last executing test programs: 119.093682ms ago: executing program 0 (id=1): r0 = syz_io_uring_setup(0x23b, &(0x7f0000000080)={0x0, 0x0, 0x10900}, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r3, 0x0, 0xffffffffffffffff}) io_uring_enter(r0, 0x484, 0x0, 0x0, 0x0, 0x0) 55.716337ms ago: executing program 0 (id=5): r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382) ioctl$LOOP_SET_STATUS(r0, 0x1277, &(0x7f0000000200)={0x0, {}, 0x0, {}, 0x0, 0x0, 0xc, 0x9, "4b8b3ea46929dfed0b2f34380d308f95a023d009852471dd5a94a9fe9549918ae7fd1f0ececd9bada8b108403362cfe0f4fccffb1b6a2115354d4df15d017a3f", "2363f18d9acc6c25af21ca2af6d2e80e4caadd6d126cfb80c92dc817d44dcdec", [0x1]}) 55.431714ms ago: executing program 1 (id=2): r0 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @local}, 0x10) 55.222585ms ago: executing program 0 (id=6): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x8, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000009110bb000000000095"], &(0x7f0000000600)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="280100000000000001000000"], 0x128}, 0x0) socket$inet(0x2, 0x4000000805, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r1, 0x400448ca, 0x0) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x6) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) bind$alg(0xffffffffffffffff, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000180)=ANY=[], 0x1) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r3, &(0x7f0000000340)="23000000010007", 0x7) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="200000007900300826bd7000fcdbdf2507000000faffffff0700010001aace6d7c2cf8b9f4b04e8eee86cee7a9deba04d2ff73dcaabbd661958b758c683fe36ebf4fc71b5b6da13db80365b52d08cb8cd9f42f3a70"], 0x20}, 0x1, 0x0, 0x0, 0xc0}, 0x20000000) socket$rxrpc(0x21, 0x2, 0x2) r4 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, &(0x7f0000001040)={'filter\x00', 0x10, 0x4, 0x418, 0x220, 0x220, 0x220, 0x330, 0x330, 0x330, 0x4, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@remote, @empty, @multicast2, @multicast2, 0x1, 0xffffffff}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}, @mac=@remote, @rand_addr=0x64010102, @local, 0x4, 0x1}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @empty, @loopback, @empty, 0x1, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x468) 53.913156ms ago: executing program 1 (id=7): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x37, &(0x7f00000000c0)=ANY=[], 0x8) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002940), 0x0, 0x0) ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f00000000c0)={0x0, 0x0, "a4cd91", 0x9}) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6) write(r3, &(0x7f0000000040)="05000000010000", 0x7) 0s ago: executing program 2 (id=3): socket$inet6_sctp(0xa, 0x5, 0x84) socket$inet(0x2, 0x80001, 0x84) socket$nl_route(0x10, 0x3, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r0], 0x3c}}, 0x0) kernel console output (not intermixed with test programs): [ 38.293886][ T39] audit: type=1400 audit(1731387701.338:81): avc: denied { rlimitinh } for pid=5926 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.298583][ T39] audit: type=1400 audit(1731387701.338:82): avc: denied { siginh } for pid=5926 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 39.684959][ T39] audit: type=1400 audit(1731387702.758:83): avc: denied { read } for pid=5344 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 39.693968][ T39] audit: type=1400 audit(1731387702.758:84): avc: denied { append } for pid=5344 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 39.700855][ T39] audit: type=1400 audit(1731387702.758:85): avc: denied { open } for pid=5344 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 39.708149][ T39] audit: type=1400 audit(1731387702.758:86): avc: denied { getattr } for pid=5344 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:8216' (ED25519) to the list of known hosts. [ 39.875136][ T39] audit: type=1400 audit(1731387702.948:87): avc: denied { name_bind } for pid=5930 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 41.452171][ T5932] cgroup: Unknown subsys name 'net' [ 41.626455][ T5932] cgroup: Unknown subsys name 'cpuset' [ 41.630373][ T5932] cgroup: Unknown subsys name 'rlimit' [ 41.792708][ T5935] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 42.395417][ T5932] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.813876][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 43.813886][ T39] audit: type=1400 audit(1731387706.878:105): avc: denied { execmem } for pid=5937 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 43.950604][ T39] audit: type=1400 audit(1731387707.018:106): avc: denied { create } for pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 43.957190][ T39] audit: type=1400 audit(1731387707.018:107): avc: denied { read write } for pid=5941 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 43.963233][ T39] audit: type=1400 audit(1731387707.018:108): avc: denied { open } for pid=5941 