last executing test programs:
108.031046ms ago: executing program 3 (id=4):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000100), 0x12)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x3, 0x4)
r2 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r2, 0x5421, &(0x7f0000000000)=0x5)
connect$bt_rfcomm(r2, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x2}, 0xb}, 0x5)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r4, 0x111, 0x5, 0x1fffffff, 0x4)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
syz_emit_ethernet(0xde, &(0x7f0000000700)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @val={@val={0x88a8, 0x0, 0x1}, {0x8100, 0x7, 0x0, 0x3}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0xa0, 0x3a, 0xff, @private1, @mcast2, {[@routing={0x33, 0x2, 0x1, 0x8, 0x0, [@empty]}, @routing={0x3b, 0x6, 0x3, 0x0, 0x0, [@ipv4={'\x00', '\xff\xff', @private=0xa010102}, @empty, @empty]}, @dstopts={0x6, 0x6, '\x00', [@ra, @calipso={0x7, 0x30, {0x2, 0xa, 0x80, 0x101, [0x0, 0xffffffff, 0x2, 0x240000, 0x5]}}]}], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x2}}}}}}, 0x0)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2400008018000109000000000010000002180000ff0000060000000008000118091a3218828605803730a76bcb38a55f469a5f90e5daaf8a3afcf507c5cffb547524a154d13be2e65722c256ea873a8076db7925805567735a15d7305ebcdc2117c69567"], 0x24}, 0x1, 0x0, 0x0, 0x40448f0}, 0x10)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r7, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r7, &(0x7f00000004c0)=[{{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000001340)="3d5136517e6d6f3d7b532cb3b812c99d12", 0x11}, {&(0x7f0000001440)="b03f676da2aae108c6249068277e5c6b1b010ed2ee7b52dbd37d947f2113c269a306e3628246ccfd6fd90207ff7767f45d8bb74e7ad3d5cccf0244bb8329901b8f9376cedf", 0x45}], 0x2}}, {{0x0, 0x0, 0x0}}], 0x2, 0xc014)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a400000000010104000000000000000002000000380001801400018008000100ac1e000108000200e00000010c00028005000100000000001400018008000100e0000001080002000a010101240002800c000280050001000000000014000180080001000000000008000280e00000020800074000000000"], 0xa4}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x12, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0x0, 0x0, &(0x7f00000006c0), 0x0, 0x3, 0x60000000, 0x0, 0x1, 0x0, &(0x7f0000000380)="a4", 0x4}, 0x50)
close(r2)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e19, @broadcast}, 0x10)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10)
53.398757ms ago: executing program 2 (id=3):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040))
fchmodat(r1, &(0x7f0000000000)='./file0\x00', 0x141)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000a50000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d00)={r3, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
39.277577ms ago: executing program 1 (id=2):
socket$key(0xf, 0x3, 0x2)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$alg(0x26, 0x5, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="07000000088000000c0000000300000001000000", @ANYRES32=0x1, @ANYBLOB="00000000000000000000399eb5a5080000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x50)
bind$bt_hci(r1, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r1, &(0x7f0000000040)="05000000010000", 0x7)
write$bt_hci(0xffffffffffffffff, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00000002"], 0x8)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, &(0x7f0000000c80)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="04040a00000000000000000002"], 0xd)
r2 = openat$kvm(0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000180)={0x4, 0xffff1000, 0x8, r4})
close_range(r3, r4, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0403"], 0x14)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$unix(0x1, 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001240)={0x8, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000002018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000140000007b110000000000008500000005000000790900000000000045090100000003709500000000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket(0x23, 0x4, 0x2)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c0000000203010100000000000000005eb5000000000000200000200800044000000030089580279f977a7c"], 0x2c}, 0x1, 0x0, 0x0, 0x24004850}, 0x800)
8.657592ms ago: executing program 0 (id=1):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x8, 0xb4, &(0x7f0000000140)=""/180, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffe94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty20(0xc, 0x4, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
socket(0x22, 0x2, 0x1)
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x6, 0xa, 0x9, 0xfff0, 0xf1}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x1, 0xb, 0xa, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x9}, {}, {}, {0x18, 0x6, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
ioprio_set$pid(0x3, 0x0, 0x4004)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet6(0xa, 0x1, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
0s ago: executing program 2 (id=5):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000240), r1)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000000))
timer_settime(0x0, 0x1, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NFC_CMD_DEV_UP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0100000000000002000002000000080001"], 0x1c}, 0x1, 0x0, 0x0, 0x44090}, 0x0)
kernel console output (not intermixed with test programs):
Warning: Permanently added '[localhost]:20645' (ED25519) to the list of known hosts.
