last executing test programs:
113.260453ms ago: executing program 3 (id=139):
socket$vsock_dgram(0x28, 0x2, 0x0)
110.05699ms ago: executing program 2 (id=142):
getpgrp(0x0)
109.954487ms ago: executing program 3 (id=143):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/yama/ptrace_scope', 0x2, 0x0)
53.639836ms ago: executing program 2 (id=145):
setuid(0x0)
53.40769ms ago: executing program 1 (id=146):
getdents64(0xffffffffffffffff, &(0x7f0000000000), 0x0)
53.330649ms ago: executing program 3 (id=147):
shutdown(0xffffffffffffffff, 0x0)
53.263209ms ago: executing program 0 (id=148):
syz_open_dev$drirender(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$drirender(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$drirender(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$drirender(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$drirender(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$drirender(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$drirender(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$drirender(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$drirender(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$drirender(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$drirender(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$drirender(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$drirender(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$drirender(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$drirender(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$drirender(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$drirender(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$drirender(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$drirender(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$drirender(&(0x7f0000000500), 0x4, 0x800)
53.21264ms ago: executing program 1 (id=149):
mprotect(0x0, 0x0, 0x0)
53.187574ms ago: executing program 2 (id=150):
open_tree(0xffffffffffffffff, &(0x7f0000000000), 0x0)
53.087714ms ago: executing program 1 (id=151):
syz_open_dev$media(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$media(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$media(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$media(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$media(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$media(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$media(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$media(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$media(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$media(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$media(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$media(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$media(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$media(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$media(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$media(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$media(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$media(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$media(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$media(&(0x7f0000000500), 0x4, 0x800)
52.930549ms ago: executing program 0 (id=152):
madvise(0x0, 0x0, 0x0)
50.150005ms ago: executing program 0 (id=153):
syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$I2C(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$I2C(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$I2C(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$I2C(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$I2C(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$I2C(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$I2C(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$I2C(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$I2C(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$I2C(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$I2C(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$I2C(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$I2C(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$I2C(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$I2C(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$I2C(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$I2C(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$I2C(&(0x7f0000000500), 0x4, 0x800)
47.596096ms ago: executing program 1 (id=154):
socket$pppl2tp(0x18, 0x1, 0x1)
47.465411ms ago: executing program 2 (id=155):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/smackfs/netlabel', 0x2, 0x0)
47.284772ms ago: executing program 3 (id=156):
socket$inet_mptcp(0x2, 0x1, 0x106)
3.124817ms ago: executing program 2 (id=157):
map_shadow_stack(0x0, 0x0, 0x0)
2.98522ms ago: executing program 3 (id=158):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/lightnvm/control', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/lightnvm/control', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/lightnvm/control', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/lightnvm/control', 0x800, 0x0)
2.885637ms ago: executing program 0 (id=159):
lsm_set_self_attr(0x0, &(0x7f0000000000), 0x0, 0x0)
2.829234ms ago: executing program 1 (id=160):
geteuid()
2.781827ms ago: executing program 3 (id=161):
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), 0x0)
2.71993ms ago: executing program 0 (id=162):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio1', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1', 0x800, 0x0)
2.606467ms ago: executing program 2 (id=163):
syz_open_dev$floppy(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$floppy(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$floppy(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$floppy(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$floppy(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$floppy(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$floppy(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$floppy(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$floppy(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$floppy(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$floppy(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$floppy(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$floppy(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$floppy(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$floppy(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$floppy(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$floppy(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$floppy(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$floppy(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$floppy(&(0x7f0000000500), 0x4, 0x800)
2.52804ms ago: executing program 1 (id=164):
readlinkat(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), 0x0)
0s ago: executing program 0 (id=165):
openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwbinder', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwbinder', 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwbinder', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwbinder', 0x800, 0x0)
kernel console output (not intermixed with test programs):
[ 38.237657][ T40] audit: type=1400 audit(1738057502.438:81): avc: denied { rlimitinh } for pid=5923 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 38.243049][ T40] audit: type=1400 audit(1738057502.438:82): avc: denied { siginh } for pid=5923 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 39.808755][ T40] audit: type=1400 audit(1738057504.028:83): avc: denied { read } for pid=5334 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 39.815371][ T40] audit: type=1400 audit(1738057504.028:84): avc: denied { append } for pid=5334 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 39.822360][ T40] audit: type=1400 audit(1738057504.028:85): avc: denied { open } for pid=5334 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 39.829308][ T40] audit: type=1400 audit(1738057504.028:86): avc: denied { getattr } for pid=5334 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
Warning: Permanently added '[localhost]:29866' (ED25519) to the list of known hosts.
