last executing test programs: 4.285482797s ago: executing program 0 (id=133): r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b700000081000000bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071100000000000001d400500000000004704000001ed00001f030000000000001d44000000000000620a00fe000000007203000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e80dc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x1) r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x8, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x800) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x18, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x8, 0x3d, &(0x7f0000000440)=""/61, 0x41000, 0x28, '\x00', 0x0, 0x25, r2, 0x8, &(0x7f0000000480)={0x3, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x3, 0xe, 0x4}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000500)=[{0x0, 0x3, 0xb, 0x2}], 0x10, 0x8001}, 0x94) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet(r7, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001) syz_open_dev$tty1(0xc, 0x4, 0x1) socket$nl_route(0x10, 0x3, 0x0) close(r8) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) mount(&(0x7f0000000280)=@sr0, &(0x7f0000000340)='./cgroup\x00', &(0x7f0000000300)='nilfs2\x00', 0x1a0c000, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x27, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r9, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x3c) mmap$xdp(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1f, 0x12, r1, 0x100000000) r10 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r10, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x9, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x0, 0x202, 0x2, 0xc}) 2.939453888s ago: executing program 0 (id=140): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0xa00}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff90, 0x0, 0x0, 0x0}, 0x90) 2.879849899s ago: executing program 1 (id=141): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$unix(0x1, 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000580)={'veth1_to_bond\x00', 0x0}) r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, r3, 0x25, 0x4}, 0x14) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0cc5605, &(0x7f0000000400)={0x2, @win={{0x0, 0x0, 0x47524247}, 0x0, 0x0, 0x0, 0x0, 0x0}}) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRES64=r5, @ANYRES32=0x0, @ANYRESOCT=r4], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x2000c011) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000680)={r4, 0xffffffffffffffff, 0x4, r1}, 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 2.878900603s ago: executing program 0 (id=142): openat$cdrom(0xffffff9c, &(0x7f0000000400), 0x101000, 0x0) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000240)='sockfs\x00', 0x0) read(0xffffffffffffffff, 0x0, 0x0) r0 = socket$kcm(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$pptp(0x18, 0x1, 0x2) connect$pptp(r4, &(0x7f0000000040)={0x18, 0x2, {0xfffc, @initdev={0xac, 0x1e, 0x5, 0x0}}}, 0x1e) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x80}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r6 = syz_open_procfs(0x0, 0x0) ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0) quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000940)="1c00000033000b17d25a80648cffff400305000045", 0x15}], 0x1}, 0x0) ioctl$CDROM_NEXT_WRITABLE(r6, 0x5394, &(0x7f00000000c0)) 2.878666373s ago: executing program 1 (id=143): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000580)={'veth1_to_bond\x00', 0x0}) r4 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, r3, 0x25, 0x4}, 0x14) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x20, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}}, 0x20}}, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000680)={r4, 0xffffffffffffffff, 0x4, r1}, 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 2.681507134s ago: executing program 1 (id=144): r0 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000fc0)={&(0x7f0000001340)=@hci={0x1f, 0x200, 0x31}, 0x80, &(0x7f0000000000)=[{&(0x7f0000001040)="b8b2cc1e00c1dba49dbb66ca3a66bb02800020", 0x13}], 0x1}, 0x0) 2.619059851s ago: executing program 1 (id=147): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000280)=0x3, 0x4) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x20800, 0x0) ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f00000000c0)={0x7, 0x21, 0x0, 0x17, 0x4, 0xc0, 0x5, 0x14c, 0x1}) 2.480698106s ago: executing program 1 (id=148): socket(0x10, 0x803, 0x0) fsetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x84, 0x30, 0x1, 0x0, 0x0, {}, [{0x70, 0x1, [@m_ct={0x40, 0x2, 0x0, 0x0, {{0x7}, {0x18, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff) ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000340)=0x10001) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000570600000fff07006706000002000000270600000ee60000bf2500000000000073350000000000006507000002001000070700004c0000001f75000000000000bf54000000000000070400004400f9f0ad32010000000000950000000000000005000000000000009500000000000000debfa255e44e4cc39f211fb04d7f202e6a53bd86bde99b679b4e6d24b8125690361eec3b181dcfd7c2fb2d1f8975b579a085bee32d414c1f3ab987a9de6385ae8021f4ca33b9b35fe817e98beb9cefe7f40fd6f0ea3affbdaaa897c70fb01d270a7b00d36fb5ab8fa92ac014a106e3e4decc68652503ca54fcef437d96c8a05d59ddcc8abf09cd77e93e940207b03189c5d4661e43df6f1f036c8d85a2ad7615a021f8cbe507ef94fb9f33315366e9ae080000001b532226b63b460d68808a67529637bf7f6731ad0cf1718bae3c8b9d2f89050cb496fe791381af6fab290900000000000000d640a5fde1f7d5eaa97cd25523fbd77300000000000000d67559b0c848aa3e7091f33e2dfc351e903ce85488fb25691249545bcf877011847df184bae6d3f5d0c016ec7d581d5b2fcb494d8c2df1929398ec5c3675ed16c27fff46a695eed7f50c531a612d5677b5e949ee4f16d10e41074702c4e89ee401ec2ec65f38f64189f1fa2cc0a42add3119025764759de2f093c26fe51d2f7635bb06bdf0b97d4a96cb0813e084232421c6026629fbf4c81954d11e154659b54fcf3468577295"], 0x0}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000c0000004208000040000000c0"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100), &(0x7f00000001c0), 0x10f0, r2}, 0x38) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000004c0), 0x0, 0x16c5, r2}, 0x38) 1.881171917s ago: executing program 0 (id=149): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000140)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac004000202080003000300010004000600eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6", 0x5a}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 1.880684957s ago: executing program 0 (id=150): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x20800, 0x0) ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f00000000c0)={0x7, 0x21, 0x0, 0x17, 0x4, 0xc0, 0x5, 0x14c, 0x1}) (fail_nth: 2) 1.649866891s ago: executing program 0 (id=155): r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000b80)={0x44, &(0x7f0000000900)=ANY=[@ANYBLOB="0015b3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_ep_write(r0, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000") preadv(r1, &(0x7f0000000200)=[{&(0x7f00000012c0)=""/181, 0xb5}], 0x1, 0x7fb, 0x234) (fail_nth: 2) 1.420478541s ago: executing program 1 (id=158): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=@base={0x5, 0x4, 0x4, 0x5}, 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x6, 0x4, 0x4, 0x1}, 0x50) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4) sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="0100000000000000500200000000fee80503f6"]) r8 = syz_open_dev$tty1(0xc, 0x4, 0x3) r9 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0) syz_usb_control_io$cdc_ecm(r9, 0x0, 0x0) syz_usb_control_io$uac1(r9, &(0x7f0000000100)={0xc, &(0x7f0000000040)={0x40, 0x24, 0x77, {0x77, 0xd, "6850aab8ec8203ebfa654a0d7d5d4860d72ecb93456a66ef69bf6c0bb67abee3030298304f0acb81c986d44176dcbb261673472f6bc27976f6f987308d017474c2c61dc25c9c207d1fea275fd58d79dab8fc2ae5366a4a4f91499c683eb3687fbf4a7e24ac7101c809bdaf8a2d9e4ae5418315d14a"}}, &(0x7f00000000c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x861}}}, &(0x7f0000000380)={0x24, &(0x7f0000000140)={0x40, 0xe, 0x39, "57c75c6eb9a2e0b746d24279eb78373481f310c53557a84b482947e626d9606c226a70cdb69b48f3512573d39917dff1f3e83302bdd7d33d32"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0xa}, &(0x7f0000000200)={0x0, 0x8, 0x1, 0x2}, &(0x7f0000000240)={0x20, 0x81, 0x1, 'n'}, &(0x7f0000000280)={0x20, 0x82, 0x2, "e7ce"}, &(0x7f00000002c0)={0x20, 0x83, 0x1, "87"}, &(0x7f0000000300)={0x20, 0x84, 0x2, "16e2"}, &(0x7f0000000340)={0x20, 0x85, 0x3, "e4bb46"}}) r10 = dup(r8) write$UHID_INPUT(r10, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006) 788.711974ms ago: executing program 2 (id=159): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000140)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac004000202080003000300010004000600eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6", 0x5a}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 788.32524ms ago: executing program 2 (id=160): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r0, 0x0, 0x0, 0x4000014, &(0x7f000005ffe4)={0xa, 0x4e24, 0xfffffffc, @mcast1, 0x9}, 0xffcb) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000240)=[@mss={0x2, 0x8}, @sack_perm, @timestamp, @sack_perm, @window, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x5b) connect$vsock_stream(r4, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000140)='cdg\x00', 0x4) sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11) recvfrom$inet(r5, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x9}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}}, 0xb4}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) 527.378215ms ago: executing program 3 (id=162): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0xa00}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff90, 0x0, 0x0, 0x0}, 0x90) 431.056878ms ago: executing program 3 (id=163): r0 = socket(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x8000) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r1, @ANYBLOB="140001000040000000000000000000000000000014000200fe8000000000000000000000000000aa140006"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20) sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0) (fail_nth: 2) 430.707395ms ago: executing program 3 (id=164): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) (async) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100000b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(sm4)\x00'}, 0x58) (async) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) (async) r4 = accept4(r3, 0x0, 0x0, 0x80000) syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r4) (async) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) (async) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) (async) r5 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xa00, 0x1c2) (async) r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r6, r5, 0x0, 0x3a) (async) r7 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) (async) r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2) ioctl$vim2m_VIDIOC_QBUF(r8, 0xc044560f, 0x0) (async) io_setup(0x8, &(0x7f0000000540)=0x0) io_submit(r9, 0x0, 0x0) (async) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x24, 0x0, &(0x7f0000000040)=[@release, @acquire_done={0x40106309, 0x2}, @decrefs={0x40046307, 0x3}], 0x1000, 0x0, &(0x7f0000000880)="90e89cf309fd7a69384f5e4ee2d11c4ba8090c93a30bad6bb964c5e601b5382a0ba6846fb6e38af122506e0b9c9aa8ce1a7045a239210e5495a11e231fb9bc820ce31985a78949d0fd9fcf8894bd42962b0e8ec33c189167644a87149b6b1b2d8d7859a18929f6e102f1cfbf9a824ebb4affc91258cfc177def722240a3934555ce18aee473fbb9ac69ac2075f1e8cc649a681b885fc813c1c5b9961de8253e21ccadc448f7d2a9f09a8eef083dba0aa03e4338d668083b5686e86f477aee7e49a79f157278573f047acda5504b465c9906cfd7452e02726021439147edc5f714c67055ea3e0ffb81ac8d7bbcc3355949685896bc61fb73a2aaa36fe4b9dff85655445255b6a05aac3d5713b8625c18c2b80595de3584453c1654c90baf37b9d35ea853f08920475463654929f782013f7f2af466253e44c0c7a20a9c2a173deeddc6df6b4c22bc45f54f0ef199a794b74460f915b1f6632c12b3e46ff6565359288f9214eae36f71d1d90b83f0c3a690de5bbef6fa3746ce4c74929a637129685f3b77fc51001f3d902384db50e870b6bdf67322d90fec800b9fc4d73f6db09b7fb33fb4832e34a516e169a5c90e44b5603d4b80b6c7d862b51f805fdcf42427e52c63ef743fddf86d36a28f1656ef31013f4d85b2112851688b5a47a29e3e5d4a000cb3945270fce9d9756f43f701e57290557bef5cab671d3542c3fe285f15fb21cfab1b6ebc65b28f51ad386d9d262493cb1be6e523b2112ad29a6291fa7d170cc38333dea949926ddcdfe526fff0f585976c49254de9460d58637c79c648b2ae6c045bd40d90a0f9a1c2904673520c45c6655dded68819b6c109ca52b0a33103a198fd6889f821f7921171cb00e3f9e1c9c2cfb1aef5ce203916e7837460f915571d2fa9596bc53d2e6c34e052c06ca95f1a1d3649795f8255806719093ef85640fbb7761fc67d042900bb68d071745be7014d9994894d882b20678be71c3afa45ee2024e7f77fa1193874c8b8c4147641e0db8bbdcd6a8f8756125bbcbd59b013c1716bcd91fd89015c306f02d8c555885c8bb81446a68ff76d848228ce9336d95d4e895d35f5fc3d707df8c88d59340827b356c5434e21d6cc9bb6a744b54a16437315e9ae8fc68b1de0bf3b014cee41f195a63eca9d23b5ba95dc4bc6614b6fc57c34b6ea76c1ca1b98c5c33e91495ace0fdf76a83400de5ba288acd8966eab7d15a88b13ef2d7f2365d32568a8d6d1e71d3294a04ceb0341492b9e5f8c5de252e31716125b175a30a8e8b2e38bfd7b8c4b746a110ddfd9487372df30974c149b3cc98c4eb85e73ff280bd04daff17c02e22a92227a61641f571ec1f9010660d1f4ad1b7652590c1bf40e1cb577e9f1401566f3247c124b7ca99e2107ff9c7292e0fac95de0ff6ae83e93127aa3ccd2ecd16dfbd921c26040b9f10a728c051a1b7ab05d2b381025b06bc937890bdec7902526fc0245865c0a749220adb9cd237c67814f2289f0a0ed237ae7b87402dfd8549b675239da0e2dbc2f1c750149a1e654169318a4128309b1a7c1be56c6b75f2217abc41fc985b843f7ebce5050f4763cbc45293795be16c94faed17c517a8252396a9c4eb1c7d1c560503c757c6a05b5c67c370e19bae878391c93d513ba2b7821005c1fa38ac6aa6f216591f801d75059051b1aafa2699ef6c4eb865db1627a134195f579684e51e8af1151518a697b7c12b42a1c72e5da67f2bbeacad9308393a2d9a69b7ff39f686f15dacf0710f96ed2c8619a7e806d0c6e9db14ea68fd93a6418d0467fd1f147c20ac0f4b89a52e13478dd4ac32bb98a627ede731667b50f49aab353309d3c52e5728351bce7c50d2e7bb35ecec0c32d664523fbbdff08155eb9a20156c348d028417897c44144123d64eb3b264e9cbef7d1da99a62d9e685d49989b70178bda7654f5301405d88f4da1c04d39f3b10c7534f26888b7dcf1ff935b1e6249dd6084642b8294fd984be7fa62d9dfb890f061ad2ac77dffabf481095ac3d450c4b3ff8ddf44e926602f1b871de9cf139c6d9dc2befcb601b6c6f1491bf90b44e24bdf5b4a21dac71af53730c364acde21775157e82338a79c001c6faf3d6dbc1178b78f09dd1dcc4799a5fdf0f0cc18dc425bfb03564b5285638fe0984ae2f2033c4cf5e9c5e9d34955792c775435a7ddd18571fc3cf7aab4f513beda315a2a3a7b7373854f450b04c0859c03bf7f249b59185d6c74a1d25eb8319a8e0edb786ef42555d1969e9ef9c1633fa91ce995565b4adc0e4b74a5bf3ffb5f275b8be04fa73183e6f4b510edfb938569ce4bebe0c3637223bcc0393cd48193282c57ae95d1ba3f0225e4e0391c1479840c0b85c4c5190876fb5af9890fae11d471078be7ad6572f6dcadc2064f0d252bedcd86088662564496a41b4e1bf33b409392130b782bfe23b372e2cdfbf038deca1fc494912d4bbcc4a43d00859185f29b46623e71b3c6d44238ee6e18472a896a25d5f53e0c9ca2c40895fd47f5c5a17bc766780db7fde3153dabab9a7eaa903aa481f8c817c3439b3853f69aeb6ea5ef9297808ce2d6c386966316c7b94ddb5d2734823d276e3e5e7fc89ea7aa2c2773b30e9d0a6ee32c73959b4121709334fc8f4874cd91e6a4782667c95dea437628eeeadd28661bc0c6d5d786e3a8c8a9fa77356aa2161ff6fd5c6a2027a646e89a5b883ec645f6c3e0a495365b4044e1e6ed2adbfc16ee2ab014ecf597c5c68aeadf4465fd0691904b3c9f1bc664995cfabf944aef8f401c9cfa3c3a5398a5c09bf559507edb578668ac7c9a9bbdc3887a97432f80bd2e56ac6b4fd4cd8f5b473113ed3518f548de51b24c88f87ff45fc243d752901eee9e4231d4e2ef2191ee5dbaea89f4bbdbe19bfa68b508cf13af708f63d415c076ea9926e462acd39a939b8f86ddc82361e51e6243592dcbbed342bdb40ee1e4cb09fc2e32733337587b391938ad49cc313b5c1ac76244a59b1ce39c9f50e8f5724977c62afed11218de27fe8274c1b37bac8e5b6fbd428a5197bbc0ccbc62aa6248b8619adc9a92830a0414b1a0ee259b5f3bf8513aa5b3aa0657bef6d14713b27b65c2f34d67e5ce43cd5f4c2f0141e884b95f1eae68c77ed3747035afa0c914dd14e0fbdf07158be4d8daff3b7c636634c1ade837dde8f2741c77d62cc3e10f145691e9512c2ed5efe0292d24d9cfbf443b8ca46bf947135742c6e8b24e117c34295b4b4c270a4465575e3b84c80305bb3c143823f0144d8fbbd3b370fc4b007285a73874b8440fb741839adbf003f42a6d8be4e062d5a264a3601427fb03e026895b72c8eab3be4a19b4fc35c2b8b91d32ea8c4aba5db0b2a11f1e66a9e66ef543e2080f681a5706e44a049d08e6d887771361b57d7ba25382a9e75a9c850716e4e2520aa8a120413a435149af396de8ef2b785285e86dd02138a6fed84c63e9df049708e4c1eb2db9565c01403a302601010424ce0b2acad305d419b0e7e660ab11286c88ac4d97b25f5d5e15cc99dbb2fc67df77dfcf866c0e45a1519c5a63813bde0fde24c19cdfa4b6ac62bab4efb8ebd834916110ccdd1af5193bb7ea7f6918823c21bfc20e26972cd5b8dfb1b770c86701a0c0574f24fba91b14081fa2a5785e9bcca5e4d9850534324c53d1692f0231c4327bcc8a4e94a32b992e5a9085ad60a27fbe2ce37890953d1d33d231e8c5d46b48df03809df1078c54a1470b4f17cd7b7c5c4c1e7d9ba9032285c7faffaca710de7bb9d796481e2a6d8fc171be6b761e89080f3dd31987af8e0e6a2589383b8fc66784630efe52332e7a336a07219eab99ee53a6e959d5f0bb0987b0049666ebbe7feeceba48b744f6b283a7fc2c0fd536d6e942b9658a95cd2c9474cc1ade6ae6ea43f9588f1bb0087815523d4dc90271fad9c3ab1dbf23d6fceb965be26673c3882b294bd6760db025361aa2bc29402a6fb4de2c1939f65b244ca3ce77c6eaf3a093367e5c46ddaeddbcc6986c977e273ca5302a1437258e8a4ce1409db02c74bf1a01516b2208134b68280b08536df3086baca36bb98ceb5862961d3a0959e983057faa6142e35e89780b9d24120b758d346aeec975df9f6a5c831f773bcd9fb9dbf7f2310c955e22f85d9228215f54de230b5b31241e2e51aa3f0d935be8e43b6cb29df73172a36e34f370fc01163384a1ae17fb2414fbe7877654936c49095a9104b607c07fd71a0ecba20ca5def61586d318cee5c02bdf4a0abb5dd17d40d92a6bfc90b0272ad44379571e15871c173b7e4cb9c8bae96650f47db5a04eeaefdafafc421c87703ae6ca9ae2fb4b45bea5e48fa7d7c637f04b371bb6d0e75b453a87e40022eade4184e7b4e6e44f9741385595cbba5c9a38a97fb3004c1f4de6c3014e6fc588b1e8edde1d2ead8e41464bf9a6080794c2c83b2103e33cf4cf03d538b79884f544d5c7cbbe9f663b19bb813c06c7370bc30040e8d3f435b2cbdccc595687e489e7bf0d01fb6e12f8638493510d366358e93f8c176fd3fc63db115871900e6cbd3c88e23fdc6e35cb97111ee54333245eb685a01db9556749e547153f9f2f8788c632e2c68e221ed8a545691e905f1ae305af14fe78592d744abfed2d1b36e9534ffd50f866316c6a7550170d7574403e2584f9cca1929debee908a3a6c9efcf7252cd068160c513a2d4e96c454d232c780f7eaeb5101ceb9cb247d603d36ecde88bba837631b8c07ce4487e3ed6ea5f01762b651029351db39eb3a90d4b17bb2c4af8ae6cd7c12ce1a17aa6e2efd839c759d7f39c0839261167c6f97d02c05c7b9f8e2eddd3d33675483e1f141e18ed01981799643758a69dbbce20f885d94e5d97fc6d9557b625cff610ce67d8dad631424905d9fab8a97b77d85e4bc3f3e86945157971fb341ef7c36cdfbed499b5805af2f0f69e5c82f4eac80c946961682e82e813d41cb50ecc729a1f3f914ff16e322b5f24dc9efbe92713d6b4facf47905fe0cb716a9b872527dbb486e4f5517a4ea2c5e9bb22a5095e202b4f4b6f6e3ac5a787ac8b2a8d170803ea22590b3e8deaca3250b82555a94ce534ccc155219e19fc39cf806d0c4cf51f7962f130708add2b663953498dce0e8b08484ad85c0d45aec1d7f282a6de26569774aad7c651925a4089c7dcb0dbde512a6a03b74f3c75c580a2ccbced81fcc50ff3fa7e24db805200e94ae248eac8f0bc5f174dc6d21ae793e7d27c521ab040287db42aa2f2e82ff79e9918ab033b2724b5643165f4bf202bd7c3d39dbde03772bfcc3c3f15edf826b7a5ca810e3417f7594623ee03ddd7addaec020e1dadfd897808da1d98329175521778e1cb99382f87bddaed6d5f024b16050c2433325d24a91b2f5eda892156c8b130d8383baff4b46db0c81a0972a08ccd17db161b4c755e82905ad694c7831c03ffc9e1885cfddc1ad297a1bc17321471a6afaaffddce3abd70857c8f68e4be6157b2b74bc8f12dd186646f60edb2ca5019f1e2cf7e635f8c4ebbb45de179da00d04190e6cafd6164794a191f99dca04edb7f85c44b96778e30305fbb247b90bfb859a0c9d2c9e262c766b09504c832a20b5e2d33472f9349774e3cfd7ff7bd1def2ff0ce5a4e73956f57edea969ccf5fc5fa4c7ee10a138d9ef8bfccb3bc3311eae40484d9b4748028b8dfa31cd5f98adb40c94c532c16713325861a763be432939fc9eccdf60e525637b595a026cc093c48d8dc68a00862940b30b765dc46cfae879c0b90a9e79c0399a3ef039351fdcf279ca41b6dc84e2331230cf9"}) (async) syz_usbip_server_init(0x3) (async) statx(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x800, 0x100, &(0x7f0000000700)) (async) mount$tmpfs(0x0, 0x0, 0x0, 0x400, 0x0) (async) close_range(r2, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="1502000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}, 