[ 41.899053][ T5931] cgroup: Unknown subsys name 'net'
[ 42.018878][ T5931] cgroup: Unknown subsys name 'cpuset'
[ 42.021926][ T5931] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 42.789650][ T5931] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 44.943408][ T5944] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 44.968557][ T5951] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 44.971139][ T5951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 44.973365][ T5951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 44.976746][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 44.979120][ T5951] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 44.981133][ T5951] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 44.983455][ T5951] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 44.985467][ T5951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 44.988084][ T5951] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 44.990448][ T5951] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 44.993536][ T5951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 44.995521][ T5953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 44.995617][ T5951] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 44.998248][ T5953] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 45.000075][ T5951] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 45.001753][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 45.003683][ T5951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 45.016100][ T5954] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 45.018389][ T5954] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 45.020760][ T5954] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 45.021441][ T5955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 45.026891][ T5954] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 45.029637][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 45.157582][ T5948] chnl_net:caif_netlink_parms(): no params data found
[ 45.218934][ T5945] chnl_net:caif_netlink_parms(): no params data found
[ 45.238972][ T5950] chnl_net:caif_netlink_parms(): no params data found
[ 45.305103][ T5942] chnl_net:caif_netlink_parms(): no params data found
[ 45.351928][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.354414][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.357038][ T5948] bridge_slave_0: entered allmulticast mode
[ 45.359146][ T5948] bridge_slave_0: entered promiscuous mode
[ 45.374481][ T5945] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.378899][ T5945] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.381721][ T5945] bridge_slave_0: entered allmulticast mode
[ 45.384770][ T5945] bridge_slave_0: entered promiscuous mode
[ 45.390712][ T5945] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.393399][ T5945] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.396370][ T5945] bridge_slave_1: entered allmulticast mode
[ 45.399337][ T5945] bridge_slave_1: entered promiscuous mode
[ 45.428218][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.430342][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.432381][ T5948] bridge_slave_1: entered allmulticast mode
[ 45.434453][ T5948] bridge_slave_1: entered promiscuous mode
[ 45.478448][ T5945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 45.481350][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.483370][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.485384][ T5950] bridge_slave_0: entered allmulticast mode
[ 45.488240][ T5950] bridge_slave_0: entered promiscuous mode
[ 45.499809][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 45.505975][ T5945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 45.522066][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.524846][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.527875][ T5950] bridge_slave_1: entered allmulticast mode
[ 45.530819][ T5950] bridge_slave_1: entered promiscuous mode
[ 45.534544][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 45.568074][ T5945] team0: Port device team_slave_0 added
[ 45.606960][ T5945] team0: Port device team_slave_1 added
[ 45.619192][ T5948] team0: Port device team_slave_0 added
[ 45.621676][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.623640][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.625561][ T5942] bridge_slave_0: entered allmulticast mode
[ 45.628224][ T5942] bridge_slave_0: entered promiscuous mode
[ 45.652803][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 45.658271][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 45.662437][ T5948] team0: Port device team_slave_1 added
[ 45.664600][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.669552][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.672282][ T5942] bridge_slave_1: entered allmulticast mode
[ 45.675345][ T5942] bridge_slave_1: entered promiscuous mode
[ 45.679772][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 45.681862][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.690053][ T5945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 45.744697][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 45.746807][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.753960][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 45.759560][ T5950] team0: Port device team_slave_0 added
[ 45.762220][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 45.764254][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.772957][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 45.778185][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 45.780882][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.789789][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 45.795482][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 45.801834][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 45.816649][ T5950] team0: Port device team_slave_1 added
[ 45.850547][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 45.853240][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.863177][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 45.881472][ T5942] team0: Port device team_slave_0 added
[ 45.884644][ T5942] team0: Port device team_slave_1 added
[ 45.886965][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 45.889468][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.897160][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 45.957535][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 45.959618][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 45.966944][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 45.972112][ T5948] hsr_slave_0: entered promiscuous mode
[ 45.974841][ T5948] hsr_slave_1: entered promiscuous mode
[ 45.980478][ T5945] hsr_slave_0: entered promiscuous mode
[ 45.982463][ T5945] hsr_slave_1: entered promiscuous mode
[ 45.984296][ T5945] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 45.986879][ T5945] Cannot create hsr debugfs directory
[ 45.996648][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 45.998716][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 46.006189][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 46.049870][ T5950] hsr_slave_0: entered promiscuous mode
[ 46.052067][ T5950] hsr_slave_1: entered promiscuous mode
[ 46.053871][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 46.056302][ T5950] Cannot create hsr debugfs directory
[ 46.091195][ T5942] hsr_slave_0: entered promiscuous mode
[ 46.093205][ T5942] hsr_slave_1: entered promiscuous mode
[ 46.094894][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 46.097252][ T5942] Cannot create hsr debugfs directory
