last executing test programs: 1.805452003s ago: executing program 1 (id=720): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, 0x0) 1.692750498s ago: executing program 1 (id=724): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) r1 = dup(r0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000dc0), 0x6df8}}, 0x0) ppoll(&(0x7f00000001c0)=[{r1}], 0x1, &(0x7f0000000200)={0x0, 0x989680}, 0x0, 0x0) 467.730411ms ago: executing program 1 (id=760): r0 = socket(0xa, 0x3, 0xff) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @empty, 0x4000002}, 0x1c) socket$inet6(0xa, 0x3, 0xff) syz_emit_ethernet(0xfca9, &(0x7f0000000280)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x38, 0x3a, 0xfe, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0xffff7fff, {0x2, 0x6, "081331", 0x3f6f, 0xff, 0x0, @mcast1, @loopback, [@fragment={0x84, 0x0, 0xa, 0x0, 0x0, 0x7, 0x65}]}}}}}}}, 0x0) 435.326083ms ago: executing program 1 (id=761): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000) mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0) syz_clone(0x140011, 0x0, 0x0, 0x0, 0x0, 0x0) 434.327553ms ago: executing program 0 (id=763): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f00000025c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)='P', 0x1}], 0x1}}, {{&(0x7f0000000100)={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000002400)=[{&(0x7f0000000140)='i', 0x1}], 0x1}}], 0x2, 0x0) shutdown(r0, 0x1) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000440)=@sack_info={0x0, 0x3, 0x2}, 0xc) 380.373802ms ago: executing program 0 (id=764): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615, 0x1ef}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_ADDRESS={0xa, 0x1, @broadcast}]}, 0x48}}, 0x0) 378.062156ms ago: executing program 1 (id=765): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x587, 0x0, 0x6}]}) 302.106036ms ago: executing program 0 (id=767): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CAP_HYPERV_DIRECT_TLBFLUSH(r2, 0x4068aea3, &(0x7f0000000380)) 280.563144ms ago: executing program 3 (id=769): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(r0) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="600000000206050000000000fffff0000000000005000100060000000900020073797a32000000000500040000000000140007800800124000080000080008400000000014000300686173683a69702c706f72742c6970000500050002"], 0x60}, 0x1, 0x0, 0x0, 0x85}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x28, 0x3, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x4) 272.803796ms ago: executing program 1 (id=770): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8}}, &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0, 0x0, 0x5}, 0x18) mkdir(&(0x7f0000000580)='./file0\x00', 0x0) mount(&(0x7f0000000180)=@filename='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000300)='pvfs2\x00', 0x11, 0x0) 211.830042ms ago: executing program 2 (id=771): syz_open_dev$usbmon(&(0x7f0000000280), 0x0, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 211.509422ms ago: executing program 3 (id=772): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000080)={0x79, 0x0, 0x1}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000100)=ANY=[@ANYBLOB="0108"]) 210.712195ms ago: executing program 2 (id=773): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000000a499d0000000000000000020000010900010073797a310000000008000240000000030400060014000000110001"], 0x54}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETTABLE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x14, 0x1, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x400c895}, 0x20000000) 131.750978ms ago: executing program 2 (id=774): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000600)={0x0, 0x0, @pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}) 128.437265ms ago: executing program 0 (id=782): madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680)) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) llistxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0xfff9) 70.174573ms ago: executing program 3 (id=775): r0 = syz_open_dev$media(&(0x7f00000012c0), 0x46, 0x180502) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r1}, 0x10) ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000180)={{0x80000000, 0x0, 0x6, [0xffffffff, 0x12]}, {0x80000000, 0x0, 0x2, [0x9, 0x1]}, 0x4, [0x3, 0x101]}) 69.840946ms ago: executing program 0 (id=776): r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x484b1e3341a13be1, 0x0) fchdir(r0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') mount(&(0x7f0000000000), &(0x7f0000000040)='./cgroup\x00', 0x0, 0x9001, 0x0) 68.915013ms ago: executing program 3 (id=777): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60}) mremap(&(0x7f0000638000/0x1000)=nil, 0x6aa000, 0x2000, 0x3, &(0x7f00005c0000/0x2000)=nil) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f00000002c0)={{&(0x7f000074f000/0x3000)=nil, 0x3000}, 0x1}) 59.300103ms ago: executing program 0 (id=778): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x585, 0x0, 0x7}]}) 58.303607ms ago: executing program 2 (id=779): bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha512\x00'}, 0x58) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x55f2, 0x0, 0x0, 0x1000}, 0x10) write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000100", 0x41d) 741.728µs ago: executing program 3 (id=780): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c1300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000048aa005e850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f0000000200)="cf", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0xfa82, @loopback, 0xffffffff}, 0x1c) 496.11µs ago: executing program 2 (id=781): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f00000007c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0x0) 373.947µs ago: executing program 3 (id=783): syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 0s ago: executing program 2 (id=784): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8002, 0xc}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641c00000000002008007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000580)={r1}, 0xc) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:27304' (ED25519) to the list of known hosts. [ 41.483302][ T5902] cgroup: Unknown subsys name 'net' [ 41.610423][ T5902] cgroup: Unknown subsys name 'cpuset' [ 41.615466][ T5902] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.650933][ T5902] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 46.231265][ T5981] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 46.234976][ T5981] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.235195][ T5989] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 46.237172][ T5992] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.237680][ T5981] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.238100][ T5981] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.238360][ T5981] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 46.243144][ T5995] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 46.243384][ T63] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 46.243955][ T63] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 46.244521][ T63] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 46.244768][ T63] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 46.251337][ T5992] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.252686][ T5995] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 46.254505][ T5992] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.257446][ T5995] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 46.259719][ T5992] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.261940][ T5995] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 46.263645][ T5992] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.274814][ T5995] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.465070][ T5977] chnl_net:caif_netlink_parms(): no params data found [ 46.533699][ T5978] chnl_net:caif_netlink_parms(): no params data found [ 46.617713][ T5979] chnl_net:caif_netlink_parms(): no params data found [ 46.646137][ T5977] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.648891][ T5977] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.651465][ T5977] bridge_slave_0: entered allmulticast mode [ 46.654445][ T5977] bridge_slave_0: entered promiscuous mode [ 46.660580][ T5991] chnl_net:caif_netlink_parms(): no params data found [ 46.697201][ T5977] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.699687][ T5977] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.702000][ T5977] bridge_slave_1: entered allmulticast mode [ 46.704987][ T5977] bridge_slave_1: entered promiscuous mode [ 46.760164][ T5978] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.762442][ T5978] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.765476][ T5978] bridge_slave_0: entered allmulticast mode [ 46.769470][ T5978] bridge_slave_0: entered promiscuous mode [ 46.802033][ T5977] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.809521][ T5978] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.812585][ T5978] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.816724][ T5978] bridge_slave_1: entered allmulticast mode [ 46.820485][ T5978] bridge_slave_1: entered promiscuous mode [ 46.846877][ T5977] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.922304][ T5978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.957150][ T5979] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.960673][ T5979] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.963860][ T5979] bridge_slave_0: entered allmulticast mode [ 46.968092][ T5979] bridge_slave_0: entered promiscuous mode [ 46.972330][ T5978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.002209][ T5977] team0: Port device team_slave_0 added [ 47.036625][ T5979] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.039112][ T5979] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.041426][ T5979] bridge_slave_1: entered allmulticast mode [ 47.044257][ T5979] bridge_slave_1: entered promiscuous mode [ 47.068588][ T5977] team0: Port device team_slave_1 added [ 47.086787][ T5991] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.089611][ T5991] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.092536][ T5991] bridge_slave_0: entered allmulticast mode [ 47.096135][ T5991] bridge_slave_0: entered promiscuous mode [ 47.099975][ T5991] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.102785][ T5991] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.106231][ T5991] bridge_slave_1: entered allmulticast mode [ 47.109281][ T5991] bridge_slave_1: entered promiscuous mode [ 47.212836][ T5979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.217501][ T5978] team0: Port device team_slave_0 added [ 47.220414][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.222793][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.231172][ T5977] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.236543][ T5977] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.238836][ T5977] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.247159][ T5977] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.252281][ T5991] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.257640][ T5979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.261616][ T5978] team0: Port device team_slave_1 added [ 47.291079][ T5991] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.353660][ T5979] team0: Port device team_slave_0 added [ 47.359657][ T5979] team0: Port device team_slave_1 added [ 47.363520][ T5978] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.366679][ T5978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.376542][ T5978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.446539][ T5978] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.448763][ T5978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.456849][ T5978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.462038][ T5991] team0: Port device team_slave_0 added [ 47.485734][ T5979] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.488410][ T5979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.499042][ T5979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.517923][ T5977] hsr_slave_0: entered promiscuous mode [ 47.520379][ T5977] hsr_slave_1: entered promiscuous mode [ 47.528893][ T5991] team0: Port device team_slave_1 added [ 47.532236][ T5979] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.535362][ T5979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.547599][ T5979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.712715][ T5979] hsr_slave_0: entered promiscuous mode [ 47.715575][ T5979] hsr_slave_1: entered promiscuous mode [ 47.717796][ T5979] debugfs: 'hsr0' already exists in 'hsr' [ 47.719679][ T5979] Cannot create hsr debugfs directory [ 47.722572][ T5991] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.726052][ T5991] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.736450][ T5991] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.747505][ T5978] hsr_slave_0: entered promiscuous mode [ 47.749896][ T5978] hsr_slave_1: entered promiscuous mode [ 47.751969][ T5978] debugfs: 'hsr0' already exists in 'hsr' [ 47.753840][ T5978] Cannot create hsr debugfs directory [ 47.765124][ T5991] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.767307][ T5991] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.775271][ T5991] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.961118][ T5991] hsr_slave_0: entered promiscuous mode [ 47.963394][ T5991] hsr_slave_1: entered promiscuous mode [ 47.966391][ T5991] debugfs: 'hsr0' already exists in 'hsr' [ 47.968222][ T5991] Cannot create hsr debugfs directory [ 48.128931][ T5977] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 48.138271][ T5977] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 48.160661][ T5977] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 48.172680][ T5977] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 48.228982][ T5978] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 48.236658][ T5978] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 48.242902][ T5978] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 48.255722][ T5990] Bluetooth: hci0: command tx timeout [ 48.259720][ T5978] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 48.305145][ T5991] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 48.310100][ T5991] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 48.314752][ T5991] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 48.320490][ T5991] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 48.325043][ T5990] Bluetooth: hci2: command tx timeout [ 48.326087][ T5995] Bluetooth: hci1: command tx timeout [ 48.334874][ T5995] Bluetooth: hci3: command tx timeout [ 48.397360][ T5979] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 48.411080][ T5979] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 48.415923][ T5979] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 48.428669][ T5979] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 48.438376][ T5977] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.481798][ T5977] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.491676][ T5978] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.500456][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.502841][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.512824][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.515217][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.533347][ T5991] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.543509][ T5978] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.557972][ T73] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.560282][ T73] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.574611][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.576938][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.583822][ T5991] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.596825][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.599127][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.610870][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.613776][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.653897][ T5979] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.682426][ T5979] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.696894][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.700255][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.717283][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.720279][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.744133][ T5977] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.799188][ T5978] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.808739][ T5991] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.817215][ T5977] veth0_vlan: entered promiscuous mode [ 48.832103][ T5977] veth1_vlan: entered promiscuous mode [ 48.872344][ T5991] veth0_vlan: entered promiscuous mode [ 48.885119][ T5991] veth1_vlan: entered promiscuous mode [ 48.888437][ T5977] veth0_macvtap: entered promiscuous mode [ 48.895568][ T5978] veth0_vlan: entered promiscuous mode [ 48.905934][ T5977] veth1_macvtap: entered promiscuous mode [ 48.913556][ T5978] veth1_vlan: entered promiscuous mode [ 48.919155][ T5979] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.939160][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.942455][ T5991] veth0_macvtap: entered promiscuous mode [ 48.952893][ T5977] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.956252][ T5991] veth1_macvtap: entered promiscuous mode [ 48.970785][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.974264][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.982252][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.988392][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.001730][ T5978] veth0_macvtap: entered promiscuous mode [ 49.008052][ T5991] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.016197][ T5991] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.029744][ T5978] veth1_macvtap: entered promiscuous mode [ 49.038561][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.043585][ T5979] veth0_vlan: entered promiscuous mode [ 49.049768][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.053894][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.068451][ T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.076251][ T5979] veth1_vlan: entered promiscuous mode [ 49.082197][ T5978] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.094793][ T5978] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.121831][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.127878][ T5979] veth0_macvtap: entered promiscuous mode [ 49.128182][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.132820][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.137153][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.141036][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.153112][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.159288][ T5979] veth1_macvtap: entered promiscuous mode [ 49.179221][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.182392][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.208602][ T5979] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.213059][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.217861][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.218840][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.223059][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.240080][ T5979] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.247053][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.250377][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.263940][ T1250] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.268592][ T1250] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.280348][ T1250] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.283570][ T5977] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 49.287599][ T1250] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.305855][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.309452][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.371762][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.378915][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.399178][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.401709][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.896262][ T6123] can0: slcan on ttyS3. [ 49.964821][ T6123] can0 (unregistered): slcan off ttyS3. [ 50.112883][ C1] Illegal XDP return value 16128 on prog (id 5) dev veth0_to_bond, expect packet loss! [ 50.173428][ T6150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.39'. [ 50.326059][ T5995] Bluetooth: hci0: command tx timeout [ 50.404763][ T5995] Bluetooth: hci3: command tx timeout [ 50.405041][ T5990] Bluetooth: hci1: command tx timeout [ 50.406723][ T5995] Bluetooth: hci2: command tx timeout [ 50.807043][ T6195] bridge0: entered promiscuous mode [ 50.809131][ T6195] macvlan2: entered promiscuous mode [ 51.931733][ T6288] warning: `syz.0.103' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 51.990716][ T6290] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.994286][ T6290] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.042420][ T6290] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 52.051259][ T6290] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 52.161367][ T46] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.164822][ T46] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 52.167819][ T46] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.170902][ T46] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 52.173883][ T46] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.177589][ T46] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 52.180390][ T46] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.183439][ T46] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 52.340049][ T6309] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 52.384599][ T6313] process 'syz.0.110' launched './file0' with NULL argv: empty string added [ 52.407862][ T5992] Bluetooth: hci0: command tx timeout [ 52.485800][ T5992] Bluetooth: hci1: command tx timeout [ 52.486044][ T5995] Bluetooth: hci3: command tx timeout [ 52.487506][ T5990] Bluetooth: hci2: command tx timeout [ 52.955616][ T6351] batadv_slave_1: entered promiscuous mode [ 52.958965][ T6351] batadv_slave_1: left promiscuous mode [ 53.201053][ T6382] netlink: 'syz.2.145': attribute type 1 has an invalid length. [ 53.203573][ T6382] netlink: 188 bytes leftover after parsing attributes in process `syz.2.145'. [ 53.289830][ T40] audit: type=1326 audit(2000000003.279:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6393 comm="syz.1.150" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f71579 code=0x0 [ 53.504126][ T6414] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present [ 53.507823][ T6027] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 53.509956][ T6414] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9) [ 53.684313][ T6027] usb 5-1: Using ep0 maxpacket: 32 [ 53.695833][ T6027] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 53.698346][ T6027] usb 5-1: config 0 has no interface number 0 [ 53.701697][ T6027] usb 5-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8 [ 53.704681][ T6027] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 53.707229][ T6027] usb 5-1: Product: syz [ 53.708539][ T6027] usb 5-1: Manufacturer: syz [ 53.709949][ T6027] usb 5-1: SerialNumber: syz [ 53.713293][ T6027] usb 5-1: config 0 descriptor?? [ 53.720322][ T6027] usb 5-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 53.723086][ T6027] usb 5-1: selecting invalid altsetting 1 [ 53.725351][ T6027] usb 5-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 53.730121][ T6027] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 53.733408][ T6027] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 53.736842][ T6027] usb 5-1: media controller created [ 53.746567][ T6027] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 54.032792][ T6444] o2cb: This node has not been configured. [ 54.036973][ T6444] o2cb: Cluster check failed. Fix errors before retrying. [ 54.040063][ T6444] (syz.2.173,6444,2):user_dlm_register:674 ERROR: status = -22 [ 54.043278][ T6444] (syz.2.173,6444,2):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0" [ 54.096974][ T6448] GUP no longer grows the stack in syz.3.175 (6448): 80004000-80005000 (80001000) [ 54.100178][ T6448] CPU: 3 UID: 0 PID: 6448 Comm: syz.3.175 Not tainted syzkaller #0 PREEMPT(full) [ 54.100193][ T6448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.100200][ T6448] Call Trace: [ 54.100204][ T6448] [ 54.100208][ T6448] dump_stack_lvl+0x16c/0x1f0 [ 54.100228][ T6448] gup_vma_lookup+0x1d2/0x220 [ 54.100259][ T6448] __get_user_pages+0x243/0x34a0 [ 54.100280][ T6448] ? register_lock_class+0x41/0x4c0 [ 54.100297][ T6448] ? __pfx___get_user_pages+0x10/0x10 [ 54.100311][ T6448] ? do_fast_syscall_32+0x32/0x80 [ 54.100331][ T6448] __gup_longterm_locked+0xa92/0x17e0 [ 54.100347][ T6448] ? __lock_acquire+0xb97/0x1ce0 [ 54.100364][ T6448] ? __pfx___gup_longterm_locked+0x10/0x10 [ 54.100387][ T6448] pin_user_pages_remote+0xed/0x140 [ 54.100404][ T6448] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 54.100419][ T6448] ? mm_access+0x22d/0x2e0 [ 54.100438][ T6448] process_vm_rw_core.constprop.0+0x41b/0x970 [ 54.100455][ T6448] ? rcu_is_watching+0x12/0xc0 [ 54.100469][ T6448] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 54.100485][ T6448] ? iovec_from_user+0xbb/0x140 [ 54.100502][ T6448] ? iovec_from_user+0xbb/0x140 [ 54.100513][ T6448] process_vm_rw+0x216/0x2c0 [ 54.100528][ T6448] ? __pfx_process_vm_rw+0x10/0x10 [ 54.100546][ T6448] ? __pfx___mm_populate+0x10/0x10 [ 54.100574][ T6448] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 54.100593][ T6448] __ia32_sys_process_vm_writev+0xdf/0x1b0 [ 54.100608][ T6448] ? lockdep_hardirqs_on+0x7c/0x110 [ 54.100622][ T6448] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 54.100637][ T6448] __do_fast_syscall_32+0x7c/0x3a0 [ 54.100653][ T6448] do_fast_syscall_32+0x32/0x80 [ 54.100667][ T6448] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.100681][ T6448] RIP: 0023:0xf7fc2579 [ 54.100690][ T6448] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.100700][ T6448] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 000000000000015c [ 54.100720][ T6448] RAX: ffffffffffffffda RBX: 000000000000005c RCX: 0000000080c22000 [ 54.100728][ T6448] RDX: 000000000000002b RSI: 0000000080c22fa0 RDI: 0000000000000001 [ 54.100735][ T6448] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.100741][ T6448] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.100748][ T6448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.100762][ T6448] [ 54.143886][ T40] audit: type=1326 audit(2000000004.129:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.194907][ T40] audit: type=1326 audit(2000000004.129:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.201861][ T40] audit: type=1326 audit(2000000004.129:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.210468][ T40] audit: type=1326 audit(2000000004.129:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.220204][ T40] audit: type=1326 audit(2000000004.129:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.227475][ T40] audit: type=1326 audit(2000000004.139:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.234334][ T40] audit: type=1326 audit(2000000004.139:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.241238][ T40] audit: type=1326 audit(2000000004.139:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.249827][ T40] audit: type=1326 audit(2000000004.139:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6451 comm="syz.3.177" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 54.282904][ T6458] bridge_slave_0: invalid flags given to default FDB implementation [ 54.323208][ T6460] netlink: 'syz.2.181': attribute type 1 has an invalid length. [ 54.353753][ T6462] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 54.484716][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.487249][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.489734][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.492201][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.494797][ T5995] Bluetooth: hci0: command tx timeout [ 54.495372][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.499989][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.503072][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.505883][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.508969][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.511557][ T6475] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 54.559077][ T6480] af_packet: tpacket_rcv: packet too big, clamped from 64989 to 3952. macoff=96 [ 54.574603][ T5995] Bluetooth: hci3: command tx timeout [ 54.578309][ T5995] Bluetooth: hci1: command tx timeout [ 54.580893][ T5995] Bluetooth: hci2: command tx timeout [ 54.816982][ T6027] usb 5-1: dvb_usb_ce6230: usb_control_msg() failed=-110 [ 54.820987][ T6027] zl10353_read_register: readreg error (reg=127, ret==-110) [ 54.846779][ T6391] usb 5-1: dvb_usb_ce6230: usb_control_msg() failed=-32 [ 54.854291][ T6027] usb 5-1: USB disconnect, device number 2 [ 55.233788][ T6519] (syz.3.207,6519,2):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 55.409834][ T6537] Bluetooth: MGMT ver 1.23 [ 55.501653][ T6548] netlink: 28 bytes leftover after parsing attributes in process `syz.0.220'. [ 55.838460][ T6570] netlink: 4 bytes leftover after parsing attributes in process `syz.1.231'. [ 56.473145][ T6601] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 56.614005][ T6617] netlink: 232 bytes leftover after parsing attributes in process `syz.0.250'. [ 56.734133][ T6020] IPVS: starting estimator thread 0... [ 56.834808][ T6630] IPVS: using max 43 ests per chain, 103200 per kthread [ 56.946256][ T6660] netlink: 28 bytes leftover after parsing attributes in process `syz.2.264'. [ 56.949205][ T6660] Zero length message leads to an empty skb [ 57.161403][ T6689] dlm: non-version read from control device 34 [ 57.179566][ T6691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.279'. [ 57.230518][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.283'. [ 57.313180][ T6710] netlink: 4 bytes leftover after parsing attributes in process `syz.2.287'. [ 57.567123][ T6730] syz.0.295 uses obsolete (PF_INET,SOCK_PACKET) [ 57.570834][ T6730] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 57.573742][ T6730] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 58.021321][ T6758] netlink: 'syz.3.308': attribute type 4 has an invalid length. [ 58.085776][ T6764] netlink: 4 bytes leftover after parsing attributes in process `syz.2.311'. [ 58.090706][ T6764] netlink: 292 bytes leftover after parsing attributes in process `syz.2.311'. [ 58.093653][ T6764] netlink: 292 bytes leftover after parsing attributes in process `syz.2.311'. [ 58.532306][ T6803] kvm: kvm [6802]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000079) [ 59.685778][ T6880] sp0: Synchronizing with TNC [ 59.692235][ T6880] sp0: Found TNC [ 60.055877][ T6922] vivid-003: disconnect [ 60.057871][ T6920] vivid-003: reconnect [ 60.516828][ T6972] net_ratelimit: 44 callbacks suppressed [ 60.516840][ T6972] openvswitch: netlink: Multiple metadata blocks provided [ 61.096804][ T7016] netlink: 'syz.1.426': attribute type 4 has an invalid length. [ 61.099664][ T7016] __nla_validate_parse: 2 callbacks suppressed [ 61.099677][ T7016] netlink: 72 bytes leftover after parsing attributes in process `syz.1.426'. [ 61.394471][ T5983] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 61.547562][ T5983] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 61.551271][ T5983] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 61.555900][ T5983] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 61.559735][ T5983] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 61.567148][ T5983] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 61.571106][ T5983] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 61.575383][ T5983] usb 6-1: Product: syz [ 61.577196][ T5983] usb 6-1: Manufacturer: syz [ 61.584676][ T5983] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 61.787883][ T5992] Bluetooth: hci0: Malformed LE Event: 0x0d [ 61.789189][ T6020] usb 6-1: USB disconnect, device number 2 [ 61.800569][ T7042] netlink: 'syz.2.438': attribute type 1 has an invalid length. [ 61.803361][ T7042] netlink: 'syz.2.438': attribute type 1 has an invalid length. [ 61.806336][ T7042] netlink: 160 bytes leftover after parsing attributes in process `syz.2.438'. [ 61.809182][ T7042] netlink: 'syz.2.438': attribute type 1 has an invalid length. [ 61.811578][ T7042] netlink: 12 bytes leftover after parsing attributes in process `syz.2.438'. [ 61.839629][ T7044] sit0: entered promiscuous mode [ 61.844671][ T7044] netlink: 'syz.2.439': attribute type 1 has an invalid length. [ 61.847194][ T7044] netlink: 1 bytes leftover after parsing attributes in process `syz.2.439'. [ 61.885170][ T7050] binder: 7048:7050 ioctl 400c620e 80000040 returned -22 [ 61.910427][ T7053] syz_tun: entered promiscuous mode [ 62.234254][ T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 62.288799][ T7075] netlink: 8 bytes leftover after parsing attributes in process `syz.2.454'. [ 62.295656][ T7075] vlan2: entered allmulticast mode [ 62.404458][ T29] usb 5-1: Using ep0 maxpacket: 8 [ 62.410126][ T29] usb 5-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 62.414855][ T29] usb 5-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 62.418927][ T29] usb 5-1: config 0 interface 0 has no altsetting 0 [ 62.421759][ T29] usb 5-1: New USB device found, idVendor=1b96, idProduct=0004, bcdDevice= 0.00 [ 62.425738][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 62.431465][ T29] usb 5-1: config 0 descriptor?? [ 62.646987][ T29] usbhid 5-1:0.0: can't add hid device: -71 [ 62.650152][ T29] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 62.657291][ T29] usb 5-1: USB disconnect, device number 3 [ 62.668288][ T7113] binder: 7112:7113 ioctl 400c620e 80000040 returned -22 [ 62.675561][ T7115] syz_tun: entered promiscuous mode [ 62.789183][ T7132] sit0: entered promiscuous mode [ 62.796095][ T7132] netlink: 'syz.3.478': attribute type 1 has an invalid length. [ 62.800038][ T7132] netlink: 1 bytes leftover after parsing attributes in process `syz.3.478'. [ 62.980172][ T7146] syz_tun: entered promiscuous mode [ 63.065830][ T7154] netlink: 'syz.3.491': attribute type 1 has an invalid length. [ 63.067407][ T7155] sit0: entered promiscuous mode [ 63.069070][ T7154] netlink: 'syz.3.491': attribute type 1 has an invalid length. [ 63.072943][ T7154] netlink: 160 bytes leftover after parsing attributes in process `syz.3.491'. [ 63.075240][ T7155] netlink: 'syz.1.490': attribute type 1 has an invalid length. [ 63.075995][ T7154] netlink: 'syz.3.491': attribute type 1 has an invalid length. [ 63.078473][ T7155] netlink: 1 bytes leftover after parsing attributes in process `syz.1.490'. [ 63.081424][ T7154] netlink: 12 bytes leftover after parsing attributes in process `syz.3.491'. [ 63.174338][ T10] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 63.191104][ T7168] netlink: 8 bytes leftover after parsing attributes in process `syz.3.498'. [ 63.210801][ T13] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 63.213933][ T13] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 63.217862][ T13] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 63.220988][ T13] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 63.324345][ T10] usb 7-1: Using ep0 maxpacket: 32 [ 63.327396][ T10] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 63.331210][ T10] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 63.335595][ T10] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 63.338507][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 63.342313][ T10] usb 7-1: config 0 descriptor?? [ 63.346859][ T10] hub 7-1:0.0: bad descriptor, ignoring hub [ 63.349292][ T10] hub 7-1:0.0: probe with driver hub failed with error -5 [ 63.353494][ T10] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 63.537321][ T7195] sit0: entered promiscuous mode [ 63.617028][ T7200] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.620176][ T7200] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.655231][ T7204] usb 7-1: USB disconnect, device number 2 [ 63.705410][ T7200] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 63.723708][ T7200] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 63.828370][ T1139] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.831264][ T1139] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 63.834111][ T1139] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.837450][ T1139] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 63.840281][ T1139] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.843145][ T1139] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 63.847042][ T1139] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.849873][ T1139] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.109484][ T7237] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present [ 64.112499][ T7237] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9) [ 64.137320][ T7239] vlan3: entered allmulticast mode [ 64.186299][ T7243] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.189511][ T7243] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.277799][ T7243] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 64.285497][ T7243] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 64.408006][ T1139] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 64.414360][ T1139] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.417250][ T1139] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.420162][ T1139] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 64.423284][ T1139] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.426932][ T1139] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.438624][ T1139] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 64.442197][ T1139] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.445840][ T1139] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.448701][ T1139] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 64.461290][ T1139] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 64.464539][ T1139] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 64.467710][ T13] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.470605][ T13] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.473413][ T13] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.477748][ T13] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 65.635904][ T7291] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.638386][ T7291] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.693735][ T7291] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 65.700250][ T7291] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 65.809655][ T1189] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 65.813392][ T1189] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 65.818023][ T1189] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 65.822458][ T1189] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 65.827751][ T1189] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 65.831260][ T1189] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 65.835760][ T1189] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 65.838980][ T1189] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 66.006202][ T7325] raw_sendmsg: syz.2.572 forgot to set AF_INET. Fix it! [ 66.040256][ T7331] (syz.2.575,7331,3):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 66.105612][ T7338] __nla_validate_parse: 5 callbacks suppressed [ 66.105629][ T7338] netlink: 24 bytes leftover after parsing attributes in process `syz.2.578'. [ 66.168370][ T7345] netlink: 8 bytes leftover after parsing attributes in process `syz.1.581'. [ 66.173965][ T7347] binder: 7346:7347 ioctl c0306201 80000080 returned -14 [ 66.280867][ T7365] ======================================================= [ 66.280867][ T7365] WARNING: The mand mount option has been deprecated and [ 66.280867][ T7365] and is ignored by this kernel. Remove the mand [ 66.280867][ T7365] option from the mount to silence this warning. [ 66.280867][ T7365] ======================================================= [ 66.396238][ T7374] hid-generic 0003:0627:0001.0001: pid 7374 passed too large report [ 66.447795][ T7393] vlan2: entered promiscuous mode [ 66.449558][ T7393] bridge0: entered promiscuous mode [ 66.454863][ T7393] vlan2: entered allmulticast mode [ 66.456495][ T7393] bridge0: entered allmulticast mode [ 66.768857][ T5992] Bluetooth: hci2: Malformed LE Event: 0x0b [ 66.797881][ T7432] netlink: 4 bytes leftover after parsing attributes in process `syz.1.622'. [ 66.921148][ T7457] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 67.122796][ T7481] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 67.631121][ T40] kauditd_printk_skb: 1016 callbacks suppressed [ 67.631132][ T40] audit: type=1326 audit(2000000273.619:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.640279][ T40] audit: type=1326 audit(2000000273.619:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.647537][ T40] audit: type=1326 audit(2000000273.629:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.654374][ T40] audit: type=1326 audit(2000000273.629:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.661151][ T40] audit: type=1326 audit(2000000273.629:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.668376][ T40] audit: type=1326 audit(2000000273.629:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.676461][ T40] audit: type=1326 audit(2000000273.629:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 67.684708][ T40] audit: type=1326 audit(2000000273.629:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.692009][ T40] audit: type=1326 audit(2000000273.629:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000 [ 67.700658][ T40] audit: type=1326 audit(2000000273.629:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.3.662" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc2598 code=0x7ffc0000 [ 68.002611][ T7552] ALSA: mixer_oss: invalid OSS volume '' [ 69.638534][ T7653] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 69.860677][ T7682] sp0: Synchronizing with TNC [ 69.865985][ T7682] sp0: Found TNC [ 70.056963][ T7702] ref_ctr_offset mismatch. inode: 0x393 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 70.145585][ T7709] random: crng reseeded on system resumption [ 70.153475][ T7709] Restarting kernel threads ... [ 70.157627][ T7709] Done restarting kernel threads. [ 70.183845][ T7712] kernel read not supported for file / (pid: 7712 comm: syz.3.753) [ 70.344515][ T7722] netlink: 236 bytes leftover after parsing attributes in process `syz.0.758'. [ 70.897178][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.900292][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.932486][ T7735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.764'. [ 71.327413][ T5991] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] SMP KASAN NOPTI [ 71.331541][ T5991] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f] [ 71.336894][ T5991] CPU: 3 UID: 0 PID: 5991 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 71.340440][ T5991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 71.344311][ T5991] RIP: 0010:klist_put+0x4d/0x1b0 [ 71.346037][ T5991] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 8c 3e 0d [ 71.352880][ T5991] RSP: 0018:ffffc9000435f960 EFLAGS: 00010202 [ 71.355398][ T5991] RAX: dffffc0000000000 RBX: ffff8880131bf860 RCX: 0000000000000000 [ 71.358188][ T5991] RDX: 000000000000000b RSI: ffffffff8b861035 RDI: 0000000000000058 [ 71.360809][ T5991] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff211cefc [ 71.363346][ T5991] R10: ffffffff908e77e3 R11: 000000000000001e R12: 0000000000000000 [ 71.365827][ T5991] R13: 0000000000000001 R14: 1ffff9200086bf34 R15: ffffffff908e77a0 [ 71.368208][ T5991] FS: 0000000000000000(0000) GS:ffff8880977c3000(0000) knlGS:0000000000000000 [ 71.370994][ T5991] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 71.373083][ T5991] CR2: 00000000ffd4ac6c CR3: 000000006757b000 CR4: 0000000000352ef0 [ 71.376163][ T5991] Call Trace: [ 71.377511][ T5991] [ 71.378463][ T5991] klist_remove+0x13f/0x2e0 [ 71.379946][ T5991] ? kobject_move+0x15d/0x260 [ 71.381440][ T5991] ? __pfx_klist_remove+0x10/0x10 [ 71.383048][ T5991] ? __pfx_kobject_move+0x10/0x10 [ 71.384665][ T5991] ? get_device_parent+0x1ed/0x4e0 [ 71.386292][ T5991] device_move+0x12d/0x10d0 [ 71.387617][ T5991] hci_conn_del_sysfs+0x81/0x180 [ 71.389169][ T5991] hci_conn_del+0x5b3/0xe70 [ 71.390684][ T5991] hci_conn_hash_flush+0x186/0x260 [ 71.392295][ T5991] hci_dev_close_sync+0x602/0x11d0 [ 71.393874][ T5991] ? __pfx_hci_dev_close_sync+0x10/0x10 [ 71.395741][ T5991] ? up_write+0x1b2/0x520 [ 71.397179][ T5991] hci_dev_do_close+0x2e/0x90 [ 71.398679][ T5991] hci_unregister_dev+0x227/0x640 [ 71.400279][ T5991] ? __pfx_vhci_release+0x10/0x10 [ 71.401903][ T5991] vhci_release+0x79/0xf0 [ 71.403294][ T5991] __fput+0x402/0xb70 [ 71.404548][ T5991] task_work_run+0x14d/0x240 [ 71.406095][ T5991] ? __pfx_task_work_run+0x10/0x10 [ 71.408266][ T5991] do_exit+0x86f/0x2bf0 [ 71.410022][ T5991] ? do_raw_spin_lock+0x12c/0x2b0 [ 71.411814][ T5991] ? __pfx_do_exit+0x10/0x10 [ 71.413322][ T5991] ? rcu_is_watching+0x12/0xc0 [ 71.414770][ T5991] do_group_exit+0xd3/0x2a0 [ 71.416192][ T5991] __ia32_sys_exit_group+0x3e/0x50 [ 71.417991][ T5991] ia32_sys_call+0xa9e/0x1ca0 [ 71.419468][ T5991] __do_fast_syscall_32+0x7c/0x3a0 [ 71.421104][ T5991] do_fast_syscall_32+0x32/0x80 [ 71.422698][ T5991] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 71.424642][ T5991] RIP: 0023:0xf7f13579 [ 71.425930][ T5991] Code: Unable to access opcode bytes at 0xf7f1354f. [ 71.428052][ T5991] RSP: 002b:00000000ffd4cc6c EFLAGS: 00000282 ORIG_RAX: 00000000000000fc [ 71.430757][ T5991] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000f7226980 [ 71.433394][ T5991] RDX: 00000000f7156bc7 RSI: 0000000000000000 RDI: 00000000f722695b [ 71.435854][ T5991] RBP: 00000000ffd4ccc8 R08: 0000000000000000 R09: 0000000000000000 [ 71.438372][ T5991] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 71.440808][ T5991] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 71.443289][ T5991] [ 71.444310][ T5991] Modules linked in: [ 71.446063][ T5991] ---[ end trace 0000000000000000 ]--- [ 71.448246][ T5991] RIP: 0010:klist_put+0x4d/0x1b0 [ 71.449908][ T5991] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 8c 3e 0d [ 71.458077][ T5991] RSP: 0018:ffffc9000435f960 EFLAGS: 00010202 [ 71.460591][ T5991] RAX: dffffc0000000000 RBX: ffff8880131bf860 RCX: 0000000000000000 [ 71.464525][ T5991] RDX: 000000000000000b RSI: ffffffff8b861035 RDI: 0000000000000058 [ 71.467641][ T5991] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff211cefc [ 71.470223][ T5991] R10: ffffffff908e77e3 R11: 000000000000001e R12: 0000000000000000 [ 71.472686][ T5991] R13: 0000000000000001 R14: 1ffff9200086bf34 R15: ffffffff908e77a0 [ 71.475350][ T5991] FS: 0000000000000000(0000) GS:ffff8880976c3000(0000) knlGS:0000000000000000 [ 71.478717][ T5991] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 71.481024][ T5991] CR2: 0000000032a19ffc CR3: 0000000029247000 CR4: 0000000000352ef0 [ 71.483907][ T5991] Kernel panic - not syncing: Fatal exception [ 71.486864][ T5991] Kernel Offset: disabled [ 71.488255][ T5991] Rebooting in 86400 seconds.. VM DIAGNOSIS: 18:54:33 Registers: info registers vcpu 0 CPU#0 EAX=00000000 EBX=00000000 ECX=f7fc2579 EDX=ffd1af84 ESI=ffd1af7c EDI=ffd1af84 EBP=00000000 ESP=ffd1af54 EIP=f7fc257a EFL=00000293 [--S-A-C] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 57b62440 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 00003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000080001000 CR3=0000000067e4f000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=ffff88801d6b0d00 RCX=1ffff11003ad8109 RDX=1ffff11003ad61a1 RSI=ffffffff81b3da1b RDI=ffff88801d6b0d00 RBP=0000000000000001 RSP=ffffc9000466f360 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=1ffff920008cde6e R13=ffff88801d6b0d08 R14=ffff88801d6b13b0 R15=ffff88804ce2d000 RIP=ffffffff81b3da4f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880975c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000032a1fffc CR3=000000004afbc000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7484ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000003e6ec RBX=0000000000000002 RCX=ffffffff8b90abf9 RDX=ffffed1005686656 RSI=ffffffff8c162c80 RDI=ffffffff8190ccb1 RBP=ffffed1003bdc910 RSP=ffffc9000047fdf8 R8 =0000000000000000 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000000 R12=0000000000000002 R13=ffff88801dee4880 R14=ffffffff90ab8390 R15=0000000000000000 RIP=ffffffff8b90975f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880976c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000032a19ffc CR3=000000004c1ff000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000002c00000012 0004000000080024 0000000000280030 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000315 0000001400000000 0000000000000000 0000000000000017 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e697279656b01ff ffffffffffffffef 080003080000008a 0000000300000001 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000010000000dc 0000010294080001 0000020806000000 0008064008000801 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3df8000800010000 0208060000000008 0640080008013df8 0807880205028008 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007800204014bfe 0508000008000fff ffffff0201800200 020a002c00020001 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8803440180808080 82000186037a7973 01ffffffffffffff fff9080180030067 ZMM24=30319be630319be6 30319be630319be6 30319be630319be6 30319be630319be6 30319be630319be6 30319be630319be6 30319be630319be6 30319be630319be6 ZMM25=3093655430936554 3093655430936554 3093655430936554 3093655430936554 3093655430936554 3093655430936554 3093655430936554 3093655430936554 ZMM26=4cd853044cd85304 4cd853044cd85304 4cd853044cd85304 4cd853044cd85304 4cd853044cd85304 4cd853044cd85304 4cd853044cd85304 4cd853044cd85304 ZMM27=2ba16fab2ba16fab 2ba16fab2ba16fab 2ba16fab2ba16fab 2ba16fab2ba16fab 2ba16fab2ba16fab 2ba16fab2ba16fab 2ba16fab2ba16fab 2ba16fab2ba16fab ZMM28=00000100000000ff 000000fe000000fd 000000fc000000fb 000000fa000000f9 000000f8000000f7 000000f6000000f5 000000f4000000f3 000000f2000000f1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=a3080000a3080000 a3080000a3080000 a3080000a3080000 a3080000a3080000 a3080000a3080000 a3080000a3080000 a3080000a3080000 a3080000a3080000 info registers vcpu 3 CPU#3 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff85617130 RDI=ffffffff9b0f9700 RBP=ffffffff9b0f96c0 RSP=ffffc9000435f2d8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043 R12=0000000000000000 R13=ffffffff9b0f9710 R14=ffffffff9b0f96c0 R15=ffffffff9b0f9980 RIP=ffffffff85617157 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000ffd4ac6c CR3=000000006757b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000