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 43.969562][ T39] audit: type=1400 audit(1731387707.028:109): avc: denied { ioctl } for pid=5942 comm="syz-executor" path="socket:[6494]" dev="sockfs" ino=6494 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 43.999483][ T5946] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 43.999987][ T5954] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 44.000560][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 44.001393][ T5956] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 44.002132][ T5946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 44.002526][ T5946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 44.004760][ T5946] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 44.004920][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 44.005127][ T5954] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 44.005805][ T5956] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 44.006526][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 44.007823][ T5946] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 44.009903][ T5956] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 44.010651][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 44.012426][ T5299] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 44.012791][ T5956] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 44.012929][ T5956] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 44.015368][ T39] audit: type=1400 audit(1731387707.088:110): avc: denied { read } for pid=5941 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 44.017437][ T5299] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 44.017923][ T39] audit: type=1400 audit(1731387707.088:111): avc: denied { open } for pid=5941 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 44.019721][ T5955] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 44.020042][ T5299] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 44.020353][ T5299] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 44.020548][ T5299] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 44.020648][ T5299] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 44.022286][ T39] audit: type=1400 audit(1731387707.088:112): avc: denied { read } for pid=5942 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 44.025951][ T5956] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 44.026995][ T39] audit: type=1400 audit(1731387707.088:113): avc: denied { open } for pid=5942 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 44.066005][ T39] audit: type=1400 audit(1731387707.088:114): avc: denied { mounton } for pid=5941 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 44.137484][ T5941] chnl_net:caif_netlink_parms(): no params data found [ 44.237601][ T5949] chnl_net:caif_netlink_parms(): no params data found [ 44.260084][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.262327][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.264405][ T5941] bridge_slave_0: entered allmulticast mode [ 44.266483][ T5941] bridge_slave_0: entered promiscuous mode [ 44.269254][ T5947] chnl_net:caif_netlink_parms(): no params data found [ 44.287180][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.289577][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.291997][ T5941] bridge_slave_1: entered allmulticast mode [ 44.294026][ T5941] bridge_slave_1: entered promiscuous mode [ 44.328770][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.347619][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 44.375595][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.378024][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.379964][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.381831][ T5949] bridge_slave_0: entered allmulticast mode [ 44.383855][ T5949] bridge_slave_0: entered promiscuous mode [ 44.386375][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.388378][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.390515][ T5949] bridge_slave_1: entered allmulticast mode [ 44.392684][ T5949] bridge_slave_1: entered promiscuous mode [ 44.462074][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.464655][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.466530][ T5947] bridge_slave_0: entered allmulticast mode [ 44.468856][ T5947] bridge_slave_0: entered promiscuous mode [ 44.472720][ T5941] team0: Port device team_slave_0 added [ 44.476158][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.499681][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.501414][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.503114][ T5947] bridge_slave_1: entered allmulticast mode [ 44.505490][ T5947] bridge_slave_1: entered promiscuous mode [ 44.508284][ T5941] team0: Port device team_slave_1 added [ 44.510671][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.564659][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.566567][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.568485][ T5942] bridge_slave_0: entered allmulticast mode [ 44.570494][ T5942] bridge_slave_0: entered promiscuous mode [ 44.572913][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.574908][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.576806][ T5942] bridge_slave_1: entered allmulticast mode [ 44.578789][ T5942] bridge_slave_1: entered promiscuous mode [ 44.588834][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.590680][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.597513][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.602607][ T5949] team0: Port device team_slave_0 added [ 44.617980][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.621374][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.623216][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.629794][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.633525][ T5949] team0: Port device team_slave_1 added [ 44.646049][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.692356][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.697726][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.735374][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.737080][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.743002][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.746633][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.748294][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.754286][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.761107][ T5942] team0: Port device team_slave_0 added [ 44.764095][ T5947] team0: Port device team_slave_0 added [ 44.783162][ T5941] hsr_slave_0: entered promiscuous mode [ 44.785275][ T5941] hsr_slave_1: entered promiscuous mode [ 44.789639][ T5942] team0: Port device team_slave_1 added [ 44.791840][ T5947] team0: Port device team_slave_1 added [ 44.833358][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.835376][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.842031][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.860830][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.863136][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.870385][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.888506][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.890279][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.896954][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.901003][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.902655][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.909368][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.913507][ T5949] hsr_slave_0: entered promiscuous mode [ 44.915540][ T5949] hsr_slave_1: entered promiscuous mode [ 44.917328][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.919535][ T5949] Cannot create hsr debugfs directory [ 44.983455][ T5947] hsr_slave_0: entered promiscuous mode [ 44.986438][ T5947] hsr_slave_1: entered promiscuous mode [ 44.988240][ T5947] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.990229][ T5947] Cannot create hsr debugfs directory [ 45.012596][ T5942] hsr_slave_0: entered promiscuous mode [ 45.014720][ T5942] hsr_slave_1: entered promiscuous mode [ 45.016616][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.018680][ T5942] Cannot create hsr debugfs directory [ 45.165025][ T5941] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.168837][ T5941] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.171782][ T5941] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.175322][ T5941] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.210758][ T5949] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 45.214983][ T5949] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 45.218395][ T5949] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 45.222655][ T5949] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 45.248192][ T5947] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 45.254656][ T5947] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 45.258244][ T5947] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 45.264349][ T5947] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 45.292666][ T5942] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 45.296924][ T5942] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 45.302407][ T5942] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 45.306364][ T5942] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 45.316606][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.340926][ T5941] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.354006][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.355819][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.362339][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.374205][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.376102][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.386253][ T5949] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.394115][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.405515][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.407908][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.421442][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.423868][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.432403][ T5947] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.442819][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.444767][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.460063][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.461965][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.466733][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.486800][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.500633][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.502357][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.508081][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.509952][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.531174][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.550473][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.558926][ T5941] veth0_vlan: entered promiscuous mode [ 45.566510][ T5941] veth1_vlan: entered promiscuous mode [ 45.589070][ T5941] veth0_macvtap: entered promiscuous mode [ 45.592400][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.595217][ T5949] veth0_vlan: entered promiscuous mode [ 45.598297][ T5941] veth1_macvtap: entered promiscuous mode [ 45.605805][ T5949] veth1_vlan: entered promiscuous mode [ 45.611681][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.621192][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.628655][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.632301][ T5941] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.634894][ T5941] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.637165][ T5941] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.639354][ T5941] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.645607][ T5949] veth0_macvtap: entered promiscuous mode [ 45.654944][ T5949] veth1_macvtap: entered promiscuous mode [ 45.660918][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.665701][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.670042][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.678403][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.681177][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.686091][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.698601][ T5947] veth0_vlan: entered promiscuous mode [ 45.701133][ T5949] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.704154][ T5949] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.706920][ T5949] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.709716][ T5949] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.720189][ T5947] veth1_vlan: entered promiscuous mode [ 45.733358][ T5942] veth0_vlan: entered promiscuous mode [ 45.759440][ T5942] veth1_vlan: entered promiscuous mode [ 45.759840][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.763512][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.768996][ T5947] veth0_macvtap: entered promiscuous mode [ 45.776064][ T5947] veth1_macvtap: entered promiscuous mode [ 45.790093][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.793075][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.795958][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.798576][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.801676][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.807903][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.809890][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.810763][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.814752][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.817195][ T5947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.819776][ T5947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.822793][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.833349][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.835740][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.846419][ T5947] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.848739][ T5947] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.851077][ T5947] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.854091][ T5947] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.861523][ T5942] veth0_macvtap: entered promiscuous mode [ 45.864492][ T1136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.866724][ T1136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.872579][ T5942] veth1_macvtap: entered promiscuous mode [ 45.872978][ T5941] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 