last executing test programs: 1m11.378572352s ago: executing program 1 (id=22): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000300)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000780)) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) 1m11.375135968s ago: executing program 1 (id=23): ioperm(0x0, 0x400, 0x31aa2092) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) sched_setattr(0x0, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}}) mlockall(0x2) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000080), 0xfffffe13) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif\x00'}, 0x58) r3 = accept4(r2, 0x0, 0x0, 0x0) splice(r0, 0x0, r3, 0x0, 0x1, 0x0) 1m10.532888221s ago: executing program 1 (id=32): r0 = getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x200000004) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x10, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xaa, &(0x7f0000000140)=""/170, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r3 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x4) sched_setaffinity(r3, 0x8, &(0x7f00000005c0)=0x5) 1m9.651372088s ago: executing program 1 (id=39): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0xa, 0x3, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0xfffffffe, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x1000007, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x3, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x0, 0x5, 0x3c, 0x8f, 0x6, 0x1, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12b, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x1ff, 0xfffffffe, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x1, 0x6, 0x1, 0xff, 0x1005, 0x7ff, 0x5f31, 0x4, 0xffffffff, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x3, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x8, 0x3, 0x4, 0x1, 0x7, 0x6, 0x9, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x5, 0x3b, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0x200, 0x3, 0x400000, 0xfffffff9, 0x0, 0x1, 0x5, 0x0, 0x6, 0xfffffffb, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb31, 0x3, 0xfffffffc, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0x8ffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000003, 0x5, 0x8, 0xffffffff, 0x3, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0x0, 0x2, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c) r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01) openat$audio1(0xffffffffffffff9c, 0x0, 0x220200, 0x0) io_setup(0x6, &(0x7f0000000540)=0x0) r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') io_submit(r2, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r3, 0x0}]) read$FUSE(r0, 0x0, 0x0) write$char_usb(r1, &(0x7f0000000040)="e2", 0x918) 1m9.446246107s ago: executing program 1 (id=41): mkdir(&(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdir(&(0x7f0000000440)='./file0\x00', 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r1}, './file0\x00'}) 1m9.047114246s ago: executing program 1 (id=44): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mknodat$null(0xffffffffffffff9c, 0x0, 0x0, 0x103) socket$inet6_udp(0xa, 0x2, 0x0) r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY_LEVEL(r5, 0x0, 0x2, &(0x7f0000000000)=0xffffffffffffffff, 0x4) recvmmsg(r5, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}, 0x1000}], 0x1, 0x100, &(0x7f0000002400)={0x77359400}) 53.824835045s ago: executing program 32 (id=44): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mknodat$null(0xffffffffffffff9c, 0x0, 0x0, 0x103) socket$inet6_udp(0xa, 0x2, 0x0) r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY_LEVEL(r5, 0x0, 0x2, &(0x7f0000000000)=0xffffffffffffffff, 0x4) recvmmsg(r5, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}, 0x1000}], 0x1, 0x100, &(0x7f0000002400)={0x77359400}) 3.773161635s ago: executing program 0 (id=369): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) dup(r0) openat$vsock(0xffffff9c, 0x0, 0x40101, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x20c880, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x4, &(0x7f0000000dc0)=ANY=[@ANYBLOB="180100001c000000000000000000000c850000006d00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='9p_protocol_dump\x00', r1}, 0x10) chdir(&(0x7f0000000280)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 3.703627531s ago: executing program 0 (id=370): syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="040e0a010e04"], 0xd) r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x4000000) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, 0x0, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, 0x0) mknod(0x0, 0x0, 0x0) open$dir(0x0, 0x0, 0x0) futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) 3.571763049s ago: executing program 0 (id=372): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = userfaultfd(0x1) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000080), 0x4) ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f0000000040)={0x80, 0x8c8, 0x0, 0x0}) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4048aecb, &(0x7f0000000080)) r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') writev(r4, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.404496209s ago: executing program 0 (id=373): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0) syz_usb_connect(0x0, 0x10b, &(0x7f0000000000)=ANY=[@ANYBLOB="05010900b24b6a10e6040300770100000001090224000b010000000904000302ccd4280009050b02000000040009058a02"], 0x0) syz_usb_disconnect(r0) r1 = syz_usb_connect(0x0, 0x5d, &(0x7f00000000c0)=ANY=[], 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$uac1(r1, 0x0, &(0x7f0000001e40)={0x44, &(0x7f0000000bc0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_ep_write(r0, 0x81, 0x0, 0x0) 2.656119655s ago: executing program 4 (id=379): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, 0x0, 0x0) ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x200000000) write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000002080)={0x2, 0x0, {&(0x7f0000001f80)=""/152, 0x98, 0x0, 0x0, 0x2}}, 0x48) write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, {&(0x7f0000000a00)=""/87, 0x57, 0x0, 0x0, 0x2}}, 0x48) write$vhost_msg_v2(0xffffffffffffffff, &(0x7f00000003c0)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}}, 0x48) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) io_uring_setup(0x6281, &(0x7f0000000080)) getpid() syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_remote_feat_complete={{}, {0x5, 0xc8, "958d7a519d91c932"}}}}, 0xf) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) 2.581991479s ago: executing program 4 (id=380): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket(0x10, 0x803, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x12a35}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x800) close(r0) r6 = io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0x339f, 0x2, 0x2, 0x24b}) close_range(r6, 0xffffffffffffffff, 0x0) 2.524705253s ago: executing program 4 (id=382): syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000380), 0xc01) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3678, &(0x7f0000000080)={0x0, 0x1ffffd, 0x10100, 0x40000000, 0x3}, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r2, 0x1000a3d, 0x0, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 2.513130255s ago: executing program 2 (id=383): sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xa, 0x0, 0x0) keyctl$join(0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="17000000070000000b0000000100"], 0x50) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r0, &(0x7f0000000000), 0xd) 2.433258464s ago: executing program 2 (id=385): syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) chdir(&(0x7f0000000480)='./cgroup\x00') openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/vmstat\x00', 0x0, 0x0) fstatfs(r0, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 2.430482944s ago: executing program 2 (id=386): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) unshare(0x22020600) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') r1 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000000080)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) chdir(&(0x7f0000000140)='./bus\x00') r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000180)='./file0\x00', 0x400005ef) setns(r0, 0x0) 2.375543004s ago: executing program 2 (id=387): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x9) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r1, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80410040}, 0xc, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r3, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) 1.620076493s ago: executing program 4 (id=389): fsopen(&(0x7f0000000040)='configfs\x00', 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = socket$inet6(0x10, 0x3, 0x0) read(r3, &(0x7f0000000340)=""/254, 0xfe) sendto$inet6(r3, &(0x7f0000000140)="1ba0000016001d0d89fdc5cbdd045798707bed4dca141a780f0f8e", 0xff3b, 0x0, 0x0, 0x0) recvfrom$inet6(r3, &(0x7f0000000000)=""/45, 0x44, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000000)="48050000150019", 0x7}], 0x1) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x200000000622c, 0x0) 1.619033201s ago: executing program 2 (id=397): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x0) readv(r1, &(0x7f0000000200)=[{&(0x7f0000000000)=""/58, 0x3a}], 0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) eventfd(0x4) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0) ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0) 761.015278ms ago: executing program 3 (id=392): ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0) ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x21) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000540)={{{@in6, @in=@dev}}, {{@in6=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000080)=0xfffffffffffffc45) r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5400000010000100"/20, @ANYRES32=r2, @ANYBLOB="7240146c00000000340012800c0001006d6163766c616e00240002800800010010000000100009"], 0x54}}, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 751.266217ms ago: executing program 4 (id=393): sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ba20702500000000002003007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1b, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x10, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x6c00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 696.488645ms ago: executing program 3 (id=394): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'essiv(authenc(rmd160-generic,cbc-camellia-aesni-avx2),sha1-avx)\x00'}, 