last executing test programs: 8m21.294815608s ago: executing program 1 (id=148): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='devpts\x00', 0x0, 0x0) mount$bpf(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x90020, &(0x7f0000000300)=ANY=[@ANYBLOB='mode=00000000000000000004000,']) 8m16.590126449s ago: executing program 1 (id=150): bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0x10, &(0x7f0000000000)=@framed={{}, [@tail_call={{}, {}, {}, {0x4}}, @printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x76}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8a00fe00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff8effb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000c5"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 8m11.745264527s ago: executing program 1 (id=152): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$cont(0x18, r0, 0x0, 0x8) 8m5.167336712s ago: executing program 1 (id=153): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x28, 0x0, 0x5, 0x36fd}, {0x30, 0x0, 0x0, 0x80000001}, {0x6}]}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000b40)=ANY=[], 0x457f) 7m51.334734017s ago: executing program 1 (id=155): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x22a00a9, &(0x7f0000000080)={[{@nr_inodes={'nr_inodes', 0x3d, [0x74]}}]}) 7m42.143825854s ago: executing program 1 (id=158): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454ca, &(0x7f0000000100)=ANY=[@ANYBLOB="2e42000c371303ed6a33f2ff8689b3f60e"]) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000900ffffff8429c9f3f5a8fbea164843ffffffaaaaaaaaaa0f000000000000aaaaaaaaaabb0180c20000030180c200000ebbbb"]) 6m54.530586101s ago: executing program 32 (id=158): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454ca, &(0x7f0000000100)=ANY=[@ANYBLOB="2e42000c371303ed6a33f2ff8689b3f60e"]) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000900ffffff8429c9f3f5a8fbea164843ffffffaaaaaaaaaa0f000000000000aaaaaaaaaabb0180c20000030180c200000ebbbb"]) 4m49.79848121s ago: executing program 0 (id=178): r0 = syz_io_uring_setup(0x1911, &(0x7f00000003c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r0}) io_uring_enter(r0, 0xa3d, 0x0, 0x0, 0x0, 0xff39) 4m40.364239605s ago: executing program 0 (id=179): r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f00000002c0)={0x0, "de442bfc7910e10ac69ac014b0fa7807b11d2c99ed1f40d47a6edb3367b5cc888e1fd5102ae2d3d05f251f8d49025ceab4152b6e6d87cd6088e97a9d06d29143"}, 0x48, 0xffffffffffffffff) keyctl$chown(0x4, r0, 0xee01, 0xee00) keyctl$chown(0x4, r0, 0x0, 0x0) 4m37.807441176s ago: executing program 0 (id=180): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 4m33.915786064s ago: executing program 0 (id=181): r0 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x5452, &(0x7f0000000100)=0x80000000) close_range(r0, 0xffffffffffffffff, 0x0) 4m29.847325197s ago: executing program 0 (id=182): syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xffffff9e, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x18000000, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x74, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x38, 0x3, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_EXPRESSIONS={0x4, 0x6, 0x0, 0x1, [{0x28, 0x7, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x480}}}]}]}]}]}], {0x14, 0x10}}, 0xe4}}, 0x0) 4m13.082853228s ago: executing program 0 (id=183): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'dvmrp1\x00', 0x8000}) 3m23.925982422s ago: executing program 33 (id=183): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'dvmrp1\x00', 0x8000}) 36.278350839s ago: executing program 2 (id=186): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000100)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_ALLOW_IOVAS(r0, 0x3b82, &(0x7f0000000280)={0x18, r1, 0x2, 0x0, &(0x7f00000000c0)=[{0x0, 0x2000000002}, {0x800, 