last executing test programs: 1.500837801s ago: executing program 2 (id=316): syz_emit_ethernet(0x7a, &(0x7f0000000580)={@broadcast, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ff690b", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x22eb}, {0x0, 0x0, 0x0, 0x0, 0x100}}}}}}}, 0x0) 1.434787302s ago: executing program 2 (id=319): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000280)='sched_switch\x00', r0, 0x0, 0x6}, 0x18) bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 1.366061333s ago: executing program 2 (id=323): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000000000}, 0x18) rt_sigtimedwait(0x0, 0x0, 0x0, 0x0) 1.295015779s ago: executing program 2 (id=324): pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket(0x1e, 0x1, 0x0) connect$tipc(r1, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10) write$binfmt_misc(r1, &(0x7f0000000340), 0x2000011a) sendmmsg$sock(r1, &(0x7f00000212c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40001) splice(r1, 0x0, r0, 0x0, 0x4ff9c, 0x0) 1.215345816s ago: executing program 2 (id=328): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) r2 = socket$xdp(0x2c, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000002c0)=0x1000000, 0x4) 265.43923ms ago: executing program 0 (id=357): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffff"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310) close_range(r2, 0xffffffffffffffff, 0x0) 265.386093ms ago: executing program 0 (id=358): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000080), 0x1, 0x0) write$binfmt_register(r1, &(0x7f0000000040)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x0, 0x3a, 'syz2', 0x3a, 'Y$*@', 0x3a, './file0', 0x3a, [0x46]}, 0x30) 265.350623ms ago: executing program 1 (id=359): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) flock(r1, 0x2) r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) flock(r2, 0x2) close_range(r0, 0xffffffffffffffff, 0x0) 206.089237ms ago: executing program 0 (id=361): bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000000000c02000000000000000000000d0000000000005f"], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10, @void, @value}, 0x94) 205.700186ms ago: executing program 0 (id=363): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004", @ANYRES32=0x0, @ANYRES32=0x0], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) write$binfmt_register(r2, &(0x7f00000003c0)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x8, 0x3a, '{*[)/++', 0x3a, '\x00', 0x3a, './file0', 0x3a, [0x46]}, 0x30) sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0) 145.89471ms ago: executing program 0 (id=365): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x8000000010, 0x2, 0x0) write(r0, &(0x7f00000002c0)="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", 0xfc) socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSARP(r1, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @empty}, {0x0, @dev}, 0x0, {0x2, 0x0, @multicast1=0xe000cc02}}) 145.785746ms ago: executing program 1 (id=366): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000100)=[{&(0x7f0000000040)="1800000072006bcd9e3fe3dc6e0800000709000000000000", 0x18}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 145.143772ms ago: executing program 0 (id=369): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000e27f000001"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffe00}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x19, 0xc, &(0x7f0000000380)=ANY=[@ANYRES8=r2, @ANYRES64=r0, @ANYRES16, @ANYRES8=r0, @ANYRESHEX=r0, @ANYRESHEX=r2, @ANYRESHEX=r2, @ANYRESHEX=r0, @ANYBLOB="5bf2a3fc6b323e596a2c67b408c2d2c6121ab3d4fdbe8527d19c561abf0d01869fe13b7c85ea5fefeca1e9f3e0472a50e7b81c2f8c357c6fe585"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r3}, 0x10) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="030000000000000000000c"], 0x20}}, 0x0) r6 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r7 = socket(0x1e, 0x5, 0x0) setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda) listen(r7, 0x0) r8 = socket(0x1e, 0x805, 0x0) sendmsg$tipc(r8, &(0x7f0000000080)={&(0x7f0000000100)=@id={0x1e, 0x3, 0x0, {0x4e20, 0x2}}, 0x10, 0x0}, 0x4045094) accept4$inet6(r7, 0x0, 0x0, 0x0) sendmsg$tipc(r8, &(0x7f0000000640)={&(0x7f0000000300), 0x10, 0x0}, 0x0) 145.002956ms ago: executing program 1 (id=370): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000020000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) fsmount(r2, 0x0, 0x0) 86.278887ms ago: executing program 3 (id=371): r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00'}, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000f80)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="8b37000000000000000005"], 0x38}}, 0x0) 86.040261ms ago: executing program 1 (id=372): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000f40)={0x40, r2, 0x1, 0x70bd27, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x44890}, 0x20048880) 85.915522ms ago: executing program 3 (id=373): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@deltaction={0x18, 0x18, 0x1, 0x0, 0x0, {0xa}, [@TCA_ACT_TAB={0x4}]}, 0x18}}, 0x0) 85.791377ms ago: executing program 1 (id=374): bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = syz_io_uring_setup(0x3676, &(0x7f000000a9c0), &(0x7f000000aa40), &(0x7f000000aa80)) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x2, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES2(r1, 0x6, &(0x7f0000001480)={0x0, 0x0, 0x20000000, 0x0, 0x0}, 0x20) 85.442384ms ago: executing program 3 (id=375): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r3, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000380)=@gcm_128={{0x304}, "818dc18800", "41e2fb32493a3c8b87d32b0793542b77", "197423c0", "3d04e7aa8b5b921c"}, 0x28) bpf$PROG_LOAD(0x5, 0x0, 0x0) connect$phonet_pipe(0xffffffffffffffff, 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 16.24202ms ago: executing program 1 (id=376): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc11a900e8d164a40, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @empty}, 0x10) listen(r0, 0x1ff) connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @remote}, 0x10) 15.939848ms ago: executing program 2 (id=377): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) iopl(0x3) rt_tgsigqueueinfo(0x0, 0x0, 0xf8ff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10) socket$nl_route(0x10, 0x3, 0x0) r6 = socket(0x2a, 0x2, 0x0) getsockname$packet(r6, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r7, {0xffe0}, {}, {0x5, 0xffe0}}, [@filter_kind_options=@f_matchall={{0xd}, {0x2c, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0xe, 0x2}}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0x7, 0x3}}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0x10, 0xffe0}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x5}, @TCA_MATCHALL_FLAGS={0x8}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0) 15.806094ms ago: executing program 3 (id=378): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000002140)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x80000001}], 0x2, 0x40000120, 0x0) 15.664543ms ago: executing program 3 (id=379): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', 0x0}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r5], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814) 0s ago: executing program 3 (id=380): bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB='\x00\x00\x00\x00\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd71, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xb7) gettid() timer_create(0x3, 0x0, &(0x7f0000044000)) timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) rt_sigprocmask(0x0, &(0x7f0000000040)={[0xfffffffffffffffb]}, 0x0, 0x8) timer_settime(0x0, 0x0, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000780)) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000900)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000007000200060c10000000010000000000", 0x58}], 0x1) kernel console output (not intermixed with test programs): [ 38.216961][ T39] audit: type=1400 audit(1734572986.742:80): avc: denied { write } for pid=5911 comm="sh" path="pipe:[3901]" dev="pipefs" ino=3901 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 38.222753][ T39] audit: type=1400 audit(1734572986.742:81): avc: denied { rlimitinh } for pid=5911 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.228723][ T39] audit: type=1400 audit(1734572986.742:82): avc: denied { siginh } for pid=5911 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 38.815423][ T39] audit: type=1400 audit(1734572987.362:83): avc: denied { read } for pid=5330 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 38.822617][ T39] audit: type=1400 audit(1734572987.362:84): avc: denied { append } for pid=5330 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.830050][ T39] audit: type=1400 audit(1734572987.362:85): avc: denied { open } for pid=5330 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 38.839720][ T39] audit: type=1400 audit(1734572987.362:86): avc: denied { getattr } for pid=5330 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 Warning: Permanently added '[localhost]:29228' (ED25519) to the list of known hosts. [ 39.995585][ T39] audit: type=1400 audit(1734572988.542:87): avc: denied { name_bind } for pid=5918 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 41.590753][ T5920] cgroup: Unknown subsys name 'net' [ 41.796996][ T5920] cgroup: Unknown subsys name 'cpuset' [ 41.800729][ T5920] cgroup: Unknown subsys name 'rlimit' [ 42.024712][ T5925] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 42.710997][ T5920] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 44.284420][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 44.286242][ T39] audit: type=1400 audit(1734572992.822:105): avc: denied { execmem } for pid=5927 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 44.477057][ T39] audit: type=1400 audit(1734572993.022:106): avc: denied { create } for pid=5931 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 44.483770][ T39] audit: type=1400 audit(1734572993.022:107): avc: denied { read write } for pid=5932 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 44.490584][ T39] audit: type=1400 audit(1734572993.022:108): avc: denied { read write } for pid=5931 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 44.497128][ T39] audit: type=1400 audit(1734572993.022:109): avc: denied { open } for pid=5932 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 44.503191][ T39] audit: type=1400 audit(1734572993.022:110): avc: denied { ioctl } for pid=5933 comm="syz-executor" path="socket:[7393]" dev="sockfs" ino=7393 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 44.513180][ T5942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 44.515426][ T5942] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 44.517410][ T5942] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 44.519903][ T5942] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 44.522879][ T5942] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 44.525715][ T5942] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 44.525787][ T5943] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 44.527883][ T5942] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 44.530662][ T5943] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 44.532035][ T5942] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 44.533206][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 44.534038][ T5943] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 44.534958][ T5944] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 44.535234][ T5944] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 44.535532][ T5944] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 44.535800][ T5942] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 44.538283][ T5943] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 44.541021][ T39] audit: type=1400 audit(1734572993.082:111): avc: denied { read } for pid=5934 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 44.544959][ T5938] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 44.545861][ T39] audit: type=1400 audit(1734572993.082:112): avc: denied { open } for pid=5934 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 44.549451][ T5945] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 44.550066][ T39] audit: type=1400 audit(1734572993.082:113): avc: denied { mounton } for pid=5934 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 44.556405][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 44.557912][ T5938] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 44.576581][ T5938] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 44.578605][ T5938] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 44.580532][ T5938] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 44.691918][ T39] audit: type=1400 audit(1734572993.232:114): avc: denied { module_request } for pid=5933 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 44.734795][ T5933] chnl_net:caif_netlink_parms(): no params data found [ 44.768542][ T5934] chnl_net:caif_netlink_parms(): no params data found [ 44.791710][ T5931] chnl_net:caif_netlink_parms(): no params data found [ 44.822038][ T5932] chnl_net:caif_netlink_parms(): no params data found [ 44.941446][ T5933] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.943856][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.946643][ T5933] bridge_slave_0: entered allmulticast mode [ 44.948765][ T5933] bridge_slave_0: entered promiscuous mode [ 44.973298][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.975873][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.977813][ T5934] bridge_slave_0: entered allmulticast mode [ 44.980109][ T5934] bridge_slave_0: entered promiscuous mode [ 44.999562][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.002072][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.004607][ T5933] bridge_slave_1: entered allmulticast mode [ 45.007369][ T5933] bridge_slave_1: entered promiscuous mode [ 45.010733][ T5931] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.013217][ T5931] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.015218][ T5931] bridge_slave_0: entered allmulticast mode [ 45.017278][ T5931] bridge_slave_0: entered promiscuous mode [ 45.019370][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.021269][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.023717][ T5934] bridge_slave_1: entered allmulticast mode [ 45.025894][ T5934] bridge_slave_1: entered promiscuous mode [ 45.067476][ T5931] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.069375][ T5931] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.071234][ T5931] bridge_slave_1: entered allmulticast mode [ 45.073239][ T5931] bridge_slave_1: entered promiscuous mode [ 45.095274][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.097773][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.099581][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.101438][ T5932] bridge_slave_0: entered allmulticast mode [ 45.103442][ T5932] bridge_slave_0: entered promiscuous mode [ 45.108257][ T5933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.119657][ T5931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.122813][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.125594][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.127501][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.129720][ T5932] bridge_slave_1: entered allmulticast mode [ 45.132502][ T5932] bridge_slave_1: entered promiscuous mode [ 45.150158][ T5933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.154834][ T5931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.182371][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.211372][ T5934] team0: Port device team_slave_0 added [ 45.214141][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 45.230099][ T5931] team0: Port device team_slave_0 added [ 45.233108][ T5934] team0: Port device team_slave_1 added [ 45.250704][ T5933] team0: Port device team_slave_0 added [ 45.253601][ T5931] team0: Port device team_slave_1 added [ 45.273637][ T5932] team0: Port device team_slave_0 added [ 45.276720][ T5933] team0: Port device team_slave_1 added [ 45.294558][ T5932] team0: Port device team_slave_1 added [ 45.308060][ T5931] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.309899][ T5931] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.316505][ T5931] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.320206][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.322000][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.329942][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.350865][ T5931] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.352680][ T5931] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.359315][ T5931] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.362640][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.364539][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.371275][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.382786][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.384790][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.392212][ T5933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.398688][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.400485][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.407132][ T5933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.414834][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 45.416689][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.423443][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 45.427837][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 45.429653][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 45.436303][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 45.493596][ T5931] hsr_slave_0: entered promiscuous mode [ 45.495669][ T5931] hsr_slave_1: entered promiscuous mode [ 45.519302][ T5933] hsr_slave_0: entered promiscuous mode [ 45.521800][ T5933] hsr_slave_1: entered promiscuous mode [ 45.524243][ T5933] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.527931][ T5933] Cannot create hsr debugfs directory [ 45.532781][ T5932] hsr_slave_0: entered promiscuous mode [ 45.535140][ T5932] hsr_slave_1: entered promiscuous mode [ 45.536976][ T5932] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.538965][ T5932] Cannot create hsr debugfs directory [ 45.566453][ T5934] hsr_slave_0: entered promiscuous mode [ 45.568359][ T5934] hsr_slave_1: entered promiscuous mode [ 45.570058][ T5934] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 45.572047][ T5934] Cannot create hsr debugfs directory [ 45.820987][ T5931] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 45.826890][ T5931] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 45.830770][ T5931] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 45.839089][ T5931] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 45.863584][ T5932] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 45.868590][ T5932] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 45.873071][ T5932] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 45.877459][ T5932] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 45.905099][ T5933] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.909233][ T5933] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.915335][ T5933] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.918484][ T5933] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.956373][ T5934] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 45.961415][ T5934] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 45.966434][ T5934] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 45.970886][ T5934] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 46.007236][ T5931] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.039550][ T5931] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.058281][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.062839][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.065460][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.070510][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.072936][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.100149][ T5932] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.117795][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.121963][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.124611][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.128806][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.131370][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.157324][ T5933] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.166921][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.168798][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.172171][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.180659][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.182791][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.195794][ T5934] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.217652][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.219516][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.222729][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.224671][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.252784][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.261327][ T5931] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.302996][ T5932] veth0_vlan: entered promiscuous mode [ 46.312068][ T5931] veth0_vlan: entered promiscuous mode [ 46.318713][ T5931] veth1_vlan: entered promiscuous mode [ 46.321539][ T5932] veth1_vlan: entered promiscuous mode [ 46.346354][ T5933] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.349069][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.352491][ T5932] veth0_macvtap: entered promiscuous mode [ 46.359504][ T5932] veth1_macvtap: entered promiscuous mode [ 46.380345][ T5931] veth0_macvtap: entered promiscuous mode [ 46.387178][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.390226][ T5931] veth1_macvtap: entered promiscuous mode [ 46.407421][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.410073][ T5934] veth0_vlan: entered promiscuous mode [ 46.413505][ T5933] veth0_vlan: entered promiscuous mode [ 46.418868][ T5934] veth1_vlan: entered promiscuous mode [ 46.422875][ T5932] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.426566][ T5932] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.429596][ T5932] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.432547][ T5932] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.448104][ T5933] veth1_vlan: entered promiscuous mode [ 46.461587][ T5931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.466161][ T5931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.469739][ T5931] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.486930][ T5931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.489671][ T5931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.492684][ T5931] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.500664][ T5934] veth0_macvtap: entered promiscuous mode [ 46.509153][ T5931] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.511436][ T5931] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.513696][ T5931] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.516363][ T5931] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.522164][ T5934] veth1_macvtap: entered promiscuous mode [ 46.528812][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.530955][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.537233][ T5934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.540796][ T5934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.544162][ T5934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.547632][ T5934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.551652][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.557126][ T5933] veth0_macvtap: entered promiscuous mode [ 46.567690][ T5933] veth1_macvtap: entered promiscuous mode [ 46.571931][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.573600][ T5934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.574233][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.575178][ T5287] Bluetooth: hci3: command tx timeout [ 46.577203][ T5287] Bluetooth: hci2: command tx timeout [ 46.577435][ T5934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.586529][ T5934] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.590257][ T5934] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.594961][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.611719][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.615192][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.618609][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.622294][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.626103][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 46.629244][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.632749][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 