 audit(1735915172.973:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7ff75a7 code=0x7ffc0000 [ 79.802240][ T39] audit: type=1326 audit(1735915172.983:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7010 comm="syz.3.370" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 79.843740][ T6003] usbhid 6-1:0.0: can't add hid device: -71 [ 79.845697][ T6003] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 79.857431][ T6003] usb 6-1: USB disconnect, device number 5 [ 79.946384][ T7015] 9pnet_fd: Insufficient options for proto=fd [ 80.357015][ T8] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 80.512207][ T8] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 80.516418][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 80.520015][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 80.523727][ T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 80.528554][ T8] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 80.538814][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.547690][ T8] usb 5-1: config 0 descriptor?? [ 80.867759][ T7027] syz.1.375 (7027): drop_caches: 2 [ 80.961948][ T8] plantronics 0003:047F:FFFF.0007: ignoring exceeding usage max [ 80.966684][ T8] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 80.971117][ T8] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 81.024090][ T7031] netlink: 8 bytes leftover after parsing attributes in process `syz.3.377'. [ 81.071905][ T57] cfg80211: failed to load regulatory.db [ 81.156800][ T5946] Bluetooth: hci2: command 0x0405 tx timeout [ 81.464363][ T7040] ubi0: attaching mtd0 [ 81.467897][ T7040] ubi0: scanning is finished [ 81.469406][ T7040] ubi0: empty MTD device detected [ 81.574129][ T7040] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 81.576527][ T7040] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 81.580931][ T7040] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 81.583155][ T7040] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 81.585461][ T7040] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 81.587678][ T7040] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 81.590188][ T7040] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2835622838 [ 81.594004][ T7040] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 81.601469][ T7049] ubi0: background thread "ubi_bgt0d" started, PID 7049 [ 81.601685][ T7045] ubi0: detaching mtd0 [ 81.610151][ T7045] ubi0: mtd0 is detached [ 82.276880][ T7060] warning: `syz.3.386' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 82.302990][ T7060] netlink: 68 bytes leftover after parsing attributes in process `syz.3.386'. [ 82.353088][ T7062] netlink: 8 bytes leftover after parsing attributes in process `syz.1.387'. [ 82.823314][ T7065] netlink: 68 bytes leftover after parsing attributes in process `syz.1.396'. [ 83.147484][ T8] usb 5-1: USB disconnect, device number 3 [ 83.662698][ C3] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 83.701367][ T7091] Bluetooth: MGMT ver 1.23 [ 84.116806][ T8] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 84.270333][ T8] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 84.273866][ T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 84.277168][ T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 84.280028][ T8] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 84.283913][ T8] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 84.286612][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.289874][ T8] usb 6-1: config 0 descriptor?? [ 84.313558][ T7116] tipc: Enabled bearer , priority 0 [ 84.705093][ T8] plantronics 0003:047F:FFFF.0008: ignoring exceeding usage max [ 84.712018][ T8] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 84.716067][ T8] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 86.644215][ T7179] 9pnet_fd: Insufficient options for proto=fd [ 86.747541][ T7177] ubi0: attaching mtd0 [ 86.750753][ T7177] ubi0: scanning is finished [ 86.752822][ T7177] ------------[ cut here ]------------ [ 86.754582][ T7177] notifier callback ubi_wl_reboot_notifier already registered [ 86.754633][ T7177] WARNING: CPU: 2 PID: 7177 at kernel/notifier.c:23 notifier_chain_register+0x157/0x420 [ 86.760680][ T7177] Modules linked in: [ 86.764089][ T7177] CPU: 2 UID: 0 PID: 7177 Comm: syz.0.429 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0 [ 86.769058][ T7177] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.773683][ T7177] RIP: 0010:notifier_chain_register+0x157/0x420 [ 86.776153][ T7177] Code: 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 c2 02 00 00 49 