last executing test programs: 1.186121313s ago: executing program 2 (id=3638): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) connect$rose(r0, &(0x7f0000000180)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x7, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x40) 1.153723381s ago: executing program 2 (id=3642): unshare(0x20040600) syz_clone(0x5948000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.076924451s ago: executing program 2 (id=3651): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, &(0x7f0000000040)) 1.065085339s ago: executing program 2 (id=3654): futex(&(0x7f000000cffc), 0x9, 0x0, 0x0, 0x0, 0x1) futex(&(0x7f000000cffc), 0xa, 0x0, 0x0, 0x0, 0x2) 755.490118ms ago: executing program 1 (id=3681): openat2$dir(0xffffff9c, 0x0, &(0x7f0000000680)={0x2048c0, 0x60, 0x2}, 0x18) 747.184838ms ago: executing program 1 (id=3682): r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) readv(r0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/84, 0x9000}], 0x1) 380.701631ms ago: executing program 1 (id=3688): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='auxv\x00') preadv(r0, &(0x7f00000005c0)=[{&(0x7f0000000300)=""/110, 0x6e}, {0x0, 0x34}], 0x2, 0x0, 0x0) 379.966757ms ago: executing program 1 (id=3691): rt_sigaction(0x0, 0x0, 0x0, 0x8, &(0x7f0000000100)) 345.908858ms ago: executing program 1 (id=3695): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x1a, 0x4, 0x0, 0x1, 0x8000, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value=r0, @void, @void, @value}, 0x50) 285.016226ms ago: executing program 1 (id=3698): bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 230.974572ms ago: executing program 0 (id=3704): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) 230.903436ms ago: executing program 3 (id=3705): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x18, 0x1410, 0x6964cf48694fdc75, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}}, 0x20004000) 176.912457ms ago: executing program 3 (id=3706): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001bc0)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a32000000000500050000000000050004000000000014000780080008400000009008000640000000000d0003006c6973743a736574"], 0x5c}}, 0x0) 176.752472ms ago: executing program 3 (id=3707): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x1415, 0x101, 0x1, 0x25dfdbfc}, 0x10}}, 0x0) 175.964734ms ago: executing program 0 (id=3708): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="7c00000010000104000000000006000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000005c0012800b00010062726964676500004c00028005002900010000000500190007000000050019000000000008001c00000070000500250001000000050017000100"], 0x7c}}, 0x0) 149.117098ms ago: executing program 3 (id=3709): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x1a, 0x4, 0x0, 0x1, 0x8000, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value=r0, @void, @void, @value}, 0x50) 148.227946ms ago: executing program 0 (id=3710): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0xe08, 0x0, 0x5, 0x1, 0x80000000}, 0x21}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x8000) 91.572511ms ago: executing program 2 (id=3711): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="58000000000601"], 0x58}}, 0x0) 91.380424ms ago: executing program 0 (id=3712): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@updsa={0x100, 0x1a, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@broadcast}, {@in=@empty, 0x66, 0x2b}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14, 0xe, @in6=@mcast1}]}, 0x100}}, 0x0) 91.269867ms ago: executing program 3 (id=3713): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000500020000000900020073797a32000000000c0007800500150009000000050004000000000011000300686173683a6e65742c6e6574000000000500010007"], 0x58}}, 0x0) 91.205027ms ago: executing program 2 (id=3714): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x0, 0x6, 0x9a9, 0x6, 0x1, 0x1, 0x5}, 0x1c) 79.267208ms ago: executing program 0 (id=3715): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001900010000000000000000008020000000110005000000001400090008"], 0x30}}, 0x0) 163.789µs ago: executing program 3 (id=3716): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BATADV_ALGO_NAME={0x10, 0x1, 'BATMAN_V'}]}}}]}, 0xfd12}}, 0x0) 0s ago: executing program 0 (id=3717): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@ipv6_delrule={0x24, 0x21, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x16}, [@FIB_RULE_POLICY=@FRA_SUPPRESS_IFGROUP={0x8, 0xd, 0x9}]}, 0x24}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:50350' (ED25519) to the list of known hosts. [ 41.678842][ T5934] cgroup: Unknown subsys name 'net' [ 41.865679][ T5934] cgroup: Unknown subsys name 'cpuset' [ 41.868621][ T5934] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.636639][ T5934] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 49.176445][ T66] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 49.179451][ T66] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 49.181789][ T66] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 49.185349][ T66] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 49.187974][ T66] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 49.189931][ T66] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 49.236678][ T6021] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 49.240417][ T6021] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 49.243872][ T6021] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 49.248271][ T6021] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 49.250235][ T6021] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 49.252598][ T6021] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 49.256358][ T6033] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 49.258815][ T6033] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 49.260864][ T6033] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 49.262688][ T6033] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 49.267315][ T6033] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 49.268809][ T6028] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 49.270772][ T6033] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 49.270903][ T6028] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 49.273037][ T6019] chnl_net:caif_netlink_parms(): no params data found [ 49.277074][ T6034] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 49.279432][ T6034] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 49.281629][ T6028] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 49.290309][ T6034] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 49.374698][ T6019] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.378224][ T6019] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.380221][ T6019] bridge_slave_0: entered allmulticast mode [ 49.382553][ T6019] bridge_slave_0: entered promiscuous mode [ 49.388677][ T6019] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.390622][ T6019] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.392575][ T6019] bridge_slave_1: entered allmulticast mode [ 49.394856][ T6019] bridge_slave_1: entered promiscuous mode [ 49.468736][ T6019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.474490][ T6019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.501022][ T6019] team0: Port device team_slave_0 added [ 49.505433][ T6019] team0: Port device team_slave_1 added [ 49.562113][ T6019] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.564194][ T6019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.570717][ T6019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.595896][ T6019] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 49.597726][ T6019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.604484][ T6019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 49.612652][ T6024] chnl_net:caif_netlink_parms(): no params data found [ 49.623459][ T6031] chnl_net:caif_netlink_parms(): no params data found [ 49.666344][ T6019] hsr_slave_0: entered promiscuous mode [ 49.668218][ T6019] hsr_slave_1: entered promiscuous mode [ 49.708066][ T6031] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.710631][ T6031] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.714501][ T6031] bridge_slave_0: entered allmulticast mode [ 49.717409][ T6031] bridge_slave_0: entered promiscuous mode [ 49.721353][ T6031] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.723978][ T6031] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.726617][ T6031] bridge_slave_1: entered allmulticast mode [ 49.729386][ T6031] bridge_slave_1: entered promiscuous mode [ 49.747101][ T6025] chnl_net:caif_netlink_parms(): no params data found [ 49.827645][ T6031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.832269][ T6024] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.834220][ T6024] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.836177][ T6024] bridge_slave_0: entered allmulticast mode [ 49.838732][ T6024] bridge_slave_0: entered promiscuous mode [ 49.851431][ T6031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.864957][ T6024] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.866997][ T6024] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.868920][ T6024] bridge_slave_1: entered allmulticast mode [ 49.870789][ T6024] bridge_slave_1: entered promiscuous mode [ 49.897076][ T6031] team0: Port device team_slave_0 added [ 49.900848][ T6031] team0: Port device team_slave_1 added [ 49.947240][ T6024] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 49.952314][ T6024] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 49.954741][ T6025] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.956651][ T6025] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.958528][ T6025] bridge_slave_0: entered allmulticast mode [ 49.960485][ T6025] bridge_slave_0: entered promiscuous mode [ 49.962896][ T6031] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 49.965890][ T6031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.973370][ T6031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 49.980283][ T6031] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 49.982083][ T6031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 49.989009][ T6031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.003049][ T6025] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.005696][ T6025] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.007740][ T6025] bridge_slave_1: entered allmulticast mode [ 50.010035][ T6025] bridge_slave_1: entered promiscuous mode [ 50.032906][ T6024] team0: Port device team_slave_0 added [ 50.072159][ T6024] team0: Port device team_slave_1 added [ 50.076051][ T6025] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 50.082982][ T6025] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 50.136236][ T6031] hsr_slave_0: entered promiscuous mode [ 50.138347][ T6031] hsr_slave_1: entered promiscuous mode [ 50.140067][ T6031] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 50.142066][ T6031] Cannot create hsr debugfs directory [ 50.145813][ T6024] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 50.147739][ T6024] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.155798][ T6024] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 50.161290][ T6025] team0: Port device team_slave_0 added [ 50.164749][ T6025] team0: Port device team_slave_1 added [ 50.174618][ T6024] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.176346][ T6024] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.184171][ T6024] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.210575][ T6025] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 50.212477][ T6025] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.219322][ T6025] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 50.224446][ T6025] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 50.226240][ T6025] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 50.232429][ T6025] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 50.321293][ T6019] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 50.327569][ T6024] hsr_slave_0: entered promiscuous mode [ 50.329383][ T6024] hsr_slave_1: entered promiscuous mode [ 50.330982][ T6024] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 50.332813][ T6024] Cannot create hsr debugfs directory [ 50.339778][ T6025] hsr_slave_0: entered promiscuous mode [ 50.341841][ T6025] hsr_slave_1: entered promiscuous mode [ 50.344223][ T6025] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 50.346061][ T6025] Cannot create hsr debugfs directory [ 50.347515][ T6019] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 50.364451][ T6019] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 50.382269][ T6019] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 50.495503][ T6031] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 50.502323][ T6031] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 50.519866][ T6031] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 50.529648][ T6031] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 50.541366][ T6024] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 50.545700][ T6024] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 50.548882][ T6024] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 50.552629][ T6024] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 50.595029][ T6025] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 50.604533][ T6025] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 50.608015][ T6025] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 50.611835][ T6025] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 50.659630][ T6019] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.682255][ T6031] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.694984][ T6019] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.701700][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.703976][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.709541][ T1225] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.711506][ T1225] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.720510][ T6031] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.734527][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.736401][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.740371][ T6024] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.752284][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.754204][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.766126][ T6025] 8021q: adding VLAN 0 to HW filter on device bond0 [ 50.772234][ T6024] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.785210][ T1225] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.787620][ T1225] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.801292][ T63] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.803719][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.819791][ T6025] 8021q: adding VLAN 0 to HW filter on device team0 [ 50.832013][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.833944][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.846000][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.847802][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.852307][ T6024] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 50.894697][ T6019] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.915562][ T6019] veth0_vlan: entered promiscuous mode [ 50.925072][ T6019] veth1_vlan: entered promiscuous mode [ 50.932763][ T6024] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.939770][ T6031] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.955726][ T6025] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 50.959359][ T6019] veth0_macvtap: entered promiscuous mode [ 50.968082][ T6019] veth1_macvtap: entered promiscuous mode [ 50.986305][ T6024] veth0_vlan: entered promiscuous mode [ 50.990564][ T6019] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 51.001937][ T6019] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 51.009837][ T6031] veth0_vlan: entered promiscuous mode [ 51.015710][ T6019] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.018002][ T6019] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.020162][ T6019] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.022799][ T6019] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.029590][ T6024] veth1_vlan: entered promiscuous mode [ 51.041971][ T6031] veth1_vlan: entered promiscuous mode [ 51.056000][ T6024] veth0_macvtap: entered promiscuous mode [ 51.059412][ T6025] veth0_vlan: entered promiscuous mode [ 51.063396][ T6025] veth1_vlan: entered promiscuous mode [ 51.067599][ T6024] veth1_macvtap: entered promiscuous mode [ 51.089569][ T6025] veth0_macvtap: entered promiscuous mode [ 51.100390][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.100799][ T6024] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 51.102549][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.105467][ T6024] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.110742][ T6024] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 51.112884][ T6031] veth0_macvtap: entered promiscuous mode [ 51.120900][ T6024] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 51.123921][ T6024] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.127242][ T6024] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 51.133713][ T6031] veth1_macvtap: entered promiscuous mode [ 51.137288][ T6025] veth1_macvtap: entered promiscuous mode [ 51.142534][ T6024] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.145330][ T6024] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.147564][ T6024] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.149835][ T6024] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.154555][ T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.157187][ T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.159911][ T6025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 51.162622][ T6025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.167172][ T6025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 51.169818][ T6025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.173118][ T6025] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 