0x1, 0xba01, 0x0, 0x20000000}, 0x0) 130.682742ms ago: executing program 2 (id=165): sendto$inet(0xffffffffffffffff, &(0x7f0000000140)="210a5e7684446ccf", 0x8, 0x8080, 0x0, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="503b487492c826"], 0x50}, 0x1, 0x0, 0x0, 0x400c1}, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x6, 0x10000, 0x0, 0x4002004c8, 0xa0000000000, 0x0, 0x0, 0x0, 0x5, 0x0, 0x9, 0x0, 0x7], 0xeeee8000, 0x2113c0}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 130.45173ms ago: executing program 3 (id=166): r0 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000fc0)={&(0x7f0000001340)=@hci={0x1f, 0x200, 0x31}, 0x80, &(0x7f0000000000)=[{&(0x7f0000001040)="b8b2cc1e00c1dba49dbb66ca3a66bb0280002088", 0x14}], 0x1}, 0x0) 129.91032ms ago: executing program 3 (id=167): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94) r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) close(r0) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x25, 0x0, 0x0) 125.195854ms ago: executing program 3 (id=168): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r0, 0x0, 0x0, 0x4000014, &(0x7f000005ffe4)={0xa, 0x4e24, 0xfffffffc, @mcast1, 0x9}, 0xffcb) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000240)=[@mss={0x2, 0x8}, @sack_perm, @timestamp, @sack_perm, @window, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x5b) connect$vsock_stream(r4, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000140)='cdg\x00', 0x4) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0), 0xc7) sendto$inet(r5, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x9}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}}, 0xb4}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) 66.143848ms ago: executing program 2 (id=169): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000140)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac004000202080003000300010004000600eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6", 0x5a}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 222.46µs ago: executing program 2 (id=170): mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4003, &(0x7f0000000c00)=0xc, 0x6, 0x2) syz_emit_vhci(&(0x7f0000000240)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_complete={{0x5, 0x4}, {0x5, 0xc8, 0x9}}}, 0x7) openat$ptmx(0xffffff9c, &(0x7f0000000000), 0x321000, 0x0) r0 = landlock_create_ruleset(&(0x7f0000000040)={0x4, 0x3, 0x2}, 0x18, 0x0) statx(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x6000, 0x100, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl$Q_GETFMT(0xffffffff80000401, &(0x7f0000000080)=@filename='./file0\x00', r1, &(0x7f0000000100)) landlock_restrict_self(r0, 0x5) landlock_restrict_self(r0, 0x0) r2 = socket(0x15, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000140)={'veth0_macvtap\x00', &(0x7f00000004c0)=@ethtool_channels={0x3d, 0xffefffff, 0x0, 0x0, 0x200004, 0x2, 0xfffffffe, 0x0, 0x5}}) r3 = syz_open_procfs(0x0, &(0x7f0000001880)='numa_maps\x00') pread64(r3, &(0x7f00000018c0)=""/4086, 0xff6, 0x4) 0s ago: executing program 2 (id=171): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0xa00}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff90, 0x0, 0x0, 0x0}, 0x90) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:15694' (ED25519) to the list of known hosts. [ 40.891244][ T5939] cgroup: Unknown subsys name 'net' [ 40.998223][ T5939] cgroup: Unknown subsys name 'cpuset' [ 41.002264][ T5939] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 41.886179][ T5939] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.207338][ T5978] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.209766][ T5978] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.212990][ T5991] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.217250][ T5993] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.223299][ T5988] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.224159][ T5993] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.226354][ T5988] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.228295][ T5993] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.230124][ T5978] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.230552][ T5988] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.231055][ T5988] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.231308][ T5988] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.233214][ T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.237034][ T5992] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.237113][ T5993] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.237633][ T5993] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.237902][ T5993] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.254530][ T5992] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.259944][ T5992] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.262569][ T5992] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.477817][ T5977] chnl_net:caif_netlink_parms(): no params data found [ 45.489994][ T5985] chnl_net:caif_netlink_parms(): no params data found [ 45.508057][ T5981] chnl_net:caif_netlink_parms(): no params data found [ 45.672852][ T5977] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.675591][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.678034][ T5977] bridge_slave_0: entered allmulticast mode [ 45.680658][ T5977] bridge_slave_0: entered promiscuous mode [ 45.690638][ T5977] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.692900][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.695321][ T5977] bridge_slave_1: entered allmulticast mode [ 45.697966][ T5977] bridge_slave_1: entered promiscuous mode [ 45.743568][ T5981] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.746670][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.748921][ T5981] bridge_slave_0: entered allmulticast mode [ 45.751496][ T5981] bridge_slave_0: entered promiscuous mode [ 45.785373][ T5985] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.787634][ T5985] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.789914][ T5985] bridge_slave_0: entered allmulticast mode [ 45.792589][ T5985] bridge_slave_0: entered promiscuous mode [ 45.796998][ T5985] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.799258][ T5985] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.801786][ T5985] bridge_slave_1: entered allmulticast mode [ 45.804970][ T5985] bridge_slave_1: entered promiscuous mode [ 45.807701][ T5981] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.810057][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.812308][ T5981] bridge_slave_1: entered allmulticast mode [ 45.815065][ T5981] bridge_slave_1: entered promiscuous mode [ 45.833657][ T5977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.869530][ T5985] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.887817][ T5977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.890898][ T5976] chnl_net:caif_netlink_parms(): no params data found [ 45.912033][ T5985] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.928892][ T5981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.935926][ T5981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.978489][ T5985] team0: Port device team_slave_0 added [ 45.994740][ T5977] team0: Port device team_slave_0 added [ 46.012322][ T5985] team0: Port device team_slave_1 added [ 46.030360][ T5977] team0: Port device team_slave_1 added [ 46.054464][ T5981] team0: Port device team_slave_0 added [ 46.087119][ T5985] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.089404][ T5985] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.098482][ T5985] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.103971][ T5981] team0: Port device team_slave_1 added [ 46.124518][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.126789][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.134889][ T5977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.142216][ T5985] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.146376][ T5985] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.154329][ T5985] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.196352][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.199439][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.210891][ T5977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.258470][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.261520][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.272015][ T5981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.277060][ T5976] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.279370][ T5976] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.281797][ T5976] bridge_slave_0: entered allmulticast mode [ 46.284939][ T5976] bridge_slave_0: entered promiscuous mode [ 46.288196][ T5976] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.291013][ T5976] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.294573][ T5976] bridge_slave_1: entered allmulticast mode [ 46.297254][ T5976] bridge_slave_1: entered promiscuous mode [ 46.330438][ T5977] hsr_slave_0: entered promiscuous mode [ 46.332748][ T5977] hsr_slave_1: entered promiscuous mode [ 46.336301][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.339083][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.349102][ T5981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.399734][ T5985] hsr_slave_0: entered promiscuous mode [ 46.402017][ T5985] hsr_slave_1: entered promiscuous mode [ 46.404365][ T5985] debugfs: 'hsr0' already exists in 'hsr' [ 46.406211][ T5985] Cannot create hsr debugfs directory [ 46.426602][ T5976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.431278][ T5976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.534724][ T5976] team0: Port device team_slave_0 added [ 46.543280][ T5976] team0: Port device team_slave_1 added [ 46.585021][ T5981] hsr_slave_0: entered promiscuous mode [ 46.587328][ T5981] hsr_slave_1: entered promiscuous mode [ 46.589407][ T5981] debugfs: 'hsr0' already exists in 'hsr' [ 46.591218][ T5981] Cannot create hsr debugfs directory [ 46.642291][ T5976] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.644691][ T5976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.652541][ T5976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.658975][ T5976] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.661141][ T5976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.669275][ T5976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.817898][ T5976] hsr_slave_0: entered promiscuous mode [ 46.820088][ T5976] hsr_slave_1: entered promiscuous mode [ 46.822164][ T5976] debugfs: 'hsr0' already exists in 'hsr' [ 46.824048][ T5976] Cannot create hsr debugfs directory [ 46.950371][ T5985] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 46.958932][ T5985] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 46.970952][ T5985] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 46.977915][ T5985] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.006848][ T5977] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.011174][ T5977] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.015653][ T5977] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.025840][ T5977] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.052446][ T5981] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.057186][ T5981] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.062099][ T5981] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.067805][ T5981] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.119292][ T5976] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.129508][ T5976] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.134543][ T5976] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.138463][ T5976] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.159187][ T5985] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.184069][ T5985] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.193392][ T5977] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.198542][ T5981] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.208577][ T1202] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.210896][ T1202] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.223027][ T1202] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.225301][ T1202] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.230511][ T5977] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.239533][ T5981] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.250196][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.252452][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.257983][ T1202] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.260257][ T1202] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.270621][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.272965][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.280460][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.282785][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.285280][ T5983] Bluetooth: hci2: command tx timeout [ 47.285384][ T5992] Bluetooth: hci0: command tx timeout [ 47.287184][ T5983] Bluetooth: hci1: command tx timeout [ 47.289030][ T5992] Bluetooth: hci3: command tx timeout [ 47.306786][ T5976] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.338150][ T5976] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.353314][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.355639][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.365245][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.367641][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.373049][ T5981] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.402728][ T5976] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 47.434889][ T5977] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.458820][ T5985] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.477479][ T5981] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.481921][ T5977] veth0_vlan: entered promiscuous mode [ 47.487258][ T5977] veth1_vlan: entered promiscuous mode [ 47.508818][ T5985] veth0_vlan: entered promiscuous mode [ 47.520584][ T5977] veth0_macvtap: entered promiscuous mode [ 47.524744][ T5985] veth1_vlan: entered promiscuous mode [ 47.528431][ T5977] veth1_macvtap: entered promiscuous mode [ 47.531889][ T5976] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.548457][ T5981] veth0_vlan: entered promiscuous mode [ 47.557641][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.562959][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.566341][ T5981] veth1_vlan: entered promiscuous mode [ 47.577726][ T5985] veth0_macvtap: entered promiscuous mode [ 47.589353][ T5985] veth1_macvtap: entered promiscuous mode [ 47.592284][ T61] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.595471][ T61] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.606087][ T5981] veth0_macvtap: entered promiscuous mode [ 47.610611][ T61] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.619439][ T5981] veth1_macvtap: entered promiscuous mode [ 47.621808][ T61] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.631369][ T5985] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.641680][ T5976] veth0_vlan: entered promiscuous mode [ 47.648749][ T5976] veth1_vlan: entered promiscuous mode [ 47.652694][ T5985] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.668683][ T1051] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.673138][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.679149][ T1051] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.683093][ T1051] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.686684][ T1202] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.688104][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.689231][ T1202] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.695330][ T1051] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.702153][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.715957][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.718712][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.731659][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.741186][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.743665][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.745481][ T1202] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.748402][ T1202] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.755548][ T5976] veth0_macvtap: entered promiscuous mode [ 47.768038][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.770519][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.770797][ T5976] veth1_macvtap: entered promiscuous mode [ 47.780874][ T5977] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 47.791055][ T5976] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.796260][ T5976] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.800924][ T1202] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.812149][ T1202] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.815207][ T1202] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.820953][ T1051] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.823468][ T1051] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.827926][ T1202] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.854098][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.856891][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.937359][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.939849][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.979158][ T1202] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.981700][ T1202] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.983843][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 47.987050][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 47.990049][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 47.992627][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 48.014056][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.014422][ T1051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.019747][ T1051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.103924][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.106601][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.109200][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 49.367391][ T5992] Bluetooth: hci3: command tx timeout [ 49.369457][ T5992] Bluetooth: hci1: command tx timeout [ 49.371251][ T5992] Bluetooth: hci0: command tx timeout [ 49.373395][ T5992] Bluetooth: hci2: command tx timeout [ 50.324449][ T40] audit: type=1804 audit(1754764727.681:2): pid=6087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4" name="/newroot/0/file0" dev="tmpfs" ino=18 res=1 errno=0 [ 50.377430][ T6081] /dev/sr0: Can't open blockdev [ 50.427062][ T6097] warning: `syz.0.6' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 51.023062][ T40] audit: type=1804 audit(1754764728.371:3): pid=6100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.7" name="/newroot/1/file0" dev="tmpfs" ino=23 res=1 errno=0 [ 51.064806][ T6099] /dev/sr0: Can't open blockdev [ 51.444188][ T5992] Bluetooth: hci0: command tx timeout [ 51.445979][ T5992] Bluetooth: hci1: command tx timeout [ 51.447496][ T5983] Bluetooth: hci2: command tx timeout [ 51.448090][ T63] Bluetooth: hci3: command tx timeout [ 52.441457][ T6115] bridge1: entered promiscuous mode [ 52.475704][ T6115] Zero length message leads to an empty skb [ 53.533848][ T63] Bluetooth: hci3: command tx timeout [ 53.533952][ T5987] Bluetooth: hci1: command tx timeout [ 53.535631][ T63] Bluetooth: hci2: command tx timeout [ 53.537397][ T5992] Bluetooth: hci0: command tx timeout [ 55.962571][ T6159] bridge1: entered promiscuous mode [ 56.629382][ T40] audit: type=1804 