0x58) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x80) r3 = openat$tcp_congestion(0xffffff9c, &(0x7f00000000c0), 0x1, 0x0) write$tcp_congestion(r3, &(0x7f0000000100)='reno\x00', 0x5) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xa0) r4 = socket$netlink(0x10, 0x3, 0x4) writev(r4, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f0200c00e7f4e32f61bcdf1e422000000000100800000000000001000aadc28da3457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1) 509.209793ms ago: executing program 4 (id=395): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-avx2\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) syz_open_dev$tty1(0xc, 0x4, 0x1) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) recvmmsg$unix(r1, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0) 499.284075ms ago: executing program 3 (id=396): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) unshare(0x22020600) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') r1 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000000080)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) chdir(&(0x7f0000000140)='./bus\x00') r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000180)='./file0\x00', 0x400005ef) setns(r0, 0x0) 433.207667ms ago: executing program 3 (id=398): r0 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r1, @ANYBLOB="0000400000000002280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="2800000014002101000000000000000002200000", @ANYRES32=r1, @ANYBLOB="08000400ffffffff08000200e0"], 0x28}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="280000001400210100000000000000000200"], 0x28}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000014002101000000000000000002000000", @ANYRES32=r5, @ANYBLOB="08000200ac"], 0x20}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv4_deladdr={0x18, 0x15, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r5}}, 0x18}}, 0x0) 429.742779ms ago: executing program 2 (id=406): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) 336.599292ms ago: executing program 3 (id=399): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8, 0x5, r4}]}, 0x20}}, 0x0) r5 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r5, 0xc008640a, 0x0) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@newnexthop={0x24, 0x68, 0x1, 0x3, 0x80000004, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0xfa}]}]}, 0x24}}, 0x4000) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0) 72.160665ms ago: executing program 0 (id=400): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'geneve1\x00'}) unshare(0x2c000600) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) socket$nl_route(0x10, 0x3, 0x0) syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) epoll_create1(0x0) rt_sigtimedwait(0x0, 0x0, 0x0, 0x0) 65.508366ms ago: executing program 3 (id=409): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) socket$packet(0x11, 0x3, 0x300) socket$xdp(0x2c, 0x3, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) splice(r2, 0x0, r1, 0x0, 0x6, 0x0) dup3(r2, r1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000"], 0x14}}, 0x0) socket$key(0xf, 0x3, 0x2) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x10001, 0x0, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 0s ago: executing program 0 (id=401): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) close(0xffffffffffffffff) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0) openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00') preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/79, 0x4f}], 0x1, 0x3ffffe, 0x1) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x7c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x38, 0x12, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc4}}, 0x20050800) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:33945' (ED25519) to the list of known hosts. [ 41.082225][ T5929] cgroup: Unknown subsys name 'net' [ 41.285216][ T5929] cgroup: Unknown subsys name 'cpuset' [ 41.287981][ T5929] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.009355][ T5929] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.658691][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 43.662350][ T5957] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 43.663927][ T5955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 43.664612][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 43.666060][ T5957] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 43.666612][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 43.666883][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 43.667336][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 43.668114][ T5955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 43.668487][ T5955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 43.668813][ T5955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 43.669051][ T5955] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 43.669157][ T5955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 43.674832][ T5956] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 43.676245][ T65] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 43.676293][ T5957] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 43.676696][ T5957] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 43.676882][ T5957] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 43.679125][ T5956] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 43.681126][ T65] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 43.683657][ T5956] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 43.701256][ T5956] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 43.703522][ T5956] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 43.705453][ T5956] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 43.856796][ T5943] chnl_net:caif_netlink_parms(): no params data found [ 43.887097][ T5951] chnl_net:caif_netlink_parms(): no params data found [ 43.908450][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 43.927757][ T5941] chnl_net:caif_netlink_parms(): no params data found [ 43.948067][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.950359][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.952385][ T5943] bridge_slave_0: entered allmulticast mode [ 43.954669][ T5943] bridge_slave_0: entered promiscuous mode [ 43.984796][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.987138][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.989020][ T5943] bridge_slave_1: entered allmulticast mode [ 43.991038][ T5943] bridge_slave_1: entered promiscuous mode [ 44.007065][ T5951] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.008959][ T5951] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.010853][ T5951] bridge_slave_0: entered allmulticast mode [ 44.012937][ T5951] bridge_slave_0: entered promiscuous mode [ 44.064909][ T5951] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.066889][ T5951] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.068840][ T5951] bridge_slave_1: entered allmulticast mode [ 44.070895][ T5951] bridge_slave_1: entered promiscuous mode [ 44.081422][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.114617][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.116519][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.118478][ T5942] bridge_slave_0: entered allmulticast mode [ 44.120459][ T5942] bridge_slave_0: entered promiscuous mode [ 44.124469][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.127609][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.129692][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.131914][ T5941] bridge_slave_0: entered allmulticast mode [ 44.134306][ T5941] bridge_slave_0: entered promiscuous mode [ 44.137309][ T5951] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.140728][ T5951] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.143437][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.145434][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.147315][ T5942] bridge_slave_1: entered allmulticast mode [ 44.149283][ T5942] bridge_slave_1: entered promiscuous mode [ 44.167803][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.169736][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.171657][ T5941] bridge_slave_1: entered allmulticast mode [ 44.174156][ T5941] bridge_slave_1: entered promiscuous mode [ 44.215574][ T5943] team0: Port device team_slave_0 added [ 44.227500][ T5951] team0: Port device team_slave_0 added [ 44.230029][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.233198][ T5943] team0: Port device team_slave_1 added [ 44.235658][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.238916][ T5951] team0: Port device team_slave_1 added [ 44.241330][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.260444][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.287341][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.289190][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.296435][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.306873][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.308720][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.315476][ T5951] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.326478][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.328305][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.335126][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.346116][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.348655][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.357544][ T5951] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.361908][ T5942] team0: Port device team_slave_0 added [ 44.367420][ T5942] team0: Port device team_slave_1 added [ 44.371130][ T5941] team0: Port device team_slave_0 added [ 44.375205][ T5941] team0: Port device team_slave_1 added [ 44.406774][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.408622][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.416259][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.420003][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.421830][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.428434][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.431851][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.434420][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.443619][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.448695][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.451098][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.459268][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.502301][ T5951] hsr_slave_0: entered