45.889023][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.893256][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.897093][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.900149][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.903191][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.906954][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.910703][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.927770][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.930852][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.933690][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.937303][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.939850][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.942826][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.949598][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.957974][ T5942] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.959173][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.960192][ T5942] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.962597][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.966939][ T5942] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.968999][ T5942] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.989510][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.992204][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.006021][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.008050][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.021300][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.025014][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.030890][ T6019] Bluetooth: MGMT ver 1.23 [ 46.033499][ T6016] Bluetooth: hci0: Opcode 0x0401 failed: -112 [ 46.034994][ T6020] Zero length message leads to an empty skb [ 46.065839][ T5948] ================================================================== [ 46.066321][ T5956] Bluetooth: hci1: command tx timeout [ 46.067930][ T5948] BUG: KASAN: slab-use-after-free in set_powered_sync+0xc1/0xd0 [ 46.069503][ T5956] Bluetooth: hci2: command tx timeout [ 46.070467][ T6026] vxcan0: tx drop: invalid sa for name 0x0000000000000001 [ 46.071207][ T5948] Read of size 8 at addr ffff88802d55c618 by task kworker/u33:3/5948 [ 46.071218][ T5948] [ 46.071222][ T5948] CPU: 0 UID: 0 PID: 5948 Comm: kworker/u33:3 Not tainted 6.12.0-rc7-syzkaller #0 [ 46.071232][ T5948] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 46.071239][ T5948] Workqueue: hci0 hci_cmd_sync_work [ 46.073244][ T5956] Bluetooth: hci3: command tx timeout [ 46.076123][ T5948] [ 46.076128][ T5948] Call Trace: [ 46.076132][ T5948] [ 46.076136][ T5948] dump_stack_lvl+0x116/0x1f0 [ 46.076149][ T5948] print_report+0xc3/0x620 [ 46.076161][ T5948] ? __virt_addr_valid+0x5e/0x590 [ 46.076173][ T5948] ? __phys_addr+0xc6/0x150 [ 46.076183][ T5948] kasan_report+0xd9/0x110 [ 46.076194][ T5948] ? set_powered_sync+0xc1/0xd0 [ 46.076204][ T5948] ? set_powered_sync+0xc1/0xd0 [ 46.076215][ T5948] set_powered_sync+0xc1/0xd0 [ 46.076224][ T5948] hci_cmd_sync_work+0x1a4/0x410 [ 46.099739][ T5948] process_one_work+0x9c5/0x1ba0 [ 46.101024][ T5948] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 46.102519][ T5948] ? __pfx_process_one_work+0x10/0x10 [ 46.103907][ T5948] ? assign_work+0x1a0/0x250 [ 46.105106][ T5948] worker_thread+0x6c8/0xf00 [ 46.106319][ T5948] ? __pfx_worker_thread+0x10/0x10 [ 46.107641][ T5948] kthread+0x2c1/0x3a0 [ 46.108694][ T5948] ? _raw_spin_unlock_irq+0x23/0x50 [ 46.110034][ T5948] ? __pfx_kthread+0x10/0x10 [ 46.111241][ T5948] ret_from_fork+0x45/0x80 [ 46.112403][ T5948] ? __pfx_kthread+0x10/0x10 [ 46.113600][ T5948] ret_from_fork_asm+0x1a/0x30 [ 46.114841][ T5948] [ 46.115653][ T5948] [ 46.116274][ T5948] Allocated by task 6019: [ 46.117383][ T5948] kasan_save_stack+0x33/0x60 [ 46.118597][ T5948] kasan_save_track+0x14/0x30 [ 46.119825][ T5948] __kasan_kmalloc+0xaa/0xb0 [ 46.121012][ T5948] mgmt_pending_new+0x5b/0x290 [ 46.122249][ T5948] mgmt_pending_add+0x36/0x160 [ 46.123487][ T5948] set_powered+0x28c/0x5c0 [ 46.124640][ T5948] hci_sock_sendmsg+0x1528/0x25e0 [ 46.125946][ T5948] sock_write_iter+0x4fe/0x5b0 [ 46.127187][ T5948] vfs_write+0x5ae/0x1150 [ 46.128312][ T5948] ksys_write+0x1fa/0x260 [ 46.129425][ T5948] do_syscall_64+0xcd/0x250 [ 46.130595][ T5948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 46.132107][ T5948] [ 46.132715][ T5948] Freed by task 6015: [ 46.133720][ T5948] kasan_save_stack+0x33/0x60 [ 46.134938][ T5948] kasan_save_track+0x14/0x30 [ 46.136271][ T5948] kasan_save_free_info+0x3b/0x60 [ 46.137570][ T5948] __kasan_slab_free+0x51/0x70 [ 46.138805][ T5948] kfree+0x14f/0x4b0 [ 46.139834][ T5948] settings_rsp+0x257/0x400 [ 46.141003][ T5948] mgmt_pending_foreach+0xdf/0x140 [ 46.142325][ T5948] __mgmt_power_off+0xc8/0x2c0 [ 46.143565][ T5948] hci_dev_close_sync+0xcbb/0x11b0 [ 46.144885][ T5948] hci_dev_do_close+0x2e/0x90 [ 46.146114][ T5948] hci_dev_close+0x183/0x1e0 [ 46.147322][ T5948] hci_sock_ioctl+0x28c/0x880 [ 46.148537][ T5948] sock_do_ioctl+0x116/0x280 [ 46.149764][ T5948] sock_ioctl+0x228/0x6c0 [ 46.150884][ T5948] __x64_sys_ioctl+0x18f/0x220 [ 46.152126][ T5948] do_syscall_64+0xcd/0x250 [ 46.153304][ T5948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 46.154837][ T5948] [ 46.155473][ T5948] The buggy address belongs to the object at ffff88802d55c600 [ 46.155473][ T5948] which belongs to the cache kmalloc-96 of