51.180813][ T6025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 51.184138][ T6025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.186596][ T6025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 51.189165][ T6025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.192583][ T6025] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 51.195346][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 51.198753][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.201515][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 51.204423][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.206957][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 51.210196][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.215497][ T6031] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 51.222428][ T6025] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.226657][ T6025] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.226880][ T5309] Bluetooth: hci0: command tx timeout [ 51.228899][ T6025] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.231309][ T6019] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 51.233867][ T6025] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.244052][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 51.246883][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.249410][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 51.252274][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.255026][ T6031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 51.257633][ T6031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 51.260681][ T6031] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 51.280974][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.281179][ T6031] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.283075][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.285386][ T6031] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.285404][ T6031] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.285418][ T6031] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.313477][ T5309] Bluetooth: hci2: command tx timeout [ 51.314099][ T6034] Bluetooth: hci1: command tx timeout [ 51.314933][ T6028] Bluetooth: hci3: command tx timeout [ 51.322768][ T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.325924][ T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.367964][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.370055][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.378767][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.380875][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.405899][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.408147][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 51.421076][ T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 51.423021][ T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 52.173294][ T6229] syz.2.129 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 52.248849][ T39] audit: type=1326 audit(1733490527.540:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6242 comm="syz.1.137" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x0 [ 53.207986][ T6421] ICMPv6: NA: fd:f9:a6:84:a5:1b advertised our address fe80::aa on syz_tun! [ 53.303792][ T5309] Bluetooth: hci0: command tx timeout [ 53.383735][ T5309] Bluetooth: hci2: command tx timeout [ 53.385380][ T5309] Bluetooth: hci1: command tx timeout [ 53.393279][ T5309] Bluetooth: hci3: command tx timeout [ 53.537039][ T6492] capability: warning: `syz.2.261' uses 32-bit capabilities (legacy support in use) [ 53.764251][ T6542] dccp_invalid_packet: pskb_may_pull failed [ 53.990624][ T6585] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 53.993776][ T6585] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 53.997797][ T6585] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 54.000382][ T6585] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 54.106578][ T39] audit: type=1326 audit(1734539105.398:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6604 comm="syz.3.317" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 54.213224][ T835] usb 7-1: new full-speed USB device number 2 using dummy_hcd [ 54.299336][ T6637] syz.3.333(6637): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 54.336620][ T6034] Bluetooth: hci3: unexpected event 0x06 length: 4 > 3 [ 54.378746][ T835] usb 7-1: unable to get BOS descriptor or descriptor too short [ 54.384321][ T835] usb 7-1: not running at top speed; connect to a high speed hub [ 54.387080][ T835] usb 7-1: config 9 has an invalid interface number: 227 but max is 0 [ 54.389344][ T835] usb 7-1: config 9 has no interface number 0 [ 54.390999][ T835] usb 7-1: config 9 interface 227 altsetting 58 has an invalid endpoint descriptor of length 5, skipping [ 54.394083][ T835] usb 7-1: config 9 interface 227 altsetting 58 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 54.397606][ T835] usb 7-1: config 9 interface 227 has no altsetting 0 [ 54.405034][ T835] usb 7-1: New USB device found, idVendor=5050, idProduct=0100, bcdDevice=f1.de [ 54.407381][ T835] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 54.409445][ T835] usb 7-1: Product: syz [ 54.410516][ T835] usb 7-1: Manufacturer: syz [ 54.411738][ T835] usb 7-1: SerialNumber: syz [ 54.420270][ T6579] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 54.527206][ T6678] bpf: Bad value for 'uid' [ 54.635294][ T835] ftdi_sio 7-1:9.227: FTDI USB Serial Device converter detected [ 54.639130][ T835] ftdi_sio ttyUSB0: unknown device type: 0xf1de [ 54.650152][ T835] usb 7-1: USB disconnect, device number 2 [ 54.655036][ T835] ftdi_sio 7-1:9.227: device disconnected [ 54.753608][ T6720] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 54.756837][ T6720] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 54.759514][ T6720] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 54.761638][ T6720] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 55.383309][ T6034] Bluetooth: hci0: command tx timeout [ 55.463250][ T5309] Bluetooth: hci2: command tx timeout [ 55.464732][ T6034] Bluetooth: hci3: command tx timeout [ 55.467612][ T6850] syz.1.444[6850] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.467659][ T6850] syz.1.444[6850] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.471455][ T6850] syz.1.444[6850] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.476864][ T6852] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 55.481782][ T6852] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 55.484247][ T6852] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 55.486414][ T6852] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 55.985963][ T39] audit: type=1326 audit(1734541667.282:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6911 comm="syz.1.470" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x0 [ 56.108541][ T6918] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 56.110616][ T6918] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 56.112837][ T6918] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 56.132935][ T6918] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 56.675750][ T39] audit: type=1326 audit(1734541667.973:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.0.503" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x0 [ 56.695274][ T6982] 9pnet: Unknown protocol version 9p20\++} [ 56.747268][ T6034] Bluetooth: hci2: Malformed HCI Event [ 57.463717][ T6034] Bluetooth: hci0: command tx timeout [ 57.545405][ T6034] Bluetooth: hci2: command tx timeout [ 57.628062][ T7160] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 57.647850][ T39] audit: type=1326 audit(1734541668.943:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7161 comm="syz.3.594" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 57.822674][ T6060] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 57.975332][ T6060] usb 5-1: unable to get BOS descriptor or descriptor too short [ 57.978610][ T6060] usb 5-1: not running at top speed; connect to a high speed hub [ 57.982227][ T6060] usb 5-1: config 9 has an invalid interface number: 227 but max is 0 [ 57.986099][ T6060] usb 5-1: config 9 has no interface number 0 [ 57.987732][ T6060] usb 5-1: config 9 interface 227 altsetting 58 has an invalid endpoint descriptor of length 5, skipping [ 57.990603][ T6060] usb 5-1: config 9 interface 227 altsetting 58 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 57.994450][ T6060] usb 5-1: config 9 interface 227 has no altsetting 0 [ 57.998353][ T6060] usb 5-1: New USB device found, idVendor=5050, idProduct=0100, bcdDevice=f1.de [ 58.000776][ T6060] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 58.002950][ T6060] usb 5-1: Product: syz [ 58.004068][ T6060] usb 5-1: Manufacturer: syz [ 58.005271][ T6060] usb 5-1: SerialNumber: syz [ 58.008874][ T7153] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 58.220422][ T6060] ftdi_sio 5-1:9.227: FTDI USB Serial Device converter detected [ 58.223765][ T6060] ftdi_sio ttyUSB0: unknown device type: 0xf1de [ 58.226427][ T6060] usb 5-1: USB disconnect, device number 2 [ 58.229337][ T6060] ftdi_sio 