[ 46.307540][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 46.314344][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 46.319571][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 46.326955][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 46.342779][ T5942] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 46.347265][ T5942] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 46.350529][ T5942] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 46.357778][ T5942] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 46.377486][ T5945] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 46.383804][ T5945] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 46.389909][ T5945] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 46.401791][ T5945] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 46.424643][ T5950] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 46.435413][ T5950] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 46.439647][ T5950] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 46.448215][ T5950] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 46.490151][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0
[ 46.506574][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0
[ 46.517079][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[ 46.521574][ T5948] 8021q: adding VLAN 0 to HW filter on device team0
[ 46.531327][ T5945] 8021q: adding VLAN 0 to HW filter on device team0
[ 46.539544][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.542382][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.555496][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[ 46.561536][ T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.564302][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.568605][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.571280][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.584582][ T235] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.586669][ T235] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.593441][ T63] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.595516][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.607517][ T235] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.610211][ T235] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.619228][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[ 46.650849][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[ 46.662555][ T235] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.665051][ T235] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.672726][ T5945] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 46.684447][ T1137] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.687368][ T1137] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.768111][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 46.787270][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 46.792469][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 46.807922][ T5942] veth0_vlan: entered promiscuous mode
[ 46.814252][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 46.824554][ T5942] veth1_vlan: entered promiscuous mode
[ 46.842910][ T5948] veth0_vlan: entered promiscuous mode
[ 46.867055][ T5945] veth0_vlan: entered promiscuous mode
[ 46.869507][ T5948] veth1_vlan: entered promiscuous mode
[ 46.878201][ T5942] veth0_macvtap: entered promiscuous mode
[ 46.883349][ T5950] veth0_vlan: entered promiscuous mode
[ 46.889133][ T5942] veth1_macvtap: entered promiscuous mode
[ 46.897244][ T5945] veth1_vlan: entered promiscuous mode
[ 46.902557][ T5950] veth1_vlan: entered promiscuous mode
[ 46.913477][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 46.923939][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 46.933104][ T5942] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 46.936632][ T5942] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 46.940008][ T5942] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 46.943407][ T5942] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 46.949651][ T5945] veth0_macvtap: entered promiscuous mode
[ 46.962163][ T5945] veth1_macvtap: entered promiscuous mode
[ 46.966532][ T5948] veth0_macvtap: entered promiscuous mode
[ 46.970394][ T5950] veth0_macvtap: entered promiscuous mode
[ 46.978116][ T5948] veth1_macvtap: entered promiscuous mode
[ 46.989644][ T5950] veth1_macvtap: entered promiscuous mode
[ 47.002712][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 47.007553][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.012436][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 47.015509][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 47.019863][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.023648][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 47.027088][ T5954] Bluetooth: hci1: command tx timeout
[ 47.027100][ T66] Bluetooth: hci2: command tx timeout
[ 47.028128][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.036442][ T5954] Bluetooth: hci3: command tx timeout
[ 47.036877][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 47.042083][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 47.046955][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.050748][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 47.056444][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 47.060245][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.064276][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 47.068342][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.071557][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 47.074953][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.079351][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 47.097925][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 47.102277][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.106570][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 47.110949][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.115935][ T5954] Bluetooth: hci0: command tx timeout
[ 47.116178][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 47.122141][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 47.125652][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.129233][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 47.133069][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.136721][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 47.140058][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 47.144638][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 47.148569][ T5945] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.151477][ T5945] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.154875][ T5945] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.158351][ T5945] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.181430][ T5950] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.184859][ T5950] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.188825][ T5950] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.192258][ T5950] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.197640][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.200133][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.208552][ T5948] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.211822][ T5948] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.214981][ T5948] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.218709][ T5948] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 47.232537][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.235316][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.289881][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.293038][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.308208][ T235] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.308946][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 47.310498][ T235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.324607][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.328500][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.329691][ T235] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.333415][ T235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.357687][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.360623][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.377401][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 47.379736][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 47.403007][ T6006] syz.3.4 uses obsolete (PF_INET,SOCK_PACKET)
[ 47.411486][ T6006] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4'.