promiscuous mode [ 44.504370][ T5951] hsr_slave_1: entered promiscuous mode [ 44.508047][ T5943] hsr_slave_0: entered promiscuous mode [ 44.509916][ T5943] hsr_slave_1: entered promiscuous mode [ 44.511722][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.513921][ T5943] Cannot create hsr debugfs directory [ 44.553728][ T5942] hsr_slave_0: entered promiscuous mode [ 44.555697][ T5942] hsr_slave_1: entered promiscuous mode [ 44.557510][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.559482][ T5942] Cannot create hsr debugfs directory [ 44.579969][ T5941] hsr_slave_0: entered promiscuous mode [ 44.581939][ T5941] hsr_slave_1: entered promiscuous mode [ 44.584295][ T5941] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.586300][ T5941] Cannot create hsr debugfs directory [ 44.739647][ T5951] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 44.745233][ T5951] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 44.748076][ T5951] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 44.753640][ T5951] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 44.767412][ T5942] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 44.771320][ T5942] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 44.774562][ T5942] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 44.777224][ T5942] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 44.787153][ T5951] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.789068][ T5951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.791256][ T5951] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.793116][ T5951] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.805636][ T5943] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.809643][ T5943] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.813201][ T5943] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.817557][ T5943] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.836613][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.838877][ T5942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.841002][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.842882][ T5942] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.850139][ T5941] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 44.853431][ T5941] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 44.856803][ T5941] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 44.859767][ T5941] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 44.873714][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.875625][ T5943] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.877652][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.880000][ T5943] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.885584][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.887471][ T5941] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.889470][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.891346][ T5941] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.895146][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.898075][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.900527][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.904892][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.908559][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.911690][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.914309][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.917269][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.962272][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.973748][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.985772][ T5951] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.993321][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.000926][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.005990][ T1251] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.007895][ T1251] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.014946][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.017966][ T1251] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.020113][ T1251] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.023606][ T1251] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.025858][ T1251] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.035653][ T1251] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.037548][ T1251] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.045952][ T5943] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.049907][ T5941] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.057923][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.059823][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.068349][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.070240][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.072996][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.074877][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.089697][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.091608][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.118800][ T5941] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 45.168717][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.186229][ T5942] veth0_vlan: entered promiscuous mode [ 45.195286][ T5942] veth1_vlan: entered promiscuous mode [ 45.199400][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.218203][ T5942] veth0_macvtap: entered promiscuous mode [ 45.221761][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.226910][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.233158][ T5941] veth0_vlan: entered promiscuous mode [ 45.234926][ T5942] veth1_macvtap: entered promiscuous mode [ 45.244327][ T5941] veth1_vlan: entered promiscuous mode [ 45.257547][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.270048][ T5951] veth0_vlan: entered promiscuous mode [ 45.275742][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.278385][ T5941] veth0_macvtap: entered promiscuous mode [ 45.280539][ T5943] veth0_vlan: entered promiscuous mode [ 45.285775][ T5941] veth1_macvtap: entered promiscuous mode [ 45.289230][ T5951] veth1_vlan: entered promiscuous mode [ 45.291351][ T5942] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.294227][ T5942] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.296520][ T5942] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.298807][ T5942] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.303219][ T5943] veth1_vlan: entered promiscuous mode [ 45.310981][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.314224][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.317302][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.329344][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.332078][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.335163][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.342015][ T5941] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.345013][ T5941] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.347326][ T5941] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.349616][ T5941] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.360984][ T5951] veth0_macvtap: entered promiscuous mode [ 45.366598][ T5943] veth0_macvtap: entered promiscuous mode [ 45.372034][ T5951] veth1_macvtap: entered promiscuous mode [ 45.377247][ T5943] veth1_macvtap: entered promiscuous mode [ 45.385608][ T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.387768][ T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.401598][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.405205][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.407908][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.410600][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.414031][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.421800][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.424668][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.427209][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.429901][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.433378][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.437538][ T5943] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.437781][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.439924][ T5943] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.442046][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.444830][ T5943] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.448621][ T5943] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.452053][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.454898][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.457449][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.460180][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.462959][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.465663][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.468874][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.479685][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.483272][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.486761][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.490517][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.494670][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.497577][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.501977][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.507422][ T5951] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.510626][ T5951] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.514095][ T5951] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.517190][ T5951] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.527057][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.529178][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.550200][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 45.556557][ T1136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.558681][ T1136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.569894][ T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.571999][ T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.595562][ T98] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.597751][ T98] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.601529][ T98] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.605939][ T98] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.622045][ T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.624890][ T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.625850][ T6005] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 45.671347][ T6005] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.682550][ T6005] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3'. [ 45.709538][ T6005] bridge_slave_1 (unregistering): left allmulticast mode [ 45.711455][ T6005] bridge_slave_1 (unregistering): left promiscuous mode [ 45.713581][ T6005] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.744802][ T5950] Bluetooth: hci0: command tx timeout [ 45.744924][ T5956] Bluetooth: hci3: command tx timeout [ 45.746386][ T5945] Bluetooth: hci2: command tx timeout [ 45.748048][ T5956] Bluetooth: hci1: command tx timeout [ 45.761851][ T6011] warning: `syz.3.4' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 46.742847][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.744999][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.747222][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.749464][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.751611][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.754289][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 46.756439][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.027804][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 47.027927][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 47.032681][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.384086][ T5956] Bluetooth: hci2: unexpected event 0x06 length: 4 > 3 [ 47.528766][ T6054] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 47.832986][ T5956] Bluetooth: hci0: command tx timeout [ 47.833121][ T5950] Bluetooth: hci1: command tx timeout [ 47.836274][ T65] Bluetooth: hci3: command tx timeout [ 48.668631][ T6078] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 48.673219][ T6078] syzkaller0: entered promiscuous mode [ 48.674555][ T6078] syzkaller0: entered allmulticast mode [ 48.936209][ T6089] Zero length message leads to an empty skb [ 49.866287][ T5950] Bluetooth: hci3: command tx timeout [ 49.866339][ T5956] Bluetooth: hci1: command tx timeout [ 49.866616][ T5945] Bluetooth: hci0: command tx timeout [ 50.251686][ T6128] netlink: 'syz.0.40': attribute type 1 has an invalid length. [ 51.120796][ T5956] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 51.123314][ T5956] Bluetooth: hci2: Injecting HCI hardware error event [ 51.425478][ T65] Bluetooth: hci2: hardware error 0x00 [ 51.889397][ T5956] Bluetooth: hci0: command tx timeout [ 51.889476][ T5950] Bluetooth: hci1: command tx timeout [ 51.890792][ T5956] Bluetooth: hci3: command tx timeout [ 53.459986][ T65] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 66.008108][ T6150] netlink: 'syz.2.50': attribute type 1 has an invalid length. [ 66.103773][ T6159] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 66.110931][ T5956] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.114329][ T5956] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.117326][ T5956] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.121428][ T5956] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.123966][ T5956] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.126986][ T5956] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.274907][ T6156] chnl_net:caif_netlink_parms(): no params data found [ 66.531842][ T1136] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.538914][ T6156] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.541384][ T6156] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.543687][ T6156] bridge_slave_0: entered allmulticast mode [ 66.546079][ T6156] bridge_slave_0: entered promiscuous mode [ 66.550865][ T6156] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.553486][ T6156] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.555788][ T6156] bridge_slave_1: entered allmulticast mode [ 66.558881][ T6156] bridge_slave_1: entered promiscuous mode [ 66.577376][ T6173] netlink: 8 bytes leftover after parsing attributes in process `syz.2.54'. [ 66.581696][ T6173] netlink: 48 bytes leftover after parsing attributes in process `syz.2.54'. [ 66.622791][ T1136] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.639905][ T6156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.651961][ T6156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.697844][ T1136] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.708838][ T6156] team0: Port device team_slave_0 added [ 66.712721][ T6156] team0: Port device team_slave_1 added [ 66.735912][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 66.737744][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.744018][ T6156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 66.750321][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 66.752222][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 66.758409][ T6156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 66.774217][ T1136] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.819347][ T6156] hsr_slave_0: entered promiscuous mode [ 66.824799][ T6156] hsr_slave_1: entered promiscuous mode [ 66.827103][ T6156] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 66.829455][ T6156] Cannot create hsr debugfs directory [ 66.899883][ T1136] bridge_slave_1: left allmulticast mode [ 66.901819][ T1136] bridge_slave_1: left promiscuous mode [ 66.903841][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.917337][ T1136] bridge_slave_0: left allmulticast mode [ 66.918925][ T1136] bridge_slave_0: left promiscuous mode [ 66.921243][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.115428][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 67.120627][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 67.123788][ T1136] bond0 (unregistering): Released all slaves [ 67.225400][ T6156] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 67.230571][ T6156] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 67.238531][ T6156] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 67.244028][ T6156] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 67.259637][ T6197] input: syz0 as /devices/virtual/input/input5 [ 67.314877][ T6156] 8021q: adding VLAN 0 to HW filter on device bond0 [ 67.322114][ T6156] 8021q: adding VLAN 0 to HW filter on device team0 [ 67.326317][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.328222][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.336828][ T98] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.338763][ T98] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.432058][ T6156] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.465011][ T1136] hsr_slave_0: left promiscuous mode [ 67.467761][ T1136] hsr_slave_1: left promiscuous mode [ 67.469602][ T1136] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 67.472214][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 67.476360][ T1136] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 67.478323][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 67.497743][ T1136] veth1_macvtap: left promiscuous mode [ 67.500027][ T1136] veth0_macvtap: left promiscuous mode [ 67.501595][ T1136] veth1_vlan: left promiscuous mode [ 67.503065][ T1136] veth0_vlan: left promiscuous mode [ 67.570464][ T6225] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117 [ 67.572298][ T6225] PKCS7: Only support pkcs7_signedData type [ 68.004769][ T1136] team0 (unregistering): Port device team_slave_1 removed [ 68.054557][ T1136] team0 (unregistering): Port device team_slave_0 removed [ 68.188763][ T65] Bluetooth: hci0: command tx timeout [ 68.607543][ T6156] veth0_vlan: entered promiscuous mode [ 68.612334][ T6156] veth1_vlan: entered promiscuous mode [ 68.645311][ T6156] veth0_macvtap: entered promiscuous mode [ 68.648246][ T6156] veth1_macvtap: entered promiscuous mode [ 68.657431][ T6156] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.660688][ T6156] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.663847][ T6156] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.666749][ T6156] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.669319][ T6156] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.672041][ T6156] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.675867][ T6156] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.678898][ T6156] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.681665][ T6156] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.684328][ T6156] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.687283][ T6156] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.689871][ T6156] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.692567][ T6156] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.696106][ T6156] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.701827][ T6156] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.704348][ T6156] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.706610][ T6156] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.708989][ T6156] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.739942][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.742298][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.755117][ T1251] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.757591][ T1251] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.815810][ T6258] input: syz0 as /devices/virtual/input/input6 [ 68.892452][ T5930] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 69.064323][ T5930] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 69.067142][ T5930] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 69.069925][ T5930] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 69.072562][ T5930] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 69.077835][ T5930] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 69.080494][ T5930] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 69.082779][ T5930] usb 5-1: Manufacturer: syz [ 69.086383][ T5930] usb 5-1: config 0 descriptor?? [ 69.500965][ T5930] appleir 0003:05AC:8243.0002: unknown main item tag 0x0 [ 69.503239][ T5930] appleir 0003:05AC:8243.0002: No inputs registered, leaving [ 69.510443][ T5930] appleir 0003:05AC:8243.0002: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 69.527073][ T1320] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 69.677878][ T1320] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 69.680798][ T1320] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 69.683445][ T1320] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 69.686050][ T1320] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.689898][ T6283] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 69.694539][ T1320] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 69.900843][ T1320] usb 7-1: USB disconnect, device number 2 [ 70.020124][ T5983] usb 5-1: USB disconnect, device