audit(1754764733.981:4): pid=6166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.21" name="/newroot/4/file0" dev="tmpfs" ino=39 res=1 errno=0 [ 56.770389][ T6171] bridge1: entered promiscuous mode [ 56.945420][ T6165] /dev/sr0: Can't open blockdev [ 58.165034][ T40] audit: type=1804 audit(1754764735.521:5): pid=6189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.26" name="/newroot/5/file0" dev="tmpfs" ino=45 res=1 errno=0 [ 58.185384][ T6190] /dev/sr0: Can't open blockdev [ 60.049151][ T40] audit: type=1804 audit(1754764737.391:6): pid=6215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.33" name="/newroot/8/file0" dev="tmpfs" ino=61 res=1 errno=0 [ 60.135430][ T6214] /dev/sr0: Can't open blockdev [ 60.645540][ T6228] FAULT_INJECTION: forcing a failure. [ 60.645540][ T6228] name failslab, interval 1, probability 0, space 0, times 1 [ 60.700415][ T6228] CPU: 0 UID: 0 PID: 6228 Comm: syz.0.37 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 60.700444][ T6228] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.700451][ T6228] Call Trace: [ 60.700456][ T6228] [ 60.700461][ T6228] dump_stack_lvl+0x16c/0x1f0 [ 60.700478][ T6228] should_fail_ex+0x512/0x640 [ 60.700494][ T6228] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 60.700522][ T6228] should_failslab+0xc2/0x120 [ 60.700537][ T6228] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 60.700550][ T6228] ? __alloc_skb+0x2b2/0x380 [ 60.700566][ T6228] __alloc_skb+0x2b2/0x380 [ 60.700578][ T6228] ? __pfx___alloc_skb+0x10/0x10 [ 60.700592][ T6228] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 60.700609][ T6228] netlink_alloc_large_skb+0x69/0x130 [ 60.700625][ T6228] netlink_sendmsg+0x6a1/0xdd0 [ 60.700645][ T6228] ? __pfx_netlink_sendmsg+0x10/0x10 [ 60.700661][ T6228] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 60.700675][ T6228] ____sys_sendmsg+0xa95/0xc70 [ 60.700694][ T6228] ? __pfx_____sys_sendmsg+0x10/0x10 [ 60.700710][ T6228] ? get_compat_msghdr+0x11a/0x170 [ 60.700729][ T6228] ___sys_sendmsg+0x134/0x1d0 [ 60.700744][ T6228] ? __pfx____sys_sendmsg+0x10/0x10 [ 60.700764][ T6228] ? find_held_lock+0x2b/0x80 [ 60.700784][ T6228] __sys_sendmsg+0x16d/0x220 [ 60.700798][ T6228] ? __pfx___sys_sendmsg+0x10/0x10 [ 60.700818][ T6228] ? rcu_is_watching+0x12/0xc0 [ 60.700831][ T6228] __do_fast_syscall_32+0x7c/0x3a0 [ 60.700847][ T6228] do_fast_syscall_32+0x32/0x80 [ 60.700861][ T6228] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 60.700874][ T6228] RIP: 0023:0xf70ae579 [ 60.700883][ T6228] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 60.700895][ T6228] RSP: 002b:00000000f549e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 60.700906][ T6228] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000540 [ 60.700913][ T6228] RDX: 0000000000044000 RSI: 0000000000000000 RDI: 0000000000000000 [ 60.700919][ T6228] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 60.700925][ T6228] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 60.700931][ T6228] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 60.700944][ T6228] [ 61.204101][ T34] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 61.383828][ T34] usb 5-1: Using ep0 maxpacket: 8 [ 61.396452][ T34] usb 5-1: config 0 has an invalid interface number: 56 but max is 0 [ 61.399074][ T34] usb 5-1: config 0 has no interface number 0 [ 61.416053][ T34] usb 5-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76 [ 61.418899][ T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.421405][ T34] usb 5-1: Product: syz [ 61.422743][ T34] usb 5-1: Manufacturer: syz [ 61.424329][ T34] usb 5-1: SerialNumber: syz [ 61.434906][ T34] usb 5-1: config 0 descriptor?? [ 61.657159][ T34] peak_usb 5-1:0.56: PEAK-System PCAN-USB X6 v0 fw v0.0.0 (2 channels) [ 61.861622][ T34] peak_usb 5-1:0.56 can0: sending command failure: -22 [ 61.863923][ T34] peak_usb 5-1:0.56 can0: sending command failure: -22 [ 61.866207][ T34] peak_usb 5-1:0.56 can0: sending command failure: -22 [ 61.935188][ T34] peak_usb 5-1:0.56: probe with driver peak_usb failed with error -22 [ 62.586556][ T40] audit: type=1804 audit(1754764739.941:7): pid=6257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.44" name="/newroot/10/file0" dev="tmpfs" ino=72 res=1 errno=0 [ 62.628755][ T6259] misc userio: No port type given on /dev/userio [ 62.724028][ T6256] /dev/sr0: Can't open blockdev [ 63.084387][ T6260] capability: warning: `syz.2.45' uses deprecated v2 capabilities in a way that may be insecure [ 64.302756][ T6246] usb 5-1: USB disconnect, device number 2 [ 64.508048][ T6278] netlink: 'syz.0.52': attribute type 10 has an invalid length. [ 64.551595][ T6278] team0: Device hsr_slave_0 failed to register rx_handler [ 65.764729][ T6294] syz.2.58 uses obsolete (PF_INET,SOCK_PACKET) [ 66.364166][ T6303] bridge2: entered promiscuous mode [ 67.587221][ T6335] netlink: 16 bytes leftover after parsing attributes in process `syz.2.70'. [ 67.826452][ T6351] FAULT_INJECTION: forcing a failure. [ 67.826452][ T6351] name failslab, interval 1, probability 0, space 0, times 0 [ 67.830365][ T6351] CPU: 2 UID: 0 PID: 6351 Comm: syz.2.74 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 67.830381][ T6351] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 67.830388][ T6351] Call Trace: [ 67.830392][ T6351] [ 67.830396][ T6351] dump_stack_lvl+0x16c/0x1f0 [ 67.830414][ T6351] should_fail_ex+0x512/0x640 [ 67.830430][ T6351] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 67.830445][ T6351] should_failslab+0xc2/0x120 [ 67.830460][ T6351] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 67.830473][ T6351] ? __alloc_skb+0x2b2/0x380 [ 67.830488][ T6351] __alloc_skb+0x2b2/0x380 [ 67.830500][ T6351] ? __pfx___alloc_skb+0x10/0x10 [ 67.830514][ T6351] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 67.830531][ T6351] netlink_alloc_large_skb+0x69/0x130 [ 67.830546][ T6351] netlink_sendmsg+0x6a1/0xdd0 [ 67.830563][ T6351] ? __pfx_netlink_sendmsg+0x10/0x10 [ 67.830579][ T6351] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 67.830593][ T6351] ____sys_sendmsg+0xa95/0xc70 [ 67.830617][ T6351] ? __pfx_____sys_sendmsg+0x10/0x10 [ 67.830634][ T6351] ? get_compat_msghdr+0x11a/0x170 [ 67.830653][ T6351] ___sys_sendmsg+0x134/0x1d0 [ 67.830667][ T6351] ? __pfx____sys_sendmsg+0x10/0x10 [ 67.830687][ T6351] ? find_held_lock+0x2b/0x80 [ 67.830706][ T6351] __sys_sendmsg+0x16d/0x220 [ 67.830720][ T6351] ? __pfx___sys_sendmsg+0x10/0x10 [ 67.830739][ T6351] ? rcu_is_watching+0x12/0xc0 [ 67.830753][ T6351] __do_fast_syscall_32+0x7c/0x3a0 [ 67.830768][ T6351] do_fast_syscall_32+0x32/0x80 [ 67.830782][ T6351] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 67.830796][ T6351] RIP: 0023:0xf7fc5579 [ 67.830805][ T6351] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 67.830815][ T6351] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 67.830825][ T6351] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000 [ 67.830832][ T6351] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 67.830838][ T6351] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 67.830843][ T6351] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 67.830850][ T6351] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 67.830862][ T6351] [ 68.276615][ T6368] bridge3: entered promiscuous mode [ 68.823806][ T29] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 68.973954][ T29] usb 8-1: Using ep0 maxpacket: 8 [ 68.977583][ T29] usb 8-1: config 0 has an invalid interface number: 55 but max is 0 [ 68.980769][ T29] usb 8-1: config 0 has no interface number 0 [ 68.982818][ T29] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 68.987667][ T29] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 68.992229][ T29] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 68.997238][ T29] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 69.005392][ T29] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 69.008518][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.013564][ T29] usb 8-1: config 0 descriptor?? [ 69.025421][ T29] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 70.299163][ T6404] bridge4: entered promiscuous mode [ 70.886840][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.889246][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.008452][ T840] usb 8-1: USB disconnect, device number 2 [ 72.100338][ T840] ldusb 8-1:0.55: LD USB Device #0 now disconnected [ 72.507933][ T40] audit: type=1804 audit(1754764749.861:8): pid=6434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.100" name="/newroot/21/file0" dev="tmpfs" ino=123 res=1 errno=0 [ 72.547272][ T6433] /dev/sr0: Can't open blockdev [ 72.590293][ T6439] bridge2: entered promiscuous mode [ 72.793268][ T6445] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 72.796007][ T6445] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 74.121695][ T6463] genirq: Flags mismatch irq 4. 