[ 47.470667][ T6012] Bluetooth: MGMT ver 1.23
[ 47.475344][ T66] Bluetooth: hci3: unexpected event 0x03 length: 17 > 11
[ 47.475619][ T66] BUG: sleeping function called from invalid context at net/core/sock.c:3647
[ 47.479976][ T66] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 66, name: kworker/u33:0
[ 47.483928][ T66] preempt_count: 1, expected: 0
[ 47.486213][ T66] RCU nest depth: 0, expected: 0
[ 47.487861][ T66] 5 locks held by kworker/u33:0/66:
[ 47.489600][ T66] #0: ffff888022f92948 ((wq_completion)hci3#2){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[ 47.492809][ T66] #1: ffffc90000a27d18 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[ 47.496109][ T66] #2: ffff8880527a4078 (&hdev->lock){+.+.}-{4:4}, at: hci_conn_complete_evt+0xbd/0x1580
[ 47.498875][ T66] #3: ffff88804a249a20 (&conn->lock#2){+.+.}-{3:3}, at: sco_connect_cfm+0x281/0xbc0
[ 47.501691][ T66] #4: ffff88806919f258 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_connect_cfm+0x416/0xbc0
[ 47.504583][ T66] Preemption disabled at:
[ 47.504589][ T66] [<0000000000000000>] 0x0
[ 47.507027][ T66] CPU: 3 UID: 0 PID: 66 Comm: kworker/u33:0 Not tainted 6.14.0-rc1-syzkaller-00034-g92514ef226f5 #0
[ 47.507040][ T66] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 47.507047][ T66] Workqueue: hci3 hci_rx_work
[ 47.507060][ T66] Call Trace:
[ 47.507063][ T66]
[ 47.507067][ T66] dump_stack_lvl+0x16c/0x1f0
[ 47.507084][ T66] __might_resched+0x3c0/0x5e0
[ 47.507095][ T66] ? __pfx_lock_release+0x10/0x10
[ 47.507106][ T66] ? __pfx___might_resched+0x10/0x10
[ 47.507119][ T66] ? lock_acquire+0x2f/0xb0
[ 47.507129][ T66] ? sco_connect_cfm+0x416/0xbc0
[ 47.507144][ T66] lock_sock_nested+0x4b/0xf0
[ 47.507153][ T66] ? sco_connect_cfm+0x416/0xbc0
[ 47.507167][ T66] sco_connect_cfm+0x416/0xbc0
[ 47.507181][ T66] ? __pfx_sco_connect_cfm+0x10/0x10
[ 47.507197][ T66] ? hci_cb_lookup+0x319/0x4e0
[ 47.507210][ T66] ? __pfx_sco_connect_cfm+0x10/0x10
[ 47.507221][ T66] hci_conn_complete_evt+0x80d/0x1580
[ 47.507237][ T66] ? __pfx_hci_conn_complete_evt+0x10/0x10
[ 47.507252][ T66] ? skb_pull_data+0x166/0x210
[ 47.507262][ T66] hci_event_packet+0x9eb/0x1190
[ 47.507277][ T66] ? __pfx_hci_conn_complete_evt+0x10/0x10
[ 47.507290][ T66] ? __pfx_hci_event_packet+0x10/0x10
[ 47.507304][ T66] ? mark_held_locks+0x9f/0xe0
[ 47.507315][ T66] ? kcov_remote_start+0x3cf/0x6e0
[ 47.507327][ T66] ? lockdep_hardirqs_on+0x7c/0x110
[ 47.507344][ T66] hci_rx_work+0x2c5/0x16b0
[ 47.507354][ T66] ? process_one_work+0x8bb/0x1b30
[ 47.507367][ T66] process_one_work+0x958/0x1b30
[ 47.507381][ T66] ? __pfx_hci_cmd_work+0x10/0x10
[ 47.507391][ T66] ? __pfx_process_one_work+0x10/0x10
[ 47.507405][ T66] ? assign_work+0x1a0/0x250
[ 47.507416][ T66] worker_thread+0x6c8/0xf00
[ 47.507431][ T66] ? __pfx_worker_thread+0x10/0x10
[ 47.507441][ T66] kthread+0x3af/0x750
[ 47.507451][ T66] ? __pfx_kthread+0x10/0x10
[ 47.507460][ T66] ? lock_acquire+0x2f/0xb0
[ 47.507472][ T66] ? __pfx_kthread+0x10/0x10
[ 47.507482][ T66] ret_from_fork+0x45/0x80
[ 47.507493][ T66] ? __pfx_kthread+0x10/0x10
[ 47.507502][ T66] ret_from_fork_asm+0x1a/0x30
[ 47.507519][ T66]
[ 47.507523][ T66] ==================================================================
[ 47.564051][ T66] BUG: KASAN: slab-use-after-free in __lock_acquire+0x2d90/0x3c40
[ 47.565997][ T66] Read of size 8 at addr ffff88806919f1d8 by task kworker/u33:0/66
[ 47.567967][ T66]
[ 47.568593][ T66] CPU: 3 UID: 0 PID: 66 Comm: kworker/u33:0 Tainted: G W 6.14.0-rc1-syzkaller-00034-g92514ef226f5 #0