46.636889][ T5934] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.639295][ T5934] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.641786][ T5934] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.644503][ T5934] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.644966][ T5938] Bluetooth: hci0: command tx timeout [ 46.645138][ T5287] Bluetooth: hci1: command tx timeout [ 46.660921][ T5932] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 46.665084][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.665110][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.670753][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.673460][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.676441][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.679120][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.681635][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 46.684352][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 46.687821][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 46.700307][ T5933] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.704076][ T5933] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.708090][ T5933] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.711028][ T5933] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.738566][ T96] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.741082][ T96] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.773833][ T96] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.779089][ T96] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.785562][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.788018][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.813257][ T5995] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.822734][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.826233][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.832629][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.836116][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.880474][ T6002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'. [ 46.900611][ T6005] netlink: 16 bytes leftover after parsing attributes in process `+}[@'. [ 46.903921][ T6005] IPv6: NLM_F_CREATE should be specified when creating new route [ 47.858230][ T6047] serio: Serial port pts0 [ 48.002488][ T6061] mmap: syz.2.31 (6061) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 48.052528][ T6068] netlink: 24 bytes leftover after parsing attributes in process `syz.2.34'. [ 48.576060][ T5995] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 48.644710][ T5938] Bluetooth: hci2: command tx timeout [ 48.644737][ T5287] Bluetooth: hci3: command tx timeout [ 48.734612][ T5938] Bluetooth: hci0: command tx timeout [ 48.928606][ T6087] netlink: 8 bytes leftover after parsing attributes in process `syz.2.41'. [ 48.931513][ T6087] IPVS: Error joining to the multicast group [ 48.981127][ T6082] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 48.983646][ T6082] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 48.991898][ T6082] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 48.999463][ T6082] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 49.001606][ T6082] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 49.005900][ T6082] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 49.010456][ T6082] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 49.012175][ T6082] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 49.015343][ T6082] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 49.019436][ T6082] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 49.021063][ T6082] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 49.023599][ T6082] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 49.063507][ T6096] syz.0.45[6096] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 49.063620][ T6096] syz.0.45[6096] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 49.068768][ T6096] syz.0.45[6096] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 49.218300][ T6109] netlink: 4 bytes leftover after parsing attributes in process `syz.1.51'. [ 49.266583][ T6115] process 'syz.0.54' launched './file1' with NULL argv: empty string added [ 49.308074][ T39] kauditd_printk_skb: 142 callbacks suppressed [ 49.308089][ T39] audit: type=1400 audit(1734572997.852:257): avc: denied { block_suspend } for pid=6117 comm="syz.1.55" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 49.326753][ T39] audit: type=1400 audit(1734572997.872:258): avc: denied { execmem } for pid=6119 comm="syz.0.56" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 49.361485][ T39] audit: type=1400 audit(1734572997.902:259): avc: denied { create } for pid=6125 comm="syz.1.58" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 49.368974][ T39] audit: type=1400 audit(1734572997.912:260): avc: denied { bind } for pid=6125 comm="syz.1.58" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 49.374233][ T39] audit: type=1400 audit(1734572997.912:261): avc: denied { write } for pid=6125 comm="syz.1.58" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 49.423780][ T39] audit: type=1400 audit(1734572997.962:262): avc: denied { create } for pid=6128 comm="syz.1.59" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 49.431261][ T39] audit: type=1400 audit(1734572997.972:263): avc: denied { write } for pid=6128 comm="syz.1.59" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 49.441781][ T6129] ip6_vti0: entered promiscuous mode [ 49.443433][ T6129] vlan2: entered promiscuous mode [ 49.446576][ T6129] ip6_vti0: left promiscuous mode [ 49.455301][ T39] audit: type=1400 audit(1734572998.002:264): avc: denied { read } for pid=5330 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 49.461188][ T39] audit: type=1400 audit(1734572998.002:265): avc: denied { search } for pid=5330 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 49.469640][ T39] audit: type=1400 audit(1734572998.002:266): avc: denied { append } for pid=5330 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 49.737945][ T6146] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.161483][ T6130] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 50.163202][ T6130] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 50.165198][ T6130] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 50.166896][ T6130] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 50.195962][ T5995] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.256196][ T5995] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.338132][ T6161] syz.0.69[6161] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.338186][ T6161] syz.0.69[6161] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.338739][ T5995] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.341326][ T6161] syz.0.69[6161] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.346965][ T5995] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.355416][ T5995] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.360336][ T5995] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.729331][ T6190] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 50.739361][ T6188] syzkaller0: entered promiscuous mode [ 50.741285][ T6188] syzkaller0: entered allmulticast mode [ 50.809531][ T6196] tipc: Started in network mode [ 50.811356][ T6196] tipc: Node identity 7f000001, cluster identity 4711 [ 50.815089][ T6196] tipc: Enabled bearer , priority 10 [ 51.052722][ T6232] capability: warning: `syz.2.95' uses 32-bit capabilities (legacy support in use) [ 51.189872][ T6252] tipc: Enabled bearer , priority 7 [ 51.193794][ T6252] ªªªªªª: renamed from syzkaller0 [ 51.199110][ T6252] tipc: Disabling bearer [ 51.323301][ T6268] syzkaller0: entered promiscuous mode [ 51.323343][ T6268] syzkaller0: entered allmulticast mode [ 51.490456][ T6280] syz.2.104[6280] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 51.490505][ T6280] syz.2.104[6280] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 51.493647][ T6280] syz.2.104[6280] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 51.511119][ T6280] Cannot find add_set index 0 as target [ 51.554731][ T5935] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 51.623954][ T6295] netlink: 12 bytes leftover after parsing attributes in process `syz.2.111'. [ 51.686297][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 51.724584][ T5935] usb 5-1: Using ep0 maxpacket: 8 [ 51.731006][ T5935] usb 5-1: config 0 has an invalid interface number: 203 but max is 0 [ 51.731031][ T5935] usb 5-1: config 0 has no interface number 0 [ 51.732812][ T6299] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 51.745376][ T5935] usb 5-1: New USB device found, idVendor=257a, idProduct=260a, bcdDevice=69.93 [ 51.745402][ T5935] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 51.745423][ T5935] usb 5-1: Product: syz [ 51.745437][ T5935] usb 5-1: Manufacturer: syz [ 51.745450][ T5935] usb 5-1: SerialNumber: syz [ 51.760479][ T5935] usb 5-1: config 0 descriptor?? [ 51.766180][ T5935] option 5-1:0.203: GSM modem (1-port) converter detected [ 51.798743][ T6301] IPv6: NLM_F_CREATE should be specified when creating new route [ 51.981476][ T9] usb 5-1: USB disconnect, device number 2 [ 51.985656][ T9] option 5-1:0.203: device disconnected [ 52.165117][ T5938] Bluetooth: hci0: command 0x0419 tx timeout [ 52.259203][ T5938] Bluetooth: hci3: command 0x0419 tx timeout [ 52.259223][ T5287] Bluetooth: hci2: command 0x0419 tx timeout [ 52.266416][ T73] tipc: Node number set to 2130706433 [ 52.986256][ T6294] syz.3.110: vmalloc error: size 536875008, failed to allocated page array size 1048584, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 52.991225][ T6294] CPU: 1 UID: 0 PID: 6294 Comm: syz.3.110 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 52.993923][ T6294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.996869][ T6294] Call Trace: [ 52.997745][ T6294] [ 52.998519][ T6294] dump_stack_lvl+0x16c/0x1f0 [ 52.999765][ T6294] warn_alloc+0x24d/0x3a0 [ 53.000888][ T6294] ? __pfx_warn_alloc+0x10/0x10 [ 53.002163][ T6294] ? __get_vm_area_node+0x1b0/0x2f0 [ 53.003528][ T6294] ? __get_vm_area_node+0x1dc/0x2f0 [ 53.004905][ T6294] __vmalloc_node_range_noprof+0x1105/0x1530 [ 53.006507][ T6294] ? hash_ipport_create+0x845/0x1a00 [ 53.007900][ T6294] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 53.009553][ T6294] ? rcu_is_watching+0x12/0xc0 [ 53.010819][ T6294] ? trace_kmalloc+0x2d/0xd0 [ 53.012049][ T6294] ? __kmalloc_node_noprof.cold+0x5a/0x5f [ 53.013542][ T6294] ? hash_ipport_create+0x845/0x1a00 [ 53.014924][ T6294] __kvmalloc_node_noprof+0x14f/0x1a0 [ 53.016356][ T6294] ? hash_ipport_create+0x845/0x1a00 [ 53.017742][ T6294] hash_ipport_create+0x845/0x1a00 [ 53.019076][ T6294] ? __pfx_hash_ipport_create+0x10/0x10 [ 53.020474][ T6294] ? __pfx_hash_ipport_create+0x10/0x10 [ 53.021917][ T6294] ? ip_set_create+0x7cb/0x14d0 [ 53.023200][ T6294] ? ip_set_create+0x6c8/0x14d0 [ 53.024482][ T6294] ip_set_create+0x7cb/0x14d0 [ 53.025714][ T6294] ? __pfx_ip_set_create+0x10/0x10 [ 53.027090][ T6294] nfnetlink_rcv_msg+0x9c3/0x11e0 [ 53.028417][ T6294] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 53.029852][ T6294] ? __pfx___lock_acquire+0x10/0x10 [ 53.031220][ T6294] ? lock_acquire+0x2f/0xb0 [ 53.032421][ T6294] ? avc_has_perm_noaudit+0x61/0x3a0 [ 53.033812][ T6294] netlink_rcv_skb+0x16b/0x440 [ 53.035067][ T6294] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 53.036519][ T6294] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 53.037911][ T6294] ? bpf_lsm_capable+0x9/0x10 [ 53.039156][ T6294] ? security_capable+0x7e/0x260 [ 53.040475][ T6294] ? ns_capable+0xd7/0x110 [ 53.041660][ T6294] nfnetlink_rcv+0x1b4/0x430 [ 53.042886][ T6294] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 53.044249][ T6294] ? netlink_deliver_tap+0x1ae/0xd30 [ 53.045637][ T6294] netlink_unicast+0x53c/0x7f0 [ 53.046923][ T6294] ? __pfx_netlink_unicast+0x10/0x10 [ 53.048320][ T6294] netlink_sendmsg+0x8b8/0xd70 [ 53.049589][ T6294] ? __pfx_netlink_sendmsg+0x10/0x10 [ 53.051006][ T6294] ____sys_sendmsg+0xaaf/0xc90 [ 53.052270][ T6294] ? copy_msghdr_from_user+0x10b/0x160 [ 53.053697][ T6294] ? __pfx_____sys_sendmsg+0x10/0x10 [ 53.055078][ T6294] ___sys_sendmsg+0x135/0x1e0 [ 53.056345][ T6294] ? __pfx____sys_sendmsg+0x10/0x10 [ 53.057701][ T6294] ? __pfx_lock_release+0x10/0x10 [ 53.059012][ T6294] ? trace_lock_acquire+0x14e/0x1f0 [ 53.060378][ T6294] ? __fget_files+0x206/0x3a0 [ 53.061610][ T6294] __sys_sendmsg+0x16e/0x220 [ 53.062811][ T6294] ? __pfx___sys_sendmsg+0x10/0x10 [ 53.064147][ T6294] ? __x64_sys_futex+0x1e1/0x4c0 [ 53.065444][ T6294] do_syscall_64+0xcd/0x250 [ 53.066663][ T6294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 53.068203][ T6294] RIP: 0033:0x7fe97eb85d29 [ 53.069374][ T6294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 53.074355][ T6294] RSP: 002b:00007fe97fa69038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 53.076561][ T6294] RAX: ffffffffffffffda RBX: 00007fe97ed75fa0 RCX: 00007fe97eb85d29 [ 53.078607][ T6294] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 53.080658][ T6294] RBP: 00007fe97ec01a20 R08: 0000000000000000 R09: 0000000000000000 [ 53.082707][ T6294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 53.084759][ T6294] R13: 0000000000000000 R14: 00007fe97ed75fa0 R15: 00007ffcb5a9a348 [ 53.086816][ T6294] [ 53.090349][ T6294] Mem-Info: [ 53.091592][ T6294] active_anon:4310 inactive_anon:713 isolated_anon:0 [ 53.091592][ T6294] active_file:23530 inactive_file:15990 isolated_file:0 [ 53.091592][ T6294] unevictable:1768 dirty:18 writeback:0 [ 53.091592][ T6294] slab_reclaimable:8168 slab_unreclaimable:68695 [ 53.091592][ T6294] mapped:23676 shmem:2520 pagetables:735 [ 53.091592][ T6294] sec_pagetables:299 bounce:0 [ 53.091592][ T6294] kernel_misc_reclaimable:0 [ 53.091592][ T6294] free:441904 free_pcp:21516 free_cma:0 [ 53.103798][ T6294] Node 0 active_anon:17088kB inactive_anon:2852kB active_file:94120kB inactive_file:63888kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:94676kB dirty:72kB writeback:0kB shmem:6392kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11888kB pagetables:2936kB sec_pagetables:1196kB all_unreclaimable? no [ 53.112224][ T6294] Node 1 active_anon:152kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:28kB dirty:0kB writeback:0kB shmem:3688kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:4kB sec_pagetables:0kB all_unreclaimable? no [ 53.120043][ T6294] Node 0 DMA free:13616kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:20kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:452kB local_pcp:116kB free_cma:0kB [ 53.131718][ T6294] lowmem_reserve[]: 0 1212 0 0 0 [ 53.133046][ T6294] Node 0 DMA32 free:225048kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:17220kB inactive_anon:2852kB active_file:94120kB inactive_file:63888kB unevictable:3536kB writepending:72kB present:2080628kB managed:1269912kB mlocked:0kB bounce:0kB free_pcp:33680kB local_pcp:3304kB free_cma:0kB [ 53.140806][ T6294] lowmem_reserve[]: 0 0 0 0 0 [ 53.142128][ T6294] Node 1 Normal free:1551272kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:152kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:35424kB local_pcp:10884kB free_cma:0kB [ 53.151231][ T6294] lowmem_reserve[]: 0 0 0 0 0 [ 53.152591][ T6294] Node 0 DMA: 18*4kB (UM) 20*8kB (UM) 11*16kB (UM) 10*32kB (UM) 2*64kB (UM) 4*128kB (UM) 4*256kB (UM) 2*512kB (UM) 4*1024kB (UM) 1*2048kB (U) 1*4096kB (U) = 13656kB [ 53.157012][ T6294] Node 0 DMA32: 3*4kB (ME) 161*8kB (ME) 117*16kB (ME) 168*32kB (ME) 93*64kB (ME) 52*128kB (ME) 86*256kB (UME) 71*512kB (UME) 9*1024kB (UM) 4*2048kB (UM) 37*4096kB (U) = 248484kB [ 53.161743][ T6294] Node 1 Normal: 11*4kB (UM) 5*8kB (U) 4*16kB (UME) 35*32kB (U) 59*64kB (UME) 20*128kB (UME) 10*256kB (UME) 4*512kB (UE) 5*1024kB (UE) 5*2048kB (UM) 372*4096kB (UM) = 1551284kB [ 53.168693][ T6294] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 53.171176][ T6294] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 53.174179][ T6294] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 53.176772][ T6294] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 53.179279][ T6294] 42065 total pagecache pages [ 53.180525][ T6294] 25 pages in swap cache [ 53.181645][ T6294] Free swap = 124216kB [ 53.182741][ T6294] Total swap = 124996kB [ 53.183874][ T6294] 1048443 pages RAM [ 53.185042][ T6294] 0 pages HighMem/MovableOnly [ 53.186323][ T6294] 281644 pages reserved [ 53.187439][ T6294] 0 pages cma reserved [ 53.289179][ T6294] syz.3.110 (6294) used greatest stack depth: 18896 bytes left [ 53.313663][ T6348] syz.3.131[6348] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 53.562287][ T6339] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.572243][ T6341] netlink: 