[ 46.107726][ T39] audit: type=1400 audit(1718873203.747:83): avc: denied { write } for pid=5172 comm="sftp-server" path="pipe:[2038]" dev="pipefs" ino=2038 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 46.439598][ T39] audit: type=1400 audit(1718873204.077:84): avc: denied { read } for pid=4675 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 46.447343][ T39] audit: type=1400 audit(1718873204.077:85): avc: denied { append } for pid=4675 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 46.455017][ T39] audit: type=1400 audit(1718873204.077:86): avc: denied { open } for pid=4675 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 46.462848][ T39] audit: type=1400 audit(1718873204.077:87): avc: denied { getattr } for pid=4675 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:53585' (ED25519) to the list of known hosts. [ 66.321444][ T39] audit: type=1400 audit(1718873223.957:88): avc: denied { execute } for pid=5194 comm="sh" name="syz-execprog" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 66.329470][ T39] audit: type=1400 audit(1718873223.967:89): avc: denied { execute_no_trans } for pid=5194 comm="sh" path="/syz-execprog" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 2024/06/20 08:47:04 ignoring optional flag "sandboxArg"="0" 2024/06/20 08:47:04 parsed 1 programs [ 67.167418][ T39] audit: type=1400 audit(1718873224.797:90): avc: denied { setattr } for pid=5205 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 67.176700][ T39] audit: type=1400 audit(1718873224.797:91): avc: denied { mounton } for pid=5203 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 67.180256][ T5201] cgroup: Unknown subsys name 'net' [ 67.216059][ T39] audit: type=1400 audit(1718873224.807:92): avc: denied { mount } for pid=5203 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 67.237377][ T39] audit: type=1400 audit(1718873224.807:93): avc: denied { mounton } for pid=5201 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 67.246815][ T39] audit: type=1400 audit(1718873224.807:94): avc: denied { mount } for pid=5201 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 67.254877][ T39] audit: type=1400 audit(1718873224.857:95): avc: denied { unmount } for pid=5201 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 67.260586][ T5210] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 67.265722][ T39] audit: type=1400 audit(1718873224.867:96): avc: denied { create } for pid=5216 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 67.274531][ T39] audit: type=1400 audit(1718873224.867:97): avc: denied { write } for pid=5216 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 67.519852][ T5201] cgroup: Unknown subsys name 'rlimit' [ 68.115974][ T5206] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 69.766859][ T5269] chnl_net:caif_netlink_parms(): no params data found [ 69.932268][ T5269] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.936832][ T5269] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.939682][ T5269] bridge_slave_0: entered allmulticast mode [ 69.942974][ T5269] bridge_slave_0: entered promiscuous mode [ 69.947374][ T5269] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.949809][ T5269] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.952299][ T5269] bridge_slave_1: entered allmulticast mode [ 69.955228][ T5269] bridge_slave_1: entered promiscuous mode [ 70.012833][ T5269] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.020566][ T5269] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.088388][ T5269] team0: Port device team_slave_0 added [ 70.094263][ T5269] team0: Port device team_slave_1 added [ 70.157805][ T5269] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.161022][ T5269] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.172521][ T5269] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.180804][ T5269] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.183575][ T5269] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.194697][ T5269] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.268018][ T5269] hsr_slave_0: entered promiscuous mode [ 70.271796][ T5269] hsr_slave_1: entered promiscuous mode [ 70.512025][ T5269] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 70.519279][ T5269] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 