number 2 [ 70.251406][ T65] Bluetooth: hci0: command 0x041b tx timeout [ 70.335160][ T1412] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.337641][ T1412] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.947680][ T6339] input: syz0 as /devices/virtual/input/input7 [ 71.177947][ T6348] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 71.211196][ T6348] kvm: pic: level sensitive irq not supported [ 71.211576][ T6348] kvm: pic: non byte read [ 71.215816][ T6348] kvm: pic: level sensitive irq not supported [ 71.216055][ T6348] kvm: pic: non byte read [ 71.220131][ T6348] kvm: pic: level sensitive irq not supported [ 71.220367][ T6348] kvm: pic: non byte read [ 72.082324][ T6363] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 72.118708][ T6363] kvm: pic: level sensitive irq not supported [ 72.125800][ T6363] kvm: pic: non byte read [ 72.146235][ T6363] kvm: pic: level sensitive irq not supported [ 72.146465][ T6363] kvm: pic: non byte read [ 72.151791][ T6363] kvm: pic: level sensitive irq not supported [ 72.152869][ T6363] kvm: pic: non byte read [ 72.226833][ T835] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 72.401735][ T835] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 72.405655][ T835] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 72.409245][ T835] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 72.412588][ T835] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 72.419564][ T835] usb 9-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 72.422546][ T835] usb 9-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 72.425227][ T835] usb 9-1: Manufacturer: syz [ 72.432007][ T835] usb 9-1: config 0 descriptor?? [ 72.863233][ T835] appleir 0003:05AC:8243.0003: unknown main item tag 0x0 [ 72.865352][ T835] appleir 0003:05AC:8243.0003: No inputs registered, leaving [ 72.872570][ T835] appleir 0003:05AC:8243.0003: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 72.981643][ T6381] netlink: 'syz.3.94': attribute type 1 has an invalid length. [ 73.041451][ T65] Bluetooth: hci3: command 0x0405 tx timeout [ 73.388833][ T1320] usb 9-1: USB disconnect, device number 2 [ 73.942363][ T6397] input: syz0 as /devices/virtual/input/input8 [ 74.351353][ T6406] block device autoloading is deprecated and will be removed. [ 74.857359][ T6415] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 74.864818][ T6415] kvm: pic: level sensitive irq not supported [ 74.865342][ T6415] kvm: pic: non byte read [ 74.871361][ T6415] kvm: pic: level sensitive irq not supported [ 74.871588][ T6415] kvm: pic: non byte read [ 74.875365][ T6415] kvm: pic: level sensitive irq not supported [ 74.875779][ T6415] kvm: pic: non byte read [ 75.238153][ T6002] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 75.339067][ T6431] block nbd3: shutting down sockets [ 75.355660][ T6431] block nbd3: NBD_DISCONNECT [ 75.357095][ T6431] block nbd3: Send disconnect failed -32 [ 75.398693][ T6002] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 75.402334][ T6002] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 75.405338][ T6002] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 75.418875][ T72] cfg80211: failed to load regulatory.db [ 75.419964][ T6002] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 75.428684][ T6002] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 75.431117][ T6002] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 75.433248][ T6002] usb 7-1: Manufacturer: syz [ 75.438068][ T6002] usb 7-1: config 0 descriptor?? [ 75.875727][ T6002] appleir 0003:05AC:8243.0004: unknown main item tag 0x0 [ 75.877781][ T6002] appleir 0003:05AC:8243.0004: No inputs registered, leaving [ 75.892119][ T6002] appleir 0003:05AC:8243.0004: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 76.391369][ T1320] usb 7-1: USB disconnect, device number 3 [ 76.944898][ T6454] syz.4.116 (6454): drop_caches: 2 [ 77.350182][ T6468] block nbd4: shutting down sockets [ 77.400654][ T6469] block nbd4: NBD_DISCONNECT [ 77.404085][ T6469] block nbd4: Send disconnect failed -32 [ 78.121191][ T6498] syz.3.129 (6498): drop_caches: 2 [ 78.899044][ T6506] block nbd2: shutting down sockets [ 78.999780][ T6512] block nbd2: NBD_DISCONNECT [ 79.005269][ T6512] block nbd2: Send disconnect failed -32 [ 81.444631][ T6612] block nbd0: shutting down sockets [ 81.514226][ T6612] block nbd0: NBD_DISCONNECT [ 81.515506][ T6612] block nbd0: Send disconnect failed -32 [ 82.243662][ T6651] netlink: 'syz.4.159': attribute type 1 has an invalid length. [ 82.263575][ T6651] 8021q: adding VLAN 0 to HW filter on device bond1 [ 82.297091][ T6651] bond1: (slave veth3): Enslaving as an active interface with a down link [ 82.347938][ T6651] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 82.355005][ T6651] bond1: (slave batadv1): making interface the new active one [ 82.362615][ T6651] batadv1: entered promiscuous mode [ 82.368636][ T6651] bond1: (slave batadv1): Enslaving as an active interface with an up link [ 87.641117][ T6730] netlink: 'syz.3.176': attribute type 1 has an invalid length. [ 87.675979][ T6730] 8021q: adding VLAN 0 to HW filter on device bond1 [ 87.716959][ T6730] bond1: (slave veth3): Enslaving as an active interface with a down link [ 87.774981][ T6730] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 87.790469][ T6730] bond1: (slave batadv1): making interface the new active one [ 87.797721][ T6730] batadv1: entered promiscuous mode [ 87.804338][ T6730] bond1: (slave batadv1): Enslaving as an active interface with an up link [ 88.763568][ T6756] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 89.216295][ T6769] netlink: 'syz.2.190': attribute type 1 has an invalid length. [ 89.225534][ T6769] 8021q: adding VLAN 0 to HW filter on device bond1 [ 89.250756][ T6769] bond1: (slave veth3): Enslaving as an active interface with a down link [ 89.272236][ T6769] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 89.274915][ T6769] bond1: (slave batadv1): making interface the new active one [ 89.277670][ T6769] batadv1: entered promiscuous mode [ 89.279264][ T6769] bond1: (slave batadv1): Enslaving as an active interface with an up link [ 91.601719][ T6785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.195'. [ 91.641540][ T6785] team1: Mode "" not found [ 91.759739][ T6795] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 92.272342][ T6810] ======================================================= [ 92.272342][ T6810] WARNING: The mand mount option has been deprecated and [ 92.272342][ T6810] and is ignored by this kernel. Remove the mand [ 92.272342][ T6810] option from the mount to silence this warning. [ 92.272342][ T6810] ======================================================= [ 92.297152][ T6810] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 93.578231][ T1136] batadv1: left promiscuous mode [ 95.322962][ T6830] binder: BINDER_SET_CONTEXT_MGR already set [ 95.327213][ T6830] binder: 6829:6830 ioctl 4018620d 20000040 returned -16 [ 95.330448][ T6830] binder: 6829:6830 ioctl c0306201 20000940 returned -14 [ 96.274289][ T6872] binder: 6871:6872 ioctl c0306201 20000940 returned -14 [ 97.136736][ T6886] Cannot find add_set index 0 as target [ 97.287535][ T6888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.227'. [ 97.611374][ T1320] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 97.781041][ T1320] usb 5-1: Using ep0 maxpacket: 8 [ 97.783590][ T1320] usb 5-1: config 0 has no interfaces? [ 97.785119][ T1320] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 97.787515][ T1320] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.790576][ T1320] usb 5-1: config 0 descriptor?? [ 98.624273][ T6914] evm: overlay not supported [ 98.674144][ T6918] overlayfs: failed to get inode (-116) [ 98.676036][ T6918] overlayfs: failed to look up (file0) for ino (-116) [ 98.760020][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.762464][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.764531][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.766589][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.768617][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.770674][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.772705][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.774711][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.776772][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.779041][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.781210][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.783226][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.785245][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.787301][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.789300][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.791708][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.793848][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.795857][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.797981][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.800019][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.801889][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.803845][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.805805][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.807756][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.809801][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.811777][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.813738][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.815702][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.817681][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.819796][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.821851][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.823806][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.825767][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.827719][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.829775][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.831745][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.833728][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.835681][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.837662][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.840151][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.842140][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.844086][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.846053][ T1320] hid-generic 0007:0006:0002.0005: unknown main item tag 0x0 [ 98.853905][ T1320] hid-generic 0007:0006:0002.0005: hidraw1: HID v0.00 Device [syz0] on syz0 [ 99.180264][ T1251] batadv1: left