5-1:9.227: device disconnected [ 58.800391][ T7218] cgroup: release_agent respecified [ 59.337700][ T7316] futex_wake_op: syz.2.671 tries to shift op by 32; fix this program [ 60.532632][ T39] audit: type=1400 audit(1734541671.833:7): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=7478 comm="syz.0.752" [ 60.607707][ T7488] tmpfs: Bad value for 'mpol' [ 60.686066][ T7502] binder: Bad value for 'max' [ 61.939010][ T7701] dccp_v4_rcv: dropped packet with invalid checksum [ 62.261023][ T7776] autofs: Unknown parameter 'no9 PG!8E8- ŖEeլ( Ir\u}ibT0;my[Gc#>QkbY&#w@/VVL~12lhOh'rK1\kU{!eܚ7 [ 62.261023][ T7776] Ue[%#s' [ 62.536736][ T7835] dns_resolver: Unsupported server list version (0) [ 62.987069][ T7928] capability: warning: `syz.3.973' uses deprecated v2 capabilities in a way that may be insecure [ 63.137319][ T7960] futex_wake_op: syz.1.991 tries to shift op by 36; fix this program [ 63.481754][ T6059] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 63.502763][ T8013] syz.1.1015: attempt to access beyond end of device [ 63.502763][ T8013] loop1: rw=0, sector=0, nr_sectors = 1 limit=0 [ 63.631990][ T6059] usb 8-1: Using ep0 maxpacket: 16 [ 63.636986][ T6059] usb 8-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 63.640365][ T6059] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 63.644349][ T6059] usb 8-1: Product: syz [ 63.645851][ T6059] usb 8-1: Manufacturer: syz [ 63.647607][ T6059] usb 8-1: SerialNumber: syz [ 63.653760][ T6059] r8152-cfgselector 8-1: Unknown version 0x0000 [ 63.656107][ T6059] r8152-cfgselector 8-1: config 0 descriptor?? [ 63.871602][ T6059] r8152-cfgselector 8-1: Unknown version 0x0000 [ 63.873465][ T6059] r8152-cfgselector 8-1: bad CDC descriptors [ 63.876493][ T6059] r8152-cfgselector 8-1: USB disconnect, device number 2 [ 63.943741][ T8083] syz.2.1050: attempt to access beyond end of device [ 63.943741][ T8083] loop2: rw=0, sector=0, nr_sectors = 1 limit=0 [ 63.986973][ T8091] 9pnet_fd: Insufficient options for proto=fd [ 64.483282][ T8146] Invalid ELF header type: 3 != 1 [ 65.095261][ T8263] Invalid ELF header type: 3 != 1 [ 65.314936][ T8291] Invalid ELF header type: 3 != 1 [ 65.539466][ T8333] could not allocate digest TFM handle sha1-asm [ 65.599500][ T39] audit: type=1326 audit(1734541905.887:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.3.1181" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 65.752581][ T8367] PKCS7: Unknown OID: [4] 2.19.0.2.86.14.43(bad) [ 65.755740][ T8367] PKCS7: Only support pkcs7_signedData type [ 66.271538][ T835] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 66.422850][ T835] usb 6-1: config 0 has an invalid interface number: 241 but max is 0 [ 66.425093][ T835] usb 6-1: config 0 has no interface number 0 [ 66.426594][ T835] usb 6-1: config 0 interface 241 has no altsetting 0 [ 66.441573][ T835] usb 6-1: New USB device found, idVendor=0ace, idProduct=1611, bcdDevice=c4.63 [ 66.443900][ T835] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 66.445932][ T835] usb 6-1: Product: syz [ 66.446968][ T835] usb 6-1: Manufacturer: syz [ 66.448176][ T835] usb 6-1: SerialNumber: syz [ 66.450313][ T835] usb 6-1: config 0 descriptor?? [ 66.660320][ T835] cdc_acm 6-1:0.241: skipping garbage [ 66.670669][ T835] usb 6-1: USB disconnect, device number 2 [ 67.103075][ T8552] tmpfs: Unknown parameter 'smackfshat' [ 67.449551][ T8616] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x3 [ 67.847046][ T8710] 9pnet_fd: Insufficient options for proto=fd [ 67.971145][ T8748] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd [ 68.156559][ T39] audit: type=1326 audit(1734541908.447:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8774 comm="syz.2.1391" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x0 [ 68.211566][ T6059] usb 8-1: new full-speed USB device number 3 using dummy_hcd [ 68.360963][ T8797] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 68.370209][ T8797] CIFS mount error: No usable UNC path provided in device string! [ 68.370209][ T8797] [ 68.373736][ T8797] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 68.376330][ T6059] usb 8-1: unable to get BOS descriptor or descriptor too short [ 68.379316][ T6059] usb 8-1: not running at top speed; connect to a high speed hub [ 68.384611][ T6059] usb 8-1: config 9 has an invalid interface number: 227 but max is 0 [ 68.387071][ T6059] usb 8-1: config 9 has no interface number 0 [ 68.388662][ T6059] usb 8-1: config 9 interface 227 altsetting 58 has an invalid endpoint descriptor of length 5, skipping [ 68.391789][ T6059] usb 8-1: config 9 interface 227 altsetting 58 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 68.395056][ T6059] usb 8-1: config 9 interface 227 has no altsetting 0 [ 68.402364][ T6059] usb 8-1: New USB device found, idVendor=5050, idProduct=0100, bcdDevice=f1.de [ 68.405624][ T6059] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 68.408120][ T6059] usb 8-1: Product: syz [ 68.409236][ T6059] usb 8-1: Manufacturer: syz [ 68.410444][ T6059] usb 8-1: SerialNumber: syz [ 68.414492][ T8745] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 68.626656][ T6059] ftdi_sio 8-1:9.227: FTDI USB Serial Device converter detected [ 68.628920][ T6059] ftdi_sio ttyUSB0: unknown device type: 0xf1de [ 68.638286][ T6059] usb 8-1: USB disconnect, device number 3 [ 68.642492][ T6059] ftdi_sio 8-1:9.227: device disconnected [ 68.817893][ T8855] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 68.820031][ T8855] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 68.823776][ T8855] vhci_hcd vhci_hcd.0: Device attached [ 68.827496][ T8856] vhci_hcd: connection closed [ 68.829205][ T1135] vhci_hcd: stop threads [ 68.833164][ T1135] vhci_hcd: release socket [ 68.834833][ T1135] vhci_hcd: disconnect device [ 68.928338][ T8871] CIFS mount error: No usable UNC path provided in device string! [ 68.928338][ T8871] [ 68.930937][ T8871] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 69.181413][ T8908] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 69.183243][ T8908] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 69.185385][ T8908] vhci_hcd vhci_hcd.0: Device attached [ 69.188732][ T8909] vhci_hcd: connection closed [ 69.190866][ T1225] vhci_hcd: stop threads [ 69.194203][ T1225] vhci_hcd: release socket [ 69.195784][ T1225] vhci_hcd: disconnect device [ 70.211190][ T9114] IPv6: addrconf: prefix option has invalid lifetime [ 70.610097][ T39] audit: type=1326 audit(1734541910.897:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9201 comm="syz.3.1603" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 70.683209][ T9220] dccp_invalid_packet: P.Data Offset(80) too large [ 70.683513][ T9221] IPv6: addrconf: prefix option has invalid lifetime [ 70.793953][ T9245] virtio-fs: tag <(null)> not found [ 70.819502][ T9251] IPv6: addrconf: prefix option has invalid lifetime [ 70.824503][ T1414] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.826938][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.874358][ T39] audit: type=1326 audit(1734541911.167:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9260 comm="syz.0.1632" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x0 [ 70.980308][ T9277] mmap: syz.1.1640 (9277) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 71.149706][ T39] audit: type=1326 audit(1734541911.437:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9313 comm="syz.1.1659" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x0 [ 71.431477][ T39] audit: type=1326 audit(1734541911.727:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9377 comm="syz.3.1690" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 71.568012][ T9405] IPv6: addrconf: prefix option has invalid lifetime [ 71.720356][ T9434] dccp_invalid_packet: P.Data Offset(4) too small [ 72.295798][ T9535] futex_wake_op: syz.2.1768 tries to shift op by -1; fix this program [ 72.453258][ T9570] ip_tunnel: non-ECT from 172.30.0.1 with TOS=0x2 [ 72.661074][ T9612] IPv6: addrconf: prefix option has invalid lifetime [ 72.663127][ T6028] Bluetooth: hci1: command tx timeout [ 72.695094][ T6028] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 73.381627][ T6028] Bluetooth: hci2: command 0x0406 tx timeout [ 73.565495][ T9791] PKCS7: Unknown OID: [4] 0.38.35.0.951690.11253 [ 73.567197][ T9791] PKCS7: Only support pkcs7_signedData type [ 73.658267][ T9816] random: crng reseeded on system resumption [ 73.951022][ T6060] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 73.984468][ T6034] Bluetooth: hci1: unexpected event for opcode 0x0c26 [ 74.055494][ T9885] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 74.115436][ T6060] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0 [ 74.122633][ T6060] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 74.125965][ T6060] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 74.128768][ T6060] usb 5-1: Product: syz [ 74.130265][ T6060] usb 5-1: Manufacturer: syz [ 74.132159][ T6060] usb 5-1: SerialNumber: syz [ 74.136687][ T9827] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 74.353184][ T6060] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22 [ 74.360191][ T6060] usb 