[ 47.568607][ T66] Tainted: [W]=WARN
[ 47.568610][ T66] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 47.568617][ T66] Workqueue: hci3 hci_rx_work
[ 47.568630][ T66] Call Trace:
[ 47.568634][ T66]
[ 47.568638][ T66] dump_stack_lvl+0x116/0x1f0
[ 47.568653][ T66] print_report+0xc3/0x620
[ 47.568664][ T66] ? __virt_addr_valid+0x5e/0x590
[ 47.568674][ T66] ? __phys_addr+0xc6/0x150
[ 47.568683][ T66] kasan_report+0xd9/0x110
[ 47.568695][ T66] ? __lock_acquire+0x2d90/0x3c40
[ 47.568706][ T66] ? __lock_acquire+0x2d90/0x3c40
[ 47.568718][ T66] __lock_acquire+0x2d90/0x3c40
[ 47.568728][ T66] ? lock_acquire+0x2f/0xb0
[ 47.568739][ T66] ? is_bpf_text_address+0x30/0x1a0
[ 47.568751][ T66] ? __pfx_mark_lock+0x10/0x10
[ 47.568762][ T66] ? __pfx___lock_acquire+0x10/0x10
[ 47.568773][ T66] ? show_trace_log_lvl+0x29d/0x3d0
[ 47.568786][ T66] lock_acquire.part.0+0x11b/0x380
[ 47.568797][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.568807][ T66] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 47.568818][ T66] ? rcu_is_watching+0x12/0xc0
[ 47.568831][ T66] ? trace_lock_acquire+0x14e/0x1f0
[ 47.568839][ T66] ? __might_resched+0x3cc/0x5e0
[ 47.568851][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.568859][ T66] ? lock_acquire+0x2f/0xb0
[ 47.568869][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.568878][ T66] _raw_spin_lock_bh+0x33/0x40
[ 47.568890][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.568899][ T66] lock_sock_nested+0x5f/0xf0
[ 47.568907][ T66] ? sco_connect_cfm+0x416/0xbc0
[ 47.568921][ T66] sco_connect_cfm+0x416/0xbc0
[ 47.568934][ T66] ? __pfx_sco_connect_cfm+0x10/0x10
[ 47.568947][ T66] ? hci_cb_lookup+0x319/0x4e0
[ 47.568965][ T66] ? __pfx_sco_connect_cfm+0x10/0x10
[ 47.568977][ T66] hci_conn_complete_evt+0x80d/0x1580
[ 47.568992][ T66] ? __pfx_hci_conn_complete_evt+0x10/0x10
[ 47.569008][ T66] ? skb_pull_data+0x166/0x210
[ 47.569017][ T66] hci_event_packet+0x9eb/0x1190
[ 47.569033][ T66] ? __pfx_hci_conn_complete_evt+0x10/0x10
[ 47.569048][ T66] ? __pfx_hci_event_packet+0x10/0x10
[ 47.569063][ T66] ? mark_held_locks+0x9f/0xe0
[ 47.569077][ T66] ? kcov_remote_start+0x3cf/0x6e0
[ 47.569089][ T66] ? lockdep_hardirqs_on+0x7c/0x110
[ 47.569103][ T66] hci_rx_work+0x2c5/0x16b0
[ 47.569114][ T66] ? process_one_work+0x8bb/0x1b30
[ 47.569125][ T66] process_one_work+0x958/0x1b30
[ 47.569137][ T66] ? __pfx_hci_cmd_work+0x10/0x10
[ 47.569147][ T66] ? __pfx_process_one_work+0x10/0x10
[ 47.569159][ T66] ? assign_work+0x1a0/0x250
[ 47.569168][ T66] worker_thread+0x6c8/0xf00
[ 47.569180][ T66] ? __pfx_worker_thread+0x10/0x10
[ 47.569190][ T66] kthread+0x3af/0x750
[ 47.569200][ T66] ? __pfx_kthread+0x10/0x10
[ 47.569208][ T66] ? lock_acquire+0x2f/0xb0
[ 47.569219][ T66] ? __pfx_kthread+0x10/0x10
[ 47.569228][ T66] ret_from_fork+0x45/0x80
[ 47.569240][ T66] ? __pfx_kthread+0x10/0x10
[ 47.569249][ T66] ret_from_fork_asm+0x1a/0x30
[ 47.569261][ T66]
[ 47.569264][ T66]
[ 47.647604][ T66] Allocated by task 6006:
[ 47.648718][ T66] kasan_save_stack+0x33/0x60
[ 47.649935][ T66] kasan_save_track+0x14/0x30
[ 47.651144][ T66] __kasan_kmalloc+0xaa/0xb0
[ 47.652358][ T66] __kmalloc_noprof+0x21a/0x4f0
[ 47.653597][ T66] sk_prot_alloc+0x1a8/0x2a0
[ 47.654776][ T66] sk_alloc+0x36/0xb90
[ 47.655854][ T66] bt_sock_alloc+0x3b/0x3a0
[ 47.657027][ T66] sco_sock_create+0xe3/0x3c0
[ 47.658253][ T66] bt_sock_create+0x182/0x350
[ 47.659459][ T66] __sock_create+0x335/0x8d0
[ 47.660659][ T66] __sys_socket+0x14f/0x260
[ 47.661798][ T66] __ia32_sys_socket+0x72/0xb0