promiscuous mode [ 99.365334][ T5956] Bluetooth: hci3: unexpected event for opcode 0x0060 [ 99.781367][ T6952] Process accounting resumed [ 100.357108][ T6002] usb 5-1: USB disconnect, device number 3 [ 100.492895][ T6973] netlink: 4 bytes leftover after parsing attributes in process `syz.3.252'. [ 100.510500][ T1139] batadv1: left promiscuous mode [ 101.063374][ T6986] syzkaller0: entered promiscuous mode [ 101.064855][ T6986] syzkaller0: entered allmulticast mode [ 102.204017][ T6996] binder: 6995:6996 ioctl c0306201 20000380 returned -14 [ 102.244746][ T7001] netlink: 'syz.2.261': attribute type 16 has an invalid length. [ 103.876849][ T7033] netlink: zone id is out of range [ 105.426602][ T7064] Bluetooth: MGMT ver 1.23 [ 105.897310][ T7087] netlink: 4 bytes leftover after parsing attributes in process `syz.4.288'. [ 105.901094][ T7087] netlink: 12 bytes leftover after parsing attributes in process `syz.4.288'. [ 106.920920][ T7111] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 107.435705][ T39] audit: type=1800 audit(1734438324.281:2): pid=7133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.302" name="bus" dev="overlay" ino=455 res=0 errno=0 [ 107.574487][ T39] audit: type=1326 audit(1734438324.421:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7142 comm="syz.0.304" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 107.826059][ T39] audit: type=1326 audit(1734438324.671:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.3.306" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0 [ 108.391029][ T6002] usb 7-1: new full-speed USB device number 4 using dummy_hcd [ 108.553407][ T6002] usb 7-1: config 0 has an invalid interface number: 55 but max is 0 [ 108.555537][ T6002] usb 7-1: config 0 has no interface number 0 [ 108.557416][ T6002] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 108.560192][ T6002] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 108.563662][ T6002] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 108.566793][ T6002] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64 [ 108.569772][ T6002] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 108.573417][ T6002] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 108.576004][ T6002] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 108.579653][ T6002] usb 7-1: config 0 descriptor?? [ 108.581618][ T7156] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 108.587406][ T6002] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 108.846186][ T6249] usb 7-1: USB disconnect, device number 4 [ 108.846929][ C3] ldusb 7-1:0.55: usb_submit_urb failed (-19) [ 108.857497][ T7156] ldusb 7-1:0.55: Couldn't submit interrupt_out_urb -19 [ 108.875873][ T6249] ldusb 7-1:0.55: LD USB Device #0 now disconnected [ 108.881501][ T7155] delete_channel: no stack [ 109.772539][ T7186] syz.2.315[7186] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 109.772625][ T7186] syz.2.315[7186] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 109.776719][ T7186] syz.2.315[7186] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 109.980061][ T6002] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 110.149897][ T6002] usb 8-1: Using ep0 maxpacket: 8 [ 110.153454][ T6002] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 110.157240][ T6002] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 110.160819][ T6002] usb 8-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 110.164194][ T6002] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.169451][ T6002] usb 8-1: config 0 descriptor?? [ 110.176335][ T6002] usbhid 8-1:0.0: can't add hid device: -22 [ 110.179415][ T6002] usbhid 8-1:0.0: probe with driver usbhid failed with error -22 [ 110.186923][ T39] audit: type=1804 audit(1734438327.032:5): pid=7198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.319" name="/newroot/71/bus/bus" dev="overlay" ino=393 res=1 errno=0 [ 110.471455][ T6249] usb 8-1: USB disconnect, device number 2 [ 111.286552][ T7222] pim6reg1: entered promiscuous mode [ 111.287972][ T7222] pim6reg1: entered allmulticast mode [ 111.444602][ T39] audit: type=1804 audit(1734438328.283:6): pid=7224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.326" name="/newroot/85/file0/file0" dev="9p" ino=36574127 res=1 errno=0 [ 112.411189][ T7247] syz.2.333 (7247): drop_caches: 2 [ 112.932281][ T7271] syz.3.341 uses obsolete (PF_INET,SOCK_PACKET) [ 113.049680][ T7274] misc userio: Invalid payload size [ 113.054636][ T7274] misc userio: The device must be registered before sending interrupts [ 113.060998][ T7274] misc userio: The device must be registered before sending interrupts [ 114.114199][ T39] audit: type=1800 audit(1734438330.954:7): pid=7287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.347" name="file0" dev="9p" ino=36574127 res=0 errno=0 [ 114.119863][ T7287] netfs: Couldn't get user pages (rc=-14) [ 114.240857][ T834] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 114.299194][ T7294] vlan0: entered allmulticast mode [ 114.388810][ T834] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 114.392847][ T834] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 114.395812][ T834] usb 9-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 114.398511][ T834] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.401530][ T834] usb 9-1: config 0 descriptor?? [ 114.813117][ T834] cm6533_jd 0003:0D8C:0022.0006: unknown main item tag 0x0 [ 114.815087][ T834] cm6533_jd 0003:0D8C:0022.0006: unknown main item tag 0x0 [ 114.819247][ T834] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/0003:0D8C:0022.0006/input/input9 [ 114.827569][ T834] cm6533_jd 0003:0D8C:0022.0006: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.4-1/input0 [ 114.886071][ T7298] binder: 7296:7298 ioctl c0306201 20000140 returned -14 [ 115.130684][ T1320] usb 9-1: USB disconnect, device number 3 [ 115.484306][ T39] audit: type=1326 audit(1734438332.325:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.490872][ T39] audit: type=1326 audit(1734438332.325:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.496342][ T39] audit: type=1326 audit(1734438332.325:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.503757][ T39] audit: type=1326 audit(1734438332.325:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.511568][ T39] audit: type=1326 audit(1734438332.325:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.519332][ T39] audit: type=1326 audit(1734438332.325:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.525367][ T39] audit: type=1326 audit(1734438332.325:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.531192][ T39] audit: type=1326 audit(1734438332.325:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.536690][ T39] audit: type=1326 audit(1734438332.325:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.3.353" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf7f16579 code=0x7ffc0000 [ 115.757970][ T7321] nbd3: detected capacity change from 0 to 12 [ 115.763020][ T6155] block nbd3: Send control failed (result -89) [ 115.765840][ T6155] block nbd3: Request send failed, requeueing [ 115.766112][ T7328] block nbd3: NBD_DISCONNECT [ 115.769943][ T6155] block nbd3: Disconnected due to user request. [ 115.773406][ T7328] block nbd3: Send disconnect failed -89 [ 115.776048][ T2415] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.778815][ T2415] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.781646][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.787075][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.789258][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.791608][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.793661][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.795935][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.798311][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.800655][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.802694][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.805367][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.807613][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.809991][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.812057][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.814318][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.816315][ T6155] ldm_validate_partition_table(): Disk read failed. [ 115.819324][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.821922][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.824143][ T6155] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 115.826593][ T6155] Buffer I/O error on dev nbd3, logical block 0, async page read [ 115.829722][ T6155] Dev nbd3: unable to read RDB block 0 [ 115.831356][ T6155] nbd3: unable to read partition table [ 115.832984][ T6155] nbd3: partition table beyond EOD, truncated [ 115.840321][ T6155] ldm_validate_partition_table(): Disk read failed. [ 115.842241][ T6155] Dev nbd3: unable to read RDB block 0 [ 115.844386][ T6155] nbd3: unable to read partition table [ 115.845925][ T6155] nbd3: partition table beyond EOD, truncated [ 115.902502][ T7337] netlink: 1268 bytes leftover after parsing attributes in process `syz.2.360'. [ 115.985602][ T7350] program syz.0.368 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 116.186740][ T7360] ieee802154 phy0 wpan0: encryption failed: -22 [ 116.657032][ T834] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 116.670174][ T7367] netlink: 28 bytes leftover after parsing attributes in process `syz.2.374'. [ 116.672381][ T7367] netlink: 28 bytes leftover after parsing attributes in process `syz.2.374'. [ 116.798931][ T7371] xt_CT: You must specify a L4 protocol and not use inversions on it [ 116.821626][ T834] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 116.825459][ T834] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 116.828530][ T834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.831982][ T834] usb 5-1: config 0 descriptor?? [ 117.046432][ T7365] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 117.049538][ T7365] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 117.053952][ T834] usbhid 5-1:0.0: can't add hid device: -71 [ 117.055627][ T834] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 117.058839][ T834] usb 5-1: USB disconnect, device number 4 [ 117.261998][ T7385] netlink: 'syz.2.381': attribute type 9 has an invalid length. [ 117.264454][ T7385] netlink: 8 bytes leftover after parsing attributes in process `syz.2.381'. [ 117.361252][ T7394] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only [ 117.473980][ T7399] netlink: 36 bytes leftover after parsing attributes in process `syz.2.387'. [ 