00200000 (aio_iiro_16) vs. 00200080 (ttyS0) [ 74.408191][ T6474] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 74.410373][ T6474] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 74.560218][ T6488] netlink: 'syz.2.121': attribute type 10 has an invalid length. [ 74.568683][ T6488] team0: Device hsr_slave_0 failed to register rx_handler [ 75.753473][ T6504] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 75.755571][ T6504] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 75.829817][ T6513] FAULT_INJECTION: forcing a failure. [ 75.829817][ T6513] name failslab, interval 1, probability 0, space 0, times 0 [ 75.836656][ T6513] CPU: 3 UID: 0 PID: 6513 Comm: syz.2.129 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 75.836673][ T6513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.836679][ T6513] Call Trace: [ 75.836683][ T6513] [ 75.836687][ T6513] dump_stack_lvl+0x16c/0x1f0 [ 75.836703][ T6513] should_fail_ex+0x512/0x640 [ 75.836719][ T6513] ? fs_reclaim_acquire+0xae/0x150 [ 75.836736][ T6513] ? tomoyo_encode2+0x100/0x3e0 [ 75.836751][ T6513] should_failslab+0xc2/0x120 [ 75.836766][ T6513] __kmalloc_noprof+0xd2/0x510 [ 75.836779][ T6513] ? d_absolute_path+0x136/0x1a0 [ 75.836797][ T6513] tomoyo_encode2+0x100/0x3e0 [ 75.836813][ T6513] tomoyo_encode+0x29/0x50 [ 75.836828][ T6513] tomoyo_realpath_from_path+0x18f/0x6e0 [ 75.836847][ T6513] tomoyo_path_number_perm+0x245/0x580 [ 75.836860][ T6513] ? tomoyo_path_number_perm+0x237/0x580 [ 75.836874][ T6513] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 75.836900][ T6513] ? find_held_lock+0x2b/0x80 [ 75.836912][ T6513] ? hook_file_ioctl_common+0x145/0x410 [ 75.836929][ T6513] ? __fget_files+0x20e/0x3c0 [ 75.836943][ T6513] security_file_ioctl_compat+0x9b/0x240 [ 75.836958][ T6513] __ia32_compat_sys_ioctl+0xc3/0x370 [ 75.836978][ T6513] __do_fast_syscall_32+0x7c/0x3a0 [ 75.836993][ T6513] do_fast_syscall_32+0x32/0x80 [ 75.837007][ T6513] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 75.837021][ T6513] RIP: 0023:0xf7fc5579 [ 75.837029][ T6513] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 75.837040][ T6513] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 75.837050][ T6513] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0306201 [ 75.837057][ T6513] RDX: 0000000080000300 RSI: 0000000000000000 RDI: 0000000000000000 [ 75.837063][ T6513] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 75.837068][ T6513] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 75.837074][ T6513] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 75.837087][ T6513] [ 75.837096][ T6513] ERROR: Out of memory at tomoyo_realpath_from_path. [ 75.871826][ T6515] netlink: 'syz.0.130': attribute type 10 has an invalid length. [ 75.920036][ T6515] team0: Device hsr_slave_0 failed to register rx_handler [ 76.463868][ T6532] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 76.466228][ T6532] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 76.887945][ T40] audit: type=1804 audit(1754764754.211:9): pid=6541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.133" name="/newroot/32/file0" dev="tmpfs" ino=179 res=1 errno=0 [ 77.014537][ T6524] /dev/sr0: Can't open blockdev [ 77.330463][ T6547] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 77.548132][ T6558] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 77.550467][ T6558] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 77.566014][ T6557] tmpfs: Unknown parameter 'grp' [ 77.697900][ T6566] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.145'. [ 77.840688][ T6570] bridge5: entered promiscuous mode [ 78.377141][ T6579] netlink: 12 bytes leftover after parsing attributes in process `syz.2.151'. [ 78.411039][ T6577] FAULT_INJECTION: forcing a failure. [ 78.411039][ T6577] name failslab, interval 1, probability 0, space 0, times 0 [ 78.415205][ T6577] CPU: 1 UID: 0 PID: 6577 Comm: syz.0.150 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 78.415224][ T6577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.415233][ T6577] Call Trace: [ 78.415240][ T6577] [ 78.415246][ T6577] dump_stack_lvl+0x16c/0x1f0 [ 78.415266][ T6577] should_fail_ex+0x512/0x640 [ 78.415282][ T6577] ? fs_reclaim_acquire+0xae/0x150 [ 78.415300][ T6577] ? tomoyo_encode2+0x100/0x3e0 [ 78.415314][ T6577] should_failslab+0xc2/0x120 [ 78.415329][ T6577] __kmalloc_noprof+0xd2/0x510 [ 78.415342][ T6577] ? d_absolute_path+0x136/0x1a0 [ 78.415361][ T6577] tomoyo_encode2+0x100/0x3e0 [ 78.415377][ T6577] tomoyo_encode+0x29/0x50 [ 78.415392][ T6577] tomoyo_realpath_from_path+0x18f/0x6e0 [ 78.415411][ T6577] tomoyo_path_number_perm+0x245/0x580 [ 78.415424][ T6577] ? tomoyo_path_number_perm+0x237/0x580 [ 78.415438][ T6577] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 78.415467][ T6577] ? find_held_lock+0x2b/0x80 [ 78.415478][ T6577] ? hook_file_ioctl_common+0x145/0x410 [ 78.415496][ T6577] ? __fget_files+0x20e/0x3c0 [ 78.415510][ T6577] security_file_ioctl_compat+0x9b/0x240 [ 78.415525][ T6577] __ia32_compat_sys_ioctl+0xc3/0x370 [ 78.415544][ T6577] __do_fast_syscall_32+0x7c/0x3a0 [ 78.415560][ T6577] do_fast_syscall_32+0x32/0x80 [ 78.415574][ T6577] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 78.415587][ T6577] RIP: 0023:0xf70ae579 [ 78.415596][ T6577] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 78.415606][ T6577] RSP: 002b:00000000f549e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 78.415616][ T6577] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004024700a [ 78.415623][ T6577] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 78.415629][ T6577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 78.415635][ T6577] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 78.415641][ T6577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.415654][ T6577] [ 78.415665][ T6577] ERROR: Out of memory at tomoyo_realpath_from_path. [ 78.573520][ T6588] netlink: 20 bytes leftover after parsing attributes in process `syz.3.154'. [ 78.603427][ T6592] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 78.605553][ T6592] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 78.813858][ T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 78.928670][ T6598] bridge3: entered promiscuous mode [ 78.965957][ T29] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 78.968918][ T29] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 78.972340][ T29] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 78.975452][ T29] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 78.979133][ T29] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 78.984837][ T29] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 78.987751][ T29] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 78.990537][ T29] usb 5-1: Product: syz [ 78.992002][ T29] usb 5-1: Manufacturer: syz [ 79.012248][ T29] cdc_wdm 5-1:1.0: skipping garbage [ 79.015769][ T29] cdc_wdm 5-1:1.0: skipping garbage [ 79.029443][ T29] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 79.031581][ T29] cdc_wdm 5-1:1.0: Unknown control protocol [ 79.103893][ T6026] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 79.254542][ T6026] usb 6-1: Using ep0 maxpacket: 16 [ 79.257890][ T6026] usb 6-1: config 0 has an invalid interface number: 8 but max is 0 [ 79.260460][ T6026] usb 6-1: config 0 has no interface number 0 [ 79.264114][ T6026] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 79.269888][ T6026] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 79.273317][ T6026] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 79.276092][ T6026] usb 6-1: Product: syz [ 79.277538][ T6026] usb 6-1: SerialNumber: syz [ 79.280694][ T6026] usb 6-1: config 0 descriptor?? [ 79.285067][ T6026] cm109 6-1:0.8: invalid payload size 133, expected 4 [ 79.288316][ T6026] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.8/input/input5 [ 79.537309][ T6605] netlink: 20 bytes leftover after parsing attributes in process `syz.3.161'. [ 79.767429][ T6606] FAULT_INJECTION: forcing a failure. [ 79.767429][ T6606] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 79.772124][ T6606] CPU: 0 UID: 0 PID: 6606 Comm: syz.0.155 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 79.772140][ T6606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.772147][ T6606] Call Trace: [ 79.772152][ T6606] [ 79.772156][ T6606] dump_stack_lvl+0x16c/0x1f0 [ 79.772174][ T6606] should_fail_ex+0x512/0x640 [ 79.772192][ T6606] should_fail_alloc_page+0xe7/0x130 [ 79.772233][ T6606] prepare_alloc_pages+0x3c2/0x610 [ 79.772250][ T6606] ? is_bpf_text_address+0x8a/0x1a0 [ 79.772267][ T6606] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 79.772280][ T6606] ? is_bpf_text_address+0x94/0x1a0 [ 79.772293][ T6606] ? kernel_text_address+0x8d/0x100 [ 79.772311][ T6606] ? __kernel_text_address+0xd/0x40 [ 79.772320][ T6606] ? unwind_get_return_address+0x59/0xa0 [ 79.772333][ T6606] ? arch_stack_walk+0xa6/0x100 [ 79.772347][ T6606] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 79.772360][ T6606] ? __lock_acquire+0x62e/0x1ce0 [ 79.772376][ T6606] ? __pfx_stack_trace_save+0x10/0x10 [ 79.772391][ T6606] ? look_up_lock_class+0x59/0x150 [ 79.772406][ T6606] ? __kasan_check_byte+0x13/0x50 [ 79.772424][ T6606] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 79.772441][ T6606] ? policy_nodemask+0xea/0x4e0 [ 79.772457][ T6606] alloc_pages_mpol+0x1fb/0x550 [ 79.772471][ T6606] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 79.772487][ T6606] ? __lock_acquire+0x62e/0x1ce0 [ 79.772503][ T6606] folio_alloc_mpol_noprof+0x36/0x2f0 [ 79.772520][ T6606] vma_alloc_folio_noprof+0xed/0x1e0 [ 79.772536][ T6606] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 79.772557][ T6606] do_pte_missing+0x2230/0x3ba0 [ 79.772569][ T6606] ? find_held_lock+0x2b/0x80 [ 79.772583][ T6606] __handle_mm_fault+0x152a/0x2a50 [ 79.772596][ T6606] ? mt_find+0x3ef/0xa30 [ 79.772612][ T6606] ? __pfx___handle_mm_fault+0x10/0x10 [ 79.772622][ T6606] ? __pfx_mt_find+0x10/0x10 [ 79.772644][ T6606] ? find_vma+0xbf/0x140 [ 79.772658][ T6606] ? __pfx_find_vma+0x10/0x10 [ 79.772674][ T6606] handle_mm_fault+0x589/0xd10 [ 79.772686][ T6606] ? __bpf_trace_exceptions+0x1/0x40 [ 79.772703][ T6606] do_user_addr_fault+0x7a6/0x1370 [ 79.772722][ T6606] ? rcu_is_watching+0x12/0xc0 [ 79.772734][ T6606] exc_page_fault+0x5c/0xb0 [ 79.772747][ T6606] asm_exc_page_fault+0x26/0x30 [ 79.772758][ T6606] RIP: 0010:_copy_to_user+0xb6/0xd0 [ 79.772775][ T6606] Code: 89 ee 48 89 ef e8 ca 8d da fc 4d 85 ff 75 a8 e8 10 93 da fc 89 de 4c 89 e7 e8 16 fa 3f fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00 [ 79.772785][ T6606] RSP: 0018:ffffc90002d37b08 EFLAGS: 00050246 [ 79.772795][ T6606] RAX: 0000000000000001 RBX: 00000000000000b3 RCX: 00000000000000b3 [ 79.772801][ T6606] RDX: ffffed1009883557 RSI: ffff88804c41aa00 RDI: 00000000800012c0 [ 79.772808][ T6606] RBP: 00000000800012c0 R08: 0000000000000000 R09: ffffed1009883556 [ 79.772814][ T6606] R10: ffff88804c41aab2 R11: 0000000000000000 R12: ffff88804c41aa00 [ 79.772820][ T6606] R13: 0000000080001373 R14: 00007ffffffff000 