[ 39.956282][ T40] audit: type=1400 audit(1738057504.168:87): avc: denied { name_bind } for pid=5928 comm="sshd" src=30001 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[ 41.459866][ T5930] cgroup: Unknown subsys name 'net'
[ 41.619938][ T5930] cgroup: Unknown subsys name 'cpuset'
[ 41.623004][ T5930] cgroup: Unknown subsys name 'rlimit'
[ 41.774219][ T5935] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 42.375439][ T5930] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 44.368176][ T40] kauditd_printk_skb: 17 callbacks suppressed
[ 44.368186][ T40] audit: type=1400 audit(1738057508.578:105): avc: denied { execmem } for pid=5937 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 44.375666][ T40] audit: type=1400 audit(1738057508.588:106): avc: denied { read } for pid=5941 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 44.388358][ T40] audit: type=1400 audit(1738057508.588:107): avc: denied { open } for pid=5941 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 44.395624][ T40] audit: type=1400 audit(1738057508.588:108): avc: denied { mounton } for pid=5941 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 44.432009][ T40] audit: type=1400 audit(1738057508.648:109): avc: denied { mount } for pid=5943 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 44.440252][ T40] audit: type=1400 audit(1738057508.648:110): avc: denied { mounton } for pid=5942 comm="syz-executor" path="/syzkaller.nWpvUN/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 44.448174][ T40] audit: type=1400 audit(1738057508.648:111): avc: denied { mount } for pid=5942 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 44.454810][ T40] audit: type=1400 audit(1738057508.648:112): avc: denied { mounton } for pid=5942 comm="syz-executor" path="/syzkaller.nWpvUN/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 44.462692][ T40] audit: type=1400 audit(1738057508.658:113): avc: denied { mounton } for pid=5942 comm="syz-executor" path="/syzkaller.nWpvUN/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=7208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 44.470606][ T40] audit: type=1400 audit(1738057508.658:114): avc: denied { unmount } for pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 45.258907][ T5290] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 45.263293][ T5290] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 45.266742][ T5290] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 45.269994][ T5290] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 45.272551][ T5290] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 45.275314][ T5290] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 45.306449][ T6124] ==================================================================
[ 45.308899][ T6124] BUG: KASAN: slab-use-after-free in binder_add_device+0xa4/0xb0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 45.311194][ T6124] Write of size 8 at addr ffff888031f00408 by task syz-executor/6124
[ 45.315369][ T6124]
[ 45.316060][ T6124] CPU: 0 UID: 0 PID: 6124 Comm: syz-executor Not tainted 6.13.0-syzkaller-09030-g6d61a53dd6f5 #0
[ 45.316071][ T6124] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 45.316076][ T6124] Call Trace:
[ 45.316080][ T6124]
[ 45.316083][ T6124] dump_stack_lvl+0x116/0x1f0
[ 45.316098][ T6124] print_report+0xc3/0x620