[ 47.663063][ T66] __do_fast_syscall_32+0x73/0x120
[ 47.664417][ T66] do_fast_syscall_32+0x32/0x80
[ 47.665660][ T66] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 47.667328][ T66]
[ 47.667975][ T66] Freed by task 6005:
[ 47.669025][ T66] kasan_save_stack+0x33/0x60
[ 47.670254][ T66] kasan_save_track+0x14/0x30
[ 47.671475][ T66] kasan_save_free_info+0x3b/0x60
[ 47.672795][ T66] __kasan_slab_free+0x51/0x70
[ 47.674067][ T66] kfree+0x2c4/0x4d0
[ 47.675092][ T66] __sk_destruct+0x5eb/0x720
[ 47.676343][ T66] sk_destruct+0xc2/0xf0
[ 47.677454][ T66] __sk_free+0xf4/0x3e0
[ 47.678546][ T66] sk_free+0x6a/0x90
[ 47.679574][ T66] sco_sock_kill+0x11a/0x1c0
[ 47.680765][ T66] sco_sock_release+0x154/0x2d0
[ 47.681970][ T66] __sock_release+0xb0/0x270
[ 47.683171][ T66] sock_close+0x1c/0x30
[ 47.684270][ T66] __fput+0x3ff/0xb70
[ 47.685308][ T66] task_work_run+0x14e/0x250
[ 47.686496][ T66] syscall_exit_to_user_mode+0x27b/0x2a0
[ 47.687881][ T66] __do_fast_syscall_32+0x80/0x120
[ 47.689178][ T66] do_fast_syscall_32+0x32/0x80
[ 47.690403][ T66] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 47.691948][ T66]
[ 47.692569][ T66] The buggy address belongs to the object at ffff88806919f000
[ 47.692569][ T66] which belongs to the cache kmalloc-2k of size 2048
[ 47.696061][ T66] The buggy address is located 472 bytes inside of
[ 47.696061][ T66] freed 2048-byte region [ffff88806919f000, ffff88806919f800)
[ 47.699495][ T66]
[ 47.700130][ T66] The buggy address belongs to the physical page:
[ 47.701739][ T66] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x69198
[ 47.703981][ T66] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 47.706151][ T66] anon flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 47.708161][ T66] page_type: f5(slab)
[ 47.709246][ T66] raw: 04fff00000000040 ffff88801b042f00 0000000000000000 0000000000000001
[ 47.711390][ T66] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 47.713544][ T66] head: 04fff00000000040 ffff88801b042f00 0000000000000000 0000000000000001
[ 47.715747][ T66] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 47.717939][ T66] head: 04fff00000000003 ffffea0001a46601 ffffffffffffffff 0000000000000000
[ 47.720158][ T66] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 47.722310][ T66] page dumped because: kasan: bad access detected
[ 47.723964][ T66] page_owner tracks the page as allocated
[ 47.725436][ T66] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 235, tgid 235 (kworker/u32:5), ts 46668841670, free_ts 0
[ 47.730338][ T66] post_alloc_hook+0x181/0x1b0
[ 47.731538][ T66] get_page_from_freelist+0xfce/0x2f80
[ 47.732949][ T66] __alloc_frozen_pages_noprof+0x221/0x2470
[ 47.734503][ T66] alloc_pages_mpol+0x1fc/0x540
[ 47.735805][ T66] new_slab+0x23d/0x330
[ 47.736900][ T66] ___slab_alloc+0xbfa/0x1600
[ 47.738137][ T66] __slab_alloc.constprop.0+0x56/0xb0
[ 47.739525][ T66] __kmalloc_node_track_caller_noprof+0x2ee/0x520
[ 47.741192][ T66] kmalloc_reserve+0xef/0x2c0
[ 47.742420][ T66] __alloc_skb+0x164/0x380
[ 47.743580][ T66] inet6_ifinfo_notify+0x77/0x150
[ 47.744870][ T66] addrconf_notify+0x81a/0x19c0
[ 47.746145][ T66] notifier_call_chain+0xb7/0x410
[ 47.747420][ T66] call_netdevice_notifiers_info+0xbe/0x140
[ 47.748903][ T66] netdev_state_change+0x115/0x150
[ 47.750242][ T66] linkwatch_do_dev+0x12b/0x160
[ 47.751520][ T66] page_owner free stack trace missing
[ 47.752889][ T66]
[ 47.753537][ T66] Memory state around the buggy address:
