last executing test programs: 6.44587291s ago: executing program 1 (id=568): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0xf00) 3.744328953s ago: executing program 1 (id=577): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000780)='rpc_pipefs\x00', 0x1000000, 0x0) fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%\xf8\xff\xff\xff\xff\xff\xff\xff?\x11\xc8\xdd\x15\xcc\xd2\xf1\xff\'%\xa0\x00\x00\x00,'}, 0x30) write$tun(r1, &(0x7f0000000000)=ANY=[], 0x38) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0) 3.384917428s ago: executing program 2 (id=581): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) 2.681570761s ago: executing program 3 (id=586): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000000580)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in6=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x33}, @in=@broadcast, {}, {}, {}, 0x8, 0x0, 0x2}, 0x0, 0x4}}, 0xf8}, 0x1, 0x0, 0x0, 0x840}, 0x0) 2.681384837s ago: executing program 3 (id=587): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18) r1 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, 0x0, 0x0) 2.562990034s ago: executing program 3 (id=588): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3d, &(0x7f0000000000)='cgroup\x00\x8d\f\xf3\xcd\xc6X$\x01n-Hg\x144-.\xe2\x053\xe2\xf4\xbf[\xe9\xdddU\x91\x9d,\t\x8d\xc3@\x86,\x7f\xe2Z\xe8L\x80\xdbe~c\xbc\x9b\xcf\x9b\x1cH\x95\xf3'}, 0x30) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0) fallocate(r2, 0x0, 0x400000000000000, 0x7) 2.452277834s ago: executing program 2 (id=589): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYRES32, @ANYBLOB="00000000e97600001c0012800b00010067656e6576"], 0x3c}, 0x1, 0x2}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0) io_uring_setup(0x5d16, &(0x7f0000000480)={0x0, 0x45d6, 0x10000, 0xfffffffd, 0x234}) ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72}) ioctl$MON_IOCX_GETX(r1, 0x80089203, &(0x7f0000000a40)={0x0, 0x0}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 2.36207397s ago: executing program 2 (id=590): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000108008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x7a224000) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) prctl$PR_SET_PTRACER(0x59616d61, r0) connect$netlink(0xffffffffffffffff, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) syz_clone3(0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) syz_open_dev$usbfs(0x0, 0x4, 0x2182) r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$restrict_keyring(0x1d, r2, 0x0, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000000)=@chain) 2.291726444s ago: executing program 3 (id=591): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc)=0x1, 0x1, 0x800001, 0x0, 0x0, 0x0) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) mlock2(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x1) pread64(0xffffffffffffffff, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0) io_setup(0x3, &(0x7f0000000340)) 1.981086644s ago: executing program 0 (id=592): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000020000008500000086000000181100", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b7040000dd010000070000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r4, r1, 0x25, 0x0, @void}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@multicast, @local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x4, 0x1c, 0x66, 0x0, 0x7, 0x2, 0x0, @private=0xa010102, @broadcast}, {0x1f, 0xff, 0x0, @empty}}}}}, 0x0) 1.86219502s ago: executing program 0 (id=593): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02}) r2 = socket$netlink(0x10, 0x3, 0x0) preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000380)=""/183, 0xb7}], 0x1, 0x0, 0x4) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) 1.682056552s ago: executing program 0 (id=594): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = fsopen(&(0x7f0000000180)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x1) fchdir(r2) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r3, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) symlinkat(&(0x7f0000000100)='./file0\x00', r3, 0x0) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x4440c1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)) mlock2(&(0x7f000072d000/0x1000)=nil, 0x1000, 0x0) mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002c00)=@raw={'raw\x00', 0x3c1, 0x3, 0x1398, 0x11b8, 0xc8, 0x8, 0x0, 0x5803, 0x12c8, 0x2e8, 0x2e8, 0x12c8, 0x2e8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1198, 0x11b8, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x2, 0x3}}, @common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x0, './cgroup.cpu/syz1\x00'}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x13f8) 1.663758524s ago: executing program 1 (id=595): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/16, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010800000000000000000b00000008000300", @ANYRES32=r3, @ANYBLOB="0a000600080211000000000038005080080003000dac0f0011000100cabee339084eeef109002471f400000008000700"], 0x60}}, 0x0) 1.459998399s ago: executing program 1 (id=596): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendto$inet(r0, &(0x7f0000000d40)='<', 0x1, 0x4000800, 0x0, 0x0) recvmmsg(r0, &(0x7f00000031c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000080)=""/43, 0x2b}], 0x1}, 0x2}], 0x1, 0x22, 0x0) 1.459878027s ago: executing program 1 (id=597): mount(0x0, 0x0, &(0x7f0000000140)='tracefs\x00', 0x0, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) 1.10164158s ago: executing program 3 (id=598): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYRES32, @ANYBLOB="00000000e97600001c0012800b00010067656e6576"], 0x3c}, 0x1, 0x2}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0) io_uring_setup(0x5d16, &(0x7f0000000480)={0x0, 0x45d6, 0x10000, 0xfffffffd, 0x234}) ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000c40)={0x0, 0xfe72}) ioctl$MON_IOCX_GETX(r1, 0x80089203, &(0x7f0000000a40)={0x0, 0x0}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 1.101317136s ago: executing program 3 (id=599): fsopen(&(0x7f00000000c0)='omfs\x00', 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000540), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$inet6(0xa, 0x3, 0x7) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@ipv4_delrule={0x24, 0x21, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8}]}, 0x24}}, 0x0) r3 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000200)) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000100)=0xcf5) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0xfffffffd, 0x4000000, 0x1, 0x10, "0062ba7d8200000000f7ffffff00"}) syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0xf) setsockopt$inet6_int(r1, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4) setsockopt$inet6_int(r1, 0x29, 0x24, &(0x7f0000000500)=0x40, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c) sendmsg$inet(r1, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=[@ip_tos_u8={{0x11}}], 0x18}, 0x2000c054) mount$fuseblk(&(0x7f0000000040), &(0x7f0000000000)='.