8b 75 00 48 c7 c7 20 10 4c 8b e8 fa 79 f4 ff 90 <0f> 0b 90 90 bb ef ff ff ff e8 bb b3 33 00 89 d8 48 83 c4 18 5b 5d [ 86.784115][ T7177] RSP: 0018:ffffc90003027a28 EFLAGS: 00010286 [ 86.786515][ T7177] RAX: 0000000000000000 RBX: ffff8880522658c8 RCX: ffffc9000c803000 [ 86.790164][ T7177] RDX: 0000000000080000 RSI: ffffffff815a1796 RDI: 0000000000000001 [ 86.793255][ T7177] RBP: 000000007fffffff R08: 0000000000000001 R09: 0000000000000000 [ 86.796446][ T7177] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000001 [ 86.799652][ T7177] R13: ffff8880522658c8 R14: ffffffff8f613968 R15: dffffc0000000000 [ 86.802735][ T7177] FS: 0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000f5116b40 [ 86.806272][ T7177] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 86.808996][ T7177] CR2: 000000002f615ffc CR3: 00000000128f2000 CR4: 0000000000352ef0 [ 86.812179][ T7177] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 86.815280][ T7177] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 86.818486][ T7177] Call Trace: [ 86.819829][ T7177] [ 86.821005][ T7177] ? __warn+0xea/0x3c0 [ 86.822625][ T7177] ? notifier_chain_register+0x157/0x420 [ 86.824836][ T7177] ? report_bug+0x3c0/0x580 [ 86.826631][ T7177] ? handle_bug+0x54/0xa0 [ 86.828421][ T7177] ? exc_invalid_op+0x17/0x50 [ 86.830285][ T7177] ? asm_exc_invalid_op+0x1a/0x20 [ 86.832296][ T7177] ? __warn_printk+0x1a6/0x350 [ 86.834195][ T7177] ? notifier_chain_register+0x157/0x420 [ 86.836422][ T7177] ? notifier_chain_register+0x156/0x420 [ 86.838696][ T7177] blocking_notifier_chain_register+0x76/0xd0 [ 86.841146][ T7177] ubi_wl_init+0x1018/0x17b0 [ 86.842869][ T7177] ubi_attach+0x1cdd/0x4dc0 [ 86.844307][ T7177] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 86.846576][ T7177] ? lockdep_init_map_type+0x16d/0x7d0 [ 86.848792][ T7177] ? __pfx_ubi_attach+0x10/0x10 [ 86.850725][ T7177] ? ubi_attach_mtd_dev+0x1543/0x3590 [ 86.852838][ T7177] ubi_attach_mtd_dev+0x158f/0x3590 [ 86.854894][ T7177] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 86.856802][ T7194] mmap: syz.2.435 (7194) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 86.857114][ T7177] ? __pfx_get_mtd_device+0x10/0x10 [ 86.862475][ T7177] ctrl_cdev_ioctl+0x339/0x3d0 [ 86.863922][ T7177] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 86.865946][ T7194] netlink: 12 bytes leftover after parsing attributes in process `syz.2.435'. [ 86.865952][ T7177] ? __fget_files+0x206/0x3a0 [ 86.865971][ T7177] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 86.869728][ T7194] netlink: 16 bytes leftover after parsing attributes in process `syz.2.435'. [ 86.871500][ T7177] compat_ptr_ioctl+0x6b/0xa0 [ 86.871533][ T7177] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 86.871548][ T7177] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 86.871561][ T7177] __do_fast_syscall_32+0x73/0x120 [ 86.884890][ T7177] do_fast_syscall_32+0x32/0x80 [ 86.886971][ T7177] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 86.889614][ T7177] RIP: 0023:0xf7fc7579 [ 86.891248][ T7177] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 86.898479][ T8] usb 6-1: USB disconnect, device number 6 [ 86.898892][ T7177] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 86.904513][ T7177] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000040186f40 [ 86.907686][ T7177] RDX: 0000000020000502 RSI: 0000000000000000 RDI: 0000000000000000 [ 86.910777][ T7177] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 86.913391][ T7177] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 86.915816][ T7177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 86.918291][ T7177] [ 86.919267][ T7177] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 86.921486][ T7177] CPU: 2 UID: 0 PID: 7177 Comm: syz.0.429 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0 [ 86.924657][ T7177] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.927903][ T7177] Call Trace: [ 86.928932][ T7177] [ 86.929852][ T7177] dump_stack_lvl+0x3d/0x1f0 [ 86.931272][ T7177] panic+0x71d/0x800 [ 86.932531][ T7177] ? __pfx_panic+0x10/0x10 [ 86.933909][ T7177] ? show_trace_log_lvl+0x29d/0x3d0 [ 86.935527][ T7177] ? notifier_chain_register+0x157/0x420 [ 86.937235][ T7177] check_panic_on_warn+0xab/0xb0 [ 86.938752][ T7177] __warn+0xf6/0x3c0 [ 86.939981][ T7177] ? notifier_chain_register+0x157/0x420 [ 86.941685][ T7177] report_bug+0x3c0/0x580 [ 86.943005][ T7177] handle_bug+0x54/0xa0 [ 86.944323][ T7177] exc_invalid_op+0x17/0x50 [ 86.945710][ T7177] asm_exc_invalid_op+0x1a/0x20 [ 86.947179][ T7177] RIP: 0010:notifier_chain_register+0x157/0x420 [ 86.949126][ T7177] Code: 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 c2 02 00 00 49 8b 75 00 48 c7 c7 20 10 4c 8b e8 fa 79 f4 ff 90 <0f> 0b 90 90 bb ef ff ff ff e8 bb b3 33 00 89 d8 48 83 c4 18 5b 5d [ 86.954955][ T7177] RSP: 0018:ffffc90003027a28 EFLAGS: 00010286 [ 86.956921][ T7177] RAX: 0000000000000000 RBX: ffff8880522658c8 RCX: ffffc9000c803000 [ 86.960009][ T7177] RDX: 0000000000080000 RSI: ffffffff815a1796 RDI: 0000000000000001 [ 86.963096][ T7177] RBP: 000000007fffffff R08: 0000000000000001 R09: 0000000000000000 [ 86.966194][ T7177] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000001 [ 86.969273][ T7177] R13: ffff8880522658c8 R14: ffffffff8f613968 R15: dffffc0000000000 [ 86.972381][ T7177] ? __warn_printk+0x1a6/0x350 [ 86.974266][ T7177] ? notifier_chain_register+0x156/0x420 [ 86.976468][ T7177] blocking_notifier_chain_register+0x76/0xd0 [ 86.978716][ T7177] ubi_wl_init+0x1018/0x17b0 [ 86.980150][ T7177] ubi_attach+0x1cdd/0x4dc0 [ 86.981543][ T7177] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 86.983465][ T7177] ? lockdep_init_map_type+0x16d/0x7d0 [ 86.985097][ T7177] ? __pfx_ubi_attach+0x10/0x10 [ 86.986589][ T7177] ? ubi_attach_mtd_dev+0x1543/0x3590 [ 86.988239][ T7177] ubi_attach_mtd_dev+0x158f/0x3590 [ 86.989822][ T7177] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 86.991522][ T7177] ? __pfx_get_mtd_device+0x10/0x10 [ 86.993140][ T7177] ctrl_cdev_ioctl+0x339/0x3d0 [ 86.994621][ T7177] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 86.996240][ T7177] ? __fget_files+0x206/0x3a0 [ 86.997674][ T7177] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 86.999279][ T7177] compat_ptr_ioctl+0x6b/0xa0 [ 87.000728][ T7177] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 87.002365][ T7177] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 87.003986][ T7177] __do_fast_syscall_32+0x73/0x120 [ 87.005537][ T7177] do_fast_syscall_32+0x32/0x80 [ 87.006997][ T7177] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 87.008931][ T7177] RIP: 0023:0xf7fc7579 [ 87.010178][ T7177] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 87.015928][ T7177] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 87.018436][ T7177] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000040186f40 [ 87.020828][ T7177] RDX: 0000000020000502 RSI: 0000000000000000 RDI: 0000000000000000 [ 87.023206][ T7177] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 87.025596][ T7177] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 87.027972][ T7177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 87.030373][ T7177] [ 87.031919][ T7177] Kernel Offset: disabled [ 87.033216][ T7177] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:39:40 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=000000000004e6b1 RCX=ffffffff82073f0d RDX=ffff888025c28000 RSI=ffffffff82073f24 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc900076b7550 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000003 R12=ffff88803f180000 R13=0000000000000000 R14=0000000000000001 R15=ffffc900076b7a98 RIP=ffffffff81995026 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002f91affc CR3=0000000058506000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffffc90003b66dc8 RCX=0000000000000000 RDX=1ffff9200076cdba RSI=ffffffff81ec1dab RDI=ffffc90003b66dd0 RBP=0000000000000006 RSP=ffffc90003b66ce8 R8 =ffffc90003b66d3c R9 =ffffffff90ba8b18 R10=ffffc90003b66d08 R11=000000000000ec0b R12=ffffffff81852eb0 R13=ffffc90003b66dc8 R14=0000000000000000 R15=ffff888022b72440 RIP=ffffffff81852f0a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7484230 CR3=000000004c4e0000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85143475 RDI=ffffffff9a667200 RBP=ffffffff9a6671c0 RSP=ffffc90003027388 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006 R12=0000000000000000 R13=0000000000000020 R14=ffffffff85143410 R15=0000000000000000 RIP=ffffffff8514349f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002f615ffc CR3=00000000128f2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000019b113 RBX=0000000000000003 RCX=ffffffff8b1a4819 RDX=0000000000000000 RSI=ffffffff8b4cd300 RDI=ffffffff8bb17100 RBP=ffffed10039df488 RSP=ffffc9000049fe08 R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000 R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901ce550 R15=0000000000000000 RIP=ffffffff8b1a5bff RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00005568dd0c99a8 CR3=0000000028de6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7413ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000