[ 47.754958][ T66] ffff88806919f080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.757005][ T66] ffff88806919f100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.759030][ T66] >ffff88806919f180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.761066][ T66] ^
[ 47.762795][ T66] ffff88806919f200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.764832][ T66] ffff88806919f280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.766867][ T66] ==================================================================
[ 47.768920][ T66] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 47.770756][ T66] CPU: 3 UID: 0 PID: 66 Comm: kworker/u33:0 Tainted: G W 6.14.0-rc1-syzkaller-00034-g92514ef226f5 #0
[ 47.773820][ T66] Tainted: [W]=WARN
[ 47.774813][ T66] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 47.777659][ T66] Workqueue: hci3 hci_rx_work
[ 47.778895][ T66] Call Trace:
[ 47.779791][ T66]
[ 47.780579][ T66] dump_stack_lvl+0x3d/0x1f0
[ 47.781769][ T66] panic+0x71d/0x800
[ 47.782781][ T66] ? __pfx_panic+0x10/0x10
[ 47.783973][ T66] ? rcu_is_watching+0x12/0xc0
[ 47.785220][ T66] ? __pfx_lock_release+0x10/0x10
[ 47.786549][ T66] check_panic_on_warn+0xab/0xb0
[ 47.787858][ T66] end_report+0x117/0x180
[ 47.788983][ T66] kasan_report+0xe9/0x110
[ 47.790156][ T66] ? __lock_acquire+0x2d90/0x3c40
[ 47.791456][ T66] ? __lock_acquire+0x2d90/0x3c40
[ 47.792742][ T66] __lock_acquire+0x2d90/0x3c40
[ 47.794033][ T66] ? lock_acquire+0x2f/0xb0
[ 47.795239][ T66] ? is_bpf_text_address+0x30/0x1a0
[ 47.796643][ T66] ? __pfx_mark_lock+0x10/0x10
[ 47.797815][ T66] ? __pfx___lock_acquire+0x10/0x10
[ 47.799177][ T66] ? show_trace_log_lvl+0x29d/0x3d0
[ 47.800555][ T66] lock_acquire.part.0+0x11b/0x380
[ 47.801899][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.803198][ T66] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 47.804639][ T66] ? rcu_is_watching+0x12/0xc0
[ 47.805856][ T66] ? trace_lock_acquire+0x14e/0x1f0
[ 47.807153][ T66] ? __might_resched+0x3cc/0x5e0
[ 47.808399][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.809647][ T66] ? lock_acquire+0x2f/0xb0
[ 47.810822][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.812087][ T66] _raw_spin_lock_bh+0x33/0x40
[ 47.813314][ T66] ? lock_sock_nested+0x5f/0xf0
[ 47.814594][ T66] lock_sock_nested+0x5f/0xf0
[ 47.815802][ T66] ? sco_connect_cfm+0x416/0xbc0
[ 47.817075][ T66] sco_connect_cfm+0x416/0xbc0
[ 47.818320][ T66] ? __pfx_sco_connect_cfm+0x10/0x10
[ 47.819737][ T66] ? hci_cb_lookup+0x319/0x4e0
[ 47.821044][ T66] ? __pfx_sco_connect_cfm+0x10/0x10
[ 47.822453][ T66] hci_conn_complete_evt+0x80d/0x1580
[ 47.823865][ T66] ? __pfx_hci_conn_complete_evt+0x10/0x10
[ 47.825414][ T66] ? skb_pull_data+0x166/0x210
[ 47.826655][ T66] hci_event_packet+0x9eb/0x1190
[ 47.827923][ T66] ? __pfx_hci_conn_complete_evt+0x10/0x10
[ 47.829397][ T66] ? __pfx_hci_event_packet+0x10/0x10
[ 47.830792][ T66] ? mark_held_locks+0x9f/0xe0
[ 47.832026][ T66] ? kcov_remote_start+0x3cf/0x6e0
[ 47.833355][ T66] ? lockdep_hardirqs_on+0x7c/0x110
[ 47.834721][ T66] hci_rx_work+0x2c5/0x16b0
[ 47.835925][ T66] ? process_one_work+0x8bb/0x1b30
[ 47.837251][ T66] process_one_work+0x958/0x1b30
[ 47.838523][ T66] ? __pfx_hci_cmd_work+0x10/0x10
[ 47.839810][ T66] ? __pfx_process_one_work+0x10/0x10
[ 47.841198][ T66] ? assign_work+0x1a0/0x250
[ 47.842404][ T66] worker_thread+0x6c8/0xf00
[ 47.843637][ T66] ? __pfx_worker_thread+0x10/0x10
[ 47.844935][ T66] kthread+0x3af/0x750
[ 47.846003][ T66] ? __pfx_kthread+0x10/0x10
[ 47.847208][ T66] ? lock_acquire+0x2f/0xb0
[ 47.848425][ T66] ? __pfx_kthread+0x10/0x10