size 96 [ 46.158952][ T5948] The buggy address is located 24 bytes inside of [ 46.158952][ T5948] freed 96-byte region [ffff88802d55c600, ffff88802d55c660) [ 46.162383][ T5948] [ 46.163016][ T5948] The buggy address belongs to the physical page: [ 46.164663][ T5948] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2d55c [ 46.166920][ T5948] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 46.168731][ T5948] page_type: f5(slab) [ 46.169775][ T5948] raw: 00fff00000000000 ffff88801b042280 dead000000000100 dead000000000122 [ 46.171973][ T5948] raw: 0000000000000000 0000000000200020 00000001f5000000 0000000000000000 [ 46.174160][ T5948] page dumped because: kasan: bad access detected [ 46.175810][ T5948] page_owner tracks the page as allocated [ 46.177265][ T5948] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 12, tgid 12 (kworker/u32:1), ts 45999503010, free_ts 45974931239 [ 46.181838][ T5948] post_alloc_hook+0x2d1/0x350 [ 46.183049][ T5948] get_page_from_freelist+0xfce/0x2f80 [ 46.184417][ T5948] __alloc_pages_noprof+0x223/0x25a0 [ 46.185769][ T5948] alloc_pages_mpol_noprof+0x2c9/0x610 [ 46.187145][ T5948] new_slab+0x2c9/0x410 [ 46.188224][ T5948] ___slab_alloc+0xdac/0x1880 [ 46.189421][ T5948] __slab_alloc.constprop.0+0x56/0xb0 [ 46.190732][ T5948] __kmalloc_cache_noprof+0x2b4/0x300 [ 46.192071][ T5948] dst_cow_metrics_generic+0x4c/0x1e0 [ 46.193412][ T5948] icmp6_dst_alloc+0x370/0x490 [ 46.194625][ T5948] ndisc_send_skb+0x1279/0x1c30 [ 46.195872][ T5948] ndisc_send_ns+0xc7/0x150 [ 46.197030][ T5948] addrconf_dad_work+0xc80/0x14d0 [ 46.198306][ T5948] process_one_work+0x9c5/0x1ba0 [ 46.199593][ T5948] worker_thread+0x6c8/0xf00 [ 46.200793][ T5948] kthread+0x2c1/0x3a0 [ 46.201874][ T5948] page last free pid 5362 tgid 5362 stack trace: [ 46.203506][ T5948] free_unref_page+0x5f4/0xdc0 [ 46.204744][ T5948] __put_partials+0x14c/0x170 [ 46.205970][ T5948] qlist_free_all+0x4e/0x120 [ 46.207171][ T5948] kasan_quarantine_reduce+0x192/0x1e0 [ 46.208575][ T5948] __kasan_slab_alloc+0x69/0x90 [ 46.209831][ T5948] kmem_cache_alloc_noprof+0x121/0x2f0 [ 46.211240][ T5948] getname_flags.part.0+0x4c/0x550 [ 46.212559][ T5948] getname+0x8d/0xe0 [ 46.213577][ T5948] do_sys_openat2+0x104/0x1e0 [ 46.214796][ T5948] __x64_sys_openat+0x175/0x210 [ 46.216067][ T5948] do_syscall_64+0xcd/0x250 [ 46.217245][ T5948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 46.218773][ T5948] [ 46.219404][ T5948] Memory state around the buggy address: [ 46.220845][ T5948] ffff88802d55c500: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 46.222892][ T5948] ffff88802d55c580: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 46.224940][ T5948] >ffff88802d55c600: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 46.226904][ T5948] ^ [ 46.228174][ T5948] ffff88802d55c680: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 46.230117][ T5948] ffff88802d55c700: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 46.232153][ T5948] ================================================================== [ 46.234731][ T5948] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 46.236648][ T5948] CPU: 1 UID: 0 PID: 5948 Comm: kworker/u33:3 Not tainted 6.12.0-rc7-syzkaller #0 [ 46.239020][ T5948] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 46.241789][ T5948] Workqueue: hci0 hci_cmd_sync_work [ 46.243168][ T5948] Call Trace: [ 46.244057][ T5948] [ 46.244833][ T5948] dump_stack_lvl+0x3d/0x1f0 [ 46.246058][ T5948] panic+0x71d/0x800 [ 46.247102][ T5948] ? __pfx_panic+0x10/0x10 [ 46.248272][ T5948] ? irqentry_exit+0x3b/0x90 [ 46.249482][ T5948] ? lockdep_hardirqs_on+0x7c/0x110 [ 46.250845][ T5948] ? preempt_schedule_thunk+0x1a/0x30 [ 46.252244][ T5948] ? preempt_schedule_common+0x44/0xc0 [ 46.253702][ T5948] ? check_panic_on_warn+0x1f/0xb0 [ 46.255043][ T5948] check_panic_on_warn+0xab/0xb0 [ 46.256335][ T5948] end_report+0x117/0x180 [ 46.257463][ T5948] kasan_report+0xe9/0x110 [ 46.258631][ T5948] ? set_powered_sync+0xc1/0xd0 [ 46.259914][ T5948] ? set_powered_sync+0xc1/0xd0 [ 46.261183][ T5948] set_powered_sync+0xc1/0xd0 [ 46.262417][ T5948] hci_cmd_sync_work+0x1a4/0x410 [ 46.263730][ T5948] process_one_work+0x9c5/0x1ba0 [ 46.265022][ T5948] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 46.266492][ T5948] ? __pfx_process_one_work+0x10/0x10 [ 46.267886][ T5948] ? assign_work+0x1a0/0x250 [ 46.269092][ T5948] worker_thread+0x6c8/0xf00 [ 46.270253][ T5948] ? __pfx_worker_thread+0x10/0x10 [ 46.271529][ T5948] kthread+0x2c1/0x3a0 [ 46.272589][ T5948] ? _raw_spin_unlock_irq+0x23/0x50 [ 46.274008][ T5948] ? __pfx_kthread+0x10/0x10 [ 46.275214][ T5948] ret_from_fork+0x45/0x80 [ 46.276368][ T5948] ? __pfx_kthread+0x10/0x10 [ 46.277559][ T5948] ret_from_fork_asm+0x1a/0x30 [ 46.278797][ T5948] [ 46.280081][ T5948] Kernel Offset: disabled [ 46.281157][ T5948] Rebooting in 86400 seconds.. VM DIAGNOSIS: 05:01:49 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000021 RCX=ffffffff816da35a RDX=ffff8880277d0000 RSI=ffffffff816da346 RDI=0000000000000001 