5-1: USB disconnect, device number 3 [ 74.917007][ T9994] Invalid source name [ 74.918105][ T9994] UBIFS error (pid: 9994): cannot open "ubifs", error -22 [ 75.457697][ T39] audit: type=1326 audit(1734541916.745:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.3.2056" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 75.764309][T10183] binder: Binderfs stats mode cannot be changed during a remount [ 75.772380][ T6059] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 75.964668][ T6059] usb 6-1: Using ep0 maxpacket: 16 [ 75.968170][ T6059] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1023 [ 75.976075][ T6059] usb 6-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47 [ 75.979369][ T6059] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 75.982347][ T6059] usb 6-1: Product: syz [ 75.983627][ T6059] usb 6-1: Manufacturer: syz [ 75.984857][ T6059] usb 6-1: SerialNumber: syz [ 75.988365][ T6059] usb 6-1: config 0 descriptor?? [ 75.991275][T10139] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 75.994774][ T6059] mcba_usb 6-1:0.0: Can't find endpoints [ 76.063520][ T6060] usb 7-1: new low-speed USB device number 3 using dummy_hcd [ 76.214058][ T6058] usb 6-1: USB disconnect, device number 3 [ 76.224906][ T6060] usb 7-1: config 1 interface 0 altsetting 10 endpoint 0x81 has invalid maxpacket 512, setting to 8 [ 76.228477][ T6060] usb 7-1: config 1 interface 0 has no altsetting 0 [ 76.237571][ T6060] usb 7-1: string descriptor 0 read error: -22 [ 76.239714][ T6060] usb 7-1: New USB device found, idVendor=046d, idProduct=4101, bcdDevice= 0.40 [ 76.242918][ T6060] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 76.253569][T10185] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 76.474715][ T6060] usbhid 7-1:1.0: can't add hid device: -71 [ 76.476324][ T6060] usbhid 7-1:1.0: probe with driver usbhid failed with error -71 [ 76.482247][ T6060] usb 7-1: USB disconnect, device number 3 [ 76.766289][ C1] Adjusting tsc more than 11% (5229626 vs 7162514) [ 77.085884][T10345] syz.1.2166 (10345): attempted to duplicate a private mapping with mremap. This is not supported. [ 77.549775][ T39] audit: type=1326 audit(1734541918.633:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.2.2224" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x0 [ 77.716434][ T39] audit: type=1326 audit(1734541918.763:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10492 comm="syz.0.2240" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x0 [ 77.914843][ T5309] Bluetooth: hci0: command 0x0406 tx timeout [ 78.228712][T10589] tmpfs: Bad value for 'mpol' [ 78.297918][ T143] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 78.417949][T10611] erofs (device loop0): cannot find valid erofs superblock [ 78.516245][ T143] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0 [ 78.552133][ T143] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 78.555437][ T143] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 78.558298][ T143] usb 6-1: Product: syz [ 78.560814][ T143] usb 6-1: Manufacturer: syz [ 78.563532][ T143] usb 6-1: SerialNumber: syz [ 78.570142][T10553] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 78.806453][ T39] audit: type=1326 audit(1734541919.670:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10674 comm="syz.3.2331" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 78.821268][ T143] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22 [ 78.834069][ T143] usb 6-1: USB disconnect, device number 4 [ 79.245712][T10765] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 79.344638][ T5309] Bluetooth: hci2: unexpected event for opcode 0x0403 [ 79.851272][T10916] futex_wake_op: syz.2.2451 tries to shift op by -1; fix this program [ 79.986525][T10952] erofs (device loop2): cannot find valid erofs superblock [ 80.102427][T10986] erofs (device loop1): cannot find valid erofs superblock [ 80.180787][T11008] dccp_v6_rcv: dropped packet with invalid checksum [ 80.199112][T11014] erofs (device loop3): cannot find valid erofs superblock [ 80.223964][ T39] audit: type=1326 audit(1734541920.834:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11020 comm="syz.3.2503" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0 [ 80.593141][ T5309] Bluetooth: hci2: unexpected event 0x01 length: 3 > 1 [ 80.897899][ T143] usb 7-1: new full-speed USB device number 4 using dummy_hcd [ 81.091090][ T143] usb 7-1: unable to get BOS descriptor or descriptor too short [ 81.098128][ T143] usb 7-1: not running at top speed; connect to a high speed hub [ 81.108102][ T143] usb 7-1: config 1 interface 0 altsetting 3 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 81.110979][ T143] usb 7-1: config 1 interface 0 has no altsetting 0 [ 81.115156][ T143] usb 7-1: New USB device found, idVendor=05ac, idProduct=024d, bcdDevice= 0.40 [ 81.118322][ T143] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 81.121173][ T143] usb 7-1: Product: syz [ 81.122576][ T143] usb 7-1: Manufacturer: syz [ 81.127104][ T143] usb 7-1: SerialNumber: syz [ 81.133815][T11134] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 81.163361][T11236] futex_wake_op: syz.1.2610 tries to shift op by -1; fix this program [ 81.385081][ T6034] Bluetooth: hci2: Opcode 0x206a failed: -110 [ 81.392586][ T143] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/input/input5 [ 81.397416][ T5344] bcm5974 7-1:1.0: could not read from device [ 81.402313][ T5344] bcm5974 7-1:1.0: could not read from device [ 81.402865][ T143] usb 7-1: USB disconnect, device number 4 [ 81.599482][ T833] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 81.786411][ T833] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 81.789999][ T833] usb 8-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94 [ 81.792545][ T833] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 81.795532][ T833] usb 8-1: config 0 descriptor?? [ 82.030714][ T6034] Bluetooth: hci0: unexpected event for opcode 0x2003 [ 82.043103][ T35] cfg80211: failed to load regulatory.db [ 82.051138][ T35] usb 8-1: USB disconnect, device number 4 [ 82.698833][T11479] IPv6: addrconf: prefix option has invalid lifetime [ 82.802301][T11503] dns_resolver: Unsupported content type (24) [ 82.832419][T11508] futex_wake_op: syz.2.2744 tries to shift op by 144; fix this program [ 83.017807][T11557] dccp_invalid_packet: P.CsCov 4 exceeds packet length 28 [ 83.492978][T11685] dccp_invalid_packet: invalid packet type [ 83.599300][T11715] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2848'. [ 83.625360][T11717] ntfs3(nullb0): Primary boot signature is not NTFS. [ 83.627588][T11717] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00 [ 83.657082][T11724] ======================================================= [ 83.657082][T11724] WARNING: The mand mount option has been deprecated and [ 83.657082][T11724] and is ignored by this kernel. Remove the mand [ 83.657082][T11724] option from the mount to silence this warning. [ 83.657082][T11724] ======================================================= [ 83.667767][T11724] syz.3.2852: attempt to access beyond end of device [ 83.667767][T11724] nbd3: rw=0, sector=1, nr_sectors = 1 limit=0 [ 83.671122][T11724] VFS: could not find a valid V7 on nbd3. [ 83.731463][T11734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2857'. [ 83.830746][ T6034] Bluetooth: hci0: unexpected event for opcode 0x041b [ 83.854984][ T30] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 83.872536][T11760] Illegal XDP return value 4294967274 on prog (id 283) dev N/A, expect packet loss! [ 83.916501][T11770] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0. [ 83.946228][T11776] random: crng reseeded on system resumption [ 83.952998][T11776] Unrecognized hibernate image header format! [ 83.954720][T11776] PM: hibernation: Image mismatch: architecture specific data [ 84.022718][ T30] usb 6-1: Using ep0 maxpacket: 8 [ 84.025795][ T30] usb 6-1: config 0 has an invalid interface number: 143 but max is 0 [ 84.027818][ T30] usb 6-1: config 0 has no interface number 0 [ 84.027928][T11792] QAT: Invalid ioctl 21531 [ 84.029433][ T30] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b [ 84.033101][ T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.039599][ T30] usb 6-1: config 0 descriptor?? [ 84.062813][T11798] netlink: 'syz.3.2889': attribute type 3 has an invalid length. [ 84.065016][T11798] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.2889'. [ 84.124227][ T6034] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 84.127067][ T6034] Bluetooth: hci1: Injecting HCI hardware error event [ 84.133835][ T6034] Bluetooth: hci1: hardware error 0x00 [ 84.141548][T11814] process 'syz.0.2897' launched './file0' with NULL argv: empty string added [ 84.157741][ T30] viperboard 6-1:0.143: version 0.00 found at bus 006 address 005 [ 84.166909][ T30] viperboard-i2c viperboard-i2c.3.auto: failure setting i2c_bus_freq to 100 [ 84.169686][ T30] viperboard-i2c viperboard-i2c.3.auto: probe with driver viperboard-i2c failed with error -5 [ 84.273634][ T833] usb 6-1: USB disconnect, device number 5 [ 84.329249][ T39] audit: type=1326 