70.528328][ T5269] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 70.536107][ T5269] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 70.604118][ T5269] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.620585][ T5269] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.639671][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.642712][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.647682][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.650512][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.781410][ T5269] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.810941][ T5269] veth0_vlan: entered promiscuous mode [ 70.817745][ T5269] veth1_vlan: entered promiscuous mode [ 70.839662][ T5269] veth0_macvtap: entered promiscuous mode [ 70.845087][ T5269] veth1_macvtap: entered promiscuous mode [ 70.862787][ T5269] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.874534][ T5269] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.883433][ T5269] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.887876][ T5269] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.891942][ T5269] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.896437][ T5269] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.992465][ T45] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.080684][ T45] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.116530][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.121180][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.139827][ T1096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.144324][ T1096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.156810][ T45] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.230692][ T45] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.442382][ T39] kauditd_printk_skb: 23 callbacks suppressed [ 71.442393][ T39] audit: type=1400 audit(1718873229.077:121): avc: denied { create } for pid=5294 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 71.456939][ T39] audit: type=1400 audit(1718873229.077:122): avc: denied { read write } for pid=5294 comm="syz-executor.0" name="vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 71.467413][ T39] audit: type=1400 audit(1718873229.077:123): avc: denied { open } for pid=5294 comm="syz-executor.0" path="/dev/vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 71.473821][ T5295] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.477424][ T39] audit: type=1400 audit(1718873229.097:124): avc: denied { ioctl } for pid=5294 comm="syz-executor.0" path="socket:[4949]" dev="sockfs" ino=4949 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 71.481438][ T5295] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.494456][ T5295] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.499669][ T5295] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.503603][ T5295] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.507303][ T5295] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.559297][ T1358] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.562059][ T1358] ieee802154 phy1 wpan1: encryption failed: -22 2024/06/20 08:47:09 executed programs: 0 [ 71.653792][ T4637] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.662500][ T5311] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.668938][ T5311] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.685373][ T5315] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.685490][ T5317] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.685885][ T5316] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.686882][ T5316] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.686999][ T5319] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.688804][ T5319] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.688816][ T5316] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.690639][ T5319] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.690737][ T5315] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.691450][ T5315] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.693111][ T5317] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.693359][ T5315] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 71.693533][ T5315] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.694559][ T5295] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.705983][ T5319] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.708164][ T5295] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.708449][ T5317] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.711398][ T5309] ================================================================== [ 71.711490][ T5311] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 71.711856][ T5311] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.713749][ T5295] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 71.715906][ T5309] BUG: KASAN: slab-use-after-free in kfree_skb_reason+0x36/0x210 [ 71.715933][ T5309] Read of size 4 at addr ffff88801e1f60e4 by task syz-executor.2/5309 [ 71.715947][ T5309] [ 71.715951][ T5309] CPU: 1 PID: 5309 Comm: syz-executor.2 Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0 [ 71.715968][ T5309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 71.715977][ T5309] Call Trace: [ 71.715984][ T5309] [ 71.715989][ T5309] dump_stack_lvl+0x116/0x1f0 [ 71.718766][ T5295] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.721196][ T5309] print_report+0xc3/0x620 [ 71.773119][ T5309] ? __virt_addr_valid+0x5e/0x580 [ 71.775329][ T5309] ? __phys_addr+0xc6/0x150 [ 71.777291][ T5309] kasan_report+0xd9/0x110 [ 71.779293][ T5309] ? kfree_skb_reason+0x36/0x210 [ 71.781468][ T5309] ? kfree_skb_reason+0x36/0x210 [ 71.783819][ T5309] kasan_check_range+0xef/0x1a0 [ 71.785921][ T5309] kfree_skb_reason+0x36/0x210 [ 71.787942][ T5309] __hci_req_sync+0x61d/0x980 [ 71.789944][ T5309] ? __pfx___hci_req_sync+0x10/0x10 [ 71.792208][ T5309] ? __mutex_lock+0x1a6/0x9c0 [ 71.794216][ T5309] ? __pfx_autoremove_wake_function+0x10/0x10 [ 71.796742][ T5309] ? hci_req_sync+0x3f/0xd0 [ 71.798666][ T5309] ? __pfx___might_resched+0x10/0x10 [ 71.800824][ T5309] hci_req_sync+0x97/0xd0 [ 71.802568][ T5309] ? __pfx_hci_scan_req+0x10/0x10 [ 71.804601][ T5309] hci_dev_cmd+0x634/0x960 [ 71.806367][ T5309] ? cap_capable+0x1cf/0x240 [ 71.808290][ T5309] ? __pfx_hci_dev_cmd+0x10/0x10 [ 71.810393][ T5309] ? security_capable+0x98/0xd0 [ 71.812405][ T5309] hci_sock_ioctl+0x4f3/0x880 [ 71.814303][ T5309] ? __pfx_hci_sock_ioctl+0x10/0x10 [ 71.816479][ T5309] sock_do_ioctl+0x116/0x280 [ 71.818387][ T5309] ? __pfx_sock_do_ioctl+0x10/0x10 [ 71.820522][ T5309] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 71.823184][ T5309] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 71.825993][ T5309] sock_ioctl+0x22e/0x6c0 [ 71.827781][ T5309] ? __pfx_sock_ioctl+0x10/0x10 [ 71.829768][ T5309] ? selinux_file_ioctl+0x180/0x270 [ 71.831959][ T5309] ? selinux_file_ioctl+0xb4/0x270 [ 71.834113][ T5309] ? __pfx_sock_ioctl+0x10/0x10 [ 71.836083][ T5309] __x64_sys_ioctl+0x193/0x220 [ 71.837976][ T5309] do_syscall_64+0xcd/0x250 [ 71.839809][ T5309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.842262][ T5309] RIP: 0033:0x7f8d91a7cc4b [ 71.844134][ T5309] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00 [ 71.852201][ T5309] RSP: 002b:00007fff79540e00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 71.855631][ T5309] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f8d91a7cc4b [ 71.858868][ T5309] RDX: 00007fff79540e78 RSI: 00000000400448dd RDI: 0000000000000003 [ 71.862038][ T5309] RBP: 000055558ec37430 R08: 0000000000000000 R09: 0000000000000000 [ 71.865225][ T5309] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000004 [ 71.868387][ T5309] R13: 0000000000000004 R14: 0000000000000001 R15: 00000000fffffff1 [ 71.871609][ T5309] [ 71.872937][ T5309] [ 71.873985][ T5309] Allocated by task 5311: [ 71.875913][ T5309] kasan_save_stack+0x33/0x60 [ 71.878039][ T5309] kasan_save_track+0x14/0x30 [ 71.880120][ T5309] __kasan_slab_alloc+0x89/0x90 [ 71.882080][ T5309] kmem_cache_alloc_noprof+0x121/0x2f0 [ 71.884319][ T5309] skb_clone+0x190/0x3f0 [ 71.886042][ T5309] hci_cmd_work+0x66a/0x710 [ 71.887947][ T5309] process_one_work+0x9fb/0x1b60 [ 71.889993][ T5309] worker_thread+0x6c8/0xf70 [ 71.891907][ T5309] kthread+0x2c1/0x3a0 [ 71.893649][ T5309] ret_from_fork+0x45/0x80 [ 71.895464][ T5309] ret_from_fork_asm+0x1a/0x30 [ 71.897390][ T5309] [ 71.898374][ T5309] Freed by task 5319: [ 71.900020][ T5309] kasan_save_stack+0x33/0x60 [ 71.901969][ T5309] kasan_save_track+0x14/0x30 [ 71.903977][ T5309] kasan_save_free_info+0x3b/0x60 [ 71.906062][ T5309] poison_slab_object+0xf7/0x160 [ 71.908129][ T5309] __kasan_slab_free+0x32/0x50 [ 71.910109][ T5309] kmem_cache_free+0x12f/0x3a0 [ 71.912107][ T5309] kfree_skbmem+0x10e/0x200 [ 71.914018][ T5309] kfree_skb_reason+0x138/0x210 [ 71.916063][ T5309] hci_req_sync_complete+0x16c/0x270 [ 71.918327][ T5309] hci_event_packet+0x963/0x1170 [ 71.920367][ T5309] hci_rx_work+0x2c4/0x1610 [ 71.922237][ T5309] process_one_work+0x9fb/0x1b60 [ 71.924305][ T5309] worker_thread+0x6c8/0xf70 [ 71.926201][ T5309] kthread+0x2c1/0x3a0 [ 71.927906][ T5309] ret_from_fork+0x45/0x80 [ 71.929739][ T5309] ret_from_fork_asm+0x1a/0x30 [ 71.931727][ T5309] [ 71.932739][ T5309] The buggy address belongs to the object at ffff88801e1f6000 [ 71.932739][ T5309] which belongs to the cache skbuff_head_cache of size 240 [ 71.938588][ T5309] The buggy address is located 228 bytes inside of [ 71.938588][ T5309] freed 240-byte region [ffff88801e1f6000, ffff88801e1f60f0) [ 71.944246][ T5309] [ 71.945249][ T5309] The buggy address belongs to the physical page: [ 71.947839][ T5309] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e1f6 [ 71.951361][ T5309] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 71.954846][ T5309] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 71.957926][ T5309] page_type: 0xffffefff(slab) [ 71.959929][ T5309] raw: 00fff00000000040 ffff8880192d6780 dead000000000122 0000000000000000 [ 71.963362][ T5309] raw: 0000000000000000 0000000080190019 00000001ffffefff 0000000000000000 [ 71.966877][ T5309] head: 00fff00000000040 ffff8880192d6780 dead000000000122 0000000000000000 [ 71.970396][ T5309] head: 0000000000000000 0000000080190019 00000001ffffefff 0000000000000000 [ 71.973983][ T5309] head: 00fff00000000001 ffffea0000787d81 ffffffffffffffff 0000000000000000 [ 71.974447][ T5305] chnl_net:caif_netlink_parms(): no params data found [ 71.977497][ T5309] head: ffff888000000002 0000000000000000 00000000ffffffff 0000000000000000 [ 71.977513][ T5309] page dumped because: kasan: bad access detected [ 71.977520][ T5309] page_owner tracks the page as allocated [ 71.977524][ T5309] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5311, tgid 5311 (kworker/u33:3), ts 71710783142, free_ts 69665380610 [ 71.977555][ T5309] post_alloc_hook+0x2d1/0x350 [ 71.999303][ T5309] get_page_from_freelist+0x136a/0x2e50 [ 72.001595][ T5309] __alloc_pages_noprof+0x22b/0x2460 [ 72.003713][ T5309] alloc_slab_page+0x56/0x110 [ 72.005702][ T5309] new_slab+0x84/0x260 [ 72.007418][ T5309] ___slab_alloc+0xdac/0x1870 [ 72.009408][ T5309] __slab_alloc.constprop.0+0x56/0xb0 [ 72.011709][ T5309] kmem_cache_alloc_noprof+0x2a7/0x2f0 [ 72.014055][ T5309] skb_clone+0x190/0x3f0 [ 72.015921][ T5309] hci_cmd_work+0x66a/0x710 [ 72.017916][ T5309] process_one_work+0x9fb/0x1b60 [ 72.020057][ T5309] worker_thread+0x6c8/0xf70 [ 72.021974][ T5309] kthread+0x2c1/0x3a0 [ 72.023658][ T5309] ret_from_fork+0x45/0x80 [ 72.025557][ T5309] ret_from_fork_asm+0x1a/0x30 [ 72.027559][ T5309] page last free pid 5264 tgid 5264 stack trace: [ 72.030173][ T5309] free_unref_page+0x64a/0xe40 [ 72.032198][ T5309] vfree+0x181/0x7a0 [ 72.033849][ T5309] kcov_put+0x2a/0x40 [ 72.035519][ T5309] kcov_close+0x10/0x20 [ 72.037265][ T5309] __fput+0x408/0xbb0 [ 72.038983][ T5309] task_work_run+0x14e/0x250 [ 72.040996][ T5309] do_exit+0xa9b/0x2ba0 [ 72.042816][ T5309] do_group_exit+0xd3/0x2a0 [ 72.044789][ T5309] get_signal+0x2616/0x2710 [ 72.046679][ T5309] arch_do_signal_or_restart+0x90/0x7e0 [ 72.048882][ T5309] syscall_exit_to_user_mode+0x14a/0x2a0 [ 72.051197][ T5309] do_syscall_64+0xda/0x250 [ 72.053111][ T5309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.055672][ T5309] [ 72.056677][ T5309] Memory state around the buggy address: [ 72.058987][ T5309] ffff88801e1f5f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 72.062262][ T5309] ffff88801e1f6000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 72.065525][ T5309] >ffff88801e1f6080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc [ 72.068718][ T5309] ^ [ 72.071683][ T5309] ffff88801e1f6100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb [ 72.074949][ T5309] ffff88801e1f6180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 