117.477390][ T7399] netlink: 16 bytes leftover after parsing attributes in process `syz.2.387'. [ 117.479598][ T7399] netlink: 36 bytes leftover after parsing attributes in process `syz.2.387'. [ 117.481985][ T7399] netlink: 36 bytes leftover after parsing attributes in process `syz.2.387'. [ 117.487205][ T834] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 117.636338][ T834] usb 5-1: Using ep0 maxpacket: 16 [ 117.638859][ T834] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 117.641351][ T834] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 117.643891][ T834] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 117.646509][ T834] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 8 [ 117.649025][ T834] usb 5-1: config 1 interface 0 has no altsetting 0 [ 117.650777][ T834] usb 5-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 117.653167][ T834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.663847][ T834] ums-sddr09 5-1:1.0: USB Mass Storage device detected [ 117.786325][ T6002] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 117.866235][ T834] scsi host6: usb-storage 5-1:1.0 [ 117.936215][ T6002] usb 8-1: Using ep0 maxpacket: 8 [ 117.944824][ T6002] usb 8-1: unable to get BOS descriptor or descriptor too short [ 117.947503][ T7401] uprobe: syz.3.388:7401 failed to unregister, leaking uprobe [ 117.947992][ T6002] usb 8-1: unable to read config index 0 descriptor/start: -71 [ 117.951779][ T6002] usb 8-1: can't read configurations, error -71 [ 118.310280][ T7410] netlink: 1268 bytes leftover after parsing attributes in process `syz.4.389'. [ 118.940818][ T98] scsi 6:0:0:0: Direct-Access Sandisk ImageMate SDDR09 0177 PQ: 0 ANSI: 0 [ 118.963056][ T98] sd 6:0:0:0: Attached scsi generic sg2 type 0 [ 118.970035][ T7404] sddr09: could not read card info [ 119.075503][ T7421] netlink: 'syz.3.392': attribute type 9 has an invalid length. [ 119.084443][ T7421] netlink: 8 bytes leftover after parsing attributes in process `syz.3.392'. [ 119.115818][ T7404] usb 5-1: reset high-speed USB device number 5 using dummy_hcd [ 119.128483][ T7426] raw-gadget.0 gadget.0: fail, usb_ep_queue returned -108 [ 119.536067][ T7440] bridge0: port 2(bridge_slave_1) entered disabled state [ 119.538808][ T7440] bridge0: port 1(bridge_slave_0) entered disabled state [ 119.607346][ T7440] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 119.614397][ T7440] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 119.645198][ T7440] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.647812][ T7440] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.650769][ T7440] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.653810][ T7440] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.961768][ T6002] usb 5-1: USB disconnect, device number 5 [ 119.986605][ T63] sd 6:0:0:0: [sdb] 0 512-byte logical blocks: (0 B/0 B) [ 119.988384][ T63] sd 6:0:0:0: [sdb] 0-byte physical blocks [ 119.990087][ T63] sd 6:0:0:0: [sdb] Write Protect is off [ 119.991689][ T63] sd 6:0:0:0: [sdb] Asking for cache data failed [ 119.993252][ T63] sd 6:0:0:0: [sdb] Assuming drive cache: write through [ 119.996268][ T63] [ 119.996900][ T63] ====================================================== [ 119.999077][ T63] WARNING: possible circular locking dependency detected [ 120.001203][ T63] 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0 Not tainted SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 120.004580][ T63] ------------------------------------------------------ [ 120.007259][ T63] kworker/u32:3/63 is trying to acquire lock: [ 120.009358][ T63] ffff888044951ca8 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_mq_init_sched+0x42b/0x640 [ 120.012689][ T63] [ 120.012689][ T63] but task is already holding lock: [ 120.015134][ T63] ffff888044951470 (&q->q_usage_counter(queue)#53){++++}-{0:0}, at: add_disk_fwnode+0x113/0x1300 [ 120.018093][ T63] [ 120.018093][ T63] which lock already depends on the new lock. [ 120.018093][ T63] [ 120.020779][ T63] [ 120.020779][ T63] the existing dependency chain (in reverse order) is: [ 120.023156][ T63] [ 120.023156][ T63] -> #5 (&q->q_usage_counter(queue)#53){++++}-{0:0}: [ 120.026148][ T63] blk_queue_enter+0x50f/0x640 [ 120.027548][ T63] blk_mq_alloc_request+0x59b/0x950 [ 120.029053][ T63] scsi_execute_cmd+0x1f1/0xff0 [ 120.030487][ T63] read_capacity_10+0x1d4/0x6d0 [ 120.031889][ T63] sd_revalidate_disk.isra.0+0x3145/0xa8d0 [ 120.033593][ T63] sd_probe+0x8ee/0xfa0 [ 120.035322][ T63] really_probe+0x23e/0xa90 [ 120.037031][ T63] __driver_probe_device+0x1de/0x440 [ 120.038788][ T63] driver_probe_device+0x4c/0x1b0 [ 120.040263][ T63] __device_attach_driver+0x1df/0x310 [ 120.041799][ T63] bus_for_each_drv+0x157/0x1e0 [ 120.043199][ T63] __device_attach_async_helper+0x1d3/0x290 [ 120.044887][ T63] async_run_entry_fn+0x9c/0x530 [ 120.046331][ T63] process_one_work+0x958/0x1b30 [ 120.047758][ T63] worker_thread+0x6c8/0xf00 [ 120.049113][ T63] kthread+0x2c1/0x3a0 [ 120.050372][ T63] ret_from_fork+0x45/0x80 [ 120.051646][ T63] ret_from_fork_asm+0x1a/0x30 [ 120.053014][ T63] [ 120.053014][ T63] -> #4 (&q->limits_lock){+.+.}-{4:4}: [ 120.055024][ T63] __mutex_lock+0x19b/0xa60 [ 120.056332][ T63] __nbd_set_size+0x2c0/0x730 [ 120.057696][ T63] nbd_start_device+0x8fd/0xd70 [ 120.059105][ T63] nbd_ioctl+0x21a/0xfd0 [ 120.060390][ T63] compat_blkdev_ioctl+0x2f7/0x750 [ 120.061859][ T63] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 120.063365][ T63] __do_fast_syscall_32+0x73/0x120 [ 120.064841][ T63] do_fast_syscall_32+0x32/0x80 [ 120.066486][ T63] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 120.068639][ T63] [ 120.068639][ T63] -> #3 (&q->q_usage_counter(io)#52){++++}-{0:0}: [ 120.070899][ T63] blk_mq_submit_bio+0x1fb6/0x24c0 [ 120.072376][ T63] __submit_bio+0x384/0x540 [ 120.073695][ T63] submit_bio_noacct_nocheck+0x698/0xd70 [ 120.075370][ T63] submit_bio_noacct+0x93a/0x1e20 [ 120.077131][ T63] block_read_full_folio+0x812/0xa50 [ 120.078634][ T63] filemap_read_folio+0xc6/0x2a0 [ 120.079982][ T63] filemap_get_pages+0x155f/0x1be0 [ 120.081435][ T63] filemap_read+0x3ca/0xd70 [ 120.082764][ T63] blkdev_read_iter+0x187/0x480 [ 120.084132][ T63] vfs_read+0x87f/0xbe0 [ 120.085332][ T63] ksys_read+0x12b/0x250 [ 120.086497][ T63] do_syscall_64+0xcd/0x250 [ 120.087786][ T63] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.089467][ T63] [ 120.089467][ T63] -> #2 (mapping.invalidate_lock#2){++++}-{4:4}: [ 120.091688][ T63] down_read+0x9a/0x330 [ 120.092945][ T63] filemap_fault+0x2e0/0x2820 [ 120.094310][ T63] __do_fault+0x10a/0x490 [ 120.095587][ T63] do_pte_missing+0x1a8/0x3e00 [ 120.096989][ T63] __handle_mm_fault+0x103c/0x2a40 [ 120.098460][ T63] handle_mm_fault+0x3fa/0xaa0 [ 120.099850][ T63] __get_user_pages+0x8d9/0x3b50 [ 120.101322][ T63] faultin_page_range+0x24a/0x980 [ 120.102772][ T63] do_madvise+0x504/0x770 [ 120.104072][ T63] __ia32_sys_madvise+0xa7/0x110 [ 120.105497][ T63] __do_fast_syscall_32+0x73/0x120 [ 120.107157][ T63] do_fast_syscall_32+0x32/0x80 [ 120.108988][ T63] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 120.110932][ T63] [ 120.110932][ T63] -> #1 (&mm->mmap_lock){++++}-{4:4}: [ 120.113486][ T63] __might_fault+0x11b/0x190 [ 120.115148][ T63] _copy_from_user+0x29/0xd0 [ 120.116595][ T63] compat_blk_trace_setup+0xc9/0x200 [ 120.118133][ T63] blk_trace_ioctl+0x24a/0x290 [ 120.119519][ T63] compat_blkdev_ioctl+0x13c/0x750 [ 120.121029][ T63] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 120.122558][ T63] __do_fast_syscall_32+0x73/0x120 [ 120.124042][ T63] do_fast_syscall_32+0x32/0x80 [ 120.125446][ T63] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 120.127514][ T63] [ 120.127514][ T63] -> #0 (&q->debugfs_mutex){+.+.}-{4:4}: [ 120.129554][ T63] __lock_acquire+0x249e/0x3c40 [ 120.131003][ T63] lock_acquire.part.0+0x11b/0x380 [ 120.132526][ T63] __mutex_lock+0x19b/0xa60 [ 120.133846][ T63] blk_mq_init_sched+0x42b/0x640 [ 120.135298][ T63] elevator_init_mq+0x2cd/0x420 [ 120.136710][ T63] add_disk_fwnode+0x113/0x1300 [ 120.138128][ T63] sd_probe+0xa66/0xfa0 [ 120.139368][ T63] really_probe+0x23e/0xa90 [ 120.140707][ T63] __driver_probe_device+0x1de/0x440 [ 120.142236][ T63] driver_probe_device+0x4c/0x1b0 [ 120.143671][ T63] __device_attach_driver+0x1df/0x310 [ 120.145226][ T63] bus_for_each_drv+0x157/0x1e0 [ 120.146617][ T63] __device_attach_async_helper+0x1d3/0x290 [ 120.148446][ T63] async_run_entry_fn+0x9c/0x530 [ 120.149902][ T63] process_one_work+0x958/0x1b30 [ 120.151381][ T63] worker_thread+0x6c8/0xf00 [ 120.152668][ T63] kthread+0x2c1/0x3a0 [ 120.153927][ T63] ret_from_fork+0x45/0x80 [ 120.155246][ T63] ret_from_fork_asm+0x1a/0x30 [ 120.156662][ T63] [ 120.156662][ T63] other info that might help us debug this: [ 120.156662][ T63] [ 120.159198][ T63] Chain exists of: [ 120.159198][ T63] &q->debugfs_mutex --> &q->limits_lock --> &q->q_usage_counter(queue)#53 [ 120.159198][ T63] [ 120.163056][ T63] Possible unsafe locking scenario: [ 120.163056][ T63] [ 120.164988][ T63] CPU0 CPU1 [ 120.166367][ T63] ---- ---- [ 120.167798][ T63] lock(&q->q_usage_counter(queue)#53); [ 120.169301][ T63] lock(&q->limits_lock); [ 120.171151][ T63] lock(&q->q_usage_counter(queue)#53); [ 120.173288][ T63] lock(&q->debugfs_mutex); [ 120.174491][ T63] [ 120.174491][ T63] *** DEADLOCK *** [ 120.174491][ T63] [ 120.176469][ T63] 4 locks held by kworker/u32:3/63: [ 120.177833][ T63] #0: ffff88801c6bb948 ((wq_completion)async){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30 [ 120.180458][ T63] #1: ffffc900009f7d80 ((work_completion)(&entry->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 [ 120.183303][ T63] #2: ffff888068ece378 (&dev->mutex){....