last executing test programs: 4.0711665s ago: executing program 3 (id=155): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="02"]) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000003c0)={0x0, 0x0, @pic={0x0, 0xff, 0x0, 0x10, 0x0, 0x44, 0x5, 0x0, 0x0, 0x0, 0x20, 0xfd, 0x4, 0x0, 0xff}}) recvfrom(r1, &(0x7f0000000140)=""/105, 0x69, 0x20, 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x5, 0xfffffffffffffffd, 0x0, 0x0, 0x2004c9, 0x0, 0x1], 0x0, 0x2c0710}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x3ab002, 0x0) ioctl$SNDCTL_SEQ_SYNC(r5, 0x5101) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4048aecb, &(0x7f0000000080)) 3.845021588s ago: executing program 3 (id=163): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a0000000000fa82a3fa211411fa0008000a40000000000900020073797a31000000000900010073797a30000000000800054000000000080008400000000014000000110001"], 0x6c}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x18) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 3.491229362s ago: executing program 2 (id=176): r0 = socket$inet_tcp(0x2, 0x1, 0x0) syz_usb_connect(0x6, 0x0, 0x0, 0x0) ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, 0x0) ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, 0x0) r1 = syz_open_dev$I2C(0x0, 0x1, 0x0) ioctl$I2C_PEC(r1, 0x708, 0x43) ioctl$I2C_SMBUS(r1, 0x720, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xa0200, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf) r3 = fcntl$dupfd(r2, 0x406, r2) ioctl$TCFLSH(r3, 0x400455c8, 0x20000000009) mkdirat(0xffffffffffffff9c, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 2.961284831s ago: executing program 3 (id=186): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x52, 0x6, 0x3, "3258c5c00e7f94ae1e008faa001b0000f4ea40000000a5d79bc06c87543900", 0x30314752}) socket$kcm(0x10, 0x2, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000080), 0xfffffffffffffff4, 0x200041) ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x8, 0x14, 0x7, 0x4}]}) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00') read$FUSE(r2, &(0x7f0000004300)={0x2020}, 0x2020) sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181014100000000010000000000000e000a000f00000002800200121f", 0x2e}], 0x1}, 0x0) 2.961083426s ago: executing program 3 (id=187): r0 = socket$inet_tcp(0x2, 0x1, 0x0) syz_usb_connect(0x6, 0x0, 0x0, 0x0) ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x28843, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r4 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) r5 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x24, &(0x7f0000000000)=0x400, 0x4) ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, 0x0) r6 = syz_open_dev$I2C(0x0, 0x1, 0x0) ioctl$I2C_PEC(r6, 0x708, 0x43) ioctl$I2C_SMBUS(r6, 0x720, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r8 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0) write$USERIO_CMD_SET_PORT_TYPE(r2, &(0x7f00000001c0)={0x1, 0x4}, 0x99) write$USERIO_CMD_REGISTER(r8, &(0x7f00000000c0), 0x2) write$USERIO_CMD_SET_PORT_TYPE(r8, &(0x7f0000000100)={0x1, 0xc}, 0x2) ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf) r9 = fcntl$dupfd(r7, 0x406, r7) ioctl$TCFLSH(r9, 0x400455c8, 0x20000000009) socket$nl_route(0x10, 0x3, 0x0) syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5b6d, &(0x7f0000000180)={0x0, 0x2, 0x10100, 0x3}, 0x0, 0x0) r10 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0xc0686611, &(0x7f0000000180)={0x68, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="180200000000ff0100000000000000008500000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000001700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 1.221126182s ago: executing program 1 (id=205): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a0000000000fa82a3fa211411fa0008000a40000000000900020073797a31000000000900010073797a30000000000800054000000000080008400000000014000000110001"], 0x6c}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x18) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 896.501697ms ago: executing program 2 (id=209): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x18) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) bind$can_j1939(0xffffffffffffffff, &(0x7f0000000080)={0x1d, 0x0, 0x3, {0x2, 0x0, 0x4}, 0x1}, 0x18) 831.133173ms ago: executing program 2 (id=211): ioctl$VIDIOC_ENUMAUDOUT(0xffffffffffffffff, 0xc0345642, &(0x7f0000000000)={0x9, "a8d44a766e5bf368e887bfa3773a10d7307381946e1a0a7f64190187d4d30358", 0x2}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000280)={{0x0, 0xfffc}, 'syz0\x00', 0x10}) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0) ioctl$EVIOCRMFF(r2, 0x40044581, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x1fe, 0x3, 0x100000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 680.997636ms ago: executing program 2 (id=212): sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)='G', 0x1}], 0x1}, 0x0) r0 = fsopen(&(0x7f0000000280)='nfs4\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000000c0)='-}^\x00', &(0x7f0000000100)='\x1a\x00', 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x204, 0xa, 0x1}) r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_REQBUFS(r2, 0xc0585609, &(0x7f0000000040)={0x0, 0xa}) 610.074464ms ago: executing program 2 (id=214): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r0 = socket$inet6(0xa, 0x3, 0x8000000003c) r1 = socket$nl_route(0x10, 0x3, 0x0) fanotify_init(0x20, 0x400) r2 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x640, 0x10062}, [@IFLA_CARRIER={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588) r4 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc) r6 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r6, &(0x7f0000000480), 0x21, 0x0) 551.042456ms ago: executing program 0 (id=215): r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10) getpeername$inet(r0, 0x0, &(0x7f0000000100)) r1 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_FLUSH(r1, 0x0, 0xd1, &(0x7f0000000000)=0x4, 0x4) ioctl$F2FS_IOC_GET_PIN_FILE(r1, 0x8004f50e, 0x0) socket(0x40000000015, 0x5, 0x0) (async) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10) (async) getpeername$inet(r0, 0x0, &(0x7f0000000100)) (async) socket$igmp(0x2, 0x3, 0x2) (async) setsockopt$MRT_FLUSH(r1, 0x0, 0xd1, &(0x7f0000000000)=0x4, 0x4) (async) ioctl$F2FS_IOC_GET_PIN_FILE(r1, 0x8004f50e, 0x0) (async) 550.845496ms ago: executing program 0 (id=216): syz_open_dev$tty1(0xc, 0x4, 0x1) (async) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x4b52, &(0x7f0000000000)) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r1, &(0x7f0000000140)={{0x6, @rose}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null]}, 0x48) listen(r1, 0x1ad72f7) (async) listen(r1, 0x1ad72f7) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00'}) (async) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)={0x54, r3, 0x1, 0x70bd2d, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x38, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "a79c32ffb9fbee54"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="20bb7bcad0230550ca1bb4b60de42fec"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="789dd40ff588f8496feec1213371627e"}]}]}, 0x54}}, 0x0) mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000380)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}]}) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f00000005c0)={0x1, "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"}) r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000100)={0xc, 0x0, 0x0}) socket$inet6_tcp(0xa, 0x1, 0x0) (async) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, &(0x7f0000000240)={0x48, 0x5, r6}) (async) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, &(0x7f0000000240)={0x48, 0x5, r6}) ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000040)={0x48, 0x2, r6}) 330.487942ms ago: executing program 1 (id=217): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) (async) mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) (async) openat$audio1(0xffffffffffffff9c, &(0x7f0000000040), 0x151200, 0x0) r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r1, 0xc01064c1, &(0x7f0000000200)={r2}) (async, rerun: 64) close_range(r0, r1, 0x0) (async, rerun: 64) close_range(r0, 0xffffffffffffffff, 0x0) (async) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async) r3 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x2}, 0x8) (async) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (async) chdir(&(0x7f0000000140)='./bus\x00') r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) r5 = dup(r4) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000040)=0x10003210) (async) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f0000000400)={0x0, @in6={{0xa, 0x4e23, 0x200, @rand_addr=' \x01\x00', 0xffff}}}, &(0x7f0000000000)=0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f00000004c0)={r6, @in={{0x2, 0x4e20, @remote}}, 0x6, 0xff2b}, 0x90) 330.309872ms ago: executing program 1 (id=218): r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f00000000c0)={0x200000000000001}, 0x8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0xfffffffd, @local, 0x2}, 0x1c) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0), 0x0, 0x4005040) 322.745006ms ago: executing program 1 (id=219): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) bind$can_j1939(0xffffffffffffffff, &(0x7f0000000080)={0x1d, 0x0, 0x3, {0x2, 0x0, 0x4}, 0x1}, 0x18) 270.768316ms ago: executing program 0 (id=220): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000600)={0x0, 0x7f390004, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="60000000020605020000200000000000000000001400078008001340040000000800124000060000050001000700000013000300686173683a6e65742c6966616365000005000440000000000900020073797a3100000000050005000a"], 0x60}}, 0x0) (async) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) (async) futex(&(0x7f000000cffc)=0x100000000000004, 0x0, 0x4, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x1, 0x4, 0x0, 