\x00', &(0x7f00000000c0), 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xffffffff}, 0x48) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x20008000) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x680, 0x0) socket(0x40000000015, 0x5, 0x0) ioctl$TIOCSSOFTCAR(r4, 0x5453, 0x0) 529.922417ms ago: executing program 1 (id=600): sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x800) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000040)=@alg, &(0x7f00000000c0)=0x80, 0x80800) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010003b15fd070000fbdbdf2500e9a856000000", @ANYRES32=0x0, @ANYBLOB="0000000000b401001c00128009000100626f6e64000000000c00028005000d0002000000"], 0x3c}}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='environ\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) read$FUSE(r3, &(0x7f0000000640)={0x2020}, 0x2020) 332.988226ms ago: executing program 0 (id=601): openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0) r0 = syz_create_resource$binfmt(0x0) r1 = inotify_init() syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYRES32=r1], 0x24) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x3, 0x0, 0x0, 0x0) openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0) 328.46332ms ago: executing program 2 (id=602): r0 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n 1 [ 46.467195][ T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.469820][ T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.473846][ T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.477225][ T5981] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 46.481692][ T5335] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.487848][ T5974] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 46.490518][ T5335] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.494462][ T5974] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 46.498167][ T5335] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 46.498206][ T5974] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.500954][ T5335] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 46.504391][ T5984] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 46.505543][ T5335] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 46.507160][ T5981] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.512905][ T5977] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 46.513412][ T5981] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.519014][ T5977] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 46.531039][ T63] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 46.535317][ T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.740239][ T5975] chnl_net:caif_netlink_parms(): no params data found [ 46.824111][ T5971] chnl_net:caif_netlink_parms(): no params data found [ 46.925633][ T5975] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.928356][ T5975] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.930972][ T5975] bridge_slave_0: entered allmulticast mode [ 46.934983][ T5975] bridge_slave_0: entered promiscuous mode [ 46.938856][ T5975] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.941145][ T5975] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.943611][ T5975] bridge_slave_1: entered allmulticast mode [ 46.946693][ T5975] bridge_slave_1: entered promiscuous mode [ 46.949658][ T5980] chnl_net:caif_netlink_parms(): no params data found [ 47.043997][ T5975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.047942][ T5983] chnl_net:caif_netlink_parms(): no params data found [ 47.066184][ T5971] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.068499][ T5971] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.070781][ T5971] bridge_slave_0: entered allmulticast mode [ 47.073317][ T5971] bridge_slave_0: entered promiscuous mode [ 47.083000][ T5975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.093166][ T5971] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.095499][ T5971] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.097866][ T5971] bridge_slave_1: entered allmulticast mode [ 47.100540][ T5971] bridge_slave_1: entered promiscuous mode [ 47.248953][ T5975] team0: Port device team_slave_0 added [ 47.252448][ T5980] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.255516][ T5980] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.258409][ T5980] bridge_slave_0: entered allmulticast mode [ 47.262134][ T5980] bridge_slave_0: entered promiscuous mode [ 47.301776][ T5975] team0: Port device team_slave_1 added [ 47.336364][ T5980] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.339148][ T5980] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.341497][ T5980] bridge_slave_1: entered allmulticast mode [ 47.344425][ T5980] bridge_slave_1: entered promiscuous mode [ 47.364063][ T5971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.437749][ T5971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.442255][ T5975] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.445925][ T5975] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.454147][ T5975] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.485038][ T5980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.500645][ T5975] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.502844][ T5975] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.512902][ T5975] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.523778][ T5983] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.526138][ T5983] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.528718][ T5983] bridge_slave_0: entered allmulticast mode [ 47.532588][ T5983] bridge_slave_0: entered promiscuous mode [ 47.540257][ T5980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.558978][ T5971] team0: Port device team_slave_0 added [ 47.562175][ T5983] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.565402][ T5983] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.568254][ T5983] bridge_slave_1: entered allmulticast mode [ 47.571764][ T5983] bridge_slave_1: entered promiscuous mode [ 47.606539][ T5971] team0: Port device team_slave_1 added [ 47.652048][ T5980] team0: Port device team_slave_0 added [ 47.733536][ T5980] team0: Port device team_slave_1 added [ 47.736848][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.739669][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.750959][ T5971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.757185][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.760062][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.768452][ T5971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.775295][ T5975] hsr_slave_0: entered promiscuous mode [ 47.778295][ T5975] hsr_slave_1: entered promiscuous mode [ 47.781926][ T5983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.817167][ T5983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.841278][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.845128][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.853295][ T5980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.900478][ T5980] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.902643][ T5980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.910653][ T5980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.949970][ T5983] team0: Port device team_slave_0 added [ 47.956257][ T5983] team0: Port device team_slave_1 added [ 47.983958][ T5971] hsr_slave_0: entered promiscuous mode [ 47.986632][ T5971] hsr_slave_1: entered promiscuous mode [ 47.989120][ T5971] debugfs: 'hsr0' already exists in 'hsr' [ 47.991391][ T5971] Cannot create hsr debugfs directory [ 48.057598][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.059819][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.067932][ T5983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.079806][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.082060][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.090901][ T5983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.136391][ T5980] hsr_slave_0: entered promiscuous mode [ 48.140029][ T5980] hsr_slave_1: entered promiscuous mode [ 48.143146][ T5980] debugfs: 'hsr0' already exists in 'hsr' [ 48.146103][ T5980] Cannot create hsr debugfs directory [ 48.302363][ T5983] hsr_slave_0: entered promiscuous mode [ 48.304807][ T5983] hsr_slave_1: entered promiscuous mode [ 48.307050][ T5983] debugfs: 'hsr0' already exists in 'hsr' [ 48.308865][ T5983] Cannot create hsr debugfs directory [ 48.564699][ T63] Bluetooth: hci1: command tx timeout [ 48.564706][ T5974] Bluetooth: hci3: command tx timeout [ 48.564718][ T5977] Bluetooth: hci0: command tx timeout [ 48.565069][ T5974] Bluetooth: hci2: command tx timeout [ 48.580401][ T5975] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 48.599952][ T5975] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 48.610634][ T5975] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 48.621691][ T5975] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 48.653485][ T5971] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 48.665233][ T5971] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 48.671923][ T5971] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 