[ 45.316108][ T6124] ? __virt_addr_valid+0x5e/0x590
[ 45.316117][ T6124] ? __phys_addr+0xc6/0x150
[ 45.316126][ T6124] kasan_report+0xd9/0x110
[ 45.316135][ T6124] ? binder_add_device+0xa4/0xb0
[ 45.316145][ T6124] ? binder_add_device+0xa4/0xb0
[ 45.316155][ T6124] binder_add_device+0xa4/0xb0
[ 45.316164][ T6124] binderfs_binder_device_create.isra.0+0x95f/0xb70
[ 45.316177][ T6124] binderfs_fill_super+0x8d6/0x1360
[ 45.316189][ T6124] ? __pfx_binderfs_fill_super+0x10/0x10
[ 45.316203][ T6124] ? shrinker_register+0x1a8/0x260
[ 45.316216][ T6124] ? sget_fc+0x808/0xc20
[ 45.316229][ T6124] ? __pfx_set_anon_super_fc+0x10/0x10
[ 45.316241][ T6124] ? __pfx_binderfs_fill_super+0x10/0x10
[ 45.316252][ T6124] get_tree_nodev+0xda/0x190
[ 45.316265][ T6124] vfs_get_tree+0x8b/0x340
[ 45.316276][ T6124] path_mount+0x14e6/0x1f10
[ 45.316286][ T6124] ? kmem_cache_free+0x2e2/0x4d0
[ 45.316294][ T6124] ? __pfx_path_mount+0x10/0x10
[ 45.316304][ T6124] ? putname+0x13c/0x180
[ 45.316314][ T6124] __x64_sys_mount+0x28f/0x310
[ 45.316323][ T6124] ? __pfx___x64_sys_mount+0x10/0x10
[ 45.316332][ T6124] ? do_user_addr_fault+0x83d/0x13f0
[ 45.316345][ T6124] do_syscall_64+0xcd/0x250
[ 45.316356][ T6124] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 45.316374][ T6124] RIP: 0033:0x7fa795b8e54a
[ 45.316381][ T6124] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 45.316390][ T6124] RSP: 002b:00007ffc4a52b688 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 45.316399][ T6124] RAX: ffffffffffffffda RBX: 00007fa795c0e663 RCX: 00007fa795b8e54a
[ 45.316404][ T6124] RDX: 00007fa795c1dda7 RSI: 00007fa795c0e663 RDI: 00007fa795c1dda7
[ 45.316409][ T6124] RBP: 00007ffc4a52b700 R08: 0000000000000000 R09: 0000000000000000
[ 45.316415][ T6124] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc4a52b700
[ 45.316420][ T6124] R13: 00007ffc4a52b708 R14: 0000000000000009 R15: 0000000000000000
[ 45.316427][ T6124]
[ 45.316430][ T6124]
[ 45.383001][ T6124] Allocated by task 5944:
[ 45.384247][ T6124] kasan_save_stack+0x33/0x60
[ 45.385613][ T6124] kasan_save_track+0x14/0x30
[ 45.386950][ T6124] __kasan_kmalloc+0xaa/0xb0
[ 45.388240][ T6124] binderfs_binder_device_create.isra.0+0x17a/0xb70
[ 45.390113][ T6124] binderfs_fill_super+0x8d6/0x1360
[ 45.391612][ T6124] get_tree_nodev+0xda/0x190
[ 45.392971][ T6124] vfs_get_tree+0x8b/0x340
[ 45.394275][ T6124] path_mount+0x14e6/0x1f10
[ 45.395576][ T6124] __x64_sys_mount+0x28f/0x310
[ 45.396932][ T6124] do_syscall_64+0xcd/0x250
[ 45.398262][ T6124] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 45.399962][ T6124]
[ 45.400647][ T6124] Freed by task 5944:
[ 45.401802][ T6124] kasan_save_stack+0x33/0x60
[ 45.403161][ T6124] kasan_save_track+0x14/0x30
[ 45.404494][ T6124] kasan_save_free_info+0x3b/0x60
[ 45.405972][ T6124] __kasan_slab_free+0x51/0x70
[ 45.407369][ T6124] kfree+0x2c4/0x4d0
[ 45.408492][ T6124] binderfs_evict_inode+0x1e0/0x250
[ 45.409961][ T6124] evict+0x409/0x960
[ 45.411097][ T6124] iput+0x52a/0x890
[ 45.412201][ T6124] dentry_unlink_inode+0x29c/0x480
[ 45.413684][ T6124] __dentry_kill+0x1d0/0x600
[ 45.415031][ T6124] shrink_dentry_list+0x140/0x5d0
[ 45.416450][ T6124] shrink_dcache_parent+0xe2/0x530
[ 45.417887][ T6124] shrink_dcache_for_umount+0xa1/0x3e0
[ 45.419408][ T6124] generic_shutdown_super+0x6c/0x390
[ 45.420892][ T6124] kill_litter_super+0x70/0xa0