}-{4:4}, at: __device_attach_async_helper+0x84/0x290 [ 120.186010][ T63] #3: ffff888044951470 (&q->q_usage_counter(queue)#53){++++}-{0:0}, at: add_disk_fwnode+0x113/0x1300 [ 120.188749][ T63] [ 120.188749][ T63] stack backtrace: [ 120.190324][ T63] CPU: 0 UID: 0 PID: 63 Comm: kworker/u32:3 Not tainted 6.13.0-rc3-syzkaller-00017-gf44d154d6e3d #0 [ 120.193117][ T63] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 120.195922][ T63] Workqueue: async async_run_entry_fn [ 120.197356][ T63] Call Trace: [ 120.198242][ T63] [ 120.199038][ T63] dump_stack_lvl+0x116/0x1f0 [ 120.200276][ T63] print_circular_bug+0x41c/0x610 [ 120.201590][ T63] check_noncircular+0x31a/0x400 [ 120.202849][ T63] ? __pfx_check_noncircular+0x10/0x10 [ 120.204219][ T63] ? lockdep_lock+0xc6/0x200 [ 120.205446][ T63] ? __pfx_lockdep_lock+0x10/0x10 [ 120.206865][ T63] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 120.208762][ T63] __lock_acquire+0x249e/0x3c40 [ 120.210316][ T63] ? __pfx___lock_acquire+0x10/0x10 [ 120.212138][ T63] lock_acquire.part.0+0x11b/0x380 [ 120.213876][ T63] ? blk_mq_init_sched+0x42b/0x640 [ 120.215190][ T63] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 120.216674][ T63] ? rcu_is_watching+0x12/0xc0 [ 120.217947][ T63] ? trace_lock_acquire+0x14e/0x1f0 [ 120.219346][ T63] ? blk_mq_init_sched+0x42b/0x640 [ 120.220685][ T63] ? lock_acquire+0x2f/0xb0 [ 120.221911][ T63] ? blk_mq_init_sched+0x42b/0x640 [ 120.223260][ T63] __mutex_lock+0x19b/0xa60 [ 120.224469][ T63] ? blk_mq_init_sched+0x42b/0x640 [ 120.226098][ T63] ? blk_mq_init_sched+0x42b/0x640 [ 120.227487][ T63] ? __pfx___mutex_lock+0x10/0x10 [ 120.228782][ T63] ? blk_queue_flag_set+0x29/0x40 [ 120.230127][ T63] ? blk_mq_init_sched+0x42b/0x640 [ 120.231521][ T63] blk_mq_init_sched+0x42b/0x640 [ 120.232936][ T63] ? __pfx_blk_mq_init_sched+0x10/0x10 [ 120.234347][ T63] ? __pfx_blk_mq_cancel_work_sync+0x10/0x10 [ 120.235916][ T63] ? lock_acquire+0x2f/0xb0 [ 120.237065][ T63] ? add_disk_fwnode+0x113/0x1300 [ 120.238451][ T63] elevator_init_mq+0x2cd/0x420 [ 120.239698][ T63] ? add_disk_fwnode+0x113/0x1300 [ 120.241055][ T63] add_disk_fwnode+0x113/0x1300 [ 120.242293][ T63] ? _raw_spin_unlock_irq+0x23/0x50 [ 120.243670][ T63] sd_probe+0xa66/0xfa0 [ 120.244787][ T63] ? __pfx_sd_probe+0x10/0x10 [ 120.246029][ T63] really_probe+0x23e/0xa90 [ 120.247235][ T63] __driver_probe_device+0x1de/0x440 [ 120.248635][ T63] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 120.250198][ T63] driver_probe_device+0x4c/0x1b0 [ 120.251546][ T63] __device_attach_driver+0x1df/0x310 [ 120.252975][ T63] ? __pfx___device_attach_driver+0x10/0x10 [ 120.254478][ T63] bus_for_each_drv+0x157/0x1e0 [ 120.255795][ T63] ? __pfx_bus_for_each_drv+0x10/0x10 [ 120.257232][ T63] ? lockdep_hardirqs_on+0x7c/0x110 [ 120.258606][ T63] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 120.260184][ T63] ? __pfx___device_attach_async_helper+0x10/0x10 [ 120.261904][ T63] __device_attach_async_helper+0x1d3/0x290 [ 120.263452][ T63] ? __pfx___device_attach_async_helper+0x10/0x10 [ 120.265104][ T63] ? ktime_get+0x206/0x300 [ 120.266291][ T63] ? read_tsc+0x9/0x20 [ 120.267344][ T63] ? ktime_get+0x1ac/0x300 [ 120.268529][ T63] async_run_entry_fn+0x9c/0x530 [ 120.269836][ T63] process_one_work+0x958/0x1b30 [ 120.271117][ T63] ? __pfx_batadv_nc_worker+0x10/0x10 [ 120.272432][ T63] ? __pfx_process_one_work+0x10/0x10 [ 120.273838][ T63] ? rcu_is_watching+0x12/0xc0 [ 120.275297][ T63] ? assign_work+0x1a0/0x250 [ 120.276913][ T63] worker_thread+0x6c8/0xf00 [ 120.278219][ T63] ? __pfx_worker_thread+0x10/0x10 [ 120.279581][ T63] kthread+0x2c1/0x3a0 [ 120.280668][ T63] ? _raw_spin_unlock_irq+0x23/0x50 [ 120.282026][ T63] ? __pfx_kthread+0x10/0x10 [ 120.283253][ T63] ret_from_fork+0x45/0x80 [ 120.284458][ T63] ? __pfx_kthread+0x10/0x10 [ 120.285687][ T63] ret_from_fork_asm+0x1a/0x30 [ 120.286979][ T63] [ 120.292110][ T63] sd 6:0:0:0: [sdb] Attached SCSI removable disk [ 120.619524][ T98] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.678137][ T6157] udevd[6157]: inotify_add_watch(7, /dev/sdb, 10) failed: No such file or directory [ 120.688469][ T98] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.703798][ T6155] udevd[6155]: inotify_add_watch(7, /dev/sdb, 10) failed: No such file or directory [ 120.816796][ T98] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.957316][ T98] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.085259][ T98] bridge_slave_0: left promiscuous mode [ 121.086815][ T98] bridge0: port 1(bridge_slave_0) entered disabled state [ 121.218075][ T98] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 121.221081][ T98] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 121.223670][ T98] bond0 (unregistering): Released all slaves [ 121.227849][ T98] bond1 (unregistering): (slave veth3): Releasing active interface [ 121.229927][ T98] batadv1: entered promiscuous mode [ 121.232003][ T98] bond1 (unregistering): (slave batadv1): Releasing active interface [ 121.234666][ T98] bond1 (unregistering): Released all slaves [ 121.520475][ T98] hsr_slave_0: left promiscuous mode [ 121.522131][ T98] hsr_slave_1: left promiscuous mode [ 121.523867][ T98] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 121.525855][ T98] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 121.527934][ T98] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 121.529819][ T98] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 121.532758][ T98] bridge_slave_0: left allmulticast mode [ 121.534266][ T98] veth1_macvtap: left promiscuous mode [ 121.536056][ T98] veth0_macvtap: left promiscuous mode [ 121.537441][ T98] veth1_vlan: left promiscuous mode [ 121.538741][ T98] veth0_vlan: left promiscuous mode [ 121.713600][ T98] team0 (unregistering): Port device team_slave_1 removed [ 121.753745][ T98] team0 (unregistering): Port device team_slave_0 removed [ 122.565967][ T98] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.637565][ T98] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.697387][ T98] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.757952][ T98] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.833790][ T98] bridge_slave_1: left allmulticast mode [ 122.835327][ T98] bridge_slave_1: left promiscuous mode [ 122.836946][ T98] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.839331][ T98] bridge_slave_0: left allmulticast mode [ 122.840852][ T98] bridge_slave_0: left promiscuous mode [ 122.842342][ T98] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.845468][ T98] bridge_slave_1: left allmulticast mode [ 122.847174][ T98] bridge_slave_1: left promiscuous mode [ 122.848681][ T98] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.851720][ T98] bridge_slave_0: left allmulticast mode [ 122.853257][ T98] bridge_slave_0: left promiscuous mode [ 122.855170][ T98] bridge0: port 1(bridge_slave_0) entered disabled state [ 123.120055][ T98] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 123.122627][ T98] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 123.125157][ T98] bond0 (unregistering): Released all slaves [ 123.183722][ T98] bond1 (unregistering): (slave veth3): Releasing active interface [ 123.186861][ T98] batadv1: entered promiscuous mode [ 123.188812][ T98] bond1 (unregistering): (slave batadv1): Releasing active interface [ 123.191293][ T98] bond1 (unregistering): Released all slaves [ 123.198921][ T98] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 123.202756][ T98] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 123.205652][ T98] bond0 (unregistering): Released all slaves [ 123.527229][ T98] hsr_slave_0: left promiscuous mode [ 123.529643][ T98] hsr_slave_1: left promiscuous mode [ 123.531811][ T98] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 123.533908][ T98] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 123.538416][ T98] hsr_slave_0: left promiscuous mode [ 123.540239][ T98] hsr_slave_1: left promiscuous mode [ 123.541990][ T98] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 123.544074][ T98] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 123.546910][ T98] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 123.548956][ T98] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 123.551953][ T98] veth1_macvtap: left promiscuous mode [ 123.553390][ T98] veth0_macvtap: left promiscuous mode [ 123.554928][ T98] veth1_vlan: left promiscuous mode [ 123.556323][ T98] veth0_vlan: left promiscuous mode [ 124.081201][ T98] team0 (unregistering): Port device team_slave_1 removed [ 124.153516][ T98] team0 (unregistering): Port device team_slave_0 removed [ 124.713346][ T98] team0 (unregistering): Port device team_slave_1 removed [ 124.744883][ T98] team0 (unregistering): Port device team_slave_0 removed VM DIAGNOSIS: 12:25:36 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85142075 RDI=ffffffff9a665300 RBP=ffffffff9a6652c0 RSP=ffffc900009f6e90 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36 R12=0000000000000000 R13=0000000000000061 R14=ffffffff85142010 R15=0000000000000000 RIP=ffffffff8514209f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f73a6994 CR3=000000004bd38000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 00c800a400000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffff88802b53ed00 RCX=ffffffff816e40a9 RDX=0000000000000000 RSI=ffffffff8bb16bc0 RDI=ffffffff8d82fce8 RBP=1ffff9200081ef34 RSP=ffffc900040f7920 R8 =0000000000000000 R9 =fffffbfff2039b3a R10=ffffffff901cd9d7 R11=0000000000000000 R12=00000000ffffb972 R13=0000000000000001 R14=ffff88802b43ed00 R15=ffff88802b53ed00 RIP=ffffffff816e40bd RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c33e68a CR3=0000000012b12000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=ffffc90003c17120 RCX=ffffc90003c18000 RDX=ffffc90003c17120 RSI=ffffc90003c17468 RDI=ffffc90003c17120 RBP=ffffc90003c17468 RSP=ffffc90003c17070 R8 =ffffffff90bab234 R9 =ffffffff90bab232 R10=ffffc90003c17120 R11=000000000000eebd R12=0000000000000008 R13=ffffc90003c17130 R14=ffffc90003c17128 R15=ffffc90003c10000 RIP=ffffffff8148ecd0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7fd6e40 CR3=000000000db7e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7473ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000014d81f RBX=0000000000000003 RCX=ffffffff8b1a17a9 RDX=0000000000000000 RSI=ffffffff8b4cd180 RDI=ffffffff8bb16c40 RBP=ffffed10039df488 RSP=ffffc9000049fe08 R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000 R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901cd9d0 R15=0000000000000000 RIP=ffffffff8b1a2b8f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020c10000 CR3=0000000025290000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 90fbbea965ecb524 0a465f778f69df8c ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8eb29d1234b28070 1d5c8897565c0287 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 38c57b08e5b4a21f 5745418526e2684c ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d978b0241de9f52 6241ca286688afed ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004200 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 acc5953400bea44f 0000000000000049 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b0b0c7a6b679fada c100bba200de165d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b5ed23ba00000049 0000004900000049 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004900000000 bfc70c6600000049 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5262918a77e2fe18 2bd7216f0d9cce52 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7a34d059e856466 903e1bfb8c47e6b5 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000