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) r3 = io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x629a, 0x40, 0x2, 0x3ba, 0x0, r2}) (async) r4 = socket$rxrpc(0x21, 0x2, 0xa) bind$rxrpc(r4, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24) (async) close_range(r3, r4, 0x0) (async) futex(&(0x7f0000000080)=0x1, 0x9, 0x0, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000100)=0x1, 0x0) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0x15) 270.2683ms ago: executing program 1 (id=221): r0 = socket(0x10, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}}}) timerfd_gettime(0xffffffffffffffff, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) setxattr$security_ima(0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=ANY=[]) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="019b1d35eb66c40f13002f"], 0x34}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1) sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x48, r3, 0x400, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0x1c, 0x34, @random="d09b1fe079e7dff8dd9ecdc515991f716979a32374fd7771"}, @NL80211_ATTR_MAC={0xa}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20000880) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xb, &(0x7f0000000080)=@framed={{}, [@printk={@u, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x10}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000800)={0x0, 0x2}, &(0x7f0000000840)=0x8) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000880)={r5, 0x1f}, 0x8) socket(0x10, 0x2, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}}}) (async) timerfd_gettime(0xffffffffffffffff, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) (async) setxattr$security_ima(0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0) (async) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=ANY=[]) (async) syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) (async) sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="019b1d35eb66c40f13002f"], 0x34}}, 0x0) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1) (async) sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x48, r3, 0x400, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0x1c, 0x34, @random="d09b1fe079e7dff8dd9ecdc515991f716979a32374fd7771"}, @NL80211_ATTR_MAC={0xa}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20000880) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xb, &(0x7f0000000080)=@framed={{}, [@printk={@u, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x10}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async) openat$binder_debug(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) (async) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000800)={0x0, 0x2}, &(0x7f0000000840)=0x8) (async) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000880)={r5, 0x1f}, 0x8) (async) 221.130109ms ago: executing program 3 (id=222): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x52, &(0x7f00000007c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a27f2", 0x1c, 0x2c, 0x0, @remote, @local, {[@routing={0x0, 0x0, 0x0, 0xf6}], {{0x8000, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020025797a31000000000900010073797a3000000000080005400000001c"], 0xe8}}, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000030022d6850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000002c0)='percpu_alloc_percpu_fail\x00', r2}, 0x10) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socket$inet_udp(0x2, 0x2, 0x0) 220.664265ms ago: executing program 1 (id=223): r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) ioctl$NBD_SET_SOCK(r0, 0xab00, r1) r2 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000100000022"], 0x48) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xd, 0xc, 0x4, 0x6, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000200)={&(0x7f0000000180), 0x0, 0x0, 0x0, 0x10000, r4}, 0x38) ioctl$NBD_SET_FLAGS(r2, 0xab0a, 0x1000001000104) ioctl$NBD_SET_SOCK(r2, 0xab00, r1) ioctl$NBD_SET_SOCK(r0, 0xab00, r1) ioctl$NBD_DO_IT(r0, 0xab03) ioctl$NBD_CLEAR_SOCK(r2, 0xab04) 220.272837ms ago: executing program 0 (id=224): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1220}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_RESEND_IGMP={0x8, 0xf, 0xc}]}}}]}, 0x3c}}, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={r0, 0x4, 0x7, 0x4}) accept$ax25(r1, &(0x7f0000000140)={{0x3, @default}, [@netrom, @rose, @bcast, @netrom, @remote, @netrom, @rose, @default]}, &(0x7f00000000c0)=0x48) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x0) 218.876108ms ago: executing program 3 (id=225): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a0000000000fa82a3fa211411fa0008000a40000000000900020073797a31000000000900010073797a30000000000800054000000000080008400000000014000000110001"], 0x6c}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x18) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 141.058741ms ago: executing program 0 (id=226): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) (async) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000783000/0x3000)=nil, 0x3000, 0x2000002, 0x10, r0, 0x0) (async) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0) (async) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f00000006c0)={'team0\x00', 0x0}) (async) r5 = geteuid() setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000700)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@remote, 0x4e22, 0x22a4, 0x4e24, 0x0, 0x2, 0x0, 0x0, 0x6, r4, r5}, {0xe1e, 0x4, 0x1ff, 0x55ff, 0x8001, 0x55, 0x10001, 0xfffffffffffffffc}, {0x6e6, 0x0, 0x9f4, 0xf3}, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x4d3, 0x33}, 0x2, @in=@remote, 0x0, 0x0, 0x0, 0x1, 0x6, 0x3ff, 0x80}}, 0xe8) (async) ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000140)) ioctl$PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x400}]}) r6 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r6, &(0x7f0000000e00)=[{{&(0x7f0000000080)={0x2, 0x4e33, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private=0xa010100}}}], 0x20}}, {{&(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="040100000000000000000000070000008614"], 0x108}}], 0x2, 0x0) (async) ioctl$PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000080)={0x0, 0x0}) (async) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{}, &(0x7f0000000000), 0x0}, 0x20) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) (async) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002540)=""/216, 0xd8}}], 0x1, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='logfs\x00', 0x36b276e30b087870, &(0x7f0000000180)='\x88\xf0\xbb\xb9hw\xc1W>@{\x8e\x90\x13\r\n\aQ\xc4\x19c>\xc4\xd8\xd7\xb4\x7fr\x1e f\x89\x1d?\x13nhU\xb0\x8cc\xd7E:3\xe1Z\xed\x99\xb2>R\x9aylG\x14@\xaf\xca\x87@\xf2\xe7\xc3\xc3\xbb!-\xa1d6\xcb\x03K/\xfa\xbd0y\vbq\xe5\xe2\x0e*Nz, =\\\x05\x82\xd2/\xd28b\v\xb5Ew\xeab\xaa\x8bp\xe5\x93\x86e\xd6\xbe\xce\xe3\xb1\xb6\xe3\xfd\t+y\x8c\x17\xf7B\x19\xde\xe4\x95%\x19Q\x90v\xb7`\nf\xfd%_\xb8\x84xo\xf9\x06G\xb6F\xa2\x1f\xfe>&\xb58\x8e\xe4Z\xf9l\xa8 \xe4\xc7+\x9a\x01\xa9\x0f\xab \xe8\xf9*\xcf\xd5\xf8\x87\x86\x85[S\x05V\xfb:=&\x06\xdd\xccM=\xc9\xdd,\b\xa5') (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010018000000000000007c0000007c00000002000000000000000000000f"], 0x0, 0x96, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) (async) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x114, &(0x7f0000000000)=0x9, 0x0, 0x4) recvmmsg(r6, &(0x7f0000000600)=[{{&(0x7f0000000340)=@un=@abs, 0x80, &(0x7f0000000480)=[{&(0x7f0000000500)=""/92, 0x5c}, {&(0x7f0000000280)=""/1, 0x1}, {&(0x7f0000000580)=""/111, 0x6f}], 0x3, &(0x7f0000002640)=""/4096, 0x1000}, 0x699761f1}], 0x1, 0x103, &(0x7f0000000640)={0x0, 0x3938700}) 60.952712ms ago: executing program 2 (id=227): r0 = socket$inet6(0xa, 0x80002, 0x88) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, &(0x7f0000000640)="66b89c008ec848b800000100000000000f23d00f21f835100000090f23f8450f32460f30d1507b0f20c035100000000f22c0dfc6f04081950b000000c4b46396430fc7b70000000066b8d2000f00d0", 0x4f}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0) 0s ago: executing program 0 (id=228): mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffb000/0x2000)=nil) r0 = creat(&(0x7f0000000100)='./file0\x00', 0x27a) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) write$qrtrtun(r0, &(0x7f0000000180)="ca0e808bb35bdabb49f35c25d456591f0c15a08769bcd5107053ea1f85250a", 0x1f) write$FUSE_IOCTL(r0, &(0x7f0000000240)={0x20, 0xffffffffffffffda, 0x0, {0x18d, 0x0, 0x74, 0xfff}}, 0x20) write$binfmt_script(r0, &(0x7f0000000bc0)={'#! ', './file0', [{0x20, '(\xe3-'}, {0x20, '\x00'}, {0x20, '-\'\'%:{'}], 0xa, "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"}, 0x199) write$P9_RREADLINK(r0, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) write$qrtrtun(r0, &(0x7f00000003c0)="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", 0x275) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c) munmap(&(0x7f0000004000/0x3000)=nil, 0x3000) kernel console output (not intermixed with test programs): [ 29.117184][ T39] audit: type=1400 audit(1734759140.142:81): avc: denied { rlimitinh } for pid=5841 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 29.122160][ T39] audit: type=1400 audit(1734759140.142:82): avc: denied { siginh } for pid=5841 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 30.006700][ T39] audit: type=1400 audit(1734759141.052:83): avc: denied { read } for pid=5330 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 30.014076][ T39] audit: type=1400 audit(1734759141.052:84): avc: denied { append } for pid=5330 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 30.020362][ T39] audit: type=1400 audit(1734759141.052:85): avc: denied { open } for pid=5330 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 30.026360][ T39] audit: type=1400 audit(1734759141.052:86): avc: denied { getattr } for pid=5330 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:61810' (ED25519) to the list of known hosts. [ 30.437090][ T39] audit: type=1400 audit(1734759141.482:87): avc: denied { name_bind } for pid=5849 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 31.980711][ T5851] cgroup: Unknown subsys name 'net' [ 32.098542][ T5851] cgroup: Unknown subsys name 'cpuset' [ 32.101600][ T5851] cgroup: Unknown subsys name 'rlimit' [ 32.353661][ T5854] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 32.925186][ T5851] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 34.422631][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 34.422642][ T39] audit: type=1400 audit(1734759145.462:105): avc: denied { execmem } for pid=5904 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 34.642866][ T39] audit: type=1400 audit(1734759145.682:106): avc: denied { create } for pid=5910 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 34.657206][ T39] audit: type=1400 audit(1734759145.682:107): avc: denied { read write } for pid=5910 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 34.663273][ T39] audit: type=1400 audit(1734759145.682:108): avc: denied { open } for pid=5910 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 34.669449][ T39] audit: type=1400 audit(1734759145.702:109): avc: denied { ioctl } for pid=5910 comm="syz-executor" path="socket:[4084]" dev="sockfs" ino=4084 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 34.689500][ T5915] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.691753][ T5915] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 34.695499][ T5915] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.697734][ T5915] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.699794][ T5915] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 34.701901][ T5915] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 34.704686][ T5915] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 34.707144][ T5926] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 34.707242][ T5919] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 34.712067][ T5919] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 34.713855][ T5926] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 34.715011][ T5919] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 34.716759][ T5926] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 34.718625][ T5919] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 34.719121][ T5925] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.719425][ T5925] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 34.719586][ T5925] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.721283][ T5926] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 34.721290][ T5915] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 34.722772][ T5919] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 34.725587][ T64] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 34.727255][ T39] audit: type=1400 audit(1734759145.772:110): avc: denied { read } for pid=5910 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 34.731261][ T5920] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 34.732479][ T39] audit: type=1400 audit(1734759145.772:111): avc: denied { open } for pid=5910 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 34.734057][ T64] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 34.735579][ T64] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 34.736118][ T39] audit: type=1400 audit(1734759145.772:112): avc: denied { mounton } for pid=5910 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 34.850390][ T39] audit: type=1400 audit(1734759145.892:113): avc: denied { module_request } for pid=5910 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 34.890699][ T5910] chnl_net:caif_netlink_parms(): no params data found [ 34.919128][ T5922] chnl_net:caif_netlink_parms(): no params data found [ 34.936617][ T5911] chnl_net:caif_netlink_parms(): no params data found [ 35.069821][ T5910] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.071739][ T5910] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.074425][ T5910] bridge_slave_0: entered allmulticast mode [ 35.076484][ T5910] bridge_slave_0: entered promiscuous mode [ 35.092971][ T5917] chnl_net:caif_netlink_parms(): no params data found [ 35.113166][ T5910] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.115855][ T5910] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.117759][ T5910] bridge_slave_1: entered allmulticast mode [ 35.119778][ T5910] bridge_slave_1: entered promiscuous mode [ 35.144939][ T5922] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.146896][ T5922] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.149290][ T5922] bridge_slave_0: entered allmulticast mode [ 35.151499][ T5922] bridge_slave_0: entered promiscuous mode [ 35.166369][ T5910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.177125][ T5911] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.179934][ T5911] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.181873][ T5911] bridge_slave_0: entered allmulticast mode [ 35.184658][ T5911] bridge_slave_0: entered promiscuous mode [ 35.186805][ T5922] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.188651][ T5922] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.190565][ T5922] bridge_slave_1: entered allmulticast mode [ 35.192582][ T5922] bridge_slave_1: entered promiscuous mode [ 35.206001][ T5910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.208537][ T5911] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.210422][ T5911] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.212319][ T5911] bridge_slave_1: entered allmulticast mode [ 35.214517][ T5911] bridge_slave_1: entered promiscuous mode [ 35.272225][ T5911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.275735][ T5922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.300930][ T5910] team0: Port device team_slave_0 added [ 35.303874][ T5911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.307256][ T5922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.309831][ T5917] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.311870][ T5917] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.314067][ T5917] bridge_slave_0: entered allmulticast mode [ 35.316199][ T5917] bridge_slave_0: entered promiscuous mode [ 35.320001][ T5910] team0: Port device team_slave_1 added [ 35.345709][ T5917] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.347721][ T5917] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.350305][ T5917] bridge_slave_1: entered allmulticast mode [ 35.352481][ T5917] bridge_slave_1: entered promiscuous mode [ 35.371240][ T5911] team0: Port device team_slave_0 added [ 35.396054][ T5910] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.397909][ T5910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.405025][ T5910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.409090][ T5911] team0: Port device team_slave_1 added [ 35.411282][ T5910] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.413120][ T5910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.420946][ T5910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.425441][ T5922] team0: Port device team_slave_0 added [ 35.428261][ T5917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.449944][ T5922] team0: Port device team_slave_1 added [ 35.452912][ T5917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.456460][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.458260][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.464958][ T5911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.468560][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.470344][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.476970][ T5911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.527315][ T5922] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.529181][ T5922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.537269][ T5922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.551703][ T5917] team0: Port device team_slave_0 added [ 35.556603][ T5922] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.558481][ T5922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.565483][ T5922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.578278][ T5910] hsr_slave_0: entered promiscuous mode [ 35.580412][ T5910] hsr_slave_1: entered promiscuous mode [ 35.591837][ T5917] team0: Port device team_slave_1 added [ 35.612402][ T5911] hsr_slave_0: entered promiscuous mode [ 35.614498][ T5911] hsr_slave_1: entered promiscuous mode [ 35.616451][ T5911] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.618746][ T5911] Cannot create hsr debugfs directory [ 35.629177][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.631537][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.639608][ T5917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.643255][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.645246][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.652054][ T5917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.740553][ T5917] hsr_slave_0: entered promiscuous mode [ 35.742557][ T5917] hsr_slave_1: entered promiscuous mode [ 35.744446][ T5917] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.746430][ T5917] Cannot create hsr debugfs directory [ 35.749627][ T5922] hsr_slave_0: entered promiscuous mode [ 35.751623][ T5922] hsr_slave_1: entered promiscuous mode [ 35.753422][ T5922] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.755487][ T5922] Cannot create hsr debugfs directory [ 35.941996][ T5910] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.948184][ T5910] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.951524][ T5910] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 35.957613][ T5910] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.971160][ T5911] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 35.976275][ T5911] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 35.979521][ T5911] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 35.984440][ T5911] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 36.011533][ T5922] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 36.015387][ T5922] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 36.021228][ T5922] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 36.024832][ T5922] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 36.048933][ T5917] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 36.052340][ T5917] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 36.055533][ T5917] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 36.058882][ T5917] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 36.081542][ T5910] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.106563][ T5911] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.109675][ T5910] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.128261][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.130335][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.134843][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.137285][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.145085][ T5911] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.153434][ T1227] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.155374][ T1227] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.165794][ T70] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.167715][ T70] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.175759][ T5922] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.185644][ T5917] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.198229][ T5922] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.210024][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.212199][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.228405][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.230300][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.236337][ T5917] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.255192][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.257742][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.265687][ T39] audit: type=1400 audit(1734759147.312:114): avc: denied { sys_module } for pid=5911 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 36.274162][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.277070][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.321681][ T5911] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.337854][ T5911] veth0_vlan: entered promiscuous mode [ 36.343592][ T5911] veth1_vlan: entered promiscuous mode [ 36.356987][ T5910] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.367362][ T5922] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.379799][ T5911] veth0_macvtap: entered promiscuous mode [ 36.383510][ T5911] veth1_macvtap: entered promiscuous mode [ 36.391631][ T5917] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.407177][ T5917] veth0_vlan: entered promiscuous mode [ 36.417603][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.425068][ T5917] veth1_vlan: entered promiscuous mode [ 36.430420][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.436303][ T5910] veth0_vlan: entered promiscuous mode [ 36.442879][ T5910] veth1_vlan: entered promiscuous mode [ 36.447856][ T5922] veth0_vlan: entered promiscuous mode [ 36.450005][ T5911] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.453233][ T5911] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.456188][ T5911] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.458440][ T5911] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.467882][ T5922] veth1_vlan: entered promiscuous mode [ 36.470780][ T5917] veth0_macvtap: entered promiscuous mode [ 36.482884][ T5917] veth1_macvtap: entered promiscuous mode [ 36.491637][ T5910] veth0_macvtap: entered promiscuous mode [ 36.511228][ T5910] veth1_macvtap: entered promiscuous mode [ 36.513895][ T5922] veth0_macvtap: entered promiscuous mode [ 36.520400][ T5922] veth1_macvtap: entered promiscuous mode [ 36.523668][ T5917] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.527068][ T5917] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.530330][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.546046][ T5917] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.548825][ T5917] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.552086][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.555612][ T5917] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.557848][ T5917] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.560206][ T5917] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.562464][ T5917] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.572327][ T5910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.575081][ T5910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.577840][ T5910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.581031][ T5910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.585099][ T5910] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.589695][ T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.591968][ T5910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.592352][ T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.594896][ T5910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.594905][ T5910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.594912][ T5910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.595398][ T5910] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.615115][ T5910] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.617583][ T5910] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.619930][ T5910] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.622189][ T5910] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.626516][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.629255][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.631767][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.635270][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.637792][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 36.640481][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.644617][ T5922] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.664835][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.667535][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.670088][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.672760][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.675922][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 36.678696][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.681914][ T5922] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.685751][ T1227] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.687964][ T1227] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.695220][ T5922] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.697553][ T5922] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.699850][ T5922] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.702866][ T5922] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.712438][ T1227] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.717350][ T1227] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.734535][ T64] Bluetooth: hci0: command tx timeout [ 36.736687][ T5286] Bluetooth: hci3: command tx timeout [ 36.742073][ T1227] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.745118][ T1227] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.752978][ T5911] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 36.769326][ T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.771423][ T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.788579][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.796699][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.801595][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.803676][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.810540][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.812605][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.824059][ T5286] Bluetooth: hci1: command tx timeout [ 36.825953][ T5286] Bluetooth: hci2: command tx timeout [ 37.056032][ T6017] block nbd2: Device being setup by another task [ 37.087183][ T6022] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1'. [ 37.106537][ T6009] block nbd2: shutting down sockets [ 37.137655][ T6024] overlayfs: overlapping lowerdir path [ 37.415806][ T6028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10'. [ 37.757905][ T6032] /dev/sg0: Can't lookup blockdev [ 37.760294][ T6032] Invalid logical block size (585) [ 37.762071][ T6032] netlink: 16 bytes leftover after parsing attributes in process `syz.0.11'. [ 37.859202][ T6039] trusted_key: syz.1.13 sent an empty control message without MSG_MORE. [ 37.980397][ T6055] netlink: 32 bytes leftover after parsing attributes in process `syz.3.17'. [ 38.031184][ T6055] kvm: pic: non byte write [ 38.099421][ T6060] nbd: socks must be embedded in a SOCK_ITEM attr [ 38.150505][ T6071] fuse: Bad value for 'fd' [ 38.230876][ T6073] netlink: 12 bytes leftover after parsing attributes in process `syz.1.19'. [ 38.431598][ T6068] block nbd2: shutting down sockets [ 38.591724][ T6095] warning: `syz.0.28' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 38.685934][ T6100] could not allocate digest TFM handle rmd320 [ 38.824341][ T5286] Bluetooth: hci3: command tx timeout [ 38.864484][ T6108] netlink: 12 bytes leftover after parsing attributes in process `syz.0.29'. [ 38.902693][ T5286] Bluetooth: hci2: command tx timeout [ 38.902748][ T64] Bluetooth: hci1: command tx timeout [ 38.999198][ T6109] block nbd2: shutting down sockets [ 39.072858][ T6115] program syz.3.33 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 39.129752][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.3.35'. [ 39.133664][ T6124] netlink: 4 bytes leftover after parsing attributes in process `syz.3.35'. [ 39.414462][ T6155] tipc: Started in network mode [ 39.415939][ T6155] tipc: Node identity ee60cc2c3a8b, cluster