last executing test programs: 6.804322795s ago: executing program 2 (id=10): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x2, 0x2, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 6.641960344s ago: executing program 2 (id=11): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00') r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0) read$FUSE(r1, &(0x7f0000000200)={0x2020}, 0x2020) mount(&(0x7f0000000300), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000004240)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_INIT(r4, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21}}, 0x50) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000004280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@uname={'uname', 0x3d, '}\x81{-/}(*'}}], [], 0x6b}}) syz_fuse_handle_req(r0, &(0x7f0000002240)="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", 0x2000, &(0x7f0000007080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) read$FUSE(r0, &(0x7f0000007100)={0x2020}, 0x941f) 6.405274277s ago: executing program 2 (id=12): socket$nl_xfrm(0x10, 0x3, 0x6) r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0x0, 0x0}, 0x10) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x0, 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000240)={&(0x7f00004a3000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, &(0x7f0000000740)=""/209, 0xd1, 0x0, &(0x7f00000000c0)=""/61, 0x3d}, &(0x7f0000000340)=0x40) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmsg$unix(r3, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@rights={{0x14, 0x1, 0x1, [r3]}}], 0x18, 0x4800}, 0x8004) 4.961865491s ago: executing program 3 (id=18): r0 = io_uring_setup(0x48ae, &(0x7f00000000c0)={0x0, 0xffffffff, 0x800, 0x3, 0x308}) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0xf, &(0x7f0000000540)={0x1000, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0) 4.711662059s ago: executing program 3 (id=19): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x20040000) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='schedstat\x00') ioctl$KVM_RUN(r2, 0xae80, 0x0) 4.158672977s ago: executing program 3 (id=24): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendto$inet(r0, &(0x7f00000002c0)="88", 0x1, 0x80a1, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)='<', 0x1, 0x805, 0x0, 0x0) 4.088832162s ago: executing program 3 (id=26): r0 = socket$alg(0x26, 0x5, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f000000b6c0)=[{{0x0, 0x0, &(0x7f000000af80)=[{0x0}, {0x0}], 0x2}}], 0x1, 0x40000000, 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) r3 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8) mkdir(0x0, 0x0) close(r3) shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10) r4 = accept4(r0, 0x0, 0x0, 0x80000) r5 = accept4(r4, 0x0, 0x0, 0x0) sendmmsg$inet6(r5, &(0x7f0000003b80)=[{{0x0, 0xd, &(0x7f00000003c0)=[{&(0x7f00000000c0)="e6", 0x1}], 0x1, 0x0, 0x0, 0x7000000}}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000440)='&', 0x23fff}], 0x1}, 0xff03}], 0x4000070, 0x8000) 4.077107458s ago: executing program 1 (id=27): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000400)=0x13) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x6) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000180)={0x3d17, 0xe4e1, 0x1, 0x1ff, 0xff, "7e12105588e633bbb1df022dace17a32d211ee"}) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0xa) 4.06900373s ago: executing program 1 (id=28): rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_getevents(r0, 0x2, 0x2, &(0x7f00000000c0)=[{}, {}], &(0x7f0000000280)={0x0, 0x989680}) 3.941507624s ago: executing program 1 (id=30): r0 = socket(0x840000000002, 0x3, 0xfa) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x45, &(0x7f0000000000)={0x0, 0x0}, 0x10) 3.681702056s ago: executing program 1 (id=31): r0 = openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x0) signalfd(r0, 0x0, 0x0) sendmsg$unix(r0, 0x0, 0x4000) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f0000000340)={0x1, 0x80000000, 0x7, &(0x7f0000000240)=""/7}) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b04, 0x0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r2, 0x8b32, &(0x7f0000000040)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r1}, 0x10) r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x56a, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r3, 0x0, 0x0) syz_usb_control_io(r3, &(0x7f0000000800)={0x2c, &(0x7f0000000640)={0x0, 0x11, 0xe, {0xe, 0x23, "7b7c98d8c97bdab405f249d5"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) recvmmsg(r4, 0x0, 0x0, 0x2, 0x0) 3.207264413s ago: executing program 2 (id=35): bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="1d00000010518c76cb09e0000c70a27ffd81e83e4e7fbb00c36aa7c4fa2a8000000800", @ANYRES32, @ANYBLOB="ffffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="001000"/28], 