0xfffffffffffff800}]}) 28.077887458s ago: executing program 2 (id=187): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xc4}}, 0x0) r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SW_SYNC_IOC_INC(r0, 0xc0105702, &(0x7f0000000080)) 18.095475942s ago: executing program 2 (id=188): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r0) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x4c, r1, 0x201, 0x0, 0x0, {0x3, 0x0, 0x26}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'batadv0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @loopback}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}]}, 0x4c}, 0x8, 0x3000000000002}, 0x0) 11.285545674s ago: executing program 2 (id=189): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0xfffffffffffffffe, &(0x7f00000002c0)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f00000000c0)=0x1, r1, 0x0, 0x1, 0x4}}, 0x20) 5.867724476s ago: executing program 2 (id=190): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a) write(r0, &(0x7f0000000000)="240000001a005f0400f9f407000904018000000000000000000000000800020040000000", 0x24) 0s ago: executing program 2 (id=191): keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:38511' (ED25519) to the list of known hosts. syzkaller login: [ 353.273667][ T3169] cgroup: Unknown subsys name 'net' [ 353.811875][ T3169] cgroup: Unknown subsys name 'cpuset' [ 353.923115][ T3169] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 412.804830][ T3169] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 479.045174][ T3181] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 479.443237][ T3181] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 481.702015][ T3185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 481.798809][ T3185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 489.083145][ T3181] hsr_slave_0: entered promiscuous mode [ 489.119726][ T3181] hsr_slave_1: entered promiscuous mode [ 490.022474][ T3185] hsr_slave_0: entered promiscuous mode [ 490.052658][ T3185] hsr_slave_1: entered promiscuous mode [ 490.086394][ T3185] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 490.091786][ T3185] Cannot create hsr debugfs directory [ 497.607481][ T3181] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 497.831972][ T3181] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 498.022457][ T3181] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 498.374427][ T3181] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 500.016555][ T3185] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 500.301045][ T3185] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 500.483292][ T3185] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 500.813283][ T3185] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 513.830220][ T3185] 8021q: adding VLAN 0 to HW filter on device bond0 [ 514.154697][ T3181] 8021q: adding VLAN 0 to HW filter on device bond0 [ 540.271911][ T3181] veth0_vlan: entered promiscuous mode [ 540.762819][ T3181] veth1_vlan: entered promiscuous mode [ 541.929863][ T3181] veth0_macvtap: entered promiscuous mode [ 542.033328][ T3181] veth1_macvtap: entered promiscuous mode [ 543.843923][ T3181] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 543.851828][ T3181] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 543.853950][ T3181] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 543.855869][ T3181] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.922457][ T3185] veth0_vlan: entered promiscuous mode [ 546.816902][ T3185] veth1_vlan: entered promiscuous mode [ 548.260207][ T3185] veth0_macvtap: entered promiscuous mode [ 548.480652][ T3185] veth1_macvtap: entered promiscuous mode [ 548.524005][ T3181] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 550.034871][ T3185] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.053791][ T3185] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.056283][ T3185] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.069564][ T3185] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 570.718403][ T3891] trusted_key: encrypted_key: keyword 'loadö" x׃ [ 570.718403][ T3891] ¹' not recognized [ 586.595797][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.800774][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.821638][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.842627][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.865208][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.892624][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.920081][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.950919][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.974346][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 586.994042][ T3909] netlink: 'syz.1.19': attribute type 29 has an invalid length. [ 595.932957][ T34] audit: type=1804 audit(594.610:2): pid=3918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.23" name="/newroot/10/cgroup.controllers" dev="tmpfs" ino=69 res=1 errno=0 [ 595.991800][ T34] audit: type=1800 audit(594.620:3): pid=3918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.23" name="cgroup.controllers" dev="tmpfs" ino=69 res=0 errno=0 [ 599.494879][ T3924] capability: warning: `syz.1.26' uses 32-bit capabilities (legacy support in use) [ 670.565089][ T3972] netlink: 4 bytes leftover after parsing attributes in process `syz.1.46'. [ 670.567336][ T3972] netlink: 4 bytes leftover after parsing attributes in process `syz.1.46'. [ 714.513446][ T3871] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 714.891603][ T3871] usb 2-1: Using ep0 maxpacket: 32 [ 715.473967][ T3871] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 715.476183][ T3871] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 715.509354][ T3871] usb 2-1: New USB device found, idVendor=172f, idProduct=0501, bcdDevice= 0.00 [ 715.510908][ T3871] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 715.726647][ T3871] usb 2-1: config 0 descriptor?? [ 721.844507][ T3871] usbhid 2-1:0.0: can't add hid device: -32 [ 721.913041][ T3871] usbhid 2-1:0.0: probe with driver usbhid failed with error -32 [ 725.533162][ T3871] usb 2-1: USB disconnect, device number 2 [ 765.046805][ T4031] fuse: blksize only supported for fuseblk [ 776.376321][ T3171] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 776.679008][ T3171] usb 2-1: Using ep0 maxpacket: 16 [ 777.239740][ T3171] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 777.241428][ T3171] usb 2-1: New USB device found, idVendor=056a, idProduct=00f6, bcdDevice= 0.00 [ 777.242599][ T3171] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 777.607408][ T3171] usb 2-1: config 0 descriptor?? [ 785.906692][ T3171] usb 2-1: USB disconnect, device number 3 [ 804.723175][ T4067] ======================================================= [ 804.723175][ T4067] WARNING: The mand mount option has been deprecated and [ 804.723175][ T4067] and is ignored by this kernel. Remove the mand [ 804.723175][ T4067] option from the mount to silence this warning. [ 804.723175][ T4067] ======================================================= [ 885.114165][ T4111] usb usb1: usbfs: process 4111 (syz.1.88) did not claim interface 4 before use [ 901.160388][ T919] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 901.521206][ T919] usb 1-1: Using ep0 maxpacket: 16 [ 901.649639][ T919] usb 1-1: config 0 has an invalid interface number: 214 but max is 0 [ 901.651164][ T919] usb 1-1: config 0 has no interface number 0 [ 901.652500][ T919] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64 [ 903.923297][ T919] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 903.925793][ T919] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 903.944885][ T919] usb 1-1: Product: syz [ 903.947070][ T919] usb 1-1: Manufacturer: syz [ 903.992455][ T919] usb 1-1: SerialNumber: syz [ 905.425058][ T919] usb 1-1: config 0 descriptor?? [ 910.501706][ T919] usbtouchscreen 1-1:0.214: Failed to read FW rev: -71 [ 910.625583][ T919] usbtouchscreen 1-1:0.214: probe with driver usbtouchscreen failed with error -71 [ 911.333316][ T919] usb 1-1: USB disconnect, device number 2 [ 983.645233][ T4162] netlink: 8 bytes leftover after parsing attributes in process `syz.1.105'. [ 983.646787][ T4162] netlink: 12 bytes leftover after parsing attributes in process `syz.1.105'. [ 983.701547][ T4162] validate_nla: 12 callbacks suppressed [ 983.704950][ T4162] netlink: 'syz.1.105': attribute type 20 has an invalid length. [ 999.582798][ T4054] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 999.972041][ T4054] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 999.973635][ T4054] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 999.975469][ T4054] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 999.976707][ T4054] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1000.123909][ T4054] usb 2-1: config 0 descriptor?? [ 1001.740696][ T4054] hub 2-1:0.0: USB hub found [ 1002.356643][ T4177] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 1006.945776][ T4054] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 1007.465705][ T4054] usbhid 2-1:0.0: can't add hid device: -32 [ 1007.495033][ T4054] usbhid 2-1:0.0: probe with driver usbhid failed with error -32 [ 1015.503967][ T4054] usb 2-1: USB disconnect, device number 4 [ 1065.000401][ T4221] [U] : [ 1065.002162][ T4221] [U] [ 1065.002966][ T4221] [U] [ 1065.003736][ T4221] [U] [ 1065.004477][ T4221] [U] [ 1065.005236][ T4221] [U] [ 1065.005981][ T4221] [U] [ 1065.006725][ T4221] [U] [ 1065.069766][ T4221] [U] [ 1065.070872][ T4221] [U] [ 1065.071670][ T4221] [U] [ 1065.072435][ T4221] [U] [ 1065.073216][ T4221] [U] [ 1065.073978][ T4221] [U] [ 1065.074731][ T4221] [U] [ 1065.075487][ T4221] [U] [ 1065.100213][ T4221] [U] [ 1065.101657][ T4221] [U] [ 1065.102744][ T4221] [U] [ 1065.103577][ T4221] [U] [ 1065.104308][ T4221] [U] [ 1065.105047][ T4221] [U] [ 1065.105830][ T4221] [U] [ 1065.106584][ T4221] [U] [ 1065.139010][ T4221] [U] [ 1065.140061][ T4221] [U] [ 1065.140826][ T4221] [U] [ 1065.141597][ T4221] [U] [ 1065.142380][ T4221] [U] [ 1065.143103][ T4221] [U] [ 1065.143838][ T4221] [U] [ 1065.144562][ T4221] [U] [ 1065.174317][ T4221] [U] [ 1065.175351][ T4221] [U] [ 1065.176145][ T4221] [U] [ 1065.176893][ T4221] [U] [ 1065.177739][ T4221] [U] [ 1065.178538][ T4221] [U] [ 1065.179281][ T4221] [U] [ 1065.180013][ T4221] [U] [ 1065.242136][ T4221] [U] [ 1065.243199][ T4221] [U] [ 1065.243975][ T4221] [U] [ 1065.244719][ T4221] [U] [ 1065.245478][ T4221] [U] [ 1065.246221][ T4221] [U] [ 1065.246966][ T4221] [U] [ 1065.247743][ T4221] [U] [ 1065.271818][ T4221] [U] [ 1065.272892][ T4221] [U] [ 1065.273703][ T4221] [U] [ 1065.274453][ T4221] [U] [ 1065.275191][ T4221] [U] [ 1065.275923][ T4221] [U] [ 1065.276674][ T4221] [U] [ 1065.277502][ T4221] [U] [ 1065.304682][ T4221] [U] [ 1065.305795][ T4221] [U] [ 1065.306588][ T4221] [U] [ 1065.307487][ T4221] [U] [ 1065.308331][ T4221] [U] [ 1065.309184][ T4221] [U] [ 1065.310016][ T4221] [U] [ 1065.310898][ T4221] [U] [ 1065.382959][ T4221] [U] [ 1065.384099][ T4221] [U] [ 1065.384979][ T4221] [U] [ 1065.385899][ T4221] [U] [ 1065.386776][ T4221] [U] [ 1065.387746][ T4221] [U] [ 1065.388699][ T4221] [U] [ 1065.389534][ T4221] [U] [ 1065.459086][ T4221] [U] [ 1065.460345][ T4221] [U] [ 1065.461292][ T4221] [U] [ 1065.462180][ T4221] [U] [ 1065.463152][ T4221] [U] [ 1065.463994][ T4221] [U] [ 1065.464864][ T4221] [U] [ 1065.465741][ T4221] [U] [ 1065.467319][ T4221] [U] [ 1065.468189][ T4221] [U] [ 1065.469046][ T4221] [U] [ 1065.469969][ T4221] [U] [ 