RBP=1ffff9200078eeff RSP=ffffc90003c777e8 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=53414b203a475542 R12=0000000000000001 R13=0000000000000000 R14=ffff88802aaca440 R15=ffffc90003c778d0 RIP=ffffffff816da348 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fdda9337a8c CR3=0000000032378000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080000800 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff86b13110 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24b3 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24c0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24ba ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24ce ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f2554 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f2632 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffffff9a840580 RBX=0000000000000000 RCX=0000000000000001 RDX=1ffff11004782075 RSI=1ffff920008b6eb7 RDI=ffff888023c103a8 RBP=0000000000000001 RSP=ffffc900045b7528 R8 =0000000000000001 R9 =0000000000000000 R10=ffffffff905f598f R11=0000000000000001 R12=ffff888023c103a8 R13=ffff888023c103a8 R14=0000000000000000 R15=ffff888026dc0000 RIP=ffffffff816a5b8f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f8e5f12fd00 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c3ee04c CR3=000000002854c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=2351224723512247 2351224723512247 2351224723512247 2351224723512247 2351224723512247 2351224723512247 2351224723512247 2351224723512247 ZMM22=6aa91f966aa91f96 6aa91f966aa91f96 6aa91f966aa91f96 6aa91f966aa91f96 6aa91f966aa91f96 6aa91f966aa91f96 6aa91f966aa91f96 6aa91f966aa91f96 ZMM23=508317eb508317eb 508317eb508317eb 508317eb508317eb 508317eb508317eb 508317eb508317eb 508317eb508317eb 508317eb508317eb 508317eb508317eb ZMM24=dc360f1fdc360f1f dc360f1fdc360f1f dc360f1fdc360f1f dc360f1fdc360f1f dc360f1fdc360f1f dc360f1fdc360f1f dc360f1fdc360f1f dc360f1fdc360f1f ZMM25=9b147e459b147e45 9b147e459b147e45 9b147e459b147e45 9b147e459b147e45 9b147e459b147e45 9b147e459b147e45 9b147e459b147e45 9b147e459b147e45 ZMM26=8d4965868d496586 8d4965868d496586 8d4965868d496586 8d4965868d496586 8d4965868d496586 8d4965868d496586 8d4965868d496586 8d4965868d496586 ZMM27=b000f715b000f715 b000f715b000f715 b000f715b000f715 b000f715b000f715 b000f715b000f715 b000f715b000f715 b000f715b000f715 b000f715b000f715 ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=2901000029010000 2901000029010000 2901000029010000 2901000029010000 2901000029010000 2901000029010000 2901000029010000 2901000029010000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=ffff88806a838128 RCX=ffffffff81fb047a RDX=1ffff1100d507025 RSI=ffffffff8bd1b300 RDI=ffffffff8da64b90 RBP=0000000000000002 RSP=ffffc90004287570 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=0000000080000001 R13=0000000000000001 R14=0000000000000001 R15=ffffea000116ee80 RIP=ffffffff8173823c RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c301760 CR3=000000000df7c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000306e61637876 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24b3 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24c0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24ba ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f24ce ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f2554 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c23f2632 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c250c488 00007f81c250c480 00007f81c250c478 00007f81c250c450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c306d100 00007f81c250c440 00007f81c2500004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f81c250c498 00007f81c250c490 00007f81c250c488 00007f81c250c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=0000000000000023 RCX=ffffffff816da35a RDX=ffff88802aaca440 RSI=ffffffff816da346 RDI=0000000000000001 RBP=1ffff92000764f44 RSP=ffffc90003b27a10 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000001 R13=0000000000000200 R14=ffff8880277d0000 R15=ffffc90003b27af8 RIP=ffffffff816da348 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c3dd90f CR3=0000000031f7a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc249f24b3 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc249f24c0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc249f24ba ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc249f24ce ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc249f2554 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc249f2632 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc24b0c488 00007fdc24b0c480 00007fdc24b0c478 00007fdc24b0c450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc2566d100 00007fdc24b0c440 00007fdc24b0c458 00007fdc24b0c4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc24b0c498 00007fdc24b0c490 00007fdc24b0c488 00007fdc24b0c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000a 0000000000000000 0000000000000000 0000000000000304 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000