audit(1734541924.382:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11846 comm="syz.3.2913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 84.334732][ T39] audit: type=1326 audit(1734541924.382:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11846 comm="syz.3.2913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 84.340292][ T39] audit: type=1326 audit(1734541924.382:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11846 comm="syz.3.2913" exe="/syz-executor" sig=0 arch=40000003 syscall=320 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 84.343246][T11851] xt_CT: You must specify a L4 protocol and not use inversions on it [ 84.345727][ T39] audit: type=1326 audit(1734541924.382:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11846 comm="syz.3.2913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 84.387760][T11859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2918'. [ 84.390256][T11859] bridge_slave_1: left allmulticast mode [ 84.391991][T11859] bridge_slave_1: left promiscuous mode [ 84.394338][T11859] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.399083][T11859] bridge_slave_0: left allmulticast mode [ 84.400593][T11859] bridge_slave_0: left promiscuous mode [ 84.402175][T11859] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.609448][ T39] audit: type=1326 audit(1734541924.633:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11885 comm="syz.2.2930" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 84.615201][ T39] audit: type=1326 audit(1734541924.633:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11885 comm="syz.2.2930" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 84.621533][ T39] audit: type=1326 audit(1734541924.642:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11885 comm="syz.2.2930" exe="/syz-executor" sig=0 arch=40000003 syscall=306 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 84.629522][ T39] audit: type=1326 audit(1734541924.642:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11885 comm="syz.2.2930" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 84.718463][T11894] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2934' sets config #1 [ 84.797319][T11906] netlink: 'syz.2.2942': attribute type 10 has an invalid length. [ 84.803718][T11906] team0: Cannot enslave team device to itself [ 84.812666][T11908] bridge2: entered promiscuous mode [ 84.815280][T11908] bridge2: entered allmulticast mode [ 84.907660][T11920] netdevsim netdevsim2: Direct firmware load for . [ 84.907660][T11920] failed with error -2 [ 84.911527][T11920] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 84.911527][T11920] [ 84.945849][T11926] kAFS: unable to lookup cell ' [ 84.945849][T11926] $)-.ײfYǝa2s [ 84.945849][T11926] ' [ 85.019653][ T5309] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 85.022859][ T5309] Bluetooth: hci3: Injecting HCI hardware error event [ 85.026778][ T6028] Bluetooth: hci3: hardware error 0x00 [ 85.246810][T11983] netlink: 'syz.3.2979': attribute type 1 has an invalid length. [ 85.250086][T11983] netlink: 244 bytes leftover after parsing attributes in process `syz.3.2979'. [ 85.361721][T12003] JFS: charset not found [ 85.420851][T12012] netlink: 144 bytes leftover after parsing attributes in process `syz.3.2993'. [ 85.425957][T12014] netlink: 78 bytes leftover after parsing attributes in process `syz.1.2994'. [ 85.483853][T12026] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 85.652223][T12062] netdevsim netdevsim3 netdevsim3: entered allmulticast mode [ 85.684558][T12066] IPv6: NLM_F_CREATE should be specified when creating new route [ 85.715592][T12072] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3023'. [ 85.802332][T12091] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3032'. [ 85.931159][T12128] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3045'. [ 85.964552][T12136] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 86.190687][T12189] IPv6: addrconf: prefix option has invalid lifetime [ 86.313715][T12216] IPv6: addrconf: prefix option has invalid lifetime [ 86.417397][T12233] dns_resolver: Unsupported content type (24) [ 86.427174][ T6034] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 86.745944][ T39] audit: type=1326 audit(1734541926.572:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12286 comm="syz.3.3123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 86.752546][ T39] audit: type=1326 audit(1734541926.572:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12286 comm="syz.3.3123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 86.869132][T12311] dccp_invalid_packet: P.CsCov 4 exceeds packet length 28 [ 87.015076][T12337] warning: `syz.1.3147' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 87.032252][T12339] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 87.072660][T12348] netlink: 'syz.1.3154': attribute type 1 has an invalid length. [ 87.211367][T12384] syz.1.3170 uses obsolete (PF_INET,SOCK_PACKET) [ 87.314096][ T6028] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 87.332903][T12414] xt_socket: unknown flags 0x46 [ 87.375257][T12424] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 87.486923][T12455] dccp_invalid_packet: invalid packet type [ 87.575630][T12477] netlink: 'syz.2.3216': attribute type 10 has an invalid length. [ 87.594974][T12477] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 87.690374][T12507] xt_socket: unknown flags 0x46 [ 87.719693][T12516] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 87.772779][T12528] ntfs3(nullb0): Primary boot signature is not NTFS. [ 87.774627][T12528] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00 [ 87.806308][T12537] QAT: Invalid ioctl 21531 [ 87.825902][T12540] xt_socket: unknown flags 0x46 [ 87.874659][T12553] netlink: 'syz.1.3254': attribute type 3 has an invalid length. [ 87.892969][T12557] syz.0.3256: attempt to access beyond end of device [ 87.892969][T12557] nbd0: rw=0, sector=1, nr_sectors = 1 limit=0 [ 87.897112][T12557] VFS: could not find a valid V7 on nbd0. [ 87.947337][T12569] QAT: Invalid ioctl 21531 [ 88.101061][T12605] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 88.112881][T12609] netdevsim netdevsim0: Direct firmware load for . [ 88.112881][T12609] failed with error -2 [ 88.116804][T12609] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 88.116804][T12609] [ 88.370990][T12655] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0. [ 88.406920][T12661] xt_CT: You must specify a L4 protocol and not use inversions on it [ 88.554036][T12692] kAFS: Can only specify source 'none' with -o dyn [ 88.600768][T12696] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.3324' sets config #1 [ 88.603117][T12702] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 88.731709][T12731] kAFS: unable to lookup cell ' [ 88.731709][T12731] $)-.ײfYǝa2s [ 88.731709][T12731] ' [ 88.807363][T12746] vti0: entered promiscuous mode [ 88.848824][T12753] netlink: 'syz.3.3353': attribute type 10 has an invalid length. [ 88.860394][T12753] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 88.876432][T12751] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.3351' sets config #1 [ 88.912007][T12761] kAFS: unable to lookup cell ' [ 88.912007][T12761] $)-.ײfYǝa2s [ 88.912007][T12761] ' [ 89.006699][T12779] bridge_slave_1: left allmulticast mode [ 89.008580][T12779] bridge_slave_1: left promiscuous mode [ 89.010211][T12779] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.018896][T12779] bridge_slave_0: left allmulticast mode [ 89.020512][T12779] bridge_slave_0: left promiscuous mode [ 89.022073][T12779] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.038909][T12785] netlink: 'syz.1.3366': attribute type 10 has an invalid length. [ 89.107430][T12785] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 89.134713][T12802] netlink: 'syz.3.3377': attribute type 10 has an invalid length. [ 89.145134][T12802] team0: Cannot enslave team device to itself [ 89.187828][T12812] netdevsim netdevsim3: Direct firmware load for . [ 89.187828][T12812] failed with error -2 [ 89.192139][T12812] netdevsim netdevsim3: Falling back to sysfs fallback for: . [ 89.192139][T12812] [ 89.201892][T12814] __nla_validate_parse: 9 callbacks suppressed [ 89.201908][T12814] netlink: 78 bytes leftover after parsing attributes in process `syz.2.3380'. [ 89.236962][T12818] JFS: charset not found [ 89.277604][T12829] 9pnet_fd: p9_fd_create_tcp (12829): problem connecting socket to 127.0.0.1 [ 89.293267][T12831] netlink: 'syz.0.3387': attribute type 10 has an invalid length. [ 89.316122][T12831] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 89.418949][T12845] netlink: 78 bytes leftover after parsing attributes in process `syz.0.3394'. [ 89.461011][T12851] ISOFS: Unable to identify CD-ROM format. [ 89.476227][T12853] 9pnet_fd: p9_fd_create_tcp (12853): problem connecting socket to 127.0.0.1 [ 89.907597][T12919] Unsupported ieee802154 address type: 0 [ 89.945326][T12924] netlink: 'syz.1.3434': attribute type 10 has an invalid length. [ 90.001889][T12934] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3438'. [ 90.004315][T12934] bridge_slave_1: left allmulticast mode [ 