1065.470877][ T4221] [U] [ 1065.471704][ T4221] [U] [ 1065.472566][ T4221] [U] [ 1065.473443][ T4221] [U] [ 1065.548722][ T4221] [U] [ 1065.549862][ T4221] [U] [ 1065.550758][ T4221] [U] [ 1065.551587][ T4221] [U] [ 1065.552510][ T4221] [U] [ 1065.553443][ T4221] [U] [ 1065.554308][ T4221] [U] [ 1065.555165][ T4221] [U] [ 1065.692684][ T4221] [U] [ 1065.694400][ T4221] [U] [ 1065.695714][ T4221] [U] [ 1065.697041][ T4221] [U] [ 1065.698562][ T4221] [U] [ 1065.699893][ T4221] [U] [ 1065.701274][ T4221] [U] [ 1065.702577][ T4221] [U] [ 1065.815160][ T4221] [U] [ 1065.816975][ T4221] [U] [ 1065.818655][ T4221] [U] [ 1065.820008][ T4221] [U] [ 1065.821407][ T4221] [U] [ 1065.822718][ T4221] [U] [ 1065.824025][ T4221] [U] [ 1065.825330][ T4221] [U] [ 1066.030982][ T4221] [U] [ 1066.032789][ T4221] [U] [ 1066.034150][ T4221] [U] [ 1066.035441][ T4221] [U] [ 1066.036761][ T4221] [U] [ 1066.038149][ T4221] [U] [ 1066.039450][ T4221] [U] [ 1066.040736][ T4221] [U] [ 1066.163406][ T4221] [U] [ 1066.164457][ T4221] [U] [ 1066.165202][ T4221] [U] [ 1066.165919][ T4221] [U] [ 1066.166926][ T4221] [U] [ 1066.168128][ T4221] [U] [ 1066.169313][ T4221] [U] [ 1067.093372][ T4220] [U] [ 1083.097197][ T4230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.128'. [ 1083.136537][ T4230] gre0: Master is either lo or non-ether device [ 1255.089933][ T9] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 1255.383950][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 1255.385736][ T9] usb 1-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 1255.386971][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1255.453839][ T9] usb 1-1: config 0 descriptor?? [ 1255.482170][ T4312] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1261.626200][ T9] arvo 0003:1E7D:30D4.0002: hidraw0: USB HID v1.01 Device [HID 1e7d:30d4] on usb-dummy_hcd.0-1/input0 [ 1261.796294][ T9] usb 1-1: USB disconnect, device number 3 [ 1304.314214][ T4346] netlink: 4 bytes leftover after parsing attributes in process `syz.0.167'. [ 1365.974506][ T4481] netlink: 20 bytes leftover after parsing attributes in process `syz.0.173'. [ 1381.261478][ T4339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1381.813922][ T4339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1420.484053][ T4339] hsr_slave_0: entered promiscuous mode [ 1420.532922][ T4339] hsr_slave_1: entered promiscuous mode [ 1420.566144][ T4339] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1420.579576][ T4339] Cannot create hsr debugfs directory [ 1450.182698][ T4339] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1450.356481][ T4339] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1450.699204][ T4339] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1452.663273][ T4339] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1485.003554][ T4339] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1579.359858][ T4711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1580.506594][ T4711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1592.905081][ T4339] veth0_vlan: entered promiscuous mode [ 1594.294165][ T4339] veth1_vlan: entered promiscuous mode [ 1596.553012][ T4339] veth0_macvtap: entered promiscuous mode [ 1596.951163][ T4339] veth1_macvtap: entered promiscuous mode [ 1605.833835][ T4339] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1605.836269][ T4339] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1605.890025][ T4339] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1605.892372][ T4339] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1627.522075][ T4711] hsr_slave_0: entered promiscuous mode [ 1627.580595][ T4711] hsr_slave_1: entered promiscuous mode [ 1627.613942][ T4711] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1627.615235][ T4711] Cannot create hsr debugfs directory [ 1630.959952][ T4989] capability: warning: `syz.2.163' uses deprecated v2 capabilities in a way that may be insecure [ 1650.634666][ T4711] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1651.079580][ T4711] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1651.717401][ T4711] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1654.920703][ T4711] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1683.743985][ T37] INFO: task kworker/u9:2:3379 blocked for more than 430 seconds. [ 1683.829420][ T37] Not tainted 6.14.0-rc1-syzkaller-g245aece3750d #0 [ 1683.831405][ T37] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1683.833328][ T37] task:kworker/u9:2 state:D stack:0 pid:3379 tgid:3379 ppid:2 task_flags:0x4208060 flags:0x00000000 [ 1683.835823][ T37] Workqueue: events_unbound bpf_map_free_deferred [ 1683.939906][ T37] Call Trace: [ 1683.941350][ T37] [] __schedule+0xe4c/0x3d70 [ 1683.942699][ T37] [] schedule+0xc4/0x324 [ 1683.943651][ T37] [] schedule_preempt_disabled+0x16/0x28 [ 1683.944643][ T37] [] __mutex_lock+0x9b2/0x1230 [ 1683.946126][ T37] [] mutex_lock_nested+0x14/0x1c SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1683.947192][ T37] [] rcu_barrier+0x56/0x6cc [ 1684.040430][ T37] [] dev_map_free+0x11c/0x6bc [ 1684.041734][ T37] [] bpf_map_free_deferred+0x226/0x47a [ 1684.042782][ T37] [] process_one_work+0x96a/0x1f3a [ 1684.043886][ T37] [] worker_thread+0x5be/0xdc6 [ 1684.044961][ T37] [] kthread+0x37e/0x7b6 [ 1684.046056][ T37] [] ret_from_fork+0xe/0x18 [ 1684.135046][ T37] INFO: task syz.1.158:4294 blocked for more than 430 seconds. [ 1684.136277][ T37] Not tainted 6.14.0-rc1-syzkaller-g245aece3750d #0 [ 1684.137223][ T37] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1684.185468][ T37] task:syz.1.158 state:D stack:0 pid:4294 tgid:4294 ppid:3181 task_flags:0x400040 flags:0x00000008 [ 1684.187244][ T37] Call Trace: [ 1684.202654][ T37] [] __schedule+0xe4c/0x3d70 [ 1684.204697][ T37] [] schedule+0xc4/0x324 [ 1684.206528][ T37] [] schedule_timeout+0x1c6/0x28a [ 1684.269674][ T37] [] __wait_for_common+0x1ca/0x4b6 [ 1684.271005][ T37] [] wait_for_completion+0x1a/0x22 [ 1684.272026][ T37] [] rcu_barrier+0x2dc/0x6cc [ 1684.273090][ T37] [] netdev_run_todo+0x294/0x10b4 [ 1684.274127][ T37] [] rtnl_unlock+0x14/0x1c [ 1684.275367][ T37] [] tun_chr_close+0xde/0x230 [ 1684.276626][ T37] [] __fput+0x37e/0x9f4 [ 1684.350440][ T37] [] ____fput+0x1c/0x26 [ 1684.351836][ T37] [] task_work_run+0x16a/0x25e [ 1684.352892][ T37] [] syscall_exit_to_user_mode+0x290/0x2a4 [ 1684.354184][ T37] [] do_trap_ecall_u+0x86/0x216 [ 1684.355253][ T37] [] handle_exception+0x146/0x152 [ 1684.356751][ T37] [ 1684.356751][ T37] Showing all locks held in the system: [ 1684.462507][ T37] 4 locks held by kworker/0:1/9: [ 1684.463845][ T37] 1 lock held by kworker/R-mm_pe/13: [ 1684.464760][ T37] 1 lock held by khungtaskd/37: [ 1684.465665][ T37] #0: ffffffff883d8200 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x68/0x288 [ 1684.525508][ T37] 5 locks held by kworker/1:2/828: [ 1684.526520][ T37] 2 locks held by getty/3140: [ 1684.527375][ T37] #0: ffffaf801cdde0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3a/0x46 [ 1684.579453][ T37] #1: ffff8f800008b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xd7c/0x129a [ 1684.583162][ T37] 2 locks held by syz-executor/3169: [ 1684.584059][ T37] 2 locks held by kworker/R-wg-cr/3354: [ 1684.585000][ T37] 3 locks held by kworker/u9:2/3379: [ 1684.586005][ T37] #0: ffffaf8011a89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x848/0x1f3a [ 1684.711766][ T37] #1: ffff8f800ce07bd0 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_one_work+0x870/0x1f3a [ 1684.715927][ T37] #2: ffffffff883e8380 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x56/0x6cc [ 1684.754227][ T37] 1 lock held by kworker/R-wg-cr/3408: [ 1684.755225][ T37] #0: ffffffff8828d7a8 (wq_pool_attach_mutex){+.