44 bytes leftover after parsing attributes in process `syz.2.128'. [ 53.656751][ T6339] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.742590][ T6339] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.765640][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 53.841645][ T6377] Illegal XDP return value 2183414403 on prog (id 112) dev N/A, expect packet loss! [ 53.884380][ T6339] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.081702][ T6339] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.096997][ T6388] tipc: Enabling of bearer rejected, failed to enable media [ 54.121097][ T6339] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.142416][ T6339] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.173098][ T6339] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.254869][ T5938] Bluetooth: hci0: command 0x0419 tx timeout [ 54.325162][ T5938] Bluetooth: hci2: command 0x0419 tx timeout [ 54.334540][ T5938] Bluetooth: hci3: command 0x0419 tx timeout [ 54.409775][ T39] kauditd_printk_skb: 272 callbacks suppressed [ 54.409785][ T39] audit: type=1400 audit(1734573002.952:539): avc: denied { bind } for pid=6394 comm="syz.0.151" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 54.410734][ T6395] IPv6: NLM_F_CREATE should be specified when creating new route [ 54.417326][ T39] audit: type=1400 audit(1734573002.952:540): avc: denied { name_bind } for pid=6394 comm="syz.0.151" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 54.429080][ T39] audit: type=1400 audit(1734573002.952:541): avc: denied { node_bind } for pid=6394 comm="syz.0.151" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 54.458544][ T6398] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.468483][ T39] audit: type=1400 audit(1734573003.012:542): avc: denied { wake_alarm } for pid=6399 comm="syz.2.154" capability=35 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 54.477709][ T39] audit: type=1326 audit(1734573003.022:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz.0.153" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb61d385d29 code=0x7ffc0000 [ 54.491949][ T39] audit: type=1326 audit(1734573003.022:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz.0.153" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb61d385d29 code=0x7ffc0000 [ 54.500465][ T39] audit: type=1326 audit(1734573003.022:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz.0.153" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb61d385d29 code=0x7ffc0000 [ 54.508010][ T39] audit: type=1326 audit(1734573003.022:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz.0.153" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb61d385d29 code=0x7ffc0000 [ 54.513890][ T39] audit: type=1326 audit(1734573003.022:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz.0.153" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb61d385d29 code=0x7ffc0000 [ 54.521061][ T39] audit: type=1326 audit(1734573003.022:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6401 comm="syz.0.153" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb61d385d29 code=0x7ffc0000 [ 54.535498][ T6398] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.536136][ T6402] netlink: 4 bytes leftover after parsing attributes in process `syz.0.153'. [ 54.600432][ T6416] syzkaller0: entered promiscuous mode [ 54.601944][ T6416] syzkaller0: entered allmulticast mode [ 54.617743][ T6418] netlink: 16 bytes leftover after parsing attributes in process `syz.2.161'. [ 54.620072][ T6418] netlink: 228 bytes leftover after parsing attributes in process `syz.2.161'. [ 54.622374][ T6418] netlink: 72 bytes leftover after parsing attributes in process `syz.2.161'. [ 54.637575][ T6398] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.805688][ T6398] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.938207][ T6398] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.944099][ T6398] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.949398][ T6398] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.955111][ T6398] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.072082][ T6438] netlink: 12 bytes leftover after parsing attributes in process `syz.2.170'. [ 55.499840][ T6457] bpf_get_probe_write_proto: 2 callbacks suppressed [ 55.499851][ T6457] syz.0.179[6457] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.501678][ T6457] syz.0.179[6457] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.504775][ T6457] syz.0.179[6457] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.773786][ T6470] No such timeout policy "syz0" [ 55.784668][ T6471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.183'. [ 55.844613][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 55.857780][ T6475] hub 9-0:1.0: USB hub found [ 55.859164][ T6475] hub 9-0:1.0: 1 port detected [ 55.979370][ T6491] syz.2.194[6491] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.979417][ T6491] syz.2.194[6491] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.982377][ T6491] syz.2.194[6491] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 56.138646][ T6498] netlink: 3 bytes leftover after parsing attributes in process `syz.0.196'. [ 56.146185][ T6498] batadv1: entered promiscuous mode [ 56.147635][ T6498] batadv1: entered allmulticast mode [ 56.210434][ T6506] tmpfs: Bad value for 'mpol' [ 56.252106][ T6510] netlink: 12 bytes leftover after parsing attributes in process `syz.2.201'. [ 56.316833][ T6518] batadv1: entered promiscuous mode [ 56.320728][ T6518] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 56.326960][ T6520] Cannot find set identified by id 0 to match [ 56.336392][ T5938] Bluetooth: hci0: command 0x0419 tx timeout [ 56.404725][ T5938] Bluetooth: hci3: command 0x0419 tx timeout [ 56.406939][ T5287] Bluetooth: hci2: command 0x0419 tx timeout [ 56.423793][ T6532] netlink: 'syz.3.213': attribute type 13 has an invalid length. [ 56.426604][ T6532] netlink: 152 bytes leftover after parsing attributes in process `syz.3.213'. [ 56.429602][ T6532] syz_tun: refused to change device tx_queue_len [ 56.431337][ T6532] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 56.503631][ T6540] No such timeout policy "syz0" [ 56.506110][ T6540] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 56.509327][ T6540] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 56.745081][ T6551] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 56.746888][ T6551] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 56.749539][ T6551] vhci_hcd vhci_hcd.0: Device attached [ 56.753411][ T6551] ICMPv6: NA: fd:f9:a6:84:a5:1b advertised our address fe80::aa on syz_tun! [ 56.756596][ T6559] vhci_hcd: connection closed [ 56.759082][ T1198] vhci_hcd: stop threads [ 56.761881][ T1198] vhci_hcd: release socket [ 56.763097][ T1198] vhci_hcd: disconnect device [ 56.877276][ T6565] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 56.975126][ T6572] netlink: 'syz.0.230': attribute type 21 has an invalid length. [ 56.977215][ T6572] netlink: 'syz.0.230': attribute type 20 has an invalid length. [ 56.979317][ T6572] IPv6: NLM_F_CREATE should be specified when creating new route [ 57.284170][ T6601] macvlan1: entered promiscuous mode [ 57.295828][ T6601] macvlan1 (unregistering): left promiscuous mode [ 57.302703][ T6603] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 57.304479][ T6603] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 57.307143][ T6603] vhci_hcd vhci_hcd.0: Device attached [ 57.309932][ T6604] vhci_hcd: connection closed [ 57.310312][ T1147] vhci_hcd: stop threads [ 57.312649][ T1147] vhci_hcd: release socket [ 57.313805][ T1147] vhci_hcd: disconnect device [ 57.425863][ T6611] SELinux: policydb table sizes (0,0) do not match mine (8,7) [ 57.429331][ T6611] SELinux: failed to load policy [ 57.857283][ T6619] syzkaller0: entered promiscuous mode [ 57.858916][ T6619] syzkaller0: entered allmulticast mode [ 57.924911][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 58.062490][ T6596] Bluetooth: hci3: Opcode 0x0401 failed: -4 [ 58.118533][ T6621] Zero length message leads to an empty skb [ 58.414678][ T5938] Bluetooth: hci0: command 0x0419 tx timeout [ 58.484737][ T5938] Bluetooth: hci3: command 0x0419 tx timeout [ 58.484787][ T5287] Bluetooth: hci2: command 0x0419 tx timeout [ 58.761032][ T6638] netlink: 'syz.3.259': attribute type 12 has an invalid length. [ 58.843191][ T6642] batadv1: entered promiscuous mode [ 58.848576][ T6642] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 59.250188][ T6651] syz.3.265 uses obsolete (PF_INET,SOCK_PACKET) [ 59.421896][ T6664] netlink: 'syz.0.269': attribute type 12 has an invalid length. [ 59.888806][ T39] kauditd_printk_skb: 305 callbacks suppressed [ 59.888816][ T39] audit: type=1400 audit(1734573008.432:854): avc: denied { name_bind } for pid=6691 comm="syz.3.281" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 59.956807][ T39] audit: type=1400 audit(1734573008.502:855): avc: denied { setattr } for pid=6695 comm="syz.1.283" name="file0" dev="tmpfs" ino=323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 59.987221][ T6700] syz.1.285[6700] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 59.987341][ T6700] syz.1.285[6700] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 59.990375][ T6700] syz.1.285[6700] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 60.004766][ T5287] Bluetooth: hci1: command 0x040f tx timeout [ 60.057190][ T39] audit: type=1400 audit(1734573008.602:856): avc: denied { read } for pid=6697 comm="syz.3.284" path="socket:[11108]" dev="sockfs" ino=11108 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 60.074488][ T39] audit: type=1326 audit(1734573008.612:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.080794][ T39] audit: type=1326 audit(1734573008.612:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.087561][ T39] audit: type=1326 audit(1734573008.612:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.093554][ T39] audit: type=1326 audit(1734573008.612:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.100299][ T39] audit: type=1326 audit(1734573008.612:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.106579][ T39] audit: type=1326 audit(1734573008.612:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.112425][ T39] audit: type=1326 audit(1734573008.612:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6697 comm="syz.3.284" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe97eb85d29 code=0x7fc00000 [ 60.202113][ T6715] syzkaller0: entered promiscuous mode [ 60.203613][ T6715] syzkaller0: entered allmulticast mode [ 60.223581][ T6719] __nla_validate_parse: 3 callbacks suppressed [ 60.223595][ T6719] netlink: 104 bytes leftover after parsing attributes in process `syz.3.293'. [ 60.524118][ T6753] netlink: 12 bytes leftover after parsing attributes in process `syz.3.307'. [ 60.564634][ T5287] Bluetooth: hci3: command 0x0419 tx timeout [ 60.576049][ T6759] netlink: 'syz.0.310': attribute type 12 has an invalid length. [ 60.667646][ T6768] netlink: 132 bytes leftover after parsing attributes in process `syz.2.311'. [ 60.678056][ T6770] syzkaller0: entered promiscuous mode [ 60.679584][ T6770] syzkaller0: entered allmulticast mode [ 60.803734][ T6783] netlink: 'syz.0.321': attribute type 12 has an invalid length. [ 60.866265][ T6785] netlink: 12 bytes leftover after parsing attributes in process `syz.0.322'. [ 61.037791][ T6799] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.072085][ T6803] syzkaller0: entered promiscuous mode [ 61.074541][ T6803] syzkaller0: entered allmulticast mode [ 61.233720][ T6813] netlink: 12 bytes leftover after parsing attributes in process `syz.0.334'. [ 61.537690][ T6799] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.542087][ T6806] netlink: 'syz.1.331': attribute type 12 has an invalid length. [ 61.545871][ T6818] tun0: tun_chr_ioctl cmd 1074025675 [ 61.548800][ T6818] tun0: persist enabled [ 61.588276][ T6799] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.610467][ T6825] geneve0: entered allmulticast mode [ 61.636699][ T2290] cfg80211: failed to load regulatory.db [ 61.649060][ T6799] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.657271][ T6829] syzkaller0: entered promiscuous mode [ 61.659287][ T6829] syzkaller0: entered allmulticast mode [ 61.659571][ T6831] netlink: 40 bytes leftover after parsing attributes in process `syz.0.341'. [ 61.681832][ T6831] tipc: Started in network mode [ 61.683670][ T6831] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 61.689007][ T6831] tipc: Enabled bearer , priority 0 [ 61.691582][ T6831] netlink: 8 bytes leftover after parsing attributes in process `syz.0.341'. [ 61.695162][ T6835] netlink: 12 bytes leftover after parsing attributes in process `syz.3.343'. [ 61.759986][ T6799] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.766668][ T6799] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.773134][ T6799] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.779140][ T6799] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.782393][ T6842] netlink: 40 bytes leftover after parsing attributes in process `syz.0.346'. [ 61.804021][ T6846] netlink: 8 bytes leftover after parsing attributes in process `syz.3.348'. [ 61.900272][ T6857] netlink: 'syz.1.353': attribute type 12 has an invalid length. [ 61.971041][ T6869] binfmt_misc: register: failed to install interpreter file ./file0 [ 62.024842][ T6879] binfmt_misc: register: failed to install interpreter file ./file0 [ 62.051016][ T6884] netlink: 'syz.0.365': attribute type 12 has an invalid length. [ 62.254981][ T6915] ------------[ cut here ]------------ [ 62.257246][ T6915] WARNING: CPU: 3 PID: 6915 at kernel/signal.c:2050 posixtimer_send_sigqueue+0xba8/0x1020 [ 62.260852][ T6915] Modules linked in: [ 62.262957][ T6915] CPU: 3 UID: 0 PID: 6915 Comm: syz.3.380 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 62.267980][ T6915] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 62.271855][ T6915] RIP: 0010:posixtimer_send_sigqueue+0xba8/0x1020 [ 62.274209][ T6915] Code: ff ff 4c 89 e7 e8 78 f8 9d 00 e9 7e f8 ff ff 41 bf 02 00 00 00 e9 87 f8 ff ff 48 89 54 24 10 48 89 44 24 08 e8 79 52 3b 00 90 <0f> 0b 90 48 8d 7b 10 48 8b 44 24 08 48 b9 00 00 00 00 00 fc ff df [ 62.281171][ T6915] RSP: 0018:ffffc90003f27c38 EFLAGS: 00010087 [ 62.283386][ T6915] RAX: 0000000000021947 RBX: ffff8880535d0960 RCX: ffffc90007381000 [ 62.286284][ T6915] RDX: 0000000000080000 RSI: ffffffff815ec2d7 RDI: 0000000000000001 [ 62.289172][ T6915] RBP: ffff88804f5f8000 R08: 0000000000000001 R09: 0000000000000000 [ 62.292061][ T6915] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880535d0a04 [ 62.294950][ T6915] R13: 1ffff920007e4f8c R14: ffff8880535d0a38 R15: ffff8880535d0a20 [ 62.297845][ T6915] FS: 00007fe97fa696c0(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000 [ 62.301091][ T6915] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.303507][ T6915] CR2: 0000000020044000 CR3: 0000000059552000 CR4: 0000000000352ef0 [ 62.306442][ T6915] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 62.309325][ T6915] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 62.312197][ T6915] Call Trace: [ 62.313426][ T6915] [ 62.314518][ T6915] ? __warn+0xea/0x3c0 [ 62.316048][ T6915] ? posixtimer_send_sigqueue+0xba8/0x1020 [ 62.318177][ T6915] ? report_bug+0x3c0/0x580 [ 62.319873][ T6915] ? handle_bug+0x54/0xa0 [ 62.321508][ T6915] ? exc_invalid_op+0x17/0x50 [ 62.323161][ T6915] ? asm_exc_invalid_op+0x1a/0x20 [ 62.324934][ T6915] ? posixtimer_send_sigqueue+0xba7/0x1020 [ 62.326991][ T6915] ? posixtimer_send_sigqueue+0xba8/0x1020 [ 62.328692][ T6915] ? posixtimer_send_sigqueue+0xba7/0x1020 [ 62.330203][ T6915] ? do_raw_spin_lock+0x12d/0x2c0 [ 62.331480][ T6915] ? __pfx_posixtimer_send_sigqueue+0x10/0x10 [ 62.333007][ T6915] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 62.334372][ T6915] posix_cpu_timers_work+0xae8/0x1380 [ 62.335792][ T6915] ? __pfx_posix_cpu_timers_work+0x10/0x10 [ 62.337327][ T6915] ? task_work_run+0x126/0x250 [ 62.338584][ T6915] ? do_raw_spin_lock+0x12d/0x2c0 [ 62.339919][ T6915] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 62.341333][ T6915] task_work_run+0x14e/0x250 [ 62.342556][ T6915] ? __pfx_task_work_run+0x10/0x10 [ 62.343909][ T6915] ? __pfx_do_writev+0x10/0x10 [ 62.345183][ T6915] syscall_exit_to_user_mode+0x27b/0x2a0 [ 62.346678][ T6915] do_syscall_64+0xda/0x250 [ 62.347884][ T6915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.349433][ T6915] RIP: 0033:0x7fe97eb85d29 [ 62.350611][ T6915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 62.355614][ T6915] RSP: 002b:00007fe97fa69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 62.357776][ T6915] RAX: 0000000000000058 RBX: 00007fe97ed75fa0 RCX: 00007fe97eb85d29 [ 62.359838][ T6915] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000004 [ 62.361910][ T6915] RBP: 00007fe97ec01a20 R08: 0000000000000000 R09: 0000000000000000 [ 62.363977][ T6915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 62.366075][ T6915] R13: 0000000000000000 R14: 00007fe97ed75fa0 R15: 00007ffcb5a9a348 [ 62.368146][ T6915] [ 62.368967][ T6915] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 62.370866][ T6915] CPU: 3 UID: 0 PID: 6915 Comm: syz.3.380 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 [ 62.373603][ T6915] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 62.376406][ T6915] Call Trace: [ 62.377287][ T6915] [ 62.378070][ T6915] dump_stack_lvl+0x3d/0x1f0 [ 62.379311][ T6915] panic+0x71d/0x800 [ 62.380357][ T6915] ? __pfx_panic+0x10/0x10 [ 62.381534][ T6915] ? show_trace_log_lvl+0x29d/0x3d0 [ 62.382899][ T6915] ? posixtimer_send_sigqueue+0xba8/0x1020 [ 62.384432][ T6915] check_panic_on_warn+0xab/0xb0 [ 62.385730][ T6915] __warn+0xf6/0x3c0 [ 62.386772][ T6915] ? posixtimer_send_sigqueue+0xba8/0x1020 [ 62.388309][ T6915] report_bug+0x3c0/0x580 [ 62.389481][ T6915] handle_bug+0x54/0xa0 [ 62.390583][ T6915] exc_invalid_op+0x17/0x50 [ 62.391789][ T6915] asm_exc_invalid_op+0x1a/0x20 [ 62.393076][ T6915] RIP: 0010:posixtimer_send_sigqueue+0xba8/0x1020 [ 62.394726][ T6915] Code: ff ff 4c 89 e7 e8 78 f8 9d 00 e9 7e f8 ff ff 41 bf 02 00 00 00 e9 87 f8 ff ff 48 89 54 24 10 48 89 44 24 08 e8 79 52 3b 00 90 <0f> 0b 90 48 8d 7b 10 48 8b 44 24 08 48 b9 00 00 00 00 00 fc ff df [ 62.399716][ T6915] RSP: 0018:ffffc90003f27c38 EFLAGS: 00010087 [ 62.401295][ T6915] RAX: 0000000000021947 RBX: ffff8880535d0960 RCX: ffffc90007381000 [ 62.403339][ T6915] RDX: 0000000000080000 RSI: ffffffff815ec2d7 RDI: 0000000000000001 [ 62.405417][ T6915] RBP: ffff88804f5f8000 R08: 0000000000000001 R09: 0000000000000000 [ 62.407524][ T6915] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880535d0a04 [ 62.409587][ T6915] R13: 1ffff920007e4f8c R14: ffff8880535d0a38 R15: ffff8880535d0a20 [ 62.411661][ T6915] ? posixtimer_send_sigqueue+0xba7/0x1020 [ 62.413189][ T6915] ? posixtimer_send_sigqueue+0xba7/0x1020 [ 62.414706][ T6915] ? do_raw_spin_lock+0x12d/0x2c0 [ 62.416048][ T6915] ? __pfx_posixtimer_send_sigqueue+0x10/0x10 [ 62.417628][ T6915] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 62.419030][ T6915] posix_cpu_timers_work+0xae8/0x1380 [ 62.420477][ T6915] ? __pfx_posix_cpu_timers_work+0x10/0x10 [ 62.422002][ T6915] ? task_work_run+0x126/0x250 [ 62.423258][ T6915] ? do_raw_spin_lock+0x12d/0x2c0 [ 62.424580][ T6915] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 62.426028][ T6915] task_work_run+0x14e/0x250 [ 62.427256][ T6915] ? __pfx_task_work_run+0x10/0x10 [ 62.428609][ T6915] ? __pfx_do_writev+0x10/0x10 [ 62.429864][ T6915] syscall_exit_to_user_mode+0x27b/0x2a0 [ 62.431330][ T6915] do_syscall_64+0xda/0x250 [ 62.432540][ T6915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.434118][ T6915] RIP: 0033:0x7fe97eb85d29 [ 62.435286][ T6915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 62.440282][ T6915] RSP: 002b:00007fe97fa69038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 62.442441][ T6915] RAX: 0000000000000058 RBX: 00007fe97ed75fa0 RCX: 00007fe97eb85d29 [ 62.444492][ T6915] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000004 [ 62.446577][ T6915] RBP: 00007fe97ec01a20 R08: 0000000000000000 R09: 0000000000000000 [ 62.448656][ T6915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 62.450696][ T6915] R13: 0000000000000000 R14: 00007fe97ed75fa0 R15: 00007ffcb5a9a348 [ 62.452755][ T6915] [ 62.454104][ T6915] Kernel Offset: disabled [ 62.455334][ T6915] Rebooting in 86400 seconds.. VM DIAGNOSIS: 01:50:10 Registers: info registers vcpu 0 CPU#0 RAX=00000000000dcbd5 RBX=0000000000000000 RCX=ffffffff8b298759 RDX=0000000000000000 RSI=ffffffff8b6cd860 RDI=ffffffff8bd1e960 RBP=fffffbfff1bd2ef8 RSP=ffffffff8de07e20 R8 =0000000000000001 R9 =ffffed100d4c6fed R10=ffff88806a637f6b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8de977c0 R14=ffffffff905f3250 R15=0000000000000000 RIP=ffffffff8b299b3f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f84216e23e0 CR3=0000000033442000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001030001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029b2 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029bf ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029b9 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029cd ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d402a53 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d402b31 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d54b488 00007fb61d54b480 00007fb61d54b478 00007fb61d54b450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61e0ad100 00007fb61d54b440 00007fb61d540004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d54b498 00007fb61d54b490 00007fb61d54b488 00007fb61d54b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffffff96e52aa8 RBX=ffff88804f605428 RCX=1ffffffff2dca561 RDX=dffffc0000000000 RSI=0000000000000008 RDI=ffffffff96e52b08 RBP=ffffc9000577f3f8 RSP=ffffc9000577f2c0 R8 =0000000000000000 R9 =fffffbfff2dca198 R10=ffffffff96e50cc7 R11=0000000000000005 R12=ffff88804f604880 R13=0000000000000200 R14=0000000000000009 R15=1ffff92000aefe5e RIP=ffffffff8176669e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa60d9c36c0 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe97ec25c0c CR3=0000000054702000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cc029b2 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cc029bf ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cc029b9 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cc029cd ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cc02a53 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cc02b31 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cd4b488 00007fa60cd4b480 00007fa60cd4b478 00007fa60cd4b450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60d8ad100 00007fa60cd4b440 00007fa60cd4b458 00007fa60cd4b4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa60cd4b498 00007fa60cd4b490 00007fa60cd4b488 00007fa60cd4b480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000005 0000000000000000 0000000000000000 0000000000000130 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000080623 RBX=0000000000000002 RCX=ffffffff8b298759 RDX=0000000000000000 RSI=ffffffff8b6cd860 RDI=ffffffff8bd1e960 RBP=ffffed1003ad4000 RSP=ffffc90000197e08 R8 =0000000000000001 R9 =ffffed100d506fed R10=ffff88806a837f6b R11=0000000000000000 R12=0000000000000002 R13=ffff88801d6a0000 R14=ffffffff905f3250 R15=0000000000000000 RIP=ffffffff8b299b3f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c3c9e03 CR3=000000002934a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000080000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcb5a9a6e0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe97ec029b2 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe97ec029bf ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe97ec029b9 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe97ec029cd ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe97ec02a53 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe97ec02b31 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff851bb1b5 RDI=ffffffff9ab0ebe0 RBP=ffffffff9ab0eba0 RSP=ffffc90003f27598 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000008 R12=0000000000000000 R13=0000000000000036 R14=ffffffff851bb150 R15=0000000000000000 RIP=ffffffff851bb1df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fe97fa696c0 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020044000 CR3=0000000059552000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000080000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc05befbc0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029b2 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029bf ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029b9 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d4029cd ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d402a53 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb61d402b31 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425f434900414e 41445f444c005242 494c444449005f44 4c00574f4e5f444e ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004644 4c0057444c004441 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000