90.005652][T12934] bridge_slave_1: left promiscuous mode [ 90.007039][T12934] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.012140][T12934] bridge_slave_0: left allmulticast mode [ 90.014777][T12934] bridge_slave_0: left promiscuous mode [ 90.016973][T12934] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.022367][T12936] ISOFS: Unable to identify CD-ROM format. [ 90.153365][T12945] x_tables: ip6_tables: icmp6 match: only valid for protocol 58 [ 90.179160][T12949] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3444'. [ 90.198271][T12953] netlink: 'syz.2.3446': attribute type 10 has an invalid length. [ 90.296169][T12973] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3457'. [ 90.327265][T12979] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3458'. [ 90.369142][ T39] kauditd_printk_skb: 20 callbacks suppressed [ 90.369152][ T39] audit: type=1326 audit(1734541929.898:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12987 comm="syz.0.3463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000 [ 90.379548][T12990] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 90.382107][ T39] audit: type=1326 audit(1734541929.907:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12987 comm="syz.0.3463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000 [ 90.399118][ T39] audit: type=1326 audit(1734541929.916:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12987 comm="syz.0.3463" exe="/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf73de579 code=0x7ffc0000 [ 90.405627][ T39] audit: type=1326 audit(1734541929.916:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12987 comm="syz.0.3463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73de579 code=0x7ffc0000 [ 90.571566][T13030] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3477'. [ 90.591931][T13030] bridge_slave_1: left allmulticast mode [ 90.593874][T13030] bridge_slave_1: left promiscuous mode [ 90.595928][T13030] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.600715][T13030] bridge_slave_0: left allmulticast mode [ 90.602739][T13030] bridge_slave_0: left promiscuous mode [ 90.604279][T13030] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.818829][ T39] audit: type=1326 audit(1734541930.315:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.2.3493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 90.827350][ T39] audit: type=1326 audit(1734541930.315:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.2.3493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 90.835746][T13078] MTD: Attempt to mount non-MTD device "/dev/nbd3" [ 90.838579][T13078] syz.3.3495: attempt to access beyond end of device [ 90.838579][T13078] nbd3: rw=0, sector=0, nr_sectors = 2 limit=0 [ 90.858558][ T39] audit: type=1326 audit(1734541930.334:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.2.3493" exe="/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 90.876617][ T39] audit: type=1326 audit(1734541930.334:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.2.3493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 90.882142][ T39] audit: type=1326 audit(1734541930.334:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.2.3493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000 [ 90.954953][T13104] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3506'. [ 91.182793][T13148] MTD: Attempt to mount non-MTD device "/dev/nbd1" [ 91.184905][T13148] syz.1.3527: attempt to access beyond end of device [ 91.184905][T13148] nbd1: rw=0, sector=0, nr_sectors = 2 limit=0 [ 91.328825][T13187] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3546'. [ 91.477579][ T6028] Bluetooth: hci0: unexpected event 0x18 length: 5 < 23 [ 91.626902][T13256] netlink: 288 bytes leftover after parsing attributes in process `syz.2.3580'. [ 91.652112][T13260] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 91.654257][T13260] IPv6: NLM_F_CREATE should be set when creating new route [ 92.052974][T13330] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 92.055586][T13330] IPv6: NLM_F_CREATE should be set when creating new route [ 92.217165][ T39] audit: type=1326 audit(1734541931.616:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz.1.3626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 92.375280][T13225] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 92.378125][T13225] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 92.383941][T13225] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 92.386232][T13225] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 92.417548][T13352] netlink: 'syz.1.3630': attribute type 9 has an invalid length. [ 92.442964][T13360] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 92.447990][T13360] xt_TPROXY: Can be used only with -p tcp or -p udp [ 92.564160][T13391] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 92.633070][T13412] xt_TPROXY: Can be used only with -p tcp or -p udp [ 92.790836][T13444] xt_TPROXY: Can be used only with -p tcp or -p udp [ 93.431963][T13512] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 93.440381][T13512] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 93.666788][T13499] ================================================================== [ 93.668836][T13499] BUG: KASAN: vmalloc-out-of-bounds in push_insn_history+0x615/0x690 [ 93.670899][T13499] Write of size 4 at addr ffffc90023e57010 by task syz.1.3698/13499 [ 93.673826][T13499] [ 93.675220][T13499] CPU: 3 UID: 0 PID: 13499 Comm: syz.1.3698 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0 [ 93.678040][T13499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 93.680867][T13499] Call Trace: [ 93.681809][T13499] [ 93.682614][T13499] dump_stack_lvl+0x116/0x1f0 [ 93.683897][T13499] print_report+0xc3/0x620 [ 93.685118][T13499] ? __virt_addr_valid+0x5e/0x590 [ 93.686510][T13499] kasan_report+0xd9/0x110 [ 93.687726][T13499] ? push_insn_history+0x615/0x690 [ 93.689177][T13499] ? push_insn_history+0x615/0x690 [ 93.690508][T13499] push_insn_history+0x615/0x690 [ 93.691852][T13499] do_check_common+0xb78/0xd540 [ 93.693161][T13499] ? lockdep_hardirqs_on+0x7c/0x110 [ 93.694489][T13499] ? __pfx_do_check_common+0x10/0x10 [ 93.695867][T13499] ? kvfree+0x47/0x50 [ 93.696924][T13499] ? check_cfg+0x403/0x840 [ 93.698116][T13499] bpf_check+0x77c2/0xc9b0 [ 93.699282][T13499] ? hlock_class+0x4e/0x130 [ 93.700465][T13499] ? __pfx_bpf_check+0x10/0x10 [ 93.701717][T13499] ? find_held_lock+0x2d/0x110 [ 93.702964][T13499] ? bpf_prog_load+0xd45/0x2670 [ 93.704241][T13499] ? __pfx_lock_release+0x10/0x10 [ 93.705538][T13499] ? trace_lock_acquire+0x14e/0x1f0 [ 93.706894][T13499] ? bpf_prog_load+0xd45/0x2670 [ 93.708176][T13499] ? lockdep_hardirqs_on+0x7c/0x110 [ 93.709498][T13499] ? read_tsc+0x9/0x20 [ 93.710570][T13499] ? ktime_get_with_offset+0x20f/0x3a0 [ 93.711919][T13499] ? bpf_obj_name_cpy+0x156/0x1b0 [ 93.713209][T13499] bpf_prog_load+0xe3f/0x2670 [ 93.714471][T13499] ? __pfx_bpf_prog_load+0x10/0x10 [ 93.715803][T13499] ? find_held_lock+0x2d/0x110 [ 93.717098][T13499] ? __might_fault+0x13b/0x190 [ 93.718416][T13499] ? __might_fault+0xe3/0x190 [ 93.719655][T13499] __sys_bpf+0x5677/0x57a0 [ 93.720818][T13499] ? __pfx___sys_bpf+0x10/0x10 [ 93.722066][T13499] ? __pfx_lock_release+0x10/0x10 [ 93.723395][T13499] ? lock_acquire.part.0+0x11b/0x380 [ 93.724752][T13499] ? find_held_lock+0x2d/0x110 [ 93.725998][T13499] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 93.727505][T13499] ? kcov_ioctl+0x265/0x730 [ 93.728738][T13499] __ia32_sys_bpf+0x76/0xe0 [ 93.729919][T13499] __do_fast_syscall_32+0x73/0x120 [ 93.731273][T13499] do_fast_syscall_32+0x32/0x80 [ 93.732536][T13499] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 93.734165][T13499] RIP: 0023:0xf7fd6579 [ 93.735225][T13499] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 93.740138][T13499] RSP: 002b:00000000f515657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 93.742288][T13499] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200017c0 [ 93.744318][T13499] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 93.746345][T13499] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 93.748374][T13499] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 93.750407][T13499] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 93.752451][T13499] [ 93.753255][T13499] [ 93.753883][T13499] The buggy address belongs to the virtual mapping at [ 93.753883][T13499] [ffffc90023e37000, ffffc90023e59000) created by: [ 93.753883][T13499] kvrealloc_noprof+0xfc/0x150 [ 93.758380][T13499] [ 93.759008][T13499] The buggy address belongs to the physical page: [ 93.760650][T13499] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880225ffb00 pfn:0x225ff [ 93.763248][T13499] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 93.765205][T13499] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 93.767397][T13499] raw: ffff8880225ffb00 0000000000000000 00000001ffffffff 0000000000000000 [ 93.769573][T13499] page dumped because: kasan: bad access detected [ 93.771211][T13499] page_owner tracks the page as allocated [ 93.772666][T13499] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102cc2(GFP_HIGHUSER|__GFP_NOWARN), pid 