[ 45.422259][ T6124] binderfs_kill_super+0x3b/0xa0
[ 45.423654][ T6124] deactivate_locked_super+0xbe/0x1a0
[ 45.425173][ T6124] deactivate_super+0xde/0x100
[ 45.426552][ T6124] cleanup_mnt+0x222/0x450
[ 45.427800][ T6124] task_work_run+0x14e/0x250
[ 45.429158][ T6124] do_exit+0xad8/0x2d70
[ 45.430341][ T6124] do_group_exit+0xd3/0x2a0
[ 45.431664][ T6124] get_signal+0x24ed/0x26c0
[ 45.432932][ T6124] arch_do_signal_or_restart+0x90/0x7e0
[ 45.434512][ T6124] syscall_exit_to_user_mode+0x150/0x2a0
[ 45.436096][ T6124] do_syscall_64+0xda/0x250
[ 45.437387][ T6124] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 45.439047][ T6124]
[ 45.439739][ T6124] The buggy address belongs to the object at ffff888031f00400
[ 45.439739][ T6124] which belongs to the cache kmalloc-512 of size 512
[ 45.443649][ T6124] The buggy address is located 8 bytes inside of
[ 45.443649][ T6124] freed 512-byte region [ffff888031f00400, ffff888031f00600)
[ 45.447482][ T6124]
[ 45.448180][ T6124] The buggy address belongs to the physical page:
[ 45.449977][ T6124] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31f00
[ 45.452431][ T6124] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 45.454824][ T6124] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 45.457095][ T6124] page_type: f5(slab)
[ 45.458263][ T6124] raw: 00fff00000000040 ffff88801b042c80 0000000000000000 dead000000000001
[ 45.460742][ T6124] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 45.463195][ T6124] head: 00fff00000000040 ffff88801b042c80 0000000000000000 dead000000000001
[ 45.465703][ T6124] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 45.468168][ T6124] head: 00fff00000000002 ffffea0000c7c001 ffffffffffffffff 0000000000000000
[ 45.470658][ T6124] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[ 45.473128][ T6124] page dumped because: kasan: bad access detected
[ 45.475006][ T6124] page_owner tracks the page as allocated
[ 45.476621][ T6124] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5363, tgid 5363 (udevd), ts 17957141286, free_ts 17803030294
[ 45.482467][ T6124] post_alloc_hook+0x181/0x1b0
[ 45.483870][ T6124] get_page_from_freelist+0xfce/0x2f80
[ 45.485455][ T6124] __alloc_frozen_pages_noprof+0x221/0x2470
[ 45.487164][ T6124] alloc_pages_mpol+0x1fc/0x540
[ 45.488587][ T6124] new_slab+0x23d/0x330
[ 45.489808][ T6124] ___slab_alloc+0xc5d/0x1720
[ 45.491176][ T6124] __slab_alloc.constprop.0+0x56/0xb0
[ 45.492721][ T6124] __kmalloc_cache_noprof+0xfa/0x410
[ 45.494230][ T6124] do_epoll_create+0x62/0x470
[ 45.495638][ T6124] __x64_sys_epoll_create1+0x30/0x40
[ 45.497139][ T6124] do_syscall_64+0xcd/0x250
[ 45.498467][ T6124] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 45.500176][ T6124] page last free pid 5353 tgid 5353 stack trace:
[ 45.501993][ T6124] free_frozen_pages+0x6db/0xfb0
[ 45.503418][ T6124] qlist_free_all+0x4e/0x120
[ 45.504751][ T6124] kasan_quarantine_reduce+0x195/0x1e0
[ 45.506288][ T6124] __kasan_slab_alloc+0x69/0x90
[ 45.507698][ T6124] kmem_cache_alloc_noprof+0x226/0x3d0
[ 45.509257][ T6124] getname_flags.part.0+0x4c/0x550
[ 45.510742][ T6124] getname_flags+0x93/0xf0
[ 45.512038][ T6124] do_readlinkat+0xb5/0x390
[ 45.513331][ T6124] __x64_sys_readlink+0x78/0xc0
[ 45.514743][ T6124] do_syscall_64+0xcd/0x250
[ 45.516051][ T6124] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 45.517732][ T6124]