identity 4711 [ 39.417844][ T6155] tipc: Enabled bearer , priority 0 [ 39.436511][ T39] kauditd_printk_skb: 123 callbacks suppressed [ 39.436522][ T39] audit: type=1400 audit(1734759150.462:238): avc: denied { write } for pid=6147 comm="syz.3.43" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 39.444880][ T39] audit: type=1400 audit(1734759150.462:239): avc: denied { connect } for pid=6154 comm="syz.2.45" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 39.449917][ T39] audit: type=1400 audit(1734759150.482:240): avc: denied { ioctl } for pid=6154 comm="syz.2.45" path="socket:[9768]" dev="sockfs" ino=9768 ioctlcmd=0x7436 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 39.466168][ T6156] netlink: 12 bytes leftover after parsing attributes in process `syz.1.40'. [ 39.543406][ T39] audit: type=1400 audit(1734759150.582:241): avc: denied { ioctl } for pid=6158 comm="syz.0.46" path="socket:[8100]" dev="sockfs" ino=8100 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 39.554395][ T6154] tipc: Disabling bearer [ 39.562565][ T6159] netlink: 24 bytes leftover after parsing attributes in process `syz.0.46'. [ 39.595141][ T39] audit: type=1400 audit(1734759150.642:242): avc: denied { create } for pid=6163 comm="syz.0.47" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 39.601464][ T39] audit: type=1400 audit(1734759150.642:243): avc: denied { create } for pid=6163 comm="syz.0.47" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 39.653668][ T39] audit: type=1400 audit(1734759150.692:244): avc: denied { read append open } for pid=6168 comm="syz.0.48" path="/11/file0/cgroup.controllers" dev="9p" ino=38928679 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 39.661319][ T39] audit: type=1400 audit(1734759150.712:245): avc: denied { write } for pid=6168 comm="syz.0.48" name="cgroup.controllers" dev="9p" ino=38928679 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 39.669975][ T39] audit: type=1400 audit(1734759150.712:246): avc: denied { map } for pid=6168 comm="syz.0.48" path="/11/file0/cgroup.controllers" dev="9p" ino=38928679 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 39.677987][ T5993] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 39.678017][ T39] audit: type=1804 audit(1734759150.712:247): pid=6169 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.48" name="/newroot/11/file0/cgroup.controllers" dev="9p" ino=38928679 res=1 errno=0 [ 39.835628][ T5993] usb 8-1: Using ep0 maxpacket: 8 [ 39.840424][ T5993] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 39.842938][ T5993] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 39.845780][ T5993] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 39.848852][ T5993] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 39.852352][ T5993] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 39.856987][ T5993] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 39.920505][ T6186] loop6: detected capacity change from 0 to 524287999 [ 39.930465][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 17 prio class 0 [ 39.933914][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.934021][ T64] Bluetooth: hci0: command tx timeout [ 39.936533][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.936734][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.936749][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.938295][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.947690][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.950782][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.953228][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.956751][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.960149][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.963524][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.965944][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.969129][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.971555][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.973819][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.976929][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.979737][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 39.982984][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 39.986031][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 40.065952][ T5993] usb 8-1: GET_CAPABILITIES returned 0 [ 40.067599][ T5993] usbtmc 8-1:16.0: can't read capabilities [ 40.433630][ T6211] JFS: charset not found [ 40.442631][ T6211] bond1: entered promiscuous mode [ 40.444154][ T6211] bond1: entered allmulticast mode [ 40.445712][ T6211] 8021q: adding VLAN 0 to HW filter on device bond1 [ 40.449169][ T6214] JFS: charset not found [ 40.457210][ T6148] block nbd3: shutting down sockets [ 40.464171][ T5978] usb 8-1: USB disconnect, device number 2 [ 40.472514][ T6217] unsupported nlmsg_type 40 [ 40.532569][ T6221] Trying to write to read-only block-device nullb0 [ 40.558978][ T6224] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 40.631243][ T6232] pim6reg1: entered promiscuous mode [ 40.632750][ T6232] pim6reg1: entered allmulticast mode [ 40.895152][ T64] Bluetooth: hci3: command tx timeout [ 40.973828][ T64] Bluetooth: hci1: command tx timeout [ 40.973868][ T5286] Bluetooth: hci2: command tx timeout [ 41.011991][ T6243] Invalid source name [ 41.013148][ T6243] UBIFS error (pid: 6243): cannot open "ubifs", error -22 [ 41.058377][ T6243] overlayfs: conflicting lowerdir path [ 41.258904][ T6258] binder: 6257:6258 unknown command 0 [ 41.260404][ T6258] binder: 6257:6258 ioctl c0306201 20000080 returned -22 [ 41.321536][ T6258] binder_alloc: 6257: binder_alloc_buf, no vma [ 41.599341][ T5853] udevd[5853]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory [ 41.667923][ T6284] @: renamed from vlan0 (while UP) [ 41.715608][ T6288] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 42.024549][ T64] Bluetooth: hci0: command tx timeout [ 42.255186][ T5286] block nbd3: Receive control failed (result -32) [ 42.257958][ T6267] block nbd3: shutting down sockets [ 42.290283][ T6305] GUP no longer grows the stack in syz.3.90 (6305): 20004000-20008000 (20002000) [ 42.293095][ T6305] CPU: 2 UID: 0 PID: 6305 Comm: syz.3.90 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 42.296197][ T6305] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 42.299172][ T6305] Call Trace: [ 42.300089][ T6305] [ 42.300919][ T6305] dump_stack_lvl+0x16c/0x1f0 [ 42.302204][ T6305] gup_vma_lookup+0x1d2/0x220 [ 42.303485][ T6305] __get_user_pages+0x236/0x3b50 [ 42.304818][ T6305] ? find_held_lock+0x2d/0x110 [ 42.306205][ T6305] ? mtree_load+0x30a/0xa40 [ 42.307474][ T6305] ? __pfx_lock_release+0x10/0x10 [ 42.308843][ T6305] ? __pfx___get_user_pages+0x10/0x10 [ 42.310299][ T6305] get_user_pages_remote+0x25e/0xb30 [ 42.311789][ T6305] ? __pfx_get_user_pages_remote+0x10/0x10 [ 42.313370][ T6305] __access_remote_vm+0x235/0x7a0 [ 42.314732][ T6305] ? __pfx___access_remote_vm+0x10/0x10 [ 42.316308][ T6305] ? _copy_to_user+0xbb/0xd0 [ 42.317570][ T6305] proc_pid_cmdline_read+0x4f5/0x900 [ 42.319004][ T6305] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 42.320595][ T6305] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 42.322178][ T6305] vfs_readv+0x6bf/0x890 [ 42.323346][ T6305] ? __pfx___lock_acquire+0x10/0x10 [ 42.324731][ T6305] ? __pfx_vfs_readv+0x10/0x10 [ 42.326099][ T6305] ? __fget_files+0x1fc/0x3a0 [ 42.327446][ T6305] ? __pfx_lock_release+0x10/0x10 [ 42.328792][ T6305] ? __fget_files+0x206/0x3a0 [ 42.330085][ T6305] ? do_preadv+0x1b1/0x270 [ 42.331343][ T6305] do_preadv+0x1b1/0x270 [ 42.332489][ T6305] ? __pfx_do_preadv+0x10/0x10 [ 42.333799][ T6305] do_syscall_64+0xcd/0x250 [ 42.335041][ T6305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 42.336734][ T6305] RIP: 0033:0x7f7c1ad85d29 [ 42.337941][ T6305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 42.343503][ T6305] RSP: 002b:00007f7c1bbb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 42.345829][ T6305] RAX: ffffffffffffffda RBX: 00007f7c1af75fa0 RCX: 00007f7c1ad85d29 [ 42.348578][ T6305] RDX: 0000000000000001 RSI: 00000000200000c0 RDI: 0000000000000003 [ 42.350728][ T6305] RBP: 00007f7c1ae01aa8 R08: 0000000000000000 R09: 0000000000000000 [ 42.352859][ T6305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 42.355017][ T6305] R13: 0000000000000000 R14: 00007f7c1af75fa0 R15: 00007fffe38c5e18 [ 42.357143][ T6305] [ 42.507863][ T6312] kernel profiling enabled (shift: 63) [ 42.509554][ T6312] profiling shift: 63 too large [ 42.652574][ T6319] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 42.653606][ T6320] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 1 [ 42.654707][ T6321] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 2 [ 42.655118][ T6322] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 3 [ 42.704227][ T6325] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 42.716390][ T6325] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6325 comm=syz.2.94 [ 42.747987][ T6329] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6329 comm=syz.2.96 [ 42.752501][ T6329] __nla_validate_parse: 6 callbacks suppressed [ 42.752509][ T6329] netlink: 48 bytes leftover after parsing attributes in process `syz.2.96'. [ 42.920482][ T6335] block nbd2: shutting down sockets [ 42.983838][ T5286] Bluetooth: hci3: command tx timeout [ 43.023842][ T2309] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 43.053928][ T5286] Bluetooth: hci2: command tx timeout [ 43.063945][ T5286] Bluetooth: hci1: command tx timeout [ 43.195089][ T2309] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 43.198105][ T2309] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 43.200991][ T2309] usb 5-1: New USB device found, idVendor=046d, idProduct=c513, bcdDevice= 0.00 [ 43.203396][ T2309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 43.209352][ T2309] usb 5-1: config 0 descriptor?? [ 43.211360][ T6331] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 43.417757][ T2309] usbhid 5-1:0.0: can't add hid device: -71 [ 43.419277][ T2309] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 43.423125][ T2309] usb 5-1: USB disconnect, device number 2 [ 43.998871][ T6349] netlink: 12 bytes leftover after parsing attributes in process `syz.2.101'. [ 44.039371][ T6360] program syz.0.106 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 44.069852][ T6363] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 44.124522][ T30] e1000 0000:00:06.0 eth0: Reset adapter [ 46.336400][ T5993] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 57.437129][ T6408] xt_hashlimit: size too large, truncated to 1048576 [ 57.451316][ T6414] fuse: Bad value for 'fd' [ 57.478897][ T39] kauditd_printk_skb: 66 callbacks suppressed [ 57.478913][ T39] audit: type=1400 audit(1734759168.522:314): avc: denied { read } for pid=6411 comm="syz.1.114" name="iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 57.487081][ T39] audit: type=1400 audit(1734759168.522:315): avc: denied { open } for pid=6411 comm="syz.1.114" path="/dev/iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 57.493192][ T39] audit: type=1400 audit(1734759168.522:316): avc: denied { ioctl } for pid=6411 comm="syz.1.114" path="/dev/iommu" dev="devtmpfs" ino=632 ioctlcmd=0x3b8b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 57.497002][ T6420] Zero length message leads to an empty skb [ 57.500418][ T39] audit: type=1400 audit(1734759168.542:317): avc: denied { write } for pid=6411 comm="syz.1.114" name="rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 57.509937][ T39] audit: type=1400 audit(1734759168.542:318): avc: denied { setattr } for pid=6411 comm="syz.1.114" name="NETLINK" dev="sockfs" ino=10134 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 57.518076][ T39] audit: type=1400 audit(1734759168.542:319): avc: denied { bind } for pid=6407 comm="syz.0.112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 57.537431][ T39] audit: type=1400 audit(1734759168.582:320): avc: denied { read write } for pid=6423 comm="syz.3.118" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 57.544918][ T39] audit: type=1400 audit(1734759168.582:321): avc: denied { open } for pid=6423 comm="syz.3.118" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 57.564326][ T6410] block nbd2: server does not support multiple connections per device. [ 57.567773][ T6410] block nbd2: shutting down sockets [ 57.610371][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.612535][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.615483][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.618084][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.620487][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.623043][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.625735][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.628334][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.630756][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.633337][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.636127][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.639799][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.642529][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.645348][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.647495][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.649491][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.651464][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.653445][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.655631][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.657937][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.660204][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.662688][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.665534][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.667968][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.670590][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.673987][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.676410][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.678998][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.681223][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.683210][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.685236][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.687808][ T5978] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 57.693227][ T5978] hid-generic 0000:0000:0000.0002: hidraw1: HID v0.00 Device [syz0] on syz0 [ 57.699852][ T39] audit: type=1400 audit(1734759168.742:322): avc: denied { read append } for pid=6432 comm="syz.2.119" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 57.707121][ T39] audit: type=1400 audit(1734759168.752:323): avc: denied { open } for pid=6432 comm="syz.2.119" path="/dev/rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 57.809827][ T6447] netlink: 12 bytes leftover after parsing attributes in process `syz.3.121'. [ 57.973992][ T6433] nbd2: detected capacity change from 0 to 8190 [ 57.976169][ T6453] block nbd2: shutting down sockets [ 58.014062][ T52] blk_print_req_error: 8 callbacks suppressed [ 58.014073][ T52] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.018562][ T52] buffer_io_error: 7 callbacks suppressed [ 58.018569][ T52] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.023959][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.026514][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.030382][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.032812][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.035725][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.038155][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.040959][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.043442][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.045571][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.047936][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.050037][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.052414][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.055094][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.057523][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.059620][ T6438] ldm_validate_partition_table(): Disk read failed. [ 58.061515][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.064392][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.066616][ T6438] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 58.069122][ T6438] Buffer I/O error on dev nbd2, logical block 0, async page read [ 58.071302][ T6438] Dev nbd2: unable to read RDB block 0 [ 58.073365][ T6438] nbd2: unable to read partition table [ 58.078112][ T6438] ldm_validate_partition_table(): Disk read failed. [ 58.080044][ T6438] Dev nbd2: unable to read RDB block 0 [ 58.081649][ T6438] nbd2: unable to read partition table [ 58.117849][ T6466] kAFS: No cell specified [ 58.250365][ T6473] syz.2.128 uses obsolete (PF_INET,SOCK_PACKET) [ 58.311474][ T6476] afs: Bad value for 'source' [ 58.337331][ T6480] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 58.454433][ T6485] netlink: 12 bytes leftover after parsing attributes in process `syz.2.131'. [ 58.683336][ T6504] xt_hashlimit: size too large, truncated to 1048576 [ 58.698044][ T6506] Illegal XDP return value 268435456 on prog (id 13) dev syz_tun, expect packet loss! [ 58.724713][ T6510] trusted_key: encrypted_key: keyword 'new0default' not recognized [ 58.939683][ T6516] netlink: 12 bytes leftover after parsing attributes in process `syz.3.140'. [ 59.141101][ T6521] mmap: syz.3.141 (6521) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 59.183433][ T6526] dlm: no local IP address has been set [ 59.185174][ T6526] dlm: cannot start dlm midcomms -107 [ 59.276365][ T6536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.145'. [ 59.278859][ T6536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.145'. [ 59.282052][ T6537] overlayfs: workdir and upperdir must be separate subtrees [ 59.286095][ T6537] overlayfs: workdir and upperdir must be separate subtrees [ 59.288892][ T6537] overlayfs: workdir and upperdir must be separate subtrees [ 59.576891][ T6552] netlink: 12 bytes leftover after parsing attributes in process `syz.1.149'. [ 59.726501][ T6565] xt_hashlimit: size too large, truncated to 1048576 [ 59.849275][ T6572] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 59.851101][ T6572] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 59.856309][ T6572] vhci_hcd vhci_hcd.0: Device attached [ 59.910946][ T6573] vhci_hcd: cannot find a urb of seqnum 9 max seqnum 0 [ 59.914867][ T11] vhci_hcd: stop threads [ 59.916681][ T11] vhci_hcd: release socket [ 59.917908][ T11] vhci_hcd: disconnect device [ 59.926629][ T6556] kvm: emulating exchange as write [ 60.110389][ T6581] netlink: 100 bytes leftover after parsing attributes in process `syz.0.156'. [ 60.219358][ T6594] netlink: 12 bytes leftover after parsing attributes in process `syz.0.159'. [ 60.268738][ T6599] binder: 6598:6599 unknown command 0 [ 60.270209][ T6599] binder: 6598:6599 ioctl c0306201 20000080 returned -22 [ 60.436306][ T6617] netlink: 12 bytes leftover after parsing attributes in process `syz.1.166'. [ 60.461899][ T6621] netlink: 12 bytes leftover after parsing attributes in process `syz.1.169'. [ 60.551643][ T6635] capability: warning: `syz.1.173' uses 32-bit capabilities (legacy support in use) [ 60.558322][ T6636] team0: No ports can be present during mode change [ 60.561457][ T6636] process 'syz.0.172' launched '/dev/fd/5' with NULL argv: empty string added [ 60.616210][ T6639] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 60.625909][ T6614] block nbd2: shutting down sockets [ 60.629952][ T6642] tmpfs: Bad value for 'mpol' [ 60.688122][ T100] Bluetooth: hci4: Frame reassembly failed (-84) [ 60.690389][ T100] Bluetooth: hci4: Frame reassembly failed (-84) [ 60.731081][ T5978] IPVS: starting estimator thread 0... [ 60.756846][ T6651] netlink: 'syz.0.178': attribute type 1 has an invalid length. [ 60.760595][ T6652] netlink: 'syz.0.178': attribute type 1 has an invalid length. [ 60.823933][ T6649] IPVS: using max 39 ests per chain, 93600 per kthread [ 60.971689][ T6665] autofs4:pid:6665:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e) [ 61.045949][ T6669] "syz.0.184" (6669) uses obsolete ecb(arc4) skcipher [ 61.230261][ T6680] misc userio: No port type given on /dev/userio [ 61.242687][ T11] Bluetooth: hci5: Frame reassembly failed (-84) [ 61.244601][ T70] Bluetooth: hci5: Frame reassembly failed (-84) [ 61.362100][ T6683] overlayfs: statfs failed on './file0' [ 62.376717][ T6728] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=49268 sclass=netlink_route_socket pid=6728 comm=syz.1.197 [ 62.563944][ T6733] sch_tbf: burst 6758 is lower than device lo mtu (65550) ! [ 62.666772][ T6739] xt_hashlimit: size too large, truncated to 1048576 [ 62.673295][ T39] kauditd_printk_skb: 46 callbacks suppressed [ 62.673304][ T39] audit: type=1400 audit(1734759173.712:370): avc: denied { ioctl } for pid=6738 comm="syz.1.202" path="socket:[13731]" dev="sockfs" ino=13731 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 62.683720][ T39] audit: type=1400 audit(1734759173.722:371): avc: denied { setopt } for pid=6738 comm="syz.1.