[ 47.849613][ T66] ret_from_fork+0x45/0x80
[ 47.850759][ T66] ? __pfx_kthread+0x10/0x10
[ 47.851971][ T66] ret_from_fork_asm+0x1a/0x30
[ 47.853218][ T66]
[ 47.854641][ T66] Kernel Offset: disabled
[ 47.855809][ T66] Rebooting in 86400 seconds..
VM DIAGNOSIS:
18:34:20 Registers:
info registers vcpu 0
CPU#0
RAX=dffffc0000000000 RBX=ffffc900041b77e8 RCX=ffffffff8b44af0e RDX=1ffff11009cb56d5
RSI=ffffffff8b44af1d RDI=ffff88804e5ab6a8 RBP=0000000000000003 RSP=ffffc900041b76c0
R8 =0000000000000007 R9 =0000000000000002 R10=0000000000000003 R11=0000000000000001
R12=0000000000000003 R13=ffffc900041b7800 R14=ffff88804e5ab660 R15=ffffc900041b77e8
RIP=ffffffff8b44af54 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000000002f41fffc CR3=0000000023da6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
CPU#1
RAX=0000000000000008 RBX=0000000000000004 RCX=ffffc9000c803000 RDX=0000000000080000
RSI=ffffffff8b75ec20 RDI=0000000000000000 RBP=ffffffff8b75ec20 RSP=ffffc900041d71b8
R8 =0000000000000001 R9 =0000000000000030 R10=0000000000000000 R11=0000000000000003
R12=0000000000000000 R13=0000000000000001 R14=dffffc0000000000 R15=0000280100000000
RIP=ffffffff81b8e850 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000000002f41fffc CR3=000000004c04e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f743cff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2
CPU#2
RAX=00000000000000f6 RBX=0000000000000001 RCX=000000000000083f RDX=0000000000000000
RSI=00000000000000f6 RDI=000000000000003f RBP=000000002275a401 RSP=ffffc90003e478a0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000002 R13=0000000000000002 R14=0000000000000012 R15=ffffc90003e47948
RIP=ffffffff816790c8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f558f2b8280 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f71ae720 CR3=0000000052724000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefeffd0 Opmask01=0000000000004211 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffdfffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffef7340ee0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a2a2a 2a2a2a2a2a2a2a2a
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffff000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffff00ffffff00
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffff000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656c696620732520 6465746165726300 0a73253a47000a73 253d73253a45000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40494c4305560005 4140514440574600 0a56001f47000a56 001856001f45000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000281 0000000000000000 30706f6f6c2f6b63 6f6c622f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 82ab9ea6dd84e097 000055ba28bf0a8f 0000000000000251 000000000036316c
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 68303e3b3a38253b 3a253e3a6e68303b 21383b657a687438 2739243c3b243b27
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 69305f474f5b647c 6930382433273f39 7b27697a787c7a30 23333a3a38263342
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3
CPU#3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85386f30 RDI=ffffffff9aad2e20 RBP=ffffffff9aad2de0 RSP=ffffc90000a273a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000009
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff355a616 R15=dffffc0000000000
RIP=ffffffff85386f57 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000080001240 CR3=000000006902c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000