[ 45.518440][ T6124] Memory state around the buggy address:
[ 45.520059][ T6124] ffff888031f00300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 45.522322][ T6124] ffff888031f00380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 45.524605][ T6124] >ffff888031f00400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 45.526859][ T6124] ^
[ 45.528086][ T6124] ffff888031f00480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 45.530354][ T6124] ffff888031f00500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 45.532635][ T6124] ==================================================================
[ 45.536073][ T6124] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 45.538184][ T6124] CPU: 0 UID: 0 PID: 6124 Comm: syz-executor Not tainted 6.13.0-syzkaller-09030-g6d61a53dd6f5 #0
[ 45.541121][ T6124] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 45.544176][ T6124] Call Trace:
[ 45.545190][ T6124]
[ 45.546055][ T6124] dump_stack_lvl+0x3d/0x1f0
[ 45.547417][ T6124] panic+0x71d/0x800
[ 45.548561][ T6124] ? __pfx_panic+0x10/0x10
[ 45.549884][ T6124] ? irqentry_exit+0x3b/0x90
[ 45.551215][ T6124] ? lockdep_hardirqs_on+0x7c/0x110
[ 45.552693][ T6124] ? preempt_schedule_thunk+0x1a/0x30
[ 45.554221][ T6124] ? preempt_schedule_common+0x44/0xc0
[ 45.555817][ T6124] ? check_panic_on_warn+0x1f/0xb0
[ 45.557291][ T6124] check_panic_on_warn+0xab/0xb0
[ 45.558704][ T6124] end_report+0x117/0x180
[ 45.559962][ T6124] kasan_report+0xe9/0x110
[ 45.561270][ T6124] ? binder_add_device+0xa4/0xb0
[ 45.562691][ T6124] ? binder_add_device+0xa4/0xb0
[ 45.564094][ T6124] binder_add_device+0xa4/0xb0
[ 45.565485][ T6124] binderfs_binder_device_create.isra.0+0x95f/0xb70
[ 45.567372][ T6124] binderfs_fill_super+0x8d6/0x1360
[ 45.568886][ T6124] ? __pfx_binderfs_fill_super+0x10/0x10
[ 45.570517][ T6124] ? shrinker_register+0x1a8/0x260
[ 45.571981][ T6124] ? sget_fc+0x808/0xc20
[ 45.573222][ T6124] ? __pfx_set_anon_super_fc+0x10/0x10
[ 45.574778][ T6124] ? __pfx_binderfs_fill_super+0x10/0x10
[ 45.576416][ T6124] get_tree_nodev+0xda/0x190
[ 45.577759][ T6124] vfs_get_tree+0x8b/0x340
[ 45.579059][ T6124] path_mount+0x14e6/0x1f10
[ 45.580364][ T6124] ? kmem_cache_free+0x2e2/0x4d0
[ 45.581789][ T6124] ? __pfx_path_mount+0x10/0x10
[ 45.583206][ T6124] ? putname+0x13c/0x180
[ 45.584447][ T6124] __x64_sys_mount+0x28f/0x310
[ 45.585823][ T6124] ? __pfx___x64_sys_mount+0x10/0x10
[ 45.587375][ T6124] ? do_user_addr_fault+0x83d/0x13f0
[ 45.588902][ T6124] do_syscall_64+0xcd/0x250
[ 45.590228][ T6124] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 45.591940][ T6124] RIP: 0033:0x7fa795b8e54a
[ 45.593237][ T6124] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 45.598714][ T6124] RSP: 002b:00007ffc4a52b688 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 45.601079][ T6124] RAX: ffffffffffffffda RBX: 00007fa795c0e663 RCX: 00007fa795b8e54a
[ 45.603370][ T6124] RDX: 00007fa795c1dda7 RSI: 00007fa795c0e663 RDI: 00007fa795c1dda7
[ 45.605613][ T6124] RBP: 00007ffc4a52b700 R08: 0000000000000000 R09: 0000000000000000
[ 45.607867][ T6124] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc4a52b700
[ 45.610144][ T6124] R13: 00007ffc4a52b708 R14: 0000000000000009 R15: 0000000000000000
[ 45.612427][ T6124]
[ 45.613789][ T6124] Kernel Offset: disabled
[ 45.615057][ T6124] Rebooting in 86400 seconds..