13499, tgid 13498 (syz.1.3698), ts 93666702952, free_ts 75837648195 [ 93.776948][T13499] post_alloc_hook+0x2d1/0x350 [ 93.778184][T13499] get_page_from_freelist+0xfce/0x2f80 [ 93.779597][T13499] __alloc_pages_noprof+0x6a6/0x25b0 [ 93.780988][T13499] alloc_pages_mpol_noprof+0x2c9/0x610 [ 93.782390][T13499] __vmalloc_node_range_noprof+0x724/0x1530 [ 93.783913][T13499] __kvmalloc_node_noprof+0x14f/0x1a0 [ 93.785302][T13499] kvrealloc_noprof+0xfc/0x150 [ 93.786546][T13499] push_insn_history+0x2ac/0x690 [ 93.787839][T13499] do_check_common+0xb78/0xd540 [ 93.789103][T13499] bpf_check+0x77c2/0xc9b0 [ 93.790263][T13499] bpf_prog_load+0xe3f/0x2670 [ 93.791491][T13499] __sys_bpf+0x5677/0x57a0 [ 93.792647][T13499] __ia32_sys_bpf+0x76/0xe0 [ 93.793820][T13499] __do_fast_syscall_32+0x73/0x120 [ 93.795146][T13499] do_fast_syscall_32+0x32/0x80 [ 93.796405][T13499] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 93.798039][T13499] page last free pid 8 tgid 8 stack trace: [ 93.799535][T13499] free_unref_page+0x661/0x1080 [ 93.799906][ T6034] Bluetooth: hci0: command 0x0406 tx timeout [ 93.800779][T13499] pcpu_free_pages.constprop.0+0x126/0x210 [ 93.800798][T13499] pcpu_balance_workfn+0x1ec/0xd00 [ 93.800807][T13499] process_one_work+0x958/0x1b30 [ 93.806720][T13499] worker_thread+0x6c8/0xf00 [ 93.807917][T13499] kthread+0x2c1/0x3a0 [ 93.808915][T13499] ret_from_fork+0x45/0x80 [ 93.810073][T13499] ret_from_fork_asm+0x1a/0x30 [ 93.811339][T13499] [ 93.811993][T13499] Memory state around the buggy address: [ 93.813451][T13499] ffffc90023e56f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 93.815532][T13499] ffffc90023e56f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 93.817631][T13499] >ffffc90023e57000: 00 00 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 93.819717][T13499] ^ [ 93.820927][T13499] ffffc90023e57080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 93.823008][T13499] ffffc90023e57100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 93.825089][T13499] ================================================================== [ 93.828245][T13499] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 93.830120][T13499] CPU: 3 UID: 0 PID: 13499 Comm: syz.1.3698 Not tainted 6.13.0-rc1-syzkaller-00182-gb8f52214c61a #0 [ 93.832898][T13499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 93.835682][T13499] Call Trace: [ 93.836567][T13499] [ 93.837350][T13499] dump_stack_lvl+0x3d/0x1f0 [ 93.838632][T13499] panic+0x71d/0x800 [ 93.839697][T13499] ? __pfx_panic+0x10/0x10 [ 93.840918][T13499] ? preempt_schedule_thunk+0x1a/0x30 [ 93.842426][T13499] ? preempt_schedule_common+0x44/0xc0 [ 93.843872][T13499] check_panic_on_warn+0xab/0xb0 [ 93.845172][T13499] end_report+0x117/0x180 [ 93.846357][T13499] kasan_report+0xe9/0x110 [ 93.847534][T13499] ? push_insn_history+0x615/0x690 [ 93.848879][T13499] ? push_insn_history+0x615/0x690 [ 93.850191][T13499] push_insn_history+0x615/0x690 [ 93.851492][T13499] do_check_common+0xb78/0xd540 [ 93.852768][T13499] ? lockdep_hardirqs_on+0x7c/0x110 [ 93.854126][T13499] ? __pfx_do_check_common+0x10/0x10 [ 93.855528][T13499] ? kvfree+0x47/0x50 [ 93.856580][T13499] ? check_cfg+0x403/0x840 [ 93.857813][T13499] bpf_check+0x77c2/0xc9b0 [ 93.859002][T13499] ? hlock_class+0x4e/0x130 [ 93.860208][T13499] ? __pfx_bpf_check+0x10/0x10 [ 93.861463][T13499] ? find_held_lock+0x2d/0x110 [ 93.862708][T13499] ? bpf_prog_load+0xd45/0x2670 [ 93.863998][T13499] ? __pfx_lock_release+0x10/0x10 [ 93.865287][T13499] ? trace_lock_acquire+0x14e/0x1f0 [ 93.866640][T13499] ? bpf_prog_load+0xd45/0x2670 [ 93.867926][T13499] ? lockdep_hardirqs_on+0x7c/0x110 [ 93.869283][T13499] ? read_tsc+0x9/0x20 [ 93.870354][T13499] ? ktime_get_with_offset+0x20f/0x3a0 [ 93.871796][T13499] ? bpf_obj_name_cpy+0x156/0x1b0 [ 93.873121][T13499] bpf_prog_load+0xe3f/0x2670 [ 93.874352][T13499] ? __pfx_bpf_prog_load+0x10/0x10 [ 93.875699][T13499] ? find_held_lock+0x2d/0x110 [ 93.876960][T13499] ? __might_fault+0x13b/0x190 [ 93.878233][T13499] ? __might_fault+0xe3/0x190 [ 93.879487][T13499] __sys_bpf+0x5677/0x57a0 [ 93.880656][T13499] ? __pfx___sys_bpf+0x10/0x10 [ 93.881918][T13499] ? __pfx_lock_release+0x10/0x10 [ 93.883258][T13499] ? lock_acquire.part.0+0x11b/0x380 [ 93.884637][T13499] ? find_held_lock+0x2d/0x110 [ 93.885896][T13499] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 93.887421][T13499] ? kcov_ioctl+0x265/0x730 [ 93.888616][T13499] __ia32_sys_bpf+0x76/0xe0 [ 93.889812][T13499] __do_fast_syscall_32+0x73/0x120 [ 93.891149][T13499] do_fast_syscall_32+0x32/0x80 [ 93.892486][T13499] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 93.894148][T13499] RIP: 0023:0xf7fd6579 [ 93.895257][T13499] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 93.900297][T13499] RSP: 002b:00000000f515657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 93.902450][T13499] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200017c0 [ 93.904445][T13499] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 93.906477][T13499] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 93.908525][T13499] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 93.910555][T13499] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 93.912615][T13499] [ 93.913968][T13499] Kernel Offset: disabled [ 93.915101][T13499] Rebooting in 86400 seconds.. VM DIAGNOSIS: 13:09:29 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000017 RBX=00000000000005e1 RCX=ffffffff8175513e RDX=0000000000000000 RSI=0000000000000008 RDI=ffffffff969b5d78 RBP=ffffffff96a41500 RSP=ffffc9000101f258 R8 =0000000000000000 R9 =fffffbfff2d36bc4 R10=ffffffff969b5e27 R11=0000000000000002 R12=ffffed100403415b R13=ffff8880201a0000 R14=0000000000000004 R15=ffff8880201a0b30 RIP=ffffffff81fbee7d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002c40cffc CR3=00000000257fe000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=0000000000000000 RCX=0000000000000002 RDX=ffffffff969b7aa8 RSI=0000000000000004 RDI=ffffffff8ddba948 RBP=0000000000000000 RSP=ffffc90007797328 R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff901cb097 R11=0000000000000003 R12=ffffffff8ddba940 R13=ffff88801f79a440 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8175f846 RFL=00000806 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f73d1230 CR3=00000000257fe000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000004000001c0 000000e000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=0000000000000400 RCX=0000000000000002 RDX=0000000000000400 RSI=0000000000000000 RDI=ffff888068ef7b80 RBP=ffffc90003dd6d20 RSP=ffffc90003dd6cb8 R8 =0000000000000007 R9 =0000000000000000 R10=ffff888068ef7800 R11=0000000000000007 R12=ffff88801ac42dc0 R13=0000000000082820 R14=0000000000000400 R15=00000000ffffffff RIP=ffffffff8b1adbf6 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fe0d48b7d00 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7f355b8 CR3=000000004c070000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 ZMM17=a9a77efc1f4dbb9d 5db44cf54e7b7b92 a9a77efc1f4dbb9d 5db44cf54e7b7b92 a9a77efc1f4dbb9d 5db44cf54e7b7b92 a9a77efc1f4dbb9d 5db44cf54e7b7b92 ZMM18=39a0d6f3893332a2 f6d67edf6a5fcda3 39a0d6f3893332a2 f6d67edf6a5fcda3 39a0d6f3893332a2 f6d67edf6a5fcda3 39a0d6f3893332a2 f6d67edf6a5fcda3 ZMM19=ac0e000000000000 0000000000000117 ac0e000000000000 0000000000000116 ac0e000000000000 0000000000000115 ac0e000000000000 0000000000000114 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=5db44cf55db44cf5 5db44cf55db44cf5 5db44cf55db44cf5 5db44cf55db44cf5 5db44cf55db44cf5 5db44cf55db44cf5 5db44cf55db44cf5 5db44cf55db44cf5 ZMM22=1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d 1f4dbb9d1f4dbb9d ZMM23=a9a77efca9a77efc a9a77efca9a77efc a9a77efca9a77efc a9a77efca9a77efc a9a77efca9a77efc a9a77efca9a77efc a9a77efca9a77efc a9a77efca9a77efc ZMM24=6a5fcda36a5fcda3 6a5fcda36a5fcda3 6a5fcda36a5fcda3 6a5fcda36a5fcda3 6a5fcda36a5fcda3 6a5fcda36a5fcda3 6a5fcda36a5fcda3 6a5fcda36a5fcda3 ZMM25=f6d67edff6d67edf f6d67edff6d67edf f6d67edff6d67edf f6d67edff6d67edf f6d67edff6d67edf f6d67edff6d67edf f6d67edff6d67edf f6d67edff6d67edf ZMM26=893332a2893332a2 893332a2893332a2 893332a2893332a2 893332a2893332a2 893332a2893332a2 893332a2893332a2 893332a2893332a2 893332a2893332a2 ZMM27=39a0d6f339a0d6f3 39a0d6f339a0d6f3 39a0d6f339a0d6f3 39a0d6f339a0d6f3 39a0d6f339a0d6f3 39a0d6f339a0d6f3 39a0d6f339a0d6f3 39a0d6f339a0d6f3 ZMM28=000001200000011f 0000011e0000011d 0000011c0000011b 0000011a00000119 0000011800000117 0000011600000115 0000011400000113 0000011200000111 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=ac0e0000ac0e0000 ac0e0000ac0e0000 ac0e0000ac0e0000 ac0e0000ac0e0000 ac0e0000ac0e0000 ac0e0000ac0e0000 ac0e0000ac0e0000 ac0e0000ac0e0000 info registers vcpu 3 CPU#3 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85153195 RDI=ffffffff9a6662c0 RBP=ffffffff9a666280 RSP=ffffc90004d7eff8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3230303963666657 R12=0000000000000000 R13=0000000000000020 R14=ffffffff85153130 R15=0000000000000000 RIP=ffffffff851531bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000056f054c0 CR3=0000000051482000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000