48.678700][ T5971] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 48.727153][ T5980] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 48.746062][ T5980] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 48.750469][ T5980] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 48.766049][ T5980] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 48.832640][ T5983] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 48.840543][ T5983] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 48.845106][ T5983] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 48.851324][ T5983] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 48.877878][ T5975] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.909860][ T5971] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.929183][ T5975] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.945233][ T5971] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.949731][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.952023][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.975335][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.978401][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.983485][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.986619][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.021462][ T5980] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.033248][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.036415][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.064259][ T5980] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.088100][ T225] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.091249][ T225] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.097249][ T225] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.099360][ T225] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.109761][ T5983] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.133273][ T5983] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.150417][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.153488][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.165660][ T79] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.167931][ T79] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.201127][ T5975] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.240838][ T5975] veth0_vlan: entered promiscuous mode [ 49.250892][ T5975] veth1_vlan: entered promiscuous mode [ 49.268610][ T5971] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.277072][ T5975] veth0_macvtap: entered promiscuous mode [ 49.281722][ T5975] veth1_macvtap: entered promiscuous mode [ 49.314506][ T5980] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.318625][ T5975] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.329988][ T5975] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.334697][ T5971] veth0_vlan: entered promiscuous mode [ 49.340583][ T5983] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.349237][ T46] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.354127][ T46] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.357529][ T46] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.365924][ T46] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.370801][ T5971] veth1_vlan: entered promiscuous mode [ 49.423181][ T5971] veth0_macvtap: entered promiscuous mode [ 49.436059][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.436469][ T5971] veth1_macvtap: entered promiscuous mode [ 49.438567][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.442910][ T5983] veth0_vlan: entered promiscuous mode [ 49.465600][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.465646][ T5983] veth1_vlan: entered promiscuous mode [ 49.468623][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.481537][ T5980] veth0_vlan: entered promiscuous mode [ 49.486125][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.495589][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.507567][ T1234] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.509472][ T5975] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 49.510843][ T1234] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.522851][ T5983] veth0_macvtap: entered promiscuous mode [ 49.526281][ T5980] veth1_vlan: entered promiscuous mode [ 49.529772][ T1234] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.532548][ T1234] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.538476][ T5983] veth1_macvtap: entered promiscuous mode [ 49.550630][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.563386][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.575313][ T225] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.587630][ T225] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.598434][ T5980] veth0_macvtap: entered promiscuous mode [ 49.601217][ T225] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.605147][ T225] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.615706][ T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.615756][ T5980] veth1_macvtap: entered promiscuous mode [ 49.618961][ T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.630326][ T6064] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 49.649471][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.652292][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.659777][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.666638][ T5980] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.684530][ T1234] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.687247][ T1234] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.697072][ T1234] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.700863][ T1234] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.707346][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.709821][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.751334][ T225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.754735][ T225] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.790911][ T6073] Driver unsupported XDP return value 0 on prog (id 2) dev N/A, expect packet loss! [ 49.811030][ T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.817456][ T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.845206][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.850415][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.971732][ T6099] 9pnet_fd: Insufficient options for proto=fd [ 49.983244][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x1 [ 49.986266][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 49.988682][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 49.992218][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 49.994913][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 49.997719][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 50.000636][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 50.003055][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 50.006711][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 50.009393][ T6067] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 50.017973][ T6067] hid-generic 0000:0000:0000.0002: hidraw1: HID v8.00 Device [syz0] on syz1 [ 50.049642][ T6102] fido_id[6102]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 50.140949][ T40] audit: type=1326 audit(1757944073.128:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.0.22" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 50.148622][ T40] audit: type=1326 audit(1757944073.128:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.0.22" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 50.157914][ T40] audit: type=1326 audit(1757944073.128:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.0.22" exe="/syz-executor" sig=0 arch=40000003 syscall=10 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 50.169849][ T40] audit: type=1326 audit(1757944073.128:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.0.22" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 50.178082][ T40] audit: type=1326 audit(1757944073.128:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6112 comm="syz.0.22" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 50.252467][ T6121] bond1: entered promiscuous mode [ 50.255473][ T6121] bond1: entered allmulticast mode [ 50.257642][ T6121] 8021q: adding VLAN 0 to HW filter on device bond1 [ 50.326982][ T6121] bond1 (unregistering): Released all slaves [ 50.541137][ T6138] netlink: 12 bytes leftover after parsing attributes in process `syz.1.34'. [ 50.654220][ T5977] Bluetooth: hci2: command tx timeout [ 50.654456][ T5981] Bluetooth: hci0: command tx timeout [ 50.656309][ T5977] Bluetooth: hci3: command tx timeout [ 50.658593][ T63] Bluetooth: hci1: command tx timeout [ 50.663599][ T6142] netlink: 'syz.0.35': attribute type 11 has an invalid length. [ 50.667150][ T6142] netlink: 36 bytes leftover after parsing attributes in process `syz.0.35'. [ 50.704145][ T6146] bridge_slave_0: left allmulticast mode [ 50.705981][ T6146] bridge_slave_0: left promiscuous mode [ 50.708615][ T6146] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.719326][ T6146] bridge_slave_1: left allmulticast mode [ 50.721368][ T6146] bridge_slave_1: left promiscuous mode [ 50.723326][ T6146] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.759287][ T6146] bond0: (slave bond_slave_0): Releasing backup interface [ 50.773368][ T6146] bond0: (slave bond_slave_1): Releasing backup interface [ 50.797018][ T6146] team0: Port device team_slave_0 removed [ 50.806156][ T6162] netlink: 12 bytes leftover after parsing attributes in process `syz.1.45'. [ 50.806164][ T6146] team0: Port device team_slave_1 removed [ 50.811379][ T6146] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 50.814111][ T6146] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 50.817850][ T6146] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 50.822661][ T6146] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 50.868142][ T6167] 9pnet_fd: Insufficient options for proto=fd [ 51.043840][ T6185] netlink: 4 bytes leftover after parsing attributes in process `syz.1.54'. [ 51.145131][ T6197] 9pnet_fd: Insufficient options for proto=fd [ 51.294814][ T6203] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 51.387923][ T6210] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 51.598182][ T6230] netlink: 12 bytes leftover after parsing attributes in process `syz.2.75'. [ 52.723857][ T63] Bluetooth: hci1: command tx timeout [ 52.723952][ T5977] Bluetooth: hci0: command tx timeout [ 52.724396][ T5974] Bluetooth: hci2: command tx timeout [ 52.724430][ T5974] Bluetooth: hci3: command tx timeout [ 52.993379][ T6281] bridge0: entered promiscuous mode [ 52.997773][ T6281] bridge0: port 3(macsec1) entered blocking state [ 52.999911][ T6281] bridge0: port 3(macsec1) entered disabled state [ 53.002003][ T6281] macsec1: entered allmulticast mode [ 53.005072][ T6281] bridge0: entered allmulticast mode [ 53.008600][ T6281] macsec1: left allmulticast mode [ 53.010286][ T6281] bridge0: left allmulticast mode [ 53.012981][ T6281] bridge0: left promiscuous mode [ 53.033054][ T24] hid-generic 0000:0000:0000.0003: hidraw1: HID v8.00 Device [syz0] on syz1 [ 53.060434][ T6288] fido_id[6288]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 53.100140][ T6292] netlink: 'syz.0.100': attribute type 10 has an invalid length. [ 53.103539][ T6292] veth1_macvtap: left promiscuous mode [ 53.248790][ T40] audit: type=1326 audit(1757944076.238:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6301 comm="syz.0.103" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 53.255413][ T40] audit: type=1326 audit(1757944076.238:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6301 comm="syz.0.103" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 53.261928][ T40] audit: type=1326 audit(1757944076.238:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6301 comm="syz.0.103" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 53.358443][ T40] audit: type=1326 audit(1757944076.348:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6301 comm="syz.0.103" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 53.367553][ T40] audit: type=1326 audit(1757944076.348:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6301 comm="syz.0.103" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000 [ 53.715964][ T6293] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 53.718996][ T6293] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 53.725548][ T6293] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 53.728761][ T6293] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 53.731046][ T6293] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 53.735576][ T6293] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 53.740390][ T6293] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 53.742883][ T6293] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 53.749108][ T6293] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 53.752588][ T6293] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 53.754852][ T6293] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 53.757926][ T6293] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 53.851298][ T6317] netlink: 4 bytes leftover after parsing attributes in process `syz.2.109'. [ 54.093001][ T6343] team_slave_0: entered promiscuous mode [ 54.095495][ T6343] team_slave_1: entered promiscuous mode [ 54.100224][ T6343] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 54.102733][ T6343] team0: Device macvtap1 is already an upper device of the team interface [ 54.109529][ T6343] team_slave_0: left promiscuous mode [ 54.111314][ T6343] team_slave_1: left promiscuous mode [ 54.390176][ T6365] netlink: 4 bytes leftover after parsing attributes in process `syz.0.132'. [ 54.716830][ T6393] netlink: 4 bytes leftover after parsing attributes in process `syz.1.145'. [ 54.878009][ T6422] 9pnet: Could not find request transport: 0xffffffffffffffff [ 54.993364][ T6428] netlink: 4 bytes leftover after parsing attributes in process `syz.3.159'. [ 55.277494][ T40] kauditd_printk_skb: 275 callbacks suppressed [ 55.277509][ T40] audit: type=1326 audit(1757944078.268:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.288664][ T40] audit: type=1326 audit(1757944078.268:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.298031][ T40] audit: type=1326 audit(1757944078.268:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.306967][ T40] audit: type=1326 audit(1757944078.268:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.316207][ T40] audit: type=1326 audit(1757944078.268:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.325103][ T40] audit: type=1326 audit(1757944078.268:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.333942][ T40] audit: type=1326 audit(1757944078.268:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.341823][ T40] audit: type=1326 audit(1757944078.268:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.346668][ T6443] infiniband syz!: set active [ 55.348916][ T40] audit: type=1326 audit(1757944078.268:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=440 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.350404][ T6443] infiniband syz!: added team_slave_0 [ 55.357939][ T40] audit: type=1326 audit(1757944078.268:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 55.367946][ T6451] netlink: 4 bytes leftover after parsing attributes in process `syz.3.168'. [ 55.392398][ T6443] RDS/IB: syz!: added [ 55.395019][ T6443] smc: adding ib device syz! with port count 1 [ 55.397142][ T6443] smc: ib device syz! port 1 has pnetid [ 55.612853][ T6429] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 55.616414][ T6429] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 55.618772][ T6429] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 55.620813][ T6429] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 55.780887][ T6485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.179'. [ 56.357520][ T6509] usb usb8: usbfs: process 6509 (syz.1.191) did not claim interface 0 before use [ 56.742183][ T6513] netlink: 4 bytes leftover after parsing attributes in process `syz.2.193'. [ 57.133787][ T5977] Bluetooth: hci0: command 0x0c1a tx timeout [ 57.236538][ T6542] syzkaller0: entered promiscuous mode [ 57.238275][ T6542] syzkaller0: entered allmulticast mode [ 57.683894][ T5977] Bluetooth: hci3: command 0x0c1a tx timeout [ 57.684203][ T5981] Bluetooth: hci1: command 0x0c1a tx timeout [ 57.689189][ T63] Bluetooth: hci2: command 0x0c1a tx timeout [ 57.899232][ T61] cfg80211: failed to load regulatory.db [ 58.045132][ T6567] netlink: 12 bytes leftover after parsing attributes in process `syz.1.217'. [ 58.070507][ T6567] netlink: 4 bytes leftover after parsing attributes in process `syz.1.217'. [ 58.153125][ T6567] netlink: 8 bytes leftover after parsing attributes in process `syz.1.217'. [ 58.236870][ T6567] syz.1.217 (6567) used greatest stack depth: 19736 bytes left [ 58.479703][ T6592] syzkaller0: entered promiscuous mode [ 58.482206][ T6592] syzkaller0: entered allmulticast mode [ 59.002153][ T6613] program syz.0.233 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 59.214673][ T63] Bluetooth: hci0: command 0x0c1a tx timeout [ 59.249581][ T6621] netlink: 12 bytes leftover after parsing attributes in process `syz.0.237'. [ 59.445301][ T6645] pim6reg: entered allmulticast mode [ 59.450048][ T6645] pim6reg: left allmulticast mode [ 59.629110][ T6650] netlink: 20 bytes leftover after parsing attributes in process `syz.2.251'. [ 59.657809][ T6654] 9pnet_fd: Insufficient options for proto=fd [ 59.763759][ T63] Bluetooth: hci3: command 0x0c1a tx timeout [ 59.764147][ T5981] Bluetooth: hci1: command 0x0c1a tx timeout [ 59.773800][ T5981] Bluetooth: hci2: command 0x0c1a tx timeout [ 59.995559][ T6672] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 60.117854][ T6681] netlink: 4 bytes leftover after parsing attributes in process `syz.0.264'. [ 60.255086][ T840] hid_parser_main: 62 callbacks suppressed [ 60.255099][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x1 [ 60.259560][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.262072][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.264800][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.267095][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.269397][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.271896][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.275675][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.278025][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.280364][ T840] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 60.285061][ T840] hid-generic 0000:0000:0000.0004: hidraw1: HID v8.00 Device [syz0] on syz1 [ 60.331168][ T40] kauditd_printk_skb: 79 callbacks suppressed [ 60.331179][ T40] audit: type=1326 audit(1757944083.318:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.332631][ T6699] fido_id[6699]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 60.333188][ T40] audit: type=1326 audit(1757944083.318:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.337925][ T6697] bond1: entered promiscuous mode [ 60.337970][ T6697] bond1: entered allmulticast mode [ 60.338791][ T6697] 8021q: adding VLAN 0 to HW filter on device bond1 [ 60.360347][ T40] audit: type=1326 audit(1757944083.328:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.368926][ T40] audit: type=1326 audit(1757944083.328:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.378769][ T6709] netlink: 4 bytes leftover after parsing attributes in process `syz.2.274'. [ 60.387512][ T40] audit: type=1326 audit(1757944083.328:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.400650][ T40] audit: type=1326 audit(1757944083.328:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.408286][ T40] audit: type=1326 audit(1757944083.328:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.418751][ T40] audit: type=1326 audit(1757944083.338:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.425627][ T40] audit: type=1326 audit(1757944083.338:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.432689][ T40] audit: type=1326 audit(1757944083.348:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.1.273" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7ff4579 code=0x7ffc0000 [ 60.459133][ T6697] bond1 (unregistering): Released all slaves [ 60.479217][ T6707] bridge_slave_0: left allmulticast mode [ 60.481952][ T6707] bridge_slave_0: left promiscuous mode [ 60.485609][ T6707] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.491304][ T6707] bridge_slave_1: left allmulticast mode [ 60.493549][ T6707] bridge_slave_1: left promiscuous mode [ 60.496103][ T6707] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.502463][ T6707] bond0: (slave bond_slave_0): Releasing backup interface [ 60.516938][ T6707] bond0: (slave bond_slave_1): Releasing backup interface [ 60.525038][ T6707] team0: Port device team_slave_0 removed [ 60.538524][ T6707] team0: Port device team_slave_1 removed [ 60.541675][ T6707] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 60.544938][ T6707] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 60.549971][ T6707] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 60.553146][ T6707] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 60.600906][ T6727] netlink: 40 bytes leftover after parsing attributes in process `syz.1.282'. [ 60.775377][ T840] hid-generic 0000:0000:0000.0005: hidraw1: HID v8.00 Device [syz0] on syz1 [ 60.799643][ T6746] netlink: 12 bytes leftover after parsing attributes in process `syz.3.288'. [ 60.840681][ T6749] fido_id[6749]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 61.123378][ T6765] netlink: 24 bytes leftover after parsing attributes in process `syz.2.295'. [ 61.192093][ T6766] netlink: 4 bytes leftover after parsing attributes in process `syz.2.295'. [ 61.744144][ T6767] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 61.747201][ T6767] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 61.749204][ T6767] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 61.751124][ T6767] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 61.870950][ T6788] 9pnet: Could not find request transport: f0xffffffffffffffff [ 61.903400][ T29] hid-generic 0000:0000:0000.0006: hidraw1: HID v8.00 Device [syz0] on syz1 [ 61.958541][ T6799] fido_id[6799]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 62.076162][ T6818] usb usb8: usbfs: process 6818 (syz.3.314) did not claim interface 0 before use [ 62.111599][ T841] hid-generic 0000:0000:0000.0007: hidraw1: HID v8.00 Device [syz0] on syz1 [ 62.125518][ T6824] netlink: 12 bytes leftover after parsing attributes in process `syz.0.315'. [ 62.150393][ T6825] fido_id[6825]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 62.360737][ T61] hid-generic 0000:0000:0000.0008: hidraw1: HID v8.00 Device [syz0] on syz1 [ 62.392548][ T6853] fido_id[6853]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 62.428311][ T6858] syzkaller0: entered allmulticast mode [ 63.158585][ T29] hid-generic 0000:0000:0000.0009: hidraw1: HID v8.00 Device [syz0] on syz1 [ 63.226064][ T6882] fido_id[6882]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 63.288675][ T6894] netlink: 12 bytes leftover after parsing attributes in process `syz.2.349'. [ 63.294377][ T5977] Bluetooth: hci0: command 0x0c1a tx timeout [ 63.362335][ T6894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.349'. [ 63.368978][ T6894] netlink: 8 bytes leftover after parsing attributes in process `syz.2.349'. [ 63.630362][ T6932] netlink: 24 bytes leftover after parsing attributes in process `syz.3.365'. [ 63.685714][ T6932] netlink: 4 bytes leftover after parsing attributes in process `syz.3.365'. [ 63.763782][ T5977] Bluetooth: hci2: command 0x0c1a tx timeout [ 63.773814][ T5977] Bluetooth: hci3: command 0x0c1a tx timeout [ 63.774897][ T63] Bluetooth: hci1: command 0x0c1a tx timeout [ 63.829828][ T6951] bond_slave_1: entered promiscuous mode [ 63.832257][ T6951] bond_slave_1: entered allmulticast mode [ 63.976843][ T6967] netlink: 24 bytes leftover after parsing attributes in process `syz.1.384'. [ 64.330636][ T6993] netlink: 'syz.1.394': attribute type 1 has an invalid length. [ 65.006496][ T6993] 8021q: adding VLAN 0 to HW filter on device bond2 [ 65.016810][ T6994] ip6erspan0: entered promiscuous mode [ 65.021788][ T6994] bond2: (slave ip6erspan0): making interface the new active one [ 65.026003][ T6994] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link [ 65.098615][ T7024] tipc: Started in network mode [ 65.100551][ T7024] tipc: Node identity aed37cbb52a4, cluster identity 4711 [ 65.103392][ T7024] tipc: Enabled bearer , priority 0 [ 65.113527][ T7024] syzkaller0: entered promiscuous mode [ 65.115652][ T7024] syzkaller0: entered allmulticast mode [ 65.130594][ T7024] Zero length message leads to an empty skb [ 65.135903][ T7024] tipc: Resetting bearer [ 65.142466][ T7023] tipc: Resetting bearer [ 65.161327][ T7023] tipc: Disabling bearer [ 65.510916][ T7062] tipc: Started in network mode [ 65.512489][ T7062] tipc: Node identity 7e50c11b4d44, cluster identity 4711 [ 65.515228][ T7062] tipc: Enabled bearer , priority 0 [ 65.518477][ T7062] syzkaller0: entered promiscuous mode [ 65.520238][ T7062] syzkaller0: entered allmulticast mode [ 65.532865][ T7062] tipc: Resetting bearer [ 65.537209][ T7061] tipc: Resetting bearer [ 65.546176][ T7061] tipc: Disabling bearer [ 65.641548][ T7066] trusted_key: encrypted_key: insufficient parameters specified [ 65.724905][ T7070] capability: warning: `syz.2.421' uses deprecated v2 capabilities in a way that may be insecure [ 65.849189][ T7076] __nla_validate_parse: 3 callbacks suppressed [ 65.849206][ T7076] netlink: 16 bytes leftover after parsing attributes in process `syz.2.424'. [ 65.897580][ T7079] usb usb8: usbfs: process 7079 (syz.2.425) did not claim interface 0 before use [ 66.181466][ T7064] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 66.184177][ T7064] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 66.186154][ T7064] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 66.188540][ T7064] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 66.426835][ T7096] netlink: 4 bytes leftover after parsing attributes in process `syz.0.434'. [ 66.434212][ T6014] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 66.484143][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.506671][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.529697][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 66.534123][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 66.603380][ T6014] usb 7-1: Using ep0 maxpacket: 16 [ 66.611270][ T6014] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 66.620213][ T6014] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 66.626667][ T6014] usb 7-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 66.632186][ T6014] usb 7-1: config 0 interface 0 has no altsetting 0 [ 66.635221][ T6014] usb 7-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 66.639027][ T6014] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 66.648260][ T6014] usb 7-1: config 0 descriptor?? [ 66.693050][ T9] hid_parser_main: 227 callbacks suppressed [ 66.693125][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x1 [ 66.700188][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.703385][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.708005][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.711348][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.714601][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.717874][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.721119][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.724617][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.727994][ T9] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 66.734922][ T9] hid-generic 0000:0000:0000.000A: hidraw1: HID v8.00 Device [syz0] on syz1 [ 66.767053][ T7116] fido_id[7116]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 67.078920][ T6014] hid (null): report_id 0 is invalid [ 67.262197][ T840] usb 7-1: USB disconnect, device number 2 [ 67.413269][ T7129] tipc: Enabled bearer , priority 0 [ 67.415872][ T7129] syzkaller0: entered promiscuous mode [ 67.417688][ T7129] syzkaller0: entered allmulticast mode [ 67.426152][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 67.433377][ T7129] tipc: Resetting bearer [ 67.436712][ T7128] tipc: Resetting bearer [ 67.447491][ T7128] tipc: Disabling bearer [ 67.586540][ T7139] netlink: 4 bytes leftover after parsing attributes in process `syz.3.445'. [ 67.667524][ T5976] hid-generic 0000:0000:0000.000C: hidraw1: HID v8.00 Device [syz0] on syz1 [ 67.694138][ T63] Bluetooth: hci0: command 0x0c1a tx timeout [ 67.713402][ T7148] fido_id[7148]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 67.735896][ T7154] tipc: Started in network mode [ 67.737921][ T7154] tipc: Node identity 5affe825acd8, cluster identity 4711 [ 67.740929][ T7154] tipc: Enabled bearer , priority 0 [ 67.744554][ T7154] syzkaller0: entered promiscuous mode [ 67.746521][ T7154] syzkaller0: entered allmulticast mode [ 67.766425][ T7154] tipc: Resetting bearer [ 67.773412][ T7153] tipc: Resetting bearer [ 67.802305][ T7153] tipc: Disabling bearer [ 68.050582][ T9] hid-generic 0000:0000:0000.000D: hidraw1: HID v8.00 Device [syz0] on syz1 [ 68.093557][ T7182] fido_id[7182]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 68.253967][ T63] Bluetooth: hci1: command 0x0c1a tx timeout [ 68.254029][ T5977] Bluetooth: hci3: command 0x0c1a tx timeout [ 68.254131][ T5981] Bluetooth: hci2: command 0x0c1a tx timeout [ 68.874131][ T7204] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 68.961316][ T7190] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 68.966375][ T7190] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 68.969299][ T7190] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 68.995978][ T29] hid-generic 0000:0000:0000.000E: hidraw1: HID v8.00 Device [syz0] on syz1 [ 69.068016][ T7213] fido_id[7213]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 69.124705][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 69.267467][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 69.314969][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 69.319631][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 69.327567][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 70.869509][ T7254] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 70.873211][ T7254] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 70.876067][ T7254] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 70.890030][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.896138][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.402815][ T7279] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer. [ 71.414090][ T841] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 71.573741][ T841] usb 6-1: Using ep0 maxpacket: 32 [ 71.579117][ T841] usb 6-1: config 0 has an invalid interface number: 184 but max is 0 [ 71.581694][ T841] usb 6-1: config 0 has an invalid descriptor of length 179, skipping remainder of the config [ 71.599450][ T841] usb 6-1: config 0 has no interface number 0 [ 71.602134][ T841] usb 6-1: config 0 interface 184 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 71.615276][ T841] usb 6-1: config 0 interface 184 has no altsetting 0 [ 71.626142][ T841] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 71.630013][ T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 71.633314][ T841] usb 6-1: Product: syz [ 71.640289][ T841] usb 6-1: Manufacturer: syz [ 71.642255][ T841] usb 6-1: SerialNumber: syz [ 71.647032][ T841] usb 6-1: config 0 descriptor?? [ 72.106828][ T841] smsc75xx v1.0.0 [ 72.108481][ T841] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 72.114400][ T841] smsc75xx 6-1:0.184: probe with driver smsc75xx failed with error -22 [ 72.121938][ T841] usb 6-1: USB disconnect, device number 2 [ 72.403756][ T5977] Bluetooth: hci1: command 0x0c1a tx timeout [ 72.828303][ T7305] netlink: 4 bytes leftover after parsing attributes in process `syz.2.505'. [ 72.883797][ T5977] Bluetooth: hci2: command 0x0c1a tx timeout [ 72.893734][ T5977] Bluetooth: hci3: command 0x0c1a tx timeout [ 74.280446][ T841] hid_parser_main: 141 callbacks suppressed [ 74.280466][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x1 [ 