+.}-{4:4}, at: rescuer_thread+0x73e/0xc72 [ 1684.810310][ T37] 2 locks held by kworker/1:3/3867: [ 1684.811435][ T37] 2 locks held by kworker/1:4/3868: [ 1684.812288][ T37] 3 locks held by kworker/1:5/3959: [ 1684.813167][ T37] 2 locks held by kworker/1:8/4012: [ 1684.814015][ T37] 2 locks held by kworker/1:9/4032: [ 1684.814865][ T37] 2 locks held by kworker/1:10/4091: [ 1684.815725][ T37] 1 lock held by syz.1.158/4294: [ 1684.816558][ T37] #0: ffffffff883e8380 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x56/0x6cc [ 1684.901473][ T37] 2 locks held by syz-executor/4339: [ 1684.902339][ T37] 2 locks held by kworker/1:0/4433: [ 1684.903170][ T37] 2 locks held by kworker/R-wg-cr/4449: [ 1684.903998][ T37] 3 locks held by kworker/u9:6/4475: [ 1684.904823][ T37] 1 lock held by syz.0.183/4641: [ 1684.905825][ T37] #0: ffffffff883e8380 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x56/0x6cc [ 1684.978575][ T37] 2 locks held by kworker/1:7/4708: [ 1684.979594][ T37] 3 locks held by kworker/1:12/5048: [ 1684.980556][ T37] [ 1684.981275][ T37] ============================================= [ 1684.981275][ T37] [ 1684.982594][ T37] NMI backtrace for cpu 0 [ 1684.982980][ T37] CPU: 0 UID: 0 PID: 37 Comm: khungtaskd Not tainted 6.14.0-rc1-syzkaller-g245aece3750d #0 [ 1684.983306][ T37] Hardware name: riscv-virtio,qemu (DT) [ 1684.983456][ T37] Call Trace: [ 1684.983555][ T37] [] dump_backtrace+0x2e/0x3c [ 1684.983865][ T37] [] show_stack+0x30/0x3c [ 1684.984089][ T37] [] dump_stack_lvl+0x12e/0x1a6 [ 1684.984406][ T37] [] dump_stack+0x1c/0x24 [ 1684.984700][ T37] [] nmi_cpu_backtrace+0x3b0/0x3b2 [ 1684.984998][ T37] [] nmi_trigger_cpumask_backtrace+0x2b6/0x458 [ 1684.985351][ T37] [] arch_trigger_cpumask_backtrace+0x2c/0x3e [ 1684.985669][ T37] [] watchdog+0xcf2/0x11de [ 1684.985965][ T37] [] kthread+0x37e/0x7b6 [ 1684.986287][ T37] [] ret_from_fork+0xe/0x18 [ 1684.987048][ T37] Sending NMI from CPU 0 to CPUs 1: [ 1685.001174][ C1] NMI backtrace for cpu 1 [ 1685.001482][ C1] CPU: 1 UID: 0 PID: 4449 Comm: kworker/R-wg-cr Not tainted 6.14.0-rc1-syzkaller-g245aece3750d #0 [ 1685.001756][ C1] Hardware name: riscv-virtio,qemu (DT) [ 1685.001885][ C1] Workqueue: wg-crypt-wg0 wg_packet_tx_worker [ 1685.002286][ C1] epc : finish_task_switch.isra.0+0x1f4/0x940 [ 1685.002625][ C1] ra : finish_task_switch.isra.0+0x1f0/0x940 [ 1685.002970][ C1] epc : ffffffff80203200 ra : ffffffff802031fc sp : ffff8f8003e276d0 [ 1685.003174][ C1] gp : ffffffff89c1d3c0 tp : ffffaf801aa10000 t0 : 5c7bda2363811625 [ 1685.003361][ C1] t1 : fffff5ef0ddb15f8 t2 : 0000000000000029 s0 : ffff8f8003e27750 [ 1685.003545][ C1] s1 : 0000000000000000 a0 : 0000000000000001 a1 : ffffffff86842140 [ 1685.003723][ C1] a2 : 0000000000000006 a3 : 0000000000000001 a4 : 0000000000000001 [ 1685.003895][ C1] a5 : 000000000001a4cd a6 : ffffaf801aa10b78 a7 : 1ffff5f00354216f [ 1685.004077][ C1] s2 : ffffaf806ed8afd8 s3 : ffffaf806ed8afc0 s4 : ffffaf806ed8bbc8 [ 1685.004275][ C1] s5 : ffffaf802dfdcec0 s6 : 0000000000000000 s7 : 0000000000000402 [ 1685.004465][ C1] s8 : ffffffff89c5c940 s9 : 1ffff5f00ddb1779 s10: ffffaf806ed8bb60 [ 1685.004655][ C1] s11: ffffaf802dfdcec0 t3 : ffffaf801aa10b30 t4 : fffff5ef0ddb15f8 [ 1685.004834][ C1] t5 : fffff5ef0ddb15f9 t6 : 000000000000000d [ 1685.005002][ C1] status: 0000000200000120 badaddr: 0000000000000000 cause: 8000000000000001 [ 1685.005286][ C1] [] finish_task_switch.isra.0+0x1f4/0x940 [ 1685.005764][ C1] [] __schedule+0xe54/0x3d70 [ 1685.006006][ C1] [] preempt_schedule+0xd2/0x1e2 [ 1685.006286][ C1] [] __local_bh_enable_ip+0x420/0x5e8 [ 1685.006572][ C1] [] wg_timers_any_authenticated_packet_traversal+0x23c/0x3a6 [ 1685.007153][ C1] [] wg_packet_tx_worker+0x10c/0x766 [ 1685.007709][ C1] [] process_one_work+0x96a/0x1f3a [ 1685.008300][ C1] [] rescuer_thread+0x56e/0xc72 [ 1685.008894][ C1] [] kthread+0x37e/0x7b6 [ 1685.009399][ C1] [] ret_from_fork+0xe/0x18 [ 1685.291968][ T37] Kernel panic - not syncing: hung_task: blocked tasks [ 1685.295152][ T37] CPU: 0 UID: 0 PID: 37 Comm: khungtaskd Not tainted 6.14.0-rc1-syzkaller-g245aece3750d #0 [ 1685.296791][ T37] Hardware name: riscv-virtio,qemu (DT) [ 1685.298023][ T37] Call Trace: [ 1685.298874][ T37] [] dump_backtrace+0x2e/0x3c [ 1685.300235][ T37] [] show_stack+0x30/0x3c [ 1685.301435][ T37] [] dump_stack_lvl+0x110/0x1a6 [ 1685.302793][ T37] [] dump_stack+0x1c/0x24 [ 1685.304093][ T37] [] panic+0x38c/0x86a [ 1685.305270][ T37] [] watchdog+0x78a/0x11de [ 1685.306791][ T37] [] kthread+0x37e/0x7b6 [ 1685.308205][ T37] [] ret_from_fork+0xe/0x18 [ 1685.309927][ T37] SMP: stopping secondary CPUs [ 1685.313310][ T37] Rebooting in 86400 seconds.. VM DIAGNOSIS: 08:02:40 Registers: info registers vcpu 0 CPU#0 V = 0 pc ffffffff804db9b0 mhartid 0000000000000000 mstatus 0000000a000000a0 hstatus 0000000200000000 vsstatus 0000000a00000000 mip 0000000000000000 mie 000000000000022a mideleg 0000000000001666 hideleg 0000000000000444 medeleg 0000000000f0b509 hedeleg 000000000000b109 mtvec 00000000800004f0 stvec ffffffff86268630 vstvec 0000000000000000 mepc ffffffff80088636 sepc ffffffff831f6a08 vsepc 0000000000000000 mcause 0000000000000009 scause 8000000000000005 vscause 0000000000000000 mtval 0000000000000000 stval 0000000000000000 htval 0000000000000000 mtval2 0000000000000000 mscratch 000000008004a000 sscratch 0000000000000000 satp 90268000000b7b8b x0/zero 0000000000000000 x1/ra ffffffff809d0bc0 x2/sp ffff8f80000068f0 x3/gp ffffffff89c1d3c0 x4/tp ffffaf8014ad1a40 x5/t0 ffff8f8000006850 x6/t1 fffff5ef03654738 x7/t2 ffffaf806ed556c0 x8/s0 ffff8f8000006500 x9/s1 ffff8f8000006870 x10/a0 0000000000000001 x11/a1 0000000000000000 x12/a2 0000000000000006 x13/a3 ffffffff80073f64 x14/a4 0000000000000000 x15/a5 ffffaf8014ad1a40 x16/a6 0000000000f00000 x17/a7 1ffff5f00295a4cb x18/s2 ffff8f8000006ab0 x19/s3 0000000000000008 x20/s4 0000000000000000 x21/s5 dfffffff00000000 x22/s6 ffffffff856958c2 x23/s7 0000000000000001 x24/s8 dfffffff00000000 x25/s9 0000000000007fff x26/s10 ffffffff86268630 x27/s11 ffffffff90fcb3a0 x28/t3 ffffaf8014ad2570 x29/t4 fffff5ef03654738 x30/t5 fffff5ef03654739 x31/t6 0000000000000007 fcsr 0000000000000000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 CPU#1 V = 0 pc ffffffff86241d44 mhartid 0000000000000001 mstatus 0000000a000000a2 hstatus 0000000200000000 vsstatus 0000000a00000000 mip 0000000000000000 mie 000000000000022a mideleg 0000000000001666 hideleg 0000000000000444 medeleg 0000000000f0b509 hedeleg 000000000000b109 mtvec 00000000800004f0 stvec ffffffff86268630 vstvec 0000000000000000 mepc ffffffff80073e32 sepc ffffffff802cbbf8 vsepc 0000000000000000 mcause 8000000000000003 scause 8000000000000005 vscause 0000000000000000 mtval 0000000000000000 stval 0000000000000000 htval 0000000000000000 mtval2 0000000000000000 mscratch 0000000080048000 sscratch 0000000000000000 satp 90223000000b3823 x0/zero 0000000000000000 x1/ra ffffffff80073f7e x2/sp ffff8f8000017370 x3/gp ffffffff89c1d3c0 x4/tp ffffaf802dfdcec0 x5/t0 ffff8f8000017798 x6/t1 fffffffff3f3f3f3 x7/t2 0000000000000005 x8/s0 ffff8f8000017360 x9/s1 ffff8f8000017640 x10/a0 ffff8f8000017440 x11/a1 0000000000000000 x12/a2 0000000000f00000 x13/a3 ffffffff8006be94 x14/a4 0000000000000000 x15/a5 ffffaf802dfdcec0 x16/a6 0000000000f00000 x17/a7 6b98eaf27c642000 x18/s2 ffff8f80000173f0 x19/s3 0000000000000000 x20/s4 0000000000000000 x21/s5 dfffffff00000000 x22/s6 ffffffff8006bf2c x23/s7 ffff8f8000017410 x24/s8 dfffffff00000000 x25/s9 0000000000007fff x26/s10 ffffffff86268630 x27/s11 ffff8f8000017770 x28/t3 1ffff5f005e4db01 x29/t4 ffffffff87663868 x30/t5 ffffaf80187a6128 x31/t6 000000000000000a fcsr 0000000000000000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000