72.078123][ T5309] ================================================================== [ 72.082295][ T5309] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 72.085434][ T5309] CPU: 0 PID: 5309 Comm: syz-executor.2 Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0 [ 72.089887][ T5309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 72.094368][ T5309] Call Trace: [ 72.095933][ T5309] [ 72.097346][ T5309] dump_stack_lvl+0x3d/0x1f0 [ 72.099414][ T5309] panic+0x6f5/0x7a0 [ 72.101146][ T5309] ? __pfx_panic+0x10/0x10 [ 72.103080][ T5309] ? irqentry_exit+0x3b/0x90 [ 72.105137][ T5309] ? lockdep_hardirqs_on+0x7c/0x110 [ 72.107724][ T5309] ? preempt_schedule_thunk+0x1a/0x30 [ 72.110388][ T5309] ? preempt_schedule_common+0x44/0xc0 [ 72.112900][ T5309] ? check_panic_on_warn+0x1f/0xb0 [ 72.115119][ T5309] check_panic_on_warn+0xab/0xb0 [ 72.117352][ T5309] end_report+0x117/0x180 [ 72.119370][ T5309] kasan_report+0xe9/0x110 [ 72.121321][ T5309] ? kfree_skb_reason+0x36/0x210 [ 72.123532][ T5309] ? kfree_skb_reason+0x36/0x210 [ 72.125660][ T5309] kasan_check_range+0xef/0x1a0 [ 72.128287][ T5309] kfree_skb_reason+0x36/0x210 [ 72.130874][ T5309] __hci_req_sync+0x61d/0x980 [ 72.133053][ T5309] ? __pfx___hci_req_sync+0x10/0x10 [ 72.135314][ T5309] ? __mutex_lock+0x1a6/0x9c0 [ 72.137332][ T5309] ? __pfx_autoremove_wake_function+0x10/0x10 [ 72.139442][ T5309] ? hci_req_sync+0x3f/0xd0 [ 72.141076][ T5309] ? __pfx___might_resched+0x10/0x10 [ 72.142870][ T5309] hci_req_sync+0x97/0xd0 [ 72.144362][ T5309] ? __pfx_hci_scan_req+0x10/0x10 [ 72.146182][ T5309] hci_dev_cmd+0x634/0x960 [ 72.147997][ T5309] ? cap_capable+0x1cf/0x240 [ 72.149856][ T5309] ? __pfx_hci_dev_cmd+0x10/0x10 [ 72.152237][ T5309] ? security_capable+0x98/0xd0 [ 72.154190][ T5309] hci_sock_ioctl+0x4f3/0x880 [ 72.155837][ T5309] ? __pfx_hci_sock_ioctl+0x10/0x10 [ 72.157725][ T5309] sock_do_ioctl+0x116/0x280 [ 72.159632][ T5309] ? __pfx_sock_do_ioctl+0x10/0x10 [ 72.161929][ T5309] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 72.165232][ T5309] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 72.168144][ T5309] sock_ioctl+0x22e/0x6c0 [ 72.170058][ T5309] ? __pfx_sock_ioctl+0x10/0x10 [ 72.172309][ T5309] ? selinux_file_ioctl+0x180/0x270 [ 72.174684][ T5309] ? selinux_file_ioctl+0xb4/0x270 [ 72.176967][ T5309] ? __pfx_sock_ioctl+0x10/0x10 [ 72.178898][ T5309] __x64_sys_ioctl+0x193/0x220 [ 72.180981][ T5309] do_syscall_64+0xcd/0x250 [ 72.182935][ T5309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.185375][ T5309] RIP: 0033:0x7f8d91a7cc4b [ 72.187561][ T5309] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00 [ 72.195980][ T5309] RSP: 002b:00007fff79540e00 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 72.199546][ T5309] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f8d91a7cc4b [ 72.202845][ T5309] RDX: 00007fff79540e78 RSI: 00000000400448dd RDI: 0000000000000003 [ 72.205732][ T5309] RBP: 000055558ec37430 R08: 0000000000000000 R09: 0000000000000000 [ 72.208705][ T5309] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000004 [ 72.211833][ T5309] R13: 0000000000000004 R14: 0000000000000001 R15: 00000000fffffff1 [ 72.214644][ T5309] [ 72.216313][ T5309] Kernel Offset: disabled [ 72.218101][ T5309] Rebooting in 86400 seconds.. VM DIAGNOSIS: 08:47:09 Registers: info registers vcpu 0 CPU#0 RAX=1ffff1100d667f4a RBX=ffff88806b33fa40 RCX=ffffffff816c28f1 RDX=ffff88806b03fa50 RSI=ffff88801fa1a440 RDI=ffff88806b33fa54 RBP=ffff88806b33fa40 RSP=ffffc90003747a88 R8 =1ffff1100d607f49 R9 =0000000000000000 R10=ffffffff8f74be8b R11=0000000000000001 R12=ffff88806b03fa40 R13=ffff88806b03fa48 R14=dffffc0000000000 R15=ffffed1003f43488 RIP=ffffffff816c2a13 RFL=00000a03 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555572782480 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005600c8b24df0 CR3=0000000025a8c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000ffffc0e0 Opmask01=000000000400000f Opmask02=00000000ffffbfef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000002900000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000800000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000800000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff52bc79d6a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000322e 312e30332e323731 