74.286666][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.289158][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.292253][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.314608][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.317901][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.320929][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.331215][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.338624][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.346904][ T841] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 74.358823][ T841] hid-generic 0000:0000:0000.000F: hidraw1: HID v8.00 Device [syz0] on syz1 [ 74.516026][ T7342] fido_id[7342]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 75.230820][ T841] hid-generic 0000:0000:0000.0010: hidraw1: HID v8.00 Device [syz0] on syz1 [ 75.345050][ T7374] fido_id[7374]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 75.363192][ T5977] Bluetooth: hci2: unexpected event for opcode 0x080b [ 75.691298][ T7391] netlink: 4 bytes leftover after parsing attributes in process `syz.0.534'. [ 76.031039][ T7382] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 76.038803][ T7382] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 76.048376][ T7382] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 76.711166][ T40] kauditd_printk_skb: 57 callbacks suppressed [ 76.711177][ T40] audit: type=1326 audit(1757944099.698:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7399 comm="syz.2.537" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x0 [ 77.443923][ T5977] Bluetooth: hci1: command 0x0c1a tx timeout [ 78.083806][ T5977] Bluetooth: hci3: command 0x0c1a tx timeout [ 78.083833][ T63] Bluetooth: hci2: command 0x0c1a tx timeout [ 78.711614][ T7412] netlink: 8 bytes leftover after parsing attributes in process `syz.3.541'. [ 79.154402][ T841] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 79.315567][ T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 79.320017][ T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 79.324262][ T841] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 79.329541][ T841] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 79.333249][ T841] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 79.342805][ T841] usb 6-1: config 0 descriptor?? [ 79.632887][ T7426] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 79.636341][ T7426] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 79.638343][ T7426] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 79.704522][ T7430] syz.2.547 uses obsolete (PF_INET,SOCK_PACKET) [ 79.730135][ T7434] usb usb8: usbfs: process 7434 (syz.0.548) did not claim interface 0 before use [ 79.779257][ T841] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 79.822137][ T7438] netlink: 4 bytes leftover after parsing attributes in process `syz.2.550'. [ 80.018703][ T9] usb 6-1: USB disconnect, device number 3 [ 81.124949][ T63] Bluetooth: hci1: command 0x0c1a tx timeout [ 81.130635][ T7465] usb usb8: usbfs: process 7465 (syz.0.558) did not claim interface 0 before use [ 81.695191][ T63] Bluetooth: hci3: command 0x0c1a tx timeout [ 81.695227][ T5977] Bluetooth: hci2: command 0x0c1a tx timeout [ 81.702298][ T7473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.561'. [ 81.853687][ T7466] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 81.855722][ T7466] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 81.857963][ T7466] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 83.283755][ T5977] Bluetooth: hci1: command 0x0c1a tx timeout [ 83.923938][ T63] Bluetooth: hci2: command 0x0c1a tx timeout [ 83.926369][ T5977] Bluetooth: hci3: command 0x0c1a tx timeout [ 85.680918][ T7515] netlink: 72 bytes leftover after parsing attributes in process `syz.2.574'. [ 85.795918][ T7520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.575'. [ 86.727244][ T7540] usb usb8: usbfs: process 7540 (syz.0.583) did not claim interface 0 before use [ 86.775399][ T61] hid_parser_main: 62 callbacks suppressed [ 86.775416][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x1 [ 86.790690][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.793182][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.796649][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.799088][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.801574][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.807546][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.810406][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.812811][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.815655][ T61] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0 [ 86.818939][ T61] hid-generic 0000:0000:0000.0012: hidraw1: HID v8.00 Device [syz0] on syz1 [ 86.908700][ T7546] fido_id[7546]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 87.053159][ T7552] netlink: 4 bytes leftover after parsing attributes in process `syz.3.586'. [ 88.194568][ T7577] netlink: 16 bytes leftover after parsing attributes in process `syz.1.595'. [ 89.475319][ T5977] Bluetooth: hci2: Received unexpected HCI Event 0x00 [ 89.724709][ T7600] usb usb8: usbfs: process 7600 (syz.2.604) did not claim interface 0 before use [ 89.772853][ T7602] ------------[ cut here ]------------ [ 89.775350][ T7602] verifier bug: scc exit: no visit info for call chain (1)(1) [ 89.778659][ T7602] WARNING: CPU: 3 PID: 7602 at kernel/bpf/verifier.c:1949 maybe_exit_scc+0x768/0x8d0 [ 89.782564][ T7602] Modules linked in: [ 89.784304][ T7602] CPU: 3 UID: 0 PID: 7602 Comm: syz.0.606 Not tainted syzkaller #0 PREEMPT(full) [ 89.789000][ T7602] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 89.792711][ T7602] RIP: 0010:maybe_exit_scc+0x768/0x8d0 [ 89.795056][ T7602] Code: ff ff e8 8b 83 e8 ff c6 05 53 74 c1 0e 01 90 48 89 ee 48 89 df e8 f8 47 fb ff 48 c7 c7 c0 92 b5 8b 48 89 c6 e8 e9 7a a7 ff 90 <0f> 0b 90 90 e9 4e ff ff ff e8 9a ea 4d 00 e9 7f f9 ff ff 4c 8b 4c [ 89.801389][ T7602] RSP: 0018:ffffc9000c6674f0 EFLAGS: 00010286 [ 89.803527][ T7602] RAX: 0000000000000000 RBX: ffff888027f38000 RCX: ffffc9000d0f2000 [ 89.806270][ T7602] RDX: 0000000000080000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 89.809026][ T7602] RBP: ffff888027f3e328 R08: 0000000000000001 R09: 0000000000000000 [ 89.811803][ T7602] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff920018ccea5 [ 89.814610][ T7602] R13: 0000000000000000 R14: ffff88804c3b4d00 R15: dffffc0000000000 [ 89.817266][ T7602] FS: 0000000000000000(0000) GS:ffff8880977ba000(0063) knlGS:00000000f5496b40 [ 89.820262][ T7602] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 89.822499][ T7602] CR2: 00000000f733f5f0 CR3: 0000000027c01000 CR4: 0000000000352ef0 [ 89.825388][ T7602] Call Trace: [ 89.826532][ T7602] [ 89.827588][ T7602] ? __pfx_maybe_exit_scc+0x10/0x10 [ 89.829405][ T7602] ? check_atomic_rmw+0xa26/0x1100 [ 89.831109][ T7602] ? check_atomic_rmw+0x81/0x1100 [ 89.832789][ T7602] do_check_common+0x20cc/0xb410 [ 89.834402][ T7602] ? __pfx_do_check_common+0x10/0x10 [ 89.836052][ T7602] ? lockdep_hardirqs_on+0x71/0x110 [ 89.837720][ T7602] ? kfree+0x2b4/0x4d0 [ 89.839040][ T7602] ? bpf_check+0x7cf8/0xc4d0 [ 89.840519][ T7602] bpf_check+0x8763/0xc4d0 [ 89.841946][ T7602] ? __pfx_bpf_check+0x10/0x10 [ 89.843452][ T7602] ? __lock_acquire+0xb97/0x1ce0 [ 89.845081][ T7602] ? __asan_memset+0x23/0x50 [ 89.846532][ T7602] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 89.848167][ T7602] bpf_prog_load+0xe41/0x2490 [ 89.849802][ T7602] ? __pfx_bpf_prog_load+0x10/0x10 [ 89.851429][ T7602] __sys_bpf+0x4a3f/0x4de0 [ 89.852860][ T7602] ? __pfx___sys_bpf+0x10/0x10 [ 89.854554][ T7602] ? cap_capable+0xb3/0x250 [ 89.856113][ T7602] ? do_futex+0x122/0x350 [ 89.857596][ T7602] ? __pfx_do_futex+0x10/0x10 [ 89.859275][ T7602] ? xfd_validate_state+0x61/0x180 [ 89.861019][ T7602] __ia32_sys_bpf+0x76/0xe0 [ 89.862502][ T7602] __do_fast_syscall_32+0x7c/0x300 [ 89.864203][ T7602] do_fast_syscall_32+0x32/0x80 [ 89.865751][ T7602] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 89.867725][ T7602] RIP: 0023:0xf7f93579 [ 89.869037][ T7602] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 89.875117][ T7602] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 89.877960][ T7602] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0 [ 89.880584][ T7602] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 89.883025][ T7602] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 89.885569][ T7602] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 89.888055][ T7602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 89.890520][ T7602] [ 89.891506][ T7602] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 89.893787][ T7602] CPU: 3 UID: 0 PID: 7602 Comm: syz.0.606 Not tainted syzkaller #0 PREEMPT(full) [ 89.896639][ T7602] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 89.900070][ T7602] Call Trace: [ 89.901129][ T7602] [ 89.902074][ T7602] dump_stack_lvl+0x3d/0x1f0 [ 89.903635][ T7602] vpanic+0x6e8/0x7a0 [ 89.905024][ T7602] ? __pfx_vpanic+0x10/0x10 [ 89.906589][ T7602] ? maybe_exit_scc+0x768/0x8d0 [ 89.908187][ T7602] panic+0xca/0xd0 [ 89.909397][ T7602] ? __pfx_panic+0x10/0x10 [ 89.910810][ T7602] check_panic_on_warn+0xab/0xb0 [ 89.912371][ T7602] __warn+0xf6/0x3c0 [ 89.913625][ T7602] ? maybe_exit_scc+0x768/0x8d0 [ 89.915152][ T7602] report_bug+0x3c3/0x580 [ 89.916534][ T7602] ? maybe_exit_scc+0x768/0x8d0 [ 89.918103][ T7602] handle_bug+0x184/0x210 [ 89.919489][ T7602] exc_invalid_op+0x17/0x50 [ 89.920960][ T7602] asm_exc_invalid_op+0x1a/0x20 [ 89.922526][ T7602] RIP: 0010:maybe_exit_scc+0x768/0x8d0 [ 89.924256][ T7602] Code: ff ff e8 8b 83 e8 ff c6 05 53 74 c1 0e 01 90 48 89 ee 48 89 df e8 f8 47 fb ff 48 c7 c7 c0 92 b5 8b 48 89 c6 e8 e9 7a a7 ff 90 <0f> 0b 90 90 e9 4e ff ff ff e8 9a ea 4d 00 e9 7f f9 ff ff 4c 8b 4c [ 89.930321][ T7602] RSP: 0018:ffffc9000c6674f0 EFLAGS: 00010286 [ 89.932216][ T7602] RAX: 0000000000000000 RBX: ffff888027f38000 RCX: ffffc9000d0f2000 [ 89.934669][ T7602] RDX: 0000000000080000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 89.937220][ T7602] RBP: ffff888027f3e328 R08: 0000000000000001 R09: 0000000000000000 [ 89.939797][ T7602] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff920018ccea5 [ 89.942263][ T7602] R13: 0000000000000000 R14: ffff88804c3b4d00 R15: dffffc0000000000 [ 89.944732][ T7602] ? __warn_printk+0x1a5/0x350 [ 89.946333][ T7602] ? __pfx_maybe_exit_scc+0x10/0x10 [ 89.948067][ T7602] ? check_atomic_rmw+0xa26/0x1100 [ 89.949715][ T7602] ? check_atomic_rmw+0x81/0x1100 [ 89.951397][ T7602] do_check_common+0x20cc/0xb410 [ 89.953070][ T7602] ? __pfx_do_check_common+0x10/0x10 [ 89.954780][ T7602] ? lockdep_hardirqs_on+0x71/0x110 [ 89.956431][ T7602] ? kfree+0x2b4/0x4d0 [ 89.957733][ T7602] ? bpf_check+0x7cf8/0xc4d0 [ 89.959230][ T7602] bpf_check+0x8763/0xc4d0 [ 89.960670][ T7602] ? __pfx_bpf_check+0x10/0x10 [ 89.962169][ T7602] ? __lock_acquire+0xb97/0x1ce0 [ 89.963734][ T7602] ? __asan_memset+0x23/0x50 [ 89.965204][ T7602] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 89.966790][ T7602] bpf_prog_load+0xe41/0x2490 [ 89.968356][ T7602] ? __pfx_bpf_prog_load+0x10/0x10 [ 89.970142][ T7602] __sys_bpf+0x4a3f/0x4de0 [ 89.971690][ T7602] ? __pfx___sys_bpf+0x10/0x10 [ 89.973208][ T7602] ? cap_capable+0xb3/0x250 [ 89.974636][ T7602] ? do_futex+0x122/0x350 [ 89.976001][ T7602] ? __pfx_do_futex+0x10/0x10 [ 89.977499][ T7602] ? xfd_validate_state+0x61/0x180 [ 89.979122][ T7602] __ia32_sys_bpf+0x76/0xe0 [ 89.980527][ T7602] __do_fast_syscall_32+0x7c/0x300 [ 89.982111][ T7602] do_fast_syscall_32+0x32/0x80 [ 89.983664][ T7602] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 89.985763][ T7602] RIP: 0023:0xf7f93579 [ 89.987380][ T7602] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 89.995252][ T7602] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 89.998169][ T7602] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0 [ 90.000658][ T7602] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 90.003210][ T7602] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 90.005895][ T7602] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 90.008911][ T7602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 90.012084][ T7602] [ 90.014106][ T7602] Kernel Offset: disabled [ 90.015841][ T7602] Rebooting in 86400 seconds.. VM DIAGNOSIS: 13:48:32 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000002 RBX=00000000e949aa82 RCX=ffff888025bc8a90 RDX=ffffffff8220389a RSI=0000000000000002 RDI=00000000c0fab14b RBP=0000000000000010 RSP=ffffc90003347440 R8 =0000000000000001 R9 =ffff88807a5aa820 R10=000000005355102e R11=0000000000000000 R12=0000000000000001 R13=0000000000000c40 R14=0000000000000010 R15=ffffc90003347498 RIP=ffffffff851495b5 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fc8ed6b5880 ffffffff 00c00000 GS =0000 ffff8880974ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000005834e4c0 CR3=00000000662fe000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c000c002 Opmask01=0000000000000000 Opmask02=00000000effffdff Opmask03=0000000020400004 Opmask04=00000000ffff7fff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056260ffac1d8 000056260ffac1d8 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe55969cd0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056260ffa83d0 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056260ffad2c0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc8ecff1b20 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffff000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0000ff000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffff00ffffffff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c534a475b5b555c 5a5a4f0a03434b43 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5e014a4703574c01 455d474a0c130565 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6961660064657373 65636f727020756c 6c2520716573006e 6f69746974726170 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056260ffb7a10 000056260ffad2c0 000056260ffc68e0 000056260ffad510 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6c6174735f7563 725f78616d006c74 6373797300313d65 6c62616e65000032 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fc8ecff1de0 00007fc8ecff1de0 00000000000002d1 0000003177617264 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 56f0af1657f5c81e 2f002f761702d0df 79732f002f6d6435 7379736275732f73 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7fffff7777fffe7f 6f7f3f777ffffbff 7f7f7f7f7ffffff7 7f7f7f7f7d7feff3 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302f343064623a31 2b32316f70627e32 2d332e36312e312d 6e61696265642d33 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000056260f257f60 0000000000000041 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000702 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000001495fd RBX=0000000000000001 RCX=ffffffff8b919b29 RDX=0000000000000000 RSI=ffffffff8de4f4d1 RDI=ffffffff8c163700 RBP=ffffed1003bd8488 RSP=ffffc9000046fdf8 R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801dec2440 R14=ffffffff90aba990 R15=0000000000000000 RIP=ffffffff8b91866f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880975ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000008002f000 CR3=000000006f4cf000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 EAX=00000314 EBX=00000000 ECX=0000ffff EDX=00000081 ESI=00100000 EDI=00000001 EBP=080004c2 ESP=0020e4c0 EIP=000004b9 EFL=00010646 [D--Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 00000000 0000ffff 00009300 CS =0000 00000000 0000ffff 00009b00 SS =0000 00000000 0000ffff 00009300 DS =0000 00000000 0000ffff 00009300 FS =0000 00000000 0000ffff 00009300 GS =0000 00000000 0000ffff 00009300 LDT=0000 00000000 0000ffff 00008200 TR =0000 00000000 0000ffff 00008b00 GDT= 00000000 0000ffff IDT= 00000000 0000ffff CR0=00000030 CR2=00000000 CR3=00000000 CR4=00002040 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000000 FCW=037f FSW=0041 [ST=0] FTW=01 MXCSR=00001f80 FPR0=c000000000000000 ffff FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8561dc95 RDI=ffffffff9b102740 RBP=ffffffff9b102700 RSP=ffffc9000c666e60 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b102700 R15=ffffffff8561dc30 RIP=ffffffff8561dcbf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880977ba000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f733f5f0 CR3=0000000027c01000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000