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 62.733957][ T64] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 62.734594][ T5916] Bluetooth: hci4: command 0xfc11 tx timeout [ 62.787622][ T39] audit: type=1400 audit(1734759173.832:372): avc: denied { read } for pid=6744 comm="syz.1.203" name="usbmon1" dev="devtmpfs" ino=738 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 62.795846][ T39] audit: type=1400 audit(1734759173.832:373): avc: denied { open } for pid=6744 comm="syz.1.203" path="/dev/usbmon1" dev="devtmpfs" ino=738 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 62.804929][ T39] audit: type=1400 audit(1734759173.832:374): avc: denied { ioctl } for pid=6744 comm="syz.1.203" path="/dev/usbmon1" dev="devtmpfs" ino=738 ioctlcmd=0x9204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 62.892498][ T39] audit: type=1400 audit(1734759173.932:375): avc: denied { create } for pid=6746 comm="syz.1.204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 62.897933][ T39] audit: type=1400 audit(1734759173.942:376): avc: denied { bind } for pid=6746 comm="syz.1.204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 62.902834][ T39] audit: type=1400 audit(1734759173.942:377): avc: denied { write } for pid=6746 comm="syz.1.204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 62.908675][ T39] audit: type=1400 audit(1734759173.952:378): avc: denied { write } for pid=6746 comm="syz.1.204" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 62.914993][ T39] audit: type=1400 audit(1734759173.952:379): avc: denied { open } for pid=6746 comm="syz.1.204" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 62.922394][ T6746] block nbd1: shutting down sockets [ 63.221291][ T6757] openvswitch: netlink: Flow key attr not present in new flow. [ 63.282445][ T6764] __nla_validate_parse: 8 callbacks suppressed [ 63.282457][ T6764] netlink: 12 bytes leftover after parsing attributes in process `syz.2.209'. [ 63.303830][ T64] Bluetooth: hci5: command 0xfc11 tx timeout [ 63.303869][ T5286] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 63.343186][ T6769] input: syz0 as /devices/virtual/input/input5 [ 63.424316][ T6771] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=39163 sclass=netlink_tcpdiag_socket pid=6771 comm=syz.0.210 [ 63.596581][ T6777] xt_hashlimit: size too large, truncated to 1048576 [ 63.880688][ T6797] netlink: 12 bytes leftover after parsing attributes in process `syz.1.219'. [ 63.940463][ T6809] netlink: 16 bytes leftover after parsing attributes in process `syz.3.222'. [ 63.986626][ T6816] netlink: 8 bytes leftover after parsing attributes in process `syz.0.224'. [ 63.988935][ T6816] netlink: 12 bytes leftover after parsing attributes in process `syz.0.224'. [ 63.991226][ T6816] netlink: 'syz.0.224': attribute type 15 has an invalid length. [ 64.103885][ T6825] block nbd1: Device being setup by another task [ 64.107854][ T6830] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 64.334849][ T6820] [ 64.335549][ T6820] ====================================================== [ 64.337391][ T6820] WARNING: possible circular locking dependency detected [ 64.339272][ T6820] 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 Not tainted [ 64.342507][ T6820] ------------------------------------------------------ [ 64.344615][ T6820] syz.1.223/6820 is trying to acquire lock: [ 64.346190][ T6820] ffff888025ac74b0 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_mq_exit_sched+0xd1/0x310 [ 64.347239][ T6836] netlink: 12 bytes leftover after parsing attributes in process `syz.0.229'. [ 64.348685][ T6820] [ 64.348685][ T6820] but task is already holding lock: [ 64.348690][ T6820] ffff888106ba10b8 (&eq->sysfs_lock){+.+.}-{4:4}, at: elevator_disable+0xb5/0x490 [ 64.348712][ T6820] [ 64.348712][ T6820] which lock already depends on the new lock. [ 64.348712][ T6820] [ 64.348715][ T6820] [ 64.348715][ T6820] the existing dependency chain (in reverse order) is: [ 64.348718][ T6820] [ 64.348718][ T6820] -> #4 (&eq->sysfs_lock){+.+.}-{4:4}: [ 64.362466][ T6820] __mutex_lock+0x19b/0xa60 [ 64.363810][ T6820] elevator_disable+0xb5/0x490 [ 64.365317][ T6820] __blk_mq_update_nr_hw_queues+0x41e/0x1590 [ 64.367030][ T6820] blk_mq_update_nr_hw_queues+0x2a/0x40 [ 64.368633][ T6820] nbd_start_device+0x15b/0xd70 [ 64.370049][ T6820] nbd_ioctl+0x21a/0xfd0 [ 64.371328][ T6820] blkdev_ioctl+0x276/0x6d0 [ 64.372679][ T6820] __x64_sys_ioctl+0x190/0x200 [ 64.374082][ T6820] do_syscall_64+0xcd/0x250 [ 64.375419][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.377100][ T6820] [ 64.377100][ T6820] -> #3 (&q->q_usage_counter(io)#51){++++}-{0:0}: [ 64.379364][ T6820] blk_mq_submit_bio+0x1fb6/0x24c0 [ 64.380934][ T6820] __submit_bio+0x384/0x540 [ 64.382258][ T6820] submit_bio_noacct_nocheck+0x698/0xd70 [ 64.383868][ T6820] submit_bio_noacct+0x93a/0x1e20 [ 64.385321][ T6820] mpage_readahead+0x41d/0x590 [ 64.386719][ T6820] read_pages+0x1a8/0xdc0 [ 64.388016][ T6820] page_cache_ra_unbounded+0x3dc/0x750 [ 64.389602][ T6820] force_page_cache_ra+0x24b/0x340 [ 64.391075][ T6820] page_cache_sync_ra+0x110/0x9c0 [ 64.392737][ T6820] filemap_get_pages+0xd7b/0x1be0 [ 64.394252][ T6820] filemap_read+0x3ca/0xd70 [ 64.395576][ T6820] blkdev_read_iter+0x187/0x480 [ 64.397108][ T6820] vfs_read+0x87f/0xbe0 [ 64.398373][ T6820] ksys_read+0x12b/0x250 [ 64.399636][ T6820] do_syscall_64+0xcd/0x250 [ 64.400956][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.402672][ T6820] [ 64.402672][ T6820] -> #2 (mapping.invalidate_lock#2){.+.+}-{4:4}: [ 64.404923][ T6820] down_read+0x9a/0x330 [ 64.406182][ T6820] page_cache_ra_unbounded+0x173/0x750 [ 64.407752][ T6820] page_cache_ra_order+0x8f2/0xc80 [ 64.409257][ T6820] filemap_fault+0x14a5/0x2820 [ 64.410664][ T6820] __do_fault+0x10a/0x490 [ 64.412080][ T6820] do_pte_missing+0xebd/0x3e00 [ 64.413474][ T6820] __handle_mm_fault+0x103c/0x2a40 [ 64.414988][ T6820] handle_mm_fault+0x3fa/0xaa0 [ 64.416371][ T6820] __get_user_pages+0x8d9/0x3b50 [ 64.417792][ T6820] get_user_pages_unlocked+0x1c2/0x780 [ 64.419381][ T6820] hva_to_pfn+0x8be/0xc20 [ 64.420663][ T6820] kvm_follow_pfn+0x29f/0x3f0 [ 64.422050][ T6820] __kvm_faultin_pfn+0x11c/0x1a0 [ 64.423556][ T6820] kvm_mmu_faultin_pfn+0x469/0x1f30 [ 64.425080][ T6820] kvm_tdp_page_fault+0x182/0x3d0 [ 64.426546][ T6820] kvm_mmu_do_page_fault+0x58d/0x690 [ 64.428193][ T6820] kvm_mmu_page_fault+0x20f/0x1bb0 [ 64.429696][ T6820] handle_ept_violation+0x25a/0x640 [ 64.431205][ T6820] vmx_handle_exit+0x733/0x1f70 [ 64.432626][ T6820] vcpu_run+0x3047/0x4f50 [ 64.433914][ T6820] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 64.435519][ T6820] kvm_vcpu_ioctl+0x6ce/0x1520 [ 64.436902][ T6820] __x64_sys_ioctl+0x190/0x200 [ 64.438305][ T6820] do_syscall_64+0xcd/0x250 [ 64.439636][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.441315][ T6820] [ 64.441315][ T6820] -> #1 (&mm->mmap_lock){++++}-{4:4}: [ 64.443402][ T6820] __might_fault+0x11b/0x190 [ 64.444744][ T6820] _copy_from_user+0x29/0xd0 [ 64.446088][ T6820] __blk_trace_setup+0xa8/0x180 [ 64.447502][ T6820] blk_trace_ioctl+0x163/0x290 [ 64.448897][ T6820] blkdev_ioctl+0x109/0x6d0 [ 64.450233][ T6820] __x64_sys_ioctl+0x190/0x200 [ 64.451629][ T6820] do_syscall_64+0xcd/0x250 [ 64.453004][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.454688][ T6820] [ 64.454688][ T6820] -> #0 (&q->debugfs_mutex){+.+.}-{4:4}: [ 64.456728][ T6820] __lock_acquire+0x249e/0x3c40 [ 64.458154][ T6820] lock_acquire.part.0+0x11b/0x380 [ 64.459750][ T6820] __mutex_lock+0x19b/0xa60 [ 64.461082][ T6820] blk_mq_exit_sched+0xd1/0x310 [ 64.462496][ T6820] elevator_disable+0xc0/0x490 [ 64.463881][ T6820] __blk_mq_update_nr_hw_queues+0x41e/0x1590 [ 64.465590][ T6820] blk_mq_update_nr_hw_queues+0x2a/0x40 [ 64.467200][ T6820] nbd_start_device+0x15b/0xd70 [ 64.468601][ T6820] nbd_ioctl+0x21a/0xfd0 [ 64.469855][ T6820] blkdev_ioctl+0x276/0x6d0 [ 64.471194][ T6820] __x64_sys_ioctl+0x190/0x200 [ 64.472599][ T6820] do_syscall_64+0xcd/0x250 [ 64.473933][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.475734][ T6820] [ 64.475734][ T6820] other info that might help us debug this: [ 64.475734][ T6820] [ 64.478389][ T6820] Chain exists of: [ 64.478389][ T6820] &q->debugfs_mutex --> &q->q_usage_counter(io)#51 --> &eq->sysfs_lock [ 64.478389][ T6820] [ 64.482060][ T6820] Possible unsafe locking scenario: [ 64.482060][ T6820] [ 64.484012][ T6820] CPU0 CPU1 [ 64.485413][ T6820] ---- ---- [ 64.486823][ T6820] lock(&eq->sysfs_lock); [ 64.488007][ T6820] lock(&q->q_usage_counter(io)#51); [ 64.490168][ T6820] lock(&eq->sysfs_lock); [ 64.491968][ T6820] lock(&q->debugfs_mutex); [ 64.493216][ T6820] [ 64.493216][ T6820] *** DEADLOCK *** [ 64.493216][ T6820] [ 64.495336][ T6820] 7 locks held by syz.1.223/6820: [ 64.496660][ T6820] #0: ffff8880264fa198 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x151/0xfd0 [ 64.499106][ T6820] #1: ffff8880264fa0d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x20/0x40 [ 64.501908][ T6820] #2: ffff888025ac7200 (&q->sysfs_dir_lock){+.