00007ff52bc52842 00007ff52b6006c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff52c8db320 0000003165736f72 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fdd7a5 RDI=ffffffff94de0460 RBP=ffffffff94de0420 RSP=ffffc900032b7338 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6631653130386552 R12=0000000000000000 R13=0000000000000066 R14=ffffffff84fdd740 R15=0000000000000000 RIP=ffffffff84fdd7cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055558ec37480 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8d91ab91b0 CR3=0000000024ffe000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fffc0000 Opmask01=000000000400000f Opmask02=00000000ffffbfef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000800000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000800000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8d91a79d6a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8d91b7f840 00007f8d91b7f848 00007f8d91b7f840 00007f8d926db020 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d00746f6f723d52 4553550063657865 00322e726f747563 6578652d7a79732f ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffffc900037373b8 RCX=ffffffff813ce8d7 RDX=ffff88802a992440 RSI=ffffc90003737c40 RDI=0000000000000006 RBP=ffffc90003737eb8 RSP=ffffc90003737330 R8 =0000000000000006 R9 =ffffc90003737c40 R10=ffffc90003737eb8 R11=0000000000000002 R12=ffffc90003730000 R13=ffffc90003738000 R14=ffffc90003737ec0 R15=ffffc90003737c40 RIP=ffffffff818ddea1 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555582b9e480 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff4dbad5000 CR3=000000002b1c4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000ffffc0e0 Opmask01=000000000400000f Opmask02=00000000ffffbfef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffc7960440 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000800000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000800000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff4dae79d6a ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000342e 312e30332e323731 00007ff4dae52842 00007ff4da8006c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff4dbadb320 0000003365736f72 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=0000000000000005 RCX=ffffffff813cddc1 RDX=0000000000000004 RSI=0000000000000006 RDI=0000000000000001 RBP=ffffffff8b29cba0 RSP=ffffc900037271f8 R8 =0000000000000001 R9 =0000000000000005 R10=0000000000000004 R11=0000000000000003 R12=0000000000000004 R13=0000000000000001 R14=0000000000000008 R15=ffffc900037272dd RIP=ffffffff818de0fa RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555570937480 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff52bcd9a39 CR3=000000003ebb0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000a04800a3 Opmask01=0000000000000007 Opmask02=0000000001010007 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 06ce9d1c42295e05 1d89eff80283ae62 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 74069d48658e4fea 2fc7b20f7981ed3b ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f6c66465fcd5d82c 1ae0b8c55b9a20cd ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 21253e0e4ba5ace2 f885a18654fbd280 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002b00 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c9b44eb01000000 9bd7f71400bbbbbb ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000002c 9cd2be5cbb000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00002c9bbbbbbb00 d3b2000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c9c20ef0101bbbb 0a01000090000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 725313bc297d4cfc 08400a9f2b145d7a ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 065afb8007fe813a 3ccf4de39cce71fa ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0073252061697620 64252f7325206f74 206574756f722073 257325203a732500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00560005444c5305 41000a5600054a51 054051504a570556 005600051f560000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 666564005f706e63 6620736f65626464 6120672069617272 2020340020656966 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6420005f652030 3520656920626164 0a2020203420616d 202034000a656964 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020