R15: 0000000000000000 [ 79.772834][ T6606] ? _copy_to_user+0xaa/0xd0 [ 79.772851][ T6606] ? __pfx_wdm_read+0x10/0x10 [ 79.772857][ T6610] FAULT_INJECTION: forcing a failure. [ 79.772857][ T6610] name failslab, interval 1, probability 0, space 0, times 0 [ 79.772866][ T6606] wdm_read+0x69e/0xab0 [ 79.772884][ T6606] ? __pfx_wdm_read+0x10/0x10 [ 79.772900][ T6606] ? common_file_perm+0x1a9/0x340 [ 79.772914][ T6606] ? bpf_lsm_file_permission+0x9/0x10 [ 79.772930][ T6606] ? security_file_permission+0x71/0x210 [ 79.772945][ T6606] ? rw_verify_area+0xcf/0x6c0 [ 79.772958][ T6606] ? __pfx_wdm_read+0x10/0x10 [ 79.772972][ T6606] vfs_readv+0x5be/0x8b0 [ 79.772986][ T6606] ? __pfx_vfs_readv+0x10/0x10 [ 79.773008][ T6606] ? __fget_files+0x20e/0x3c0 [ 79.773024][ T6606] ? do_preadv+0x1a6/0x270 [ 79.773034][ T6606] do_preadv+0x1a6/0x270 [ 79.773045][ T6606] ? __pfx_do_preadv+0x10/0x10 [ 79.773061][ T6606] ? rcu_is_watching+0x12/0xc0 [ 79.773079][ T6606] __do_fast_syscall_32+0x7c/0x3a0 [ 79.773102][ T6606] do_fast_syscall_32+0x32/0x80 [ 79.773122][ T6606] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 79.773137][ T6606] RIP: 0023:0xf70ae579 [ 79.773145][ T6606] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 79.773155][ T6606] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 000000000000014d [ 79.773165][ T6606] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200 [ 79.773171][ T6606] RDX: 0000000000000001 RSI: 00000000000007fb RDI: 0000000000000234 [ 79.773177][ T6606] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 79.773183][ T6606] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 79.773189][ T6606] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.773203][ T6606] [ 79.774752][ T34] usb 5-1: USB disconnect, device number 3 [ 79.777287][ T6610] CPU: 2 UID: 0 PID: 6610 Comm: syz.3.163 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 79.777303][ T6610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.777309][ T6610] Call Trace: [ 79.777313][ T6610] [ 79.777317][ T6610] dump_stack_lvl+0x16c/0x1f0 [ 79.777333][ T6610] should_fail_ex+0x512/0x640 [ 79.777347][ T6610] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 79.777362][ T6610] should_failslab+0xc2/0x120 [ 79.777377][ T6610] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 79.777390][ T6610] ? __alloc_skb+0x2b2/0x380 [ 79.777405][ T6610] __alloc_skb+0x2b2/0x380 [ 79.777417][ T6610] ? __pfx___alloc_skb+0x10/0x10 [ 79.777431][ T6610] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 79.777448][ T6610] netlink_alloc_large_skb+0x69/0x130 [ 79.777470][ T6610] netlink_sendmsg+0x6a1/0xdd0 [ 79.777487][ T6610] ? __pfx_netlink_sendmsg+0x10/0x10 [ 79.777503][ T6610] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 79.777517][ T6610] ____sys_sendmsg+0xa95/0xc70 [ 79.777536][ T6610] ? __pfx_____sys_sendmsg+0x10/0x10 [ 79.777552][ T6610] ? get_compat_msghdr+0x11a/0x170 [ 79.777567][ T6610] ? __pfx__kstrtoull+0x10/0x10 [ 79.777582][ T6610] ___sys_sendmsg+0x134/0x1d0 [ 79.777597][ T6610] ? __pfx____sys_sendmsg+0x10/0x10 [ 79.777626][ T6610] __sys_sendmmsg+0x2f9/0x420 [ 79.777642][ T6610] ? __pfx___sys_sendmmsg+0x10/0x10 [ 79.777660][ T6610] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 79.777679][ T6610] ? fput+0x9b/0xd0 [ 79.777694][ T6610] ? ksys_write+0x1ac/0x250 [ 79.777706][ T6610] ? __pfx_ksys_write+0x10/0x10 [ 79.777721][ T6610] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 79.777735][ T6610] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 79.777750][ T6610] __do_fast_syscall_32+0x7c/0x3a0 [ 79.777765][ T6610] do_fast_syscall_32+0x32/0x80 [ 79.777779][ T6610] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 79.777793][ T6610] RIP: 0023:0xf708e579 [ 79.777801][ T6610] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 79.777811][ T6610] RSP: 002b:00000000f547e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 79.777821][ T6610] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000 [ 79.777827][ T6610] RDX: 00000000000001f2 RSI: 0000000000000000 RDI: 0000000000000000 [ 79.777833][ T6610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 79.777839][ T6610] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 79.777845][ T6610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.777858][ T6610] [ 80.067246][ T6619] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 80.069778][ T6619] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 80.260099][ C0] cm109 6-1:0.8: cm109_urb_irq_callback: urb status -71 [ 80.262492][ C0] ------------[ cut here ]------------ [ 80.264695][ C0] URB ffff88804fe56c00 submitted while active [ 80.265120][ T840] usb 6-1: USB disconnect, device number 2 [ 80.266953][ C0] WARNING: CPU: 0 PID: 149 at drivers/usb/core/urb.c:379 usb_submit_urb+0x1519/0x1770 [ 80.271538][ C0] Modules linked in: [ 80.272960][ C0] CPU: 0 UID: 0 PID: 149 Comm: kworker/0:1H Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 80.277993][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 80.281387][ C0] Workqueue: events_highpri snd_vmidi_output_work [ 80.283450][ C0] RIP: 0010:usb_submit_urb+0x1519/0x1770 [ 80.285263][ C0] Code: fd eb cb bb fe ff ff ff e9 96 f3 ff ff e8 cf 23 7d fa c6 05 d0 e0 55 09 01 90 48 c7 c7 80 03 74 8c 48 89 de e8 28 15 3c fa 90 <0f> 0b 90 90 e9 ac fe ff ff bb f8 ff ff ff e9 66 f3 ff ff 48 89 ef [ 80.291294][ C0] RSP: 0018:ffffc90000007a80 EFLAGS: 00010086 [ 80.293247][ C0] RAX: 0000000000000000 RBX: ffff88804fe56c00 RCX: ffffffff817a02c8 [ 80.295819][ C0] RDX: ffff8880234b4880 RSI: ffffffff817a02d5 RDI: 0000000000000001 [ 80.298290][ C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 80.300894][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 80.303382][ C0] R13: ffff88806dc19057 R14: ffff88802826f8c0 R15: 000000000000000f [ 80.305932][ C0] FS: 0000000000000000(0000) GS:ffff8880974c6000(0000) knlGS:0000000000000000 [ 80.308799][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 80.310920][ C0] CR2: 0000000080001000 CR3: 0000000027b11000 CR4: 0000000000352ef0 [ 80.313518][ C0] Call Trace: [ 80.314627][ C0] [ 80.315547][ C0] ? find_held_lock+0x2b/0x80 [ 80.317035][ C0] ? __pfx____ratelimit+0x10/0x10 [ 80.318672][ C0] cm109_urb_irq_callback+0x2ed/0xb80 [ 80.320440][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 80.322149][ C0] __usb_hcd_giveback_urb+0x38a/0x6e0 [ 80.323879][ C0] usb_hcd_giveback_urb+0x39b/0x450 [ 80.325515][ C0] dummy_timer+0x1814/0x3a30 [ 80.327041][ C0] ? find_held_lock+0x2b/0x80 [ 80.328602][ C0] ? debug_object_deactivate+0x1ec/0x3a0 [ 80.330374][ C0] ? debug_object_deactivate+0x1ec/0x3a0 [ 80.332129][ C0] ? __pfx_debug_object_deactivate+0x10/0x10 [ 80.334091][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 80.335715][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 80.337307][ C0] ? mark_held_locks+0x49/0x80 [ 80.338806][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 80.340733][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 80.342387][ C0] __hrtimer_run_queues+0x202/0xad0 [ 80.344016][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 80.345796][ C0] ? read_tsc+0x9/0x20 [ 80.347078][ C0] hrtimer_run_softirq+0x17d/0x350 [ 80.348758][ C0] handle_softirqs+0x219/0x8e0 [ 80.350309][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 80.351967][ C0] __irq_exit_rcu+0x109/0x170 [ 80.353503][ C0] irq_exit_rcu+0x9/0x30 [ 80.354901][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 80.356659][ C0] [ 80.357605][ C0] [ 80.358611][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 80.360599][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80 [ 80.362632][ C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 06 74 04 f6 48 89 df e8 ee c7 04 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 65 c5 f4 f5 65 8b 05 5e b8 42 08 85 c0 74 16 5b [ 80.368653][ C0] RSP: 0018:ffffc90002a97b50 EFLAGS: 00000246 [ 80.370531][ C0] RAX: 0000000000000002 RBX: ffff888041b14438 RCX: 0000000000000006 [ 80.373138][ C0] RDX: 0000000000000000 RSI: ffffffff8de4b9c6 RDI: ffffffff8c162900 [ 80.375600][ C0] RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000001 [ 80.378046][ C0] R10: ffffffff90ab6b97 R11: 0000000000000002 R12: ffff888041b14438 [ 80.380573][ C0] R13: 0000000000000293 R14: 0000000000000001 R15: ffff8880451f5c00 [ 80.383061][ C0] snd_rawmidi_transmit+0x117/0x160 [ 80.384791][ C0] snd_vmidi_output_work+0x111/0x390 [ 80.386500][ C0] ? __pfx_snd_vmidi_output_work+0x10/0x10 [ 80.388418][ C0] ? rcu_is_watching+0x12/0xc0 [ 80.389996][ C0] process_one_work+0x9cc/0x1b70 [ 80.391559][ C0] ? __pfx_process_one_work+0x10/0x10 [ 80.393256][ C0] ? assign_work+0x1a0/0x250 [ 80.394742][ C0] worker_thread+0x6c8/0xf10 [ 80.396238][ C0] ? __kthread_parkme+0x19e/0x250 [ 80.397816][ C0] ? __pfx_worker_thread+0x10/0x10 [ 80.399472][ C0] kthread+0x3c5/0x780 [ 80.400871][ C0] ? __pfx_kthread+0x10/0x10 [ 80.402385][ C0] ? rcu_is_watching+0x12/0xc0 [ 80.403896][ C0] ? __pfx_kthread+0x10/0x10 [ 80.405361][ C0] ret_from_fork+0x5d7/0x6f0 [ 80.406831][ C0] ? __pfx_kthread+0x10/0x10 [ 80.408342][ C0] ret_from_fork_asm+0x1a/0x30 [ 80.409868][ C0] [ 80.410872][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 80.413179][ C0] CPU: 0 UID: 0 PID: 149 Comm: kworker/0:1H Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full) [ 80.416914][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 80.420226][ C0] Workqueue: events_highpri snd_vmidi_output_work [ 80.422293][ C0] Call Trace: [ 80.423345][ C0] [ 80.424270][ C0] dump_stack_lvl+0x3d/0x1f0 [ 80.425767][ C0] vpanic+0x6e8/0x7a0 [ 80.427054][ C0] ? __pfx_vpanic+0x10/0x10 [ 80.428525][ C0] ? usb_submit_urb+0x1519/0x1770 [ 80.430227][ C0] panic+0xca/0xd0 [ 80.431557][ C0] ? __pfx_panic+0x10/0x10 [ 80.433042][ C0] ? check_panic_on_warn+0x1f/0xb0 [ 80.434745][ C0] check_panic_on_warn+0xab/0xb0 [ 80.436335][ C0] __warn+0xf6/0x3c0 [ 80.437585][ C0] ? __pfx_vprintk_emit+0x10/0x10 [ 80.439208][ C0] ? usb_submit_urb+0x1519/0x1770 [ 80.440871][ C0] report_bug+0x3c3/0x580 [ 80.442300][ C0] ? usb_submit_urb+0x1519/0x1770 [ 80.443930][ C0] handle_bug+0x184/0x210 [ 80.445394][ C0] exc_invalid_op+0x17/0x50 [ 80.446870][ C0] asm_exc_invalid_op+0x1a/0x20 [ 80.448407][ C0] RIP: 0010:usb_submit_urb+0x1519/0x1770 [ 80.450187][ C0] Code: fd eb cb bb fe ff ff ff e9 96 f3 ff ff e8 cf 23 7d fa c6 05 d0 e0 55 09 01 90 48 c7 c7 80 03 74 8c 48 89 de e8 28 15 3c fa 90 <0f> 0b 90 90 e9 ac fe ff ff bb f8 ff ff ff e9 66 f3 ff ff 48 89 ef [ 80.456155][ C0] RSP: 0018:ffffc90000007a80 EFLAGS: 00010086 [ 80.458133][ C0] RAX: 0000000000000000 RBX: ffff88804fe56c00 RCX: ffffffff817a02c8 [ 80.460594][ C0] RDX: ffff8880234b4880 RSI: ffffffff817a02d5 RDI: 0000000000000001 [ 80.463052][ C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 80.465506][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 80.468023][ C0] R13: ffff88806dc19057 R14: ffff88802826f8c0 R15: 000000000000000f [ 80.470568][ C0] ? __warn_printk+0x198/0x350 [ 80.472131][ C0] ? __warn_printk+0x1a5/0x350 [ 80.473648][ C0] ? find_held_lock+0x2b/0x80 [ 80.475124][ C0] ? __pfx____ratelimit+0x10/0x10 [ 80.476830][ C0] cm109_urb_irq_callback+0x2ed/0xb80 [ 80.478540][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 80.480305][ C0] __usb_hcd_giveback_urb+0x38a/0x6e0 [ 80.482048][ C0] usb_hcd_giveback_urb+0x39b/0x450 [ 80.483725][ C0] dummy_timer+0x1814/0x3a30 [ 80.485273][ C0] ? find_held_lock+0x2b/0x80 [ 80.486803][ C0] ? debug_object_deactivate+0x1ec/0x3a0 [ 80.488581][ C0] ? debug_object_deactivate+0x1ec/0x3a0 [ 80.490342][ C0] ? __pfx_debug_object_deactivate+0x10/0x10 [ 80.492352][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 80.493967][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 80.495581][ C0] ? mark_held_locks+0x49/0x80 [ 80.497124][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 80.499054][ C0] ? __pfx_dummy_timer+0x10/0x10 [ 80.500634][ C0] __hrtimer_run_queues+0x202/0xad0 [ 80.502291][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 80.504085][ C0] ? read_tsc+0x9/0x20 [ 80.505446][ C0] hrtimer_run_softirq+0x17d/0x350 [ 80.507070][ C0] handle_softirqs+0x219/0x8e0 [ 80.508618][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 80.510381][ C0] __irq_exit_rcu+0x109/0x170 [ 80.511964][ C0] irq_exit_rcu+0x9/0x30 [ 80.513328][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 80.515096][ C0] [ 80.516037][ C0] [ 80.517026][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 80.518908][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80 [ 80.520904][ C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 06 74 04 f6 48 89 df e8 ee c7 04 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 65 c5 f4 f5 65 8b 05 5e b8 42 08 85 c0 74 16 5b [ 80.527024][ C0] RSP: 0018:ffffc90002a97b50 EFLAGS: 00000246 [ 80.528934][ C0] RAX: 0000000000000002 RBX: ffff888041b14438 RCX: 0000000000000006 [ 80.531508][ C0] RDX: 0000000000000000 RSI: ffffffff8de4b9c6 RDI: ffffffff8c162900 [ 80.534010][ C0] RBP: 0000000000000293 R08: 0000000000000001 R09: 0000000000000001 [ 80.536487][ C0] R10: ffffffff90ab6b97 R11: 0000000000000002 R12: ffff888041b14438 [ 80.539088][ C0] R13: 0000000000000293 R14: 0000000000000001 R15: ffff8880451f5c00 [ 80.541708][ C0] snd_rawmidi_transmit+0x117/0x160 [ 80.543371][ C0] snd_vmidi_output_work+0x111/0x390 [ 80.545136][ C0] ? __pfx_snd_vmidi_output_work+0x10/0x10 [ 80.547015][ C0] ? rcu_is_watching+0x12/0xc0 [ 80.548532][ C0] process_one_work+0x9cc/0x1b70 [ 80.550139][ C0] ? __pfx_process_one_work+0x10/0x10 [ 80.551929][ C0] ? assign_work+0x1a0/0x250 [ 80.553484][ C0] worker_thread+0x6c8/0xf10 [ 80.554962][ C0] ? __kthread_parkme+0x19e/0x250 [ 80.556605][ C0] ? __pfx_worker_thread+0x10/0x10 [ 80.558210][ C0] kthread+0x3c5/0x780 [ 80.559500][ C0] ? __pfx_kthread+0x10/0x10 [ 80.560990][ C0] ? rcu_is_watching+0x12/0xc0 [ 80.562509][ C0] ? __pfx_kthread+0x10/0x10 [ 80.563991][ C0] ret_from_fork+0x5d7/0x6f0 [ 80.565564][ C0] ? __pfx_kthread+0x10/0x10 [ 80.567070][ C0] ret_from_fork_asm+0x1a/0x30 [ 80.568595][ C0] [ 80.570185][ C0] Kernel Offset: disabled [ 80.571623][ C0] Rebooting in 86400 seconds.. VM DIAGNOSIS: 18:39:17 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85613495 RDI=ffffffff9b0f6600 RBP=ffffffff9b0f65c0 RSP=ffffc900000073f0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000036 R14=ffffffff9b0f65c0 R15=ffffffff85613430 RIP=ffffffff856134bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974c6000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080001000 CR3=0000000027b11000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0c60000 Opmask01=000000000001ffff Opmask02=000000000101ffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055583ef630b0 0000000000000009 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000034 746e6576652f7475 706e692f7665642f ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6b6e696c74656e20 636972656e656720 6e65706f20746f6e 6e6163203a732500 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4b4c4951404b05 464c57404b404205 4b40554a05514a4b 4b4446051f560000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007002400000001 0005000800000000 0004000800000001 0003000800000021 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055583ef67778 0000000000000000 0000000200000005 000055583ef67388 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055583ef666d5 0000000000000001 0000000200000005 000055583ef67778 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000200000005 000055583ef67388 0000000000000001 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055583ef666ac 0000000000000001 0000000000000005 000055583ef666c1 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2d2e28332220 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3724bf2f2b2427bf 2d2e2832312435bf 3728252433342c2f 33bf2d2e28332220 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=ffff8880429bdca0 RCX=ffffffff8197ac7c RDX=fffff52000746f34 RSI=0000000000000004 RDI=ffffc90003a379a0 RBP=1ffff92000746f30 RSP=ffffc90003a37978 R8 =0000000000000001 R9 =fffff52000746f34 R10=0000000000000003 R11=0000000000000000 R12=ffff8880429bdca8 R13=ffff8880429bdcb0 R14=0000000000000408 R15=ffff888041b2efe0 RIP=ffffffff8197ac7c RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f25e6d72880 ffffffff 00c00000 GS =0000 ffff8880975c6000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000056f444c0 CR3=0000000024135000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fc000000 Opmask01=0000000000290410 Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc19f6f8c8 00007ffc19f6f8c8 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc19f6faa0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000563c451ff2e0 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f25e67f1b20 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f25e67f1b20 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 32706f6f6c2f6b63 6f6c622f6c617574 7269762f73656369 7665642f7379732f ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 307570632f302f71 6d2f32706f6f6c2f 6b636f6c622f6c61 75747269762f7365 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003075 70632f302f716d2f 32706f6f6c2f6b63 6f6c622f6c617574 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a4b1170e6e927b41 0000000563c4520b 00000000000000e1 0000000000000031 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 003a756b733a322e 392d3533712d6370 7276633a3174633a 554d45516e76633a ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f415f4400000054 53495300302f3032 0000000000010044 0000503255004f54 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080080783 RBX=0000000000000000 RCX=ffff888023d21070 RDX=000000000000009d RSI=ffffffff86b0ce48 RDI=ffff888023d212d0 RBP=0000000000000001 RSP=ffffc90000538b60 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000005ca7 R12=0000000000000001 R13=0000000000002328 R14=ffff888023d21070 R15=0000000000000001 RIP=ffffffff86b0ce8f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880976c6000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000008004f000 CR3=0000000026187000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000010000001 Opmask01=0000000000000001 Opmask02=0000000000020000 Opmask03=0000000000000000 Opmask04=00000000fffdffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd147c829b 00007ffd147c829b ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd147c87a0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd147c87a0 0000003000000018 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3e343c0030303030 3030303030303030 30303030203a3930 5220303030303000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3434360030303030 3030303030303030 3030303020303330 5220303030303000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c75662854504d45 4552502030232066 3964383335333161 303363672d303532 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20296c6c75662854 504d454552502030 2320663964383335 333161303363672d ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30353232312d7265 6c6c616b7a79732d 302e36312e362064 65746e6961742074 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f4e2048313a302f 72656b726f776b20 3a6d6d6f43203934 31203a4449502030 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a444955203020 3a555043205d3043 202020205b5d3036 393237322e303820 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e656d676172 66206562206c6c69 7720656361667265 746e692073696874 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000000d38c1 RBX=0000000000000003 RCX=ffffffff8b903bf9 RDX=0000000000000000 RSI=ffffffff8de4b9c6 RDI=ffffffff8c162900 RBP=ffffed1003869000 RSP=ffffc9000048fdf8 R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801c348000 R14=ffffffff90ab6b90 R15=0000000000000000 RIP=ffffffff8b90275f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977c6000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f54e5510 CR3=0000000070fe1000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000