+.}-{4:4}, at: __blk_mq_update_nr_hw_queues+0x205/0x1590 [ 64.504798][ T6820] #3: ffff888025ac7170 (&q->sysfs_lock){+.+.}-{4:4}, at: __blk_mq_update_nr_hw_queues+0x214/0x1590 [ 64.507705][ T6820] #4: ffff888025ac6c40 (&q->q_usage_counter(io)#50){+.+.}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x21c/0x1590 [ 64.510922][ T6820] #5: ffff888025ac6c78 (&q->q_usage_counter(queue)#34){+.+.}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x21c/0x1590 [ 64.514162][ T6820] #6: ffff888106ba10b8 (&eq->sysfs_lock){+.+.}-{4:4}, at: elevator_disable+0xb5/0x490 [ 64.516686][ T6820] [ 64.516686][ T6820] stack backtrace: [ 64.518321][ T6820] CPU: 2 UID: 0 PID: 6820 Comm: syz.1.223 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0 [ 64.521130][ T6820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 64.523980][ T6820] Call Trace: [ 64.524871][ T6820] [ 64.525660][ T6820] dump_stack_lvl+0x116/0x1f0 [ 64.526940][ T6820] print_circular_bug+0x419/0x5d0 [ 64.528300][ T6820] check_noncircular+0x31a/0x400 [ 64.529610][ T6820] ? __pfx_check_noncircular+0x10/0x10 [ 64.531073][ T6820] ? hlock_class+0x4e/0x130 [ 64.532359][ T6820] ? mark_lock+0xb5/0xc60 [ 64.533687][ T6820] ? lockdep_lock+0xc6/0x200 [ 64.534930][ T6820] ? __pfx_lockdep_lock+0x10/0x10 [ 64.536262][ T6820] __lock_acquire+0x249e/0x3c40 [ 64.537657][ T6820] ? __pfx___lock_acquire+0x10/0x10 [ 64.539040][ T6820] lock_acquire.part.0+0x11b/0x380 [ 64.540391][ T6820] ? blk_mq_exit_sched+0xd1/0x310 [ 64.541727][ T6820] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 64.543209][ T6820] ? rcu_is_watching+0x12/0xc0 [ 64.544481][ T6820] ? trace_lock_acquire+0x14e/0x1f0 [ 64.545856][ T6820] ? find_held_lock+0x2d/0x110 [ 64.547141][ T6820] ? blk_mq_exit_sched+0xd1/0x310 [ 64.548498][ T6820] ? lock_acquire+0x2f/0xb0 [ 64.549707][ T6820] ? blk_mq_exit_sched+0xd1/0x310 [ 64.551012][ T6820] __mutex_lock+0x19b/0xa60 [ 64.552268][ T6820] ? blk_mq_exit_sched+0xd1/0x310 [ 64.553674][ T6820] ? xas_find+0x2fd/0x870 [ 64.554840][ T6820] ? blk_mq_exit_sched+0xd1/0x310 [ 64.556183][ T6820] ? __pfx___mutex_lock+0x10/0x10 [ 64.557519][ T6820] ? xa_find+0x1ca/0x370 [ 64.558663][ T6820] ? __pfx_xa_find+0x10/0x10 [ 64.559896][ T6820] ? elevator_disable+0xb5/0x490 [ 64.561215][ T6820] ? blk_mq_exit_sched+0xd1/0x310 [ 64.562562][ T6820] blk_mq_exit_sched+0xd1/0x310 [ 64.563859][ T6820] ? __pfx_blk_mq_exit_sched+0x10/0x10 [ 64.565308][ T6820] ? mark_held_locks+0x9f/0xe0 [ 64.566590][ T6820] elevator_disable+0xc0/0x490 [ 64.567905][ T6820] __blk_mq_update_nr_hw_queues+0x41e/0x1590 [ 64.569632][ T6820] ? __mutex_trylock_common+0xea/0x250 [ 64.571088][ T6820] ? __pfx___mutex_trylock_common+0x10/0x10 [ 64.572655][ T6820] ? blk_mq_update_nr_hw_queues+0x20/0x40 [ 64.574307][ T6820] ? rcu_is_watching+0x12/0xc0 [ 64.575684][ T6820] ? __pfx___blk_mq_update_nr_hw_queues+0x10/0x10 [ 64.577417][ T6820] ? blk_mq_update_nr_hw_queues+0x20/0x40 [ 64.578967][ T6820] ? __pfx___mutex_lock+0x10/0x10 [ 64.580286][ T6820] ? lockdep_hardirqs_on+0x7c/0x110 [ 64.581630][ T6820] ? __mutex_lock+0x1cc/0xa60 [ 64.582882][ T6820] ? nbd_ioctl+0x151/0xfd0 [ 64.584119][ T6820] ? __pfx___mutex_lock+0x10/0x10 [ 64.585423][ T6820] blk_mq_update_nr_hw_queues+0x2a/0x40 [ 64.586855][ T6820] nbd_start_device+0x15b/0xd70 [ 64.588073][ T6820] ? bpf_lsm_capable+0x9/0x10 [ 64.589298][ T6820] nbd_ioctl+0x21a/0xfd0 [ 64.590377][ T6820] ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460 [ 64.592013][ T6820] ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460 [ 64.593714][ T6820] ? __pfx_nbd_ioctl+0x10/0x10 [ 64.594974][ T6820] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 64.596749][ T6820] ? __pfx_lock_release+0x10/0x10 [ 64.598066][ T6820] ? __pfx_nbd_ioctl+0x10/0x10 [ 64.599437][ T6820] blkdev_ioctl+0x276/0x6d0 [ 64.600629][ T6820] ? __pfx_blkdev_ioctl+0x10/0x10 [ 64.601945][ T6820] ? selinux_file_ioctl+0x180/0x270 [ 64.603306][ T6820] ? selinux_file_ioctl+0xb4/0x270 [ 64.604645][ T6820] ? __pfx_blkdev_ioctl+0x10/0x10 [ 64.605960][ T6820] __x64_sys_ioctl+0x190/0x200 [ 64.607231][ T6820] do_syscall_64+0xcd/0x250 [ 64.608431][ T6820] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 64.609975][ T6820] RIP: 0033:0x7f112d785d29 [ 64.611157][ T6820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 64.616298][ T6820] RSP: 002b:00007f112e547038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 64.618462][ T6820] RAX: ffffffffffffffda RBX: 00007f112d976080 RCX: 00007f112d785d29 [ 64.620513][ T6820] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 64.622621][ T6820] RBP: 00007f112d801aa8 R08: 0000000000000000 R09: 0000000000000000 [ 64.624739][ T6820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 64.626792][ T6820] R13: 0000000000000000 R14: 00007f112d976080 R15: 00007ffdcb2f60f8 [ 64.628849][ T6820] [ 64.694565][ T6813] block nbd1: shutting down sockets [ 71.054939][ T1415] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.056673][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 VM DIAGNOSIS: 05:32:55 Registers: info registers vcpu 0 CPU#0 RAX=0000000000078344 RBX=0000000000000000 RCX=ffffffff8b29b759 RDX=ffffed100d4c6fee RSI=ffffffff8bd1eb20 RDI=ffffffff81709459 RBP=fffffbfff1bd2ef8 RSP=ffffffff8de07e20 R8 =0000000000000000 R9 =ffffed100d4c6fed R10=ffff88806a637f6b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8de977c0 R14=ffffffff905f3550 R15=0000000000000000 RIP=ffffffff8b29cb3f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c3a7d21 CR3=0000000025bee000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1ae02a3a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1ae02a47 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1ae02a41 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1ae02a55 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1ae02adb ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1ae02bb9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1af4b488 00007f7c1af4b480 00007f7c1af4b478 00007f7c1af4b450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1baad100 00007f7c1af4b440 00007f7c1af4b458 00007f7c1af4b4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7c1af4b498 00007f7c1af4b490 00007f7c1af4b488 00007f7c1af4b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000044 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffc90006a20000 RBX=0000000000000000 RCX=ffff888027c21070 RDX=000000000000009d RSI=ffffffff865f5776 RDI=ffff888027c21268 RBP=0000000000000001 RSP=ffffc900006b0b88 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000000001 R13=0000000000004e20 R14=ffff888027c21070 R15=0000000000000001 RIP=ffffffff865f57b3 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fe8035f8d00 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f266c6a56c0 CR3=00000000301ba000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=3ab465c93ab465c9 3ab465c93ab465c9 3ab465c93ab465c9 3ab465c93ab465c9 3ab465c93ab465c9 3ab465c93ab465c9 3ab465c93ab465c9 3ab465c93ab465c9 ZMM22=21524bc821524bc8 21524bc821524bc8 21524bc821524bc8 21524bc821524bc8 21524bc821524bc8 21524bc821524bc8 21524bc821524bc8 21524bc821524bc8 ZMM23=16dc6b4716dc6b47 16dc6b4716dc6b47 16dc6b4716dc6b47 16dc6b4716dc6b47 16dc6b4716dc6b47 16dc6b4716dc6b47 16dc6b4716dc6b47 16dc6b4716dc6b47 ZMM24=726c890f726c890f 726c890f726c890f 726c890f726c890f 726c890f726c890f 726c890f726c890f 726c890f726c890f 726c890f726c890f 726c890f726c890f ZMM25=d3983f8fd3983f8f d3983f8fd3983f8f d3983f8fd3983f8f d3983f8fd3983f8f d3983f8fd3983f8f d3983f8fd3983f8f d3983f8fd3983f8f d3983f8fd3983f8f ZMM26=a965311ca965311c a965311ca965311c a965311ca965311c a965311ca965311c a965311ca965311c a965311ca965311c a965311ca965311c a965311ca965311c ZMM27=0c6719e50c6719e5 0c6719e50c6719e5 0c6719e50c6719e5 0c6719e50c6719e5 0c6719e50c6719e5 0c6719e50c6719e5 0c6719e50c6719e5 0c6719e50c6719e5 ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=1602000016020000 1602000016020000 1602000016020000 1602000016020000 1602000016020000 1602000016020000 1602000016020000 1602000016020000 info registers vcpu 2 CPU#2 RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff851bc075 RDI=ffffffff9ab0fbe0 RBP=ffffffff9ab0fba0 RSP=ffffc90003666f48 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36 R12=0000000000000000 R13=000000000000000d R14=ffffffff851bc010 R15=0000000000000000 RIP=ffffffff851bc09f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f112e5476c0 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c332023 CR3=0000000033a3e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080000002 RBX=00000000000406a0 RCX=ffffffff82085692 RDX=ffff88802a1e2440 RSI=000fffffffffffff RDI=0000000000000007 RBP=000fffffffffffff RSP=ffffc900046476d0 R8 =0000000000000007 R9 =000fffffffffffff R10=00000000000406a0 R11=00000000000a4001 R12=0000000000000001 R13=ffff888021a489c0 R14=dffffc0000000000 R15=1ffff920008c8ee7 RIP=ffffffff819a15e8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 000055558ed01500 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f266bb452d8 CR3=0000000045a78000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d802a3a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d802a47 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d802a41 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d802a55 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d802adb ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d802bb9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d94b488 00007f112d94b480 00007f112d94b478 00007f112d94b450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112e4ad100 00007f112d94b440 00007f112d940004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f112d94b498 00007f112d94b490 00007f112d94b488 00007f112d94b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000