VM DIAGNOSIS:
09:45:09 Registers:
info registers vcpu 0
CPU#0
RAX=000000000000007a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853ff2e5 RDI=ffffffff9ab7f800 RBP=ffffffff9ab7f7c0 RSP=ffffc90003d1f510
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3133303838387257
R12=0000000000000000 R13=000000000000007a R14=ffffffff853ff280 R15=0000000000000000
RIP=ffffffff853ff30f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557b63a500 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa795c1dda0 CR3=000000002821c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffe00000 Opmask01=000000000000000f Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030352036373538 3430312034323031
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3432303120303035 2036373538343031
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e616d006574756f 7262003432303120 3030352036373538 3430312034323031
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4b4448004051504a 5747001117151405 151510051312101d 1115140511171514
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
CPU#1
RAX=0000000000000001 RBX=0000000000000000 RCX=ffffffff8b51c5c5 RDX=ffffed1003eb29a6
RSI=0000000000000008 RDI=ffff88801f594d28 RBP=dffffc0000000000 RSP=ffffc900038ef470
R8 =0000000000000000 R9 =ffffed1003eb29a5 R10=ffff88801f594d2f R11=0000000000000003
R12=ffff88801f594b00 R13=0000000000000012 R14=0000000000000000 R15=0000000000000012
RIP=ffffffff8b51c5ce RFL=00000247 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558f679500 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffb493d8610 CR3=000000002b23c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0
ZMM22=f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f
ZMM23=6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475
ZMM24=f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca
ZMM25=01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45
ZMM26=93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45
ZMM27=f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000
info registers vcpu 2
CPU#2
RAX=000000000003d9fd RBX=0000000000000002 RCX=ffffffff8b5635b9 RDX=0000000000000000
RSI=ffffffff8b6cd8e0 RDI=ffffffff8bd30080 RBP=ffffed1003b55000 RSP=ffffc90000197e08
R8 =0000000000000001 R9 =ffffed100d506f7d R10=ffff88806a837beb R11=0000000000000000
R12=0000000000000002 R13=ffff88801daa8000 R14=ffffffff90627210 R15=0000000000000000
RIP=ffffffff8b56499f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe04cbeff8 CR3=000000002607e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0 6e28f3b06e28f3b0
ZMM22=f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f f1ecc27ff1ecc27f
ZMM23=6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475 6bcda4756bcda475
ZMM24=f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca f770a5caf770a5ca
ZMM25=01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45 01ea5e4501ea5e45
ZMM26=93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45 93572e4593572e45
ZMM27=f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c f5fa6c5cf5fa6c5c
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000 2403000024030000
info registers vcpu 3
CPU#3
RAX=0000000000000001 RBX=0000000000000021 RCX=ffffffff819667b2 RDX=fffffbfff2dd8399
RSI=0000000000000008 RDI=ffffffff96ec1cc0 RBP=dffffc0000000000 RSP=ffffc90003adf510
R8 =0000000000000000 R9 =fffffbfff2dd8398 R10=ffffffff96ec1cc7 R11=0000000000000003
R12=ffffed10054b515d R13=ffff88802a5a8000 R14=0000000000000003 R15=ffff88802a5a8b68
RIP=ffffffff819667ba RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5ef1cd7d60 CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000007fff Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ef117c6a3 00007f5ef117c6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc31cf8aa0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555582dec14b 0000555582dec0a0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555582df87ea 0000555582df87a0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000005c08
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000400000017 bb08038000000001 02080002800401c7 0800080140ca6e6f
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001000400208008 0004800401c70800 080140ca6e6f5f72 6f74696e00000007
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6d616400000000 65642f6c656e7265 6b2f7379732f01ff ffffffff00000006
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0804800300000000 080003800401c708 00080140ca6e6f5f 0000000500000007
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6f6d6100000001 6265642f6c656e72 656b2f7379732f01 0000000400000017
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302e79656b5f5f20 6220303261343763 6139666666666666 66660a34312e7965
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 735f32765f6d7369 5f636d7320622030 3661343763613966 666666666666660a
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 636d732062203061 6134376361396666 6666666666660a64 69655f6d65747379
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3063643737636139 6666666666666666 0a332e79656b5f5f 2062203038643737
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f5f206220303065 3737636139666666 66666666660a342e 79656b5f5f206220
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 312e79656b5f5f20 6220303465373763 6139666666666666 66660a302e79656b
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 666666660a322e79 656b5f5f20622030 3865373763613966 666666666666660a