last executing test programs: 602.270108ms ago: executing program 2 (id=665): futex(0x0, 0x85, 0x0, 0x0, 0x0, 0x1fffefff) 491.313788ms ago: executing program 0 (id=667): prctl$PR_MCE_KILL(0x35, 0x1, 0x2) 490.735625ms ago: executing program 2 (id=670): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="d7050000000000004c1099000000000007000000000000009500000000000000"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a) 418.46707ms ago: executing program 0 (id=671): syz_emit_ethernet(0x66, &(0x7f0000000340)={@random="cf702e8cf675", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x30, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev, @dev, [{0x2, 0x1, "703b744dc5c6"}]}}}}}}, 0x0) 416.625773ms ago: executing program 3 (id=672): timerfd_create(0x4, 0x81000) 416.569535ms ago: executing program 1 (id=673): clock_getres(0xa, 0x0) 413.765902ms ago: executing program 2 (id=674): prctl$PR_GET_PDEATHSIG(0x59616d61, &(0x7f0000000140)) 340.493477ms ago: executing program 1 (id=675): syz_emit_ethernet(0x68, &(0x7f0000000100)={@broadcast, @multicast, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x8100, 0x2, 0x10, [], "7f1a"}, {0x0, 0x0, 0x0, 0x0, 0x11}}}}}}, 0x0) 340.42262ms ago: executing program 3 (id=676): msync(&(0x7f0000001000/0x3000)=nil, 0x3000, 0xb) 290.529441ms ago: executing program 1 (id=677): syz_emit_ethernet(0x86, &(0x7f0000000100)={@multicast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x17, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @remote, {[@noop, @timestamp_addr={0x44, 0x44, 0x0, 0x1, 0x0, [{@remote}, {@remote}, {@dev}, {}, {@multicast2}, {@local}, {@local}, {@multicast1}]}]}}}}}}}, 0x0) 290.300975ms ago: executing program 3 (id=678): bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x70}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x3}, 0x48) 290.240559ms ago: executing program 2 (id=679): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x51}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b}, 0x90) 290.021575ms ago: executing program 0 (id=680): prctl$PR_SET_THP_DISABLE(0x44, 0x0) 239.174889ms ago: executing program 1 (id=681): get_robust_list(0x0, &(0x7f0000000500)=0x0, &(0x7f0000000540)) 174.605212ms ago: executing program 0 (id=682): syz_emit_ethernet(0x6a, &(0x7f0000000080)={@link_local={0x3}, @link_local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x10, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, @loopback, @multicast1, {[@timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@empty}, {@private}, {@loopback}, {@multicast2}, {@private}]}]}}}}}}}, 0x0) 174.506782ms ago: executing program 1 (id=683): set_mempolicy(0x3, &(0x7f0000000080)=0x1, 0x7fff) 174.443508ms ago: executing program 3 (id=684): wait4(0x0, 0x0, 0x1000000, 0x0) 101.001106ms ago: executing program 2 (id=685): syz_emit_ethernet(0x6e, &(0x7f0000000240)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa, @rand_addr, {[@rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@multicast1=0xe000002f}, {@local}, {@private}, {@dev}, {@private}]}]}}}}}}}, 0x0) 100.893583ms ago: executing program 3 (id=686): prctl$PR_SET_MM_MAP_SIZE(0x42, 0xf, 0x0) 100.755467ms ago: executing program 0 (id=687): bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000400)={@map, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 81.60128ms ago: executing program 1 (id=688): syz_emit_ethernet(0x6a, &(0x7f0000000340)={@broadcast, @dev, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x3, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x22eb, 0x2, 0x0, [0x0], "7f1a"}, {0x0, 0x0, 0x0, 0x0, 0x11}}}}}}, 0x0) 297.35µs ago: executing program 0 (id=689): clock_getres(0xeaffffff, 0x0) 224.498µs ago: executing program 3 (id=690): mount$9p_virtio(&(0x7f0000000640), &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x0, &(0x7f0000000740)={'trans=virtio,', {[{@noextend}]}}) 0s ago: executing program 2 (id=691): syslog(0x3, &(0x7f00000004c0)=""/194, 0xc2) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:21326' (ED25519) to the list of known hosts. [ 66.162883][ T5337] cgroup: Unknown subsys name 'net' [ 66.376786][ T5337] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 67.956572][ T5337] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 75.109944][ T5405] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 76.220612][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.225748][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.650340][ T1131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.653514][ T1131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.813354][ T5471] mmap: syz.3.85 (5471) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 76.890379][ T1378] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.905371][ T1378] ieee802154 phy1 wpan1: encryption failed: -22 [ 81.975413][ T4773] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.023126][ T4773] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.027276][ T4773] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.031786][ T4773] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.036101][ T4773] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.039622][ T4773] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.072090][ T5548] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.078486][ T5548] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.088500][ T5554] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.119224][ T5548] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.123480][ T5554] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.144974][ T5553] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.148864][ T5553] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.152290][ T5553] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.171325][ T5553] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.199573][ T5558] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.203680][ T5553] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.209031][ T5553] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.215013][ T5553] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 82.218677][ T5553] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.223696][ T5548] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.237852][ T5554] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.257643][ T5554] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 82.260652][ T5554] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.738648][ T5545] chnl_net:caif_netlink_parms(): no params data found [ 83.021155][ T5550] chnl_net:caif_netlink_parms(): no params data found [ 83.061421][ T5545] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.067684][ T5545] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.072370][ T5545] bridge_slave_0: entered allmulticast mode [ 83.078329][ T5545] bridge_slave_0: entered promiscuous mode [ 83.120610][ T5549] chnl_net:caif_netlink_parms(): no params data found [ 83.136717][ T5545] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.141141][ T5545] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.144921][ T5545] bridge_slave_1: entered allmulticast mode [ 83.148260][ T5545] bridge_slave_1: entered promiscuous mode [ 83.399853][ T5545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.432123][ T5545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.440123][ T5555] chnl_net:caif_netlink_parms(): no params data found [ 83.695238][ T5550] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.698342][ T5550] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.701445][ T5550] bridge_slave_0: entered allmulticast mode [ 83.705728][ T5550] bridge_slave_0: entered promiscuous mode [ 83.762850][ T5545] team0: Port device team_slave_0 added [ 83.784874][ T5545] team0: Port device team_slave_1 added [ 83.864815][ T5550] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.868368][ T5550] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.871766][ T5550] bridge_slave_1: entered allmulticast mode [ 83.876550][ T5550] bridge_slave_1: entered promiscuous mode [ 83.997875][ T5549] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.000830][ T5549] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.005505][ T5549] bridge_slave_0: entered allmulticast mode [ 84.009324][ T5549] bridge_slave_0: entered promiscuous mode [ 84.088685][ T5545] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.091152][ T5545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.099032][ T5545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.104056][ T5549] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.107463][ T5549] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.110906][ T5549] bridge_slave_1: entered allmulticast mode [ 84.115191][ T5549] bridge_slave_1: entered promiscuous mode [ 84.122843][ T5550] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.150474][ T5555] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.153386][ T5555] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.156322][ T5555] bridge_slave_0: entered allmulticast mode [ 84.156817][ T66] Bluetooth: hci0: command tx timeout [ 84.160532][ T5555] bridge_slave_0: entered promiscuous mode [ 84.169679][ T5545] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.172473][ T5545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.182558][ T5545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.233827][ T66] Bluetooth: hci3: command tx timeout [ 84.237172][ T66] Bluetooth: hci2: command tx timeout [ 84.277303][ T5550] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.306610][ T5555] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.317224][ T66] Bluetooth: hci1: command tx timeout [ 84.319639][ T5555] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.322862][ T5555] bridge_slave_1: entered allmulticast mode [ 84.327618][ T5555] bridge_slave_1: entered promiscuous mode [ 84.336950][ T5549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.388307][ T5550] team0: Port device team_slave_0 added [ 84.469204][ T5549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.476949][ T5550] team0: Port device team_slave_1 added [ 84.551946][ T5555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.641300][ T5550] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.645525][ T5550] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.655825][ T5550] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.692148][ T5555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.750620][ T5545] hsr_slave_0: entered promiscuous mode [ 84.762923][ T5545] hsr_slave_1: entered promiscuous mode [ 84.901089][ T5550] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.905090][ T5550] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.928155][ T5550] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.033561][ T5549] team0: Port device team_slave_0 added [ 85.039095][ T5549] team0: Port device team_slave_1 added [ 85.117346][ T5555] team0: Port device team_slave_0 added [ 85.254144][ T5555] team0: Port device team_slave_1 added [ 85.265219][ T5550] hsr_slave_0: entered promiscuous mode [ 85.269526][ T5550] hsr_slave_1: entered promiscuous mode [ 85.283354][ T5550] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.286593][ T5550] Cannot create hsr debugfs directory [ 85.427908][ T5549] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.430742][ T5549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.453349][ T5549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.538103][ T5555] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.541228][ T5555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.561593][ T5555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.567380][ T5555] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.570680][ T5555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.585048][ T5555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.594134][ T5549] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.596711][ T5549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.614869][ T5549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.845119][ T5549] hsr_slave_0: entered promiscuous mode [ 85.849235][ T5549] hsr_slave_1: entered promiscuous mode [ 85.853407][ T5549] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 85.856825][ T5549] Cannot create hsr debugfs directory [ 86.017425][ T5555] hsr_slave_0: entered promiscuous mode [ 86.022437][ T5555] hsr_slave_1: entered promiscuous mode [ 86.026507][ T5555] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.030100][ T5555] Cannot create hsr debugfs directory [ 86.243572][ T66] Bluetooth: hci0: command tx timeout [ 86.323185][ T66] Bluetooth: hci2: command tx timeout [ 86.336341][ T66] Bluetooth: hci3: command tx timeout [ 86.395031][ T66] Bluetooth: hci1: command tx timeout [ 86.569204][ T5545] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 86.612724][ T5545] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 86.670364][ T5545] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 86.708845][ T5545] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 86.808426][ T5549] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 86.859800][ T5549] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 86.917506][ T5549] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 86.935441][ T5549] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 86.980985][ T5555] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 86.998989][ T5555] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.032879][ T5555] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.040436][ T5555] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 87.193347][ T5550] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 87.229781][ T5550] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 87.248462][ T5550] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 87.261159][ T5550] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 87.427644][ T5545] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.471522][ T5545] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.490737][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.498145][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.524457][ T1208] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.528046][ T1208] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.591947][ T5549] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.707779][ T5549] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.728999][ T5555] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.788264][ T1131] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.797888][ T1131] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.806332][ T1131] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.812602][ T1131] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.852056][ T5550] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.867753][ T5555] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.934767][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.953059][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.968339][ T1100] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.972074][ T1100] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.986949][ T5550] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.069790][ T5545] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.088007][ T1100] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.103425][ T1100] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.125459][ T1100] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.128599][ T1100] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.230873][ T5555] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 88.244759][ T5555] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.336038][ T66] Bluetooth: hci0: command tx timeout [ 88.349909][ T5550] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.404497][ T5545] veth0_vlan: entered promiscuous mode [ 88.415694][ T66] Bluetooth: hci3: command tx timeout [ 88.418056][ T66] Bluetooth: hci2: command tx timeout [ 88.429727][ T5545] veth1_vlan: entered promiscuous mode [ 88.484709][ T5554] Bluetooth: hci1: command tx timeout [ 88.508481][ T5549] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.615010][ T5555] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.636760][ T5549] veth0_vlan: entered promiscuous mode [ 88.660348][ T5545] veth0_macvtap: entered promiscuous mode [ 88.668064][ T5545] veth1_macvtap: entered promiscuous mode [ 88.702778][ T5549] veth1_vlan: entered promiscuous mode [ 88.750077][ T5545] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.797311][ T5550] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.802064][ T5555] veth0_vlan: entered promiscuous mode [ 88.807700][ T5545] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.816511][ T5545] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.820845][ T5545] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.827074][ T5545] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.831446][ T5545] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.889853][ T5549] veth0_macvtap: entered promiscuous mode [ 88.898865][ T5549] veth1_macvtap: entered promiscuous mode [ 88.903122][ T5555] veth1_vlan: entered promiscuous mode [ 88.968959][ T5549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.976247][ T5549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.003622][ T5549] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.057056][ T5549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.061706][ T5549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.071261][ T5549] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.115711][ T5549] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.119195][ T5549] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.122705][ T5549] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.128055][ T5549] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.161124][ T5555] veth0_macvtap: entered promiscuous mode [ 89.170351][ T5555] veth1_macvtap: entered promiscuous mode [ 89.191223][ T1208] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.195105][ T1208] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.263102][ T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.266507][ T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.302445][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 89.308375][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.312814][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 89.326502][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.345890][ T5555] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.352181][ T5550] veth0_vlan: entered promiscuous mode [ 89.380741][ T5550] veth1_vlan: entered promiscuous mode [ 89.396374][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.423898][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.428380][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.467570][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.474239][ T5555] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.522847][ T5555] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.547503][ T5555] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.563544][ T5555] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.568477][ T5555] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.846030][ T5550] veth0_macvtap: entered promiscuous mode [ 90.027456][ T5550] veth1_macvtap: entered promiscuous mode [ 90.053132][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.057394][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.113677][ T5550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.130567][ T5550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.137153][ T5550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.145889][ T5550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.152788][ T5550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.165955][ T5550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.203836][ T5550] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.273557][ T5550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.301453][ T5550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.305961][ T5550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.352259][ T5550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.374898][ T5550] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.379187][ T5550] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.392913][ T5550] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.413889][ T5554] Bluetooth: hci0: command tx timeout [ 90.423493][ T1208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.428822][ T1208] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.438612][ T5550] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.445917][ T5550] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.458047][ T5550] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.472045][ T5550] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.495747][ T5554] Bluetooth: hci2: command tx timeout [ 90.495768][ T66] Bluetooth: hci3: command tx timeout [ 90.511959][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.521922][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.578679][ T66] Bluetooth: hci1: command tx timeout [ 90.624391][ T56] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 90.653871][ T1100] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.694116][ T1100] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.851170][ T56] usb 5-1: Using ep0 maxpacket: 32 [ 90.875563][ T56] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 720 [ 90.881036][ T56] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 576 [ 90.913773][ T56] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 22 [ 90.941838][ T56] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 90.944770][ T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 90.947799][ T56] usb 5-1: SerialNumber: syz [ 90.992068][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.996817][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.026933][ T5615] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 91.031518][ T5615] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 91.037534][ T56] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 91.053262][ T56] cdc_acm 5-1:1.0: This needs exactly 3 endpoints [ 91.056465][ T56] cdc_acm 5-1:1.0: probe with driver cdc_acm failed with error -22 [ 91.181998][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.186122][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.269179][ T56] usb 5-1: USB disconnect, device number 2 [ 92.268950][ T58] cfg80211: failed to load regulatory.db [ 93.941877][ T5786] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd [ 94.123096][ T56] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 94.328547][ T56] usb 8-1: Using ep0 maxpacket: 32 [ 94.338583][ T56] usb 8-1: unable to get BOS descriptor or descriptor too short [ 94.378213][ T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 94.423478][ T56] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 94.427482][ T56] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 94.431354][ T56] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 94.441953][ T56] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 94.503076][ T56] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 94.529075][ T56] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.532496][ T56] usb 8-1: Product: syz [ 94.595958][ T56] usb 8-1: Manufacturer: syz [ 94.598146][ T56] usb 8-1: SerialNumber: syz [ 94.811064][ T5823] bpf: Bad value for 'uid' [ 95.029657][ T56] cdc_ncm 8-1:1.0: bind() failure [ 95.057365][ T56] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found [ 95.062210][ T56] cdc_ncm 8-1:1.1: bind() failure [ 95.086391][ T56] usb 8-1: USB disconnect, device number 2 [ 95.412086][ T5842] autofs: Unknown parameter 'no9 PG!8E8- ŖEeլ( Ir\u}ibT0;my[Gc#>QkbY&#w@/VVL~12lhOh'rK1\kU{!eܚ7 [ 95.412086][ T5842] Ue[%#s' [ 96.729480][ T5872] tmpfs: Unknown parameter 'smackfshat' [ 97.685086][ T66] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 97.692011][ T66] Bluetooth: hci1: Injecting HCI hardware error event [ 97.699098][ T66] Bluetooth: hci1: hardware error 0x00 [ 99.834005][ T66] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 102.767853][ T6212] dns_resolver: Unsupported server list version (0) [ 102.887483][ T6211] could not allocate digest TFM handle rmd128-generic [ 103.962266][ T40] audit: type=1326 audit(1724883660.568:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.2.479" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x0 [ 106.024030][ T66] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 106.029097][ T66] Bluetooth: hci2: Injecting HCI hardware error event [ 106.033461][ T66] Bluetooth: hci2: hardware error 0x00 [ 106.442544][ T6452] tmpfs: Bad value for 'mpol' [ 108.394441][ T66] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 110.202746][ C0] ================================================================== [ 110.206423][ C0] BUG: KASAN: slab-use-after-free in __lock_acquire+0x2de0/0x3cb0 [ 110.211266][ C0] Read of size 8 at addr ffff88802a513c18 by task kswapd0/112 [ 110.229957][ C0] [ 110.231040][ C0] CPU: 0 UID: 0 PID: 112 Comm: kswapd0 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 110.236324][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 110.244621][ C0] Call Trace: [ 110.253341][ C0] [ 110.254545][ C0] dump_stack_lvl+0x116/0x1f0 [ 110.256225][ C0] print_report+0xc3/0x620 [ 110.257787][ C0] ? __virt_addr_valid+0x5e/0x590 [ 110.259812][ C0] ? __phys_addr+0xc6/0x150 [ 110.261698][ C0] kasan_report+0xd9/0x110 [ 110.263753][ C0] ? __lock_acquire+0x2de0/0x3cb0 [ 110.267134][ C0] ? __lock_acquire+0x2de0/0x3cb0 [ 110.268928][ C0] __lock_acquire+0x2de0/0x3cb0 [ 110.270789][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 110.272897][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 110.275026][ C0] lock_acquire+0x1b1/0x560 [ 110.276875][ C0] ? p9_req_put+0xaf/0x250 [ 110.299776][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 110.301484][ C0] ? __pfx_lock_release+0x10/0x10 [ 110.303179][ C0] _raw_spin_lock_irqsave+0x3a/0x60 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 110.305099][ C0] ? p9_req_put+0xaf/0x250 [ 110.307496][ C0] p9_req_put+0xaf/0x250 [ 110.309665][ C0] req_done+0x1e7/0x2f0 [ 110.312125][ C0] ? __pfx_req_done+0x10/0x10 [ 110.314198][ C0] ? __pfx_req_done+0x10/0x10 [ 110.318128][ C0] vring_interrupt+0x31b/0x400 [ 110.323951][ C0] ? __pfx_vring_interrupt+0x10/0x10 [ 110.327057][ C0] __handle_irq_event_percpu+0x229/0x7c0 [ 110.330342][ C0] handle_irq_event+0xab/0x1e0 [ 110.333130][ C0] handle_edge_irq+0x263/0xd10 [ 110.335990][ C0] __common_interrupt+0xdf/0x250 [ 110.339737][ C0] common_interrupt+0xab/0xd0 [ 110.343452][ C0] [ 110.344769][ C0] [ 110.345858][ C0] asm_common_interrupt+0x26/0x40 [ 110.349763][ C0] RIP: 0010:write_comp_data+0x11/0x90 [ 110.353734][ C0] Code: cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 cf c0 78 7e <65> 8b 05 d0 c0 78 7e a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00 [ 110.375102][ C0] RSP: 0000:ffffc90000e3f738 EFLAGS: 00000246 [ 110.378606][ C0] RAX: 1ffff11004bb712f RBX: 0000000000000018 RCX: ffffffff81f29afe [ 110.381787][ C0] RDX: ffff88801a732440 RSI: 000000000000003b RDI: 0000000000000006 [ 110.395987][ C0] RBP: ffff8880263f40c8 R08: 0000000000000006 R09: 000000000000003b [ 110.399286][ C0] R10: 0000000000000014 R11: 0000000000000000 R12: dffffc0000000000 [ 110.403826][ C0] R13: 000000000000003b R14: 0000000000000014 R15: ffff888025db8800 [ 110.421133][ C0] ? zs_shrinker_count+0x11e/0x240 [ 110.423385][ C0] zs_shrinker_count+0x11e/0x240 [ 110.425230][ C0] do_shrink_slab+0x82/0x11c0 [ 110.426966][ C0] ? mem_cgroup_get_nr_swap_pages+0x20/0x120 [ 110.429501][ C0] shrink_slab+0x330/0x12c0 [ 110.431378][ C0] ? shrink_slab+0x13f/0x12c0 [ 110.435624][ C0] ? __pfx_shrink_slab+0x10/0x10 [ 110.447335][ C0] ? find_held_lock+0x2d/0x110 [ 110.449521][ C0] ? lru_gen_shrink_node+0x685/0x1510 [ 110.451665][ C0] shrink_one+0x47e/0x7b0 [ 110.453250][ C0] ? lru_gen_shrink_node+0x685/0x1510 [ 110.455464][ C0] lru_gen_shrink_node+0x69f/0x1510 [ 110.457371][ C0] ? lru_gen_shrink_node+0x418/0x1510 [ 110.475045][ C0] ? __pfx_lru_gen_shrink_node+0x10/0x10 [ 110.477187][ C0] ? mem_cgroup_iter+0x2f2/0x760 [ 110.479108][ C0] balance_pgdat+0x110f/0x1950 [ 110.481165][ C0] ? __pfx_balance_pgdat+0x10/0x10 [ 110.483080][ C0] ? lockdep_hardirqs_on_prepare+0x410/0x420 [ 110.485756][ C0] ? lock_acquire+0x1b1/0x560 [ 110.487952][ C0] ? __pfx___might_resched+0x10/0x10 [ 110.490782][ C0] kswapd+0x5ea/0xbf0 [ 110.492649][ C0] ? __pfx_kswapd+0x10/0x10 [ 110.494806][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 110.497661][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 110.499947][ C0] ? __kthread_parkme+0x148/0x220 [ 110.501815][ C0] ? __pfx_kswapd+0x10/0x10 [ 110.503603][ C0] kthread+0x2c1/0x3a0 [ 110.505218][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 110.507354][ C0] ? __pfx_kthread+0x10/0x10 [ 110.510226][ C0] ret_from_fork+0x45/0x80 [ 110.513826][ C0] ? __pfx_kthread+0x10/0x10 [ 110.516354][ C0] ret_from_fork_asm+0x1a/0x30 [ 110.518863][ C0] [ 110.520383][ C0] [ 110.521541][ C0] Allocated by task 6715: [ 110.523534][ C0] kasan_save_stack+0x33/0x60 [ 110.525777][ C0] kasan_save_track+0x14/0x30 [ 110.528927][ C0] __kasan_kmalloc+0xaa/0xb0 [ 110.531074][ C0] p9_client_create+0xcf/0x11b0 [ 110.533459][ C0] v9fs_session_init+0x1f8/0x1a80 [ 110.535705][ C0] v9fs_mount+0xc6/0xa50 [ 110.537736][ C0] legacy_get_tree+0x109/0x220 [ 110.542180][ C0] vfs_get_tree+0x8f/0x380 [ 110.544181][ C0] path_mount+0x6e1/0x1f10 [ 110.546465][ C0] __ia32_sys_mount+0x292/0x310 [ 110.548926][ C0] __do_fast_syscall_32+0x73/0x120 [ 110.551175][ C0] do_fast_syscall_32+0x32/0x80 [ 110.553684][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 110.556442][ C0] [ 110.557605][ C0] Freed by task 6715: [ 110.559560][ C0] kasan_save_stack+0x33/0x60 [ 110.561810][ C0] kasan_save_track+0x14/0x30 [ 110.565011][ C0] kasan_save_free_info+0x3b/0x60 [ 110.568178][ C0] poison_slab_object+0xf7/0x160 [ 110.570637][ C0] __kasan_slab_free+0x32/0x50 [ 110.572908][ C0] kfree+0x12a/0x3b0 [ 110.574376][ C0] p9_client_create+0x9ca/0x11b0 [ 110.576101][ C0] v9fs_session_init+0x1f8/0x1a80 [ 110.578518][ C0] v9fs_mount+0xc6/0xa50 [ 110.580516][ C0] legacy_get_tree+0x109/0x220 [ 110.582713][ C0] vfs_get_tree+0x8f/0x380 [ 110.584618][ C0] path_mount+0x6e1/0x1f10 [ 110.586739][ C0] __ia32_sys_mount+0x292/0x310 [ 110.589325][ C0] __do_fast_syscall_32+0x73/0x120 [ 110.591979][ C0] do_fast_syscall_32+0x32/0x80 [ 110.594517][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 110.596992][ C0] [ 110.598317][ C0] The buggy address belongs to the object at ffff88802a513c00 [ 110.598317][ C0] which belongs to the cache kmalloc-512 of size 512 [ 110.606814][ C0] The buggy address is located 24 bytes inside of [ 110.606814][ C0] freed 512-byte region [ffff88802a513c00, ffff88802a513e00) [ 110.612863][ C0] [ 110.614170][ C0] The buggy address belongs to the physical page: [ 110.617578][ C0] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802a510800 pfn:0x2a510 [ 110.623606][ C0] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 110.629277][ C0] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 110.633289][ C0] page_type: 0xfdffffff(slab) [ 110.635842][ C0] raw: 00fff00000000240 ffff888015842c80 ffffea0000a22210 ffffea000079b210 [ 110.639920][ C0] raw: ffff88802a510800 000000000010000f 00000001fdffffff 0000000000000000 [ 110.643642][ C0] head: 00fff00000000240 ffff888015842c80 ffffea0000a22210 ffffea000079b210 [ 110.647321][ C0] head: ffff88802a510800 000000000010000f 00000001fdffffff 0000000000000000 [ 110.651330][ C0] head: 00fff00000000002 ffffea0000a94401 ffffffffffffffff 0000000000000000 [ 110.654529][ C0] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000 [ 110.657994][ C0] page dumped because: kasan: bad access detected [ 110.660785][ C0] page_owner tracks the page as allocated [ 110.663335][ C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5549, tgid 5549 (syz-executor), ts 87512400322, free_ts 83471811437 [ 110.672037][ C0] post_alloc_hook+0x2d1/0x350 [ 110.673676][ C0] get_page_from_freelist+0x1351/0x2e50 [ 110.675918][ C0] __alloc_pages_noprof+0x22b/0x2460 [ 110.679583][ C0] alloc_slab_page+0x4e/0xf0 [ 110.681196][ C0] new_slab+0x84/0x260 [ 110.682620][ C0] ___slab_alloc+0xdac/0x1870 [ 110.684323][ C0] __slab_alloc.constprop.0+0x56/0xb0 [ 110.686597][ C0] __kmalloc_noprof+0x379/0x410 [ 110.688751][ C0] fib6_info_alloc+0x40/0x160 [ 110.690745][ C0] ip6_route_info_create+0x337/0x1aa0 [ 110.693216][ C0] ip6_route_add+0x26/0x1c0 [ 110.695449][ C0] addrconf_prefix_route+0x2fe/0x510 [ 110.697836][ C0] add_v4_addrs+0x74b/0xa00 [ 110.701095][ C0] addrconf_init_auto_addrs+0x18a/0x820 [ 110.703171][ C0] addrconf_notify+0xe9e/0x19d0 [ 110.705487][ C0] notifier_call_chain+0xb9/0x410 [ 110.707886][ C0] page last free pid 44 tgid 44 stack trace: [ 110.711108][ C0] free_unref_page+0x64a/0xe40 [ 110.713668][ C0] __folio_put+0x31c/0x3e0 [ 110.716661][ C0] migrate_folio_done+0x271/0x310 [ 110.719292][ C0] migrate_pages_batch+0x1ca0/0x3150 [ 110.721828][ C0] migrate_pages+0x1b66/0x27a0 [ 110.724264][ C0] compact_zone+0x1f68/0x4280 [ 110.726651][ C0] compact_node+0x1a2/0x2d0 [ 110.728769][ C0] kcompactd+0x76e/0xde0 [ 110.730560][ C0] kthread+0x2c1/0x3a0 [ 110.732294][ C0] ret_from_fork+0x45/0x80 [ 110.734321][ C0] ret_from_fork_asm+0x1a/0x30 [ 110.736388][ C0] [ 110.737429][ C0] Memory state around the buggy address: [ 110.739873][ C0] ffff88802a513b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 110.743917][ C0] ffff88802a513b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 110.748203][ C0] >ffff88802a513c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 110.752291][ C0] ^ [ 110.754006][ C0] ffff88802a513c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 110.757190][ C0] ffff88802a513d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 110.759990][ C0] ================================================================== [ 110.762890][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 110.765781][ C0] CPU: 0 UID: 0 PID: 112 Comm: kswapd0 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 110.771092][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 110.776257][ C0] Call Trace: [ 110.777398][ C0] [ 110.778452][ C0] dump_stack_lvl+0x3d/0x1f0 [ 110.780186][ C0] panic+0x6dc/0x7c0 [ 110.781687][ C0] ? __pfx_panic+0x10/0x10 [ 110.784122][ C0] ? rcu_is_watching+0x12/0xc0 [ 110.786965][ C0] ? __pfx_lock_release+0x10/0x10 [ 110.791810][ C0] ? check_panic_on_warn+0x1f/0xb0 [ 110.794369][ C0] check_panic_on_warn+0xab/0xb0 [ 110.796753][ C0] end_report+0x117/0x180 [ 110.798572][ C0] kasan_report+0xe9/0x110 [ 110.800235][ C0] ? __lock_acquire+0x2de0/0x3cb0 [ 110.802103][ C0] ? __lock_acquire+0x2de0/0x3cb0 [ 110.804450][ C0] __lock_acquire+0x2de0/0x3cb0 [ 110.806379][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 110.808220][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 110.810440][ C0] lock_acquire+0x1b1/0x560 [ 110.812122][ C0] ? p9_req_put+0xaf/0x250 [ 110.813896][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 110.815877][ C0] ? __pfx_lock_release+0x10/0x10 [ 110.818016][ C0] _raw_spin_lock_irqsave+0x3a/0x60 [ 110.820452][ C0] ? p9_req_put+0xaf/0x250 [ 110.822659][ C0] p9_req_put+0xaf/0x250 [ 110.824612][ C0] req_done+0x1e7/0x2f0 [ 110.826449][ C0] ? __pfx_req_done+0x10/0x10 [ 110.828004][ C0] ? __pfx_req_done+0x10/0x10 [ 110.829794][ C0] vring_interrupt+0x31b/0x400 [ 110.841221][ C0] ? __pfx_vring_interrupt+0x10/0x10 [ 110.843598][ C0] __handle_irq_event_percpu+0x229/0x7c0 [ 110.845540][ C0] handle_irq_event+0xab/0x1e0 [ 110.847158][ C0] handle_edge_irq+0x263/0xd10 [ 110.848761][ C0] __common_interrupt+0xdf/0x250 [ 110.850472][ C0] common_interrupt+0xab/0xd0 [ 110.852144][ C0] [ 110.853162][ C0] [ 110.854183][ C0] asm_common_interrupt+0x26/0x40 [ 110.855898][ C0] RIP: 0010:write_comp_data+0x11/0x90 [ 110.857733][ C0] Code: cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 cf c0 78 7e <65> 8b 05 d0 c0 78 7e a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00 [ 110.864521][ C0] RSP: 0000:ffffc90000e3f738 EFLAGS: 00000246 [ 110.866733][ C0] RAX: 1ffff11004bb712f RBX: 0000000000000018 RCX: ffffffff81f29afe [ 110.869256][ C0] RDX: ffff88801a732440 RSI: 000000000000003b RDI: 0000000000000006 [ 110.878701][ C0] RBP: ffff8880263f40c8 R08: 0000000000000006 R09: 000000000000003b [ 110.882350][ C0] R10: 0000000000000014 R11: 0000000000000000 R12: dffffc0000000000 [ 110.900249][ C0] R13: 000000000000003b R14: 0000000000000014 R15: ffff888025db8800 [ 110.903674][ C0] ? zs_shrinker_count+0x11e/0x240 [ 110.905924][ C0] zs_shrinker_count+0x11e/0x240 [ 110.908109][ C0] do_shrink_slab+0x82/0x11c0 [ 110.910198][ C0] ? mem_cgroup_get_nr_swap_pages+0x20/0x120 [ 110.918826][ C0] shrink_slab+0x330/0x12c0 [ 110.920734][ C0] ? shrink_slab+0x13f/0x12c0 [ 110.934539][ C0] ? __pfx_shrink_slab+0x10/0x10 [ 110.936229][ C0] ? find_held_lock+0x2d/0x110 [ 110.937893][ C0] ? lru_gen_shrink_node+0x685/0x1510 [ 110.940431][ C0] shrink_one+0x47e/0x7b0 [ 110.942747][ C0] ? lru_gen_shrink_node+0x685/0x1510 [ 110.945247][ C0] lru_gen_shrink_node+0x69f/0x1510 [ 110.947556][ C0] ? lru_gen_shrink_node+0x418/0x1510 [ 110.949887][ C0] ? __pfx_lru_gen_shrink_node+0x10/0x10 [ 110.952343][ C0] ? mem_cgroup_iter+0x2f2/0x760 [ 110.954566][ C0] balance_pgdat+0x110f/0x1950 [ 110.956628][ C0] ? __pfx_balance_pgdat+0x10/0x10 [ 110.959622][ C0] ? lockdep_hardirqs_on_prepare+0x410/0x420 [ 110.961988][ C0] ? lock_acquire+0x1b1/0x560 [ 110.963985][ C0] ? __pfx___might_resched+0x10/0x10 [ 110.965873][ C0] kswapd+0x5ea/0xbf0 [ 110.967280][ C0] ? __pfx_kswapd+0x10/0x10 [ 110.969238][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 110.972773][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 110.975063][ C0] ? __kthread_parkme+0x148/0x220 [ 110.977308][ C0] ? __pfx_kswapd+0x10/0x10 [ 110.979302][ C0] kthread+0x2c1/0x3a0 [ 110.981104][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 110.984331][ C0] ? __pfx_kthread+0x10/0x10 [ 110.986647][ C0] ret_from_fork+0x45/0x80 [ 110.988291][ C0] ? __pfx_kthread+0x10/0x10 [ 110.989884][ C0] ret_from_fork_asm+0x1a/0x30 [ 110.993884][ C0] [ 110.996079][ C0] Kernel Offset: disabled [ 110.997754][ C0] Rebooting in 86400 seconds.. VM DIAGNOSIS: 20:04:35 Registers: info registers vcpu 0 CPU#0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff84fa7c20 RDI=ffffffff9511c240 RBP=ffffffff9511c200 RSP=ffffc900000075b8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552 R12=0000000000000000 R13=0000000000000020 R14=fffffbfff2a2389a R15=dffffc0000000000 RIP=ffffffff84fa7c47 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 000fffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 000fffff 00400000 DS =0000 0000000000000000 000fffff 00000000 FS =0000 0000000000000000 000fffff 00000000 GS =0000 ffff88802c000000 000fffff 00000000 LDT=0000 0000000000000000 000fffff 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f74a6108 CR3=000000001df06000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81685d6e RDX=1ffff11003bffa75 RSI=0000000000000008 RDI=ffffffff945b5700 RBP=ffffffff945bac60 RSP=ffffc90003567838 R8 =0000000000000000 R9 =fffffbfff28b6ae1 R10=ffffffff945b570f R11=0000000000000000 R12=0000000000000003 R13=ffff88801dffd388 R14=0000000000000000 R15=ffff88801dffc880 RIP=ffffffff81e9b260 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c100000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7406108 CR3=0000000055de2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080000000 RBX=ffffc90007b27a9c RCX=ffffffff8af6d560 RDX=ffff8880283b8000 RSI=0000000000000000 RDI=0000000000000001 RBP=0000000000000004 RSP=ffffc90007b276a8 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000037373454 R12=1ffff92000f64ed8 R13=ffffc90087b27a98 R14=0000000000000002 R15=0000000000000000 RIP=ffffffff818b19b8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c200000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f74a5008 CR3=000000001df06000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=ffffc90003557920 RCX=ffffffff813c8fee RDX=ffff888020d14880 RSI=ffffffff81f84925 RDI=0000000000000006 RBP=0000000000000001 RSP=ffffc900035578a0 R8 =0000000000000006 R9 =ffffffff81f84925 R10=ffffffff81000000 R11=0000000000000000 R12=ffffffff81f84925 R13=0000000000000000 R14=ffffc900035579e0 R15=ffffc90003557955 RIP=ffffffff813c8fee RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c300000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002ea19ff8 CR3=0000000054d86000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000