0x50) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x22) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) r3 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00') fchdir(r3) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8) connect$inet(r2, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, 0x0, 0x0) prctl$PR_GET_SPECULATION_CTRL(0x23, 0xb, 0x7fffffffeff3) r5 = socket(0x11, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000100)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_cmd={0x8, 0x6, 0x6, 0xa2, 0xdc, 0x2, 0x3, 0x1, 0x8, 0x2, 0xfff, 0x6, 0xb, 0x4, 0x4, 0x10001, [0x9, 0x28c]}}) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='htcp\x00', 0x5) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, r6, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000000c0)=0x20003, 0x4) r7 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r7, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6) sendto$inet(r7, 0x0, 0x0, 0x20000010, &(0x7f0000000540)={0x2, 0x400, @empty}, 0x10) read$usbmon(r3, &(0x7f00000001c0)=""/31, 0x1f) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r0, &(0x7f0000000000), 0xd) ioctl$UI_SET_EVBIT(r6, 0x40045564, 0x6) 2.402353299s ago: executing program 3 (id=39): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) pwritev(0xffffffffffffffff, &(0x7f0000000600)=[{0x0}], 0x1, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f00000004c0)=""/102392, 0x18ff8) r1 = syz_open_procfs(0x0, 0x0) pread64(r1, 0x0, 0x0, 0x2000000000) getpid() ioctl$KDSIGACCEPT(0xffffffffffffffff, 0x5607, 0x38) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSIGACCEPT(r2, 0x5607, 0x10) ioctl$KDSETMODE(r2, 0x4b3a, 0x1) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, 0x0, 0x0) ioctl$TCXONC(r2, 0x4b3a, 0x0) socket$nl_route(0x10, 0x3, 0x0) r3 = signalfd(r0, &(0x7f0000000100)={[0x9]}, 0x8) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000180)) r4 = gettid() process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, 0x0, 0x0, 0x0) syz_emit_ethernet(0x3a, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x8927, &(0x7f0000000000)="37c4a5e33a6081f2a3fcc30a2ea92ef80f6427c344d1178a1c43ca4f0000ec67b9f27cd83b08959c0e471c4ae78b9cc4c7603c7a040782f3c379a03019e3bfd92533743c915077dd984784f531853d184c539dcac54ff2e955ba3fd1c00b016be57263b9695d15c56bbfcc195f2becfab2fc273ea8aee645f9062c6ac6c6c02f59935620d42a59a7e285c4e602b45acbf3e1bfd871e98e4f37b281b5e13b55a48e24a9981b78fe161a9de127f5b2c8ae0a12cbc189b6a1f44e298ff0acca36aac1967ea538fb4d8ca3ddf9884b543d868eac5217ad9b6e5c0f7bba6311f4b36020ec81e814f17062e2d5766abba3d757582a9b922b726173db7a852dc7983fdc") 2.1218114s ago: executing program 0 (id=40): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7fe, 0xf83, 0x8}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000a40)='?', 0x1, 0x24048895, &(0x7f0000000240)={0xc9, 0x8100, r2, 0x1, 0x8, 0x6, @multicast}, 0x14) 2.098567459s ago: executing program 2 (id=41): prlimit64(0x0, 0xe, &(0x7f0000000080)={0x7, 0x80000100008b}, 0x0) mprotect(&(0x7f0000208000/0x2000)=nil, 0x2000, 0x2) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) mprotect(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0) mprotect(&(0x7f00004a4000/0x800000)=nil, 0x800000, 0x2) 2.095596141s ago: executing program 0 (id=42): r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000003c0)) 2.034892198s ago: executing program 0 (id=43): iopl(0x3) pselect6(0x0, 0x0, &(0x7f0000000240)={0x80000001, 0x9, 0x801, 0x409671, 0x8000000000000001, 0x0, 0x8000000000000000, 0xfc41}, &(0x7f0000000300)={0x0, 0x5, 0x0, 0x2000000000001, 0x200, 0x8000, 0x7ff, 0xfffffffffffffffa}, 0x0, &(0x7f0000000480)={&(0x7f0000000180)={[0x4]}, 0x8}) 2.032264244s ago: executing program 1 (id=44): fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1) sched_setaffinity(0x0, 0xfffffffffffffdc5, &(0x7f00000002c0)=0x800002) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) fchdir(r2) fanotify_init(0x4, 0x8000) r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) lseek(r3, 0x7ff, 0x1) getdents64(r3, 0x0, 0x10) socket$nl_xfrm(0x10, 0x3, 0x6) socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0) 1.131822844s ago: executing program 0 (id=45): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xfffffffffffffffe}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f00000008c0)={{0xa, 0x0, 0x400, 0xfffffffb, '\x00', 0x431}, 0x4, 0x10000000, 0x1, r0, 0x0, 0x100, 'syz0\x00', &(0x7f0000000880)}) bpf$MAP_CREATE(0x0, 0x0, 0x48) gettid() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='f2fs_writepages\x00', 0xffffffffffffffff, 0x0, 0x800}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="10000000040000000400000008"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r3, 0x0, &(0x7f0000000080)=""/52}, 0x20) r4 = socket$inet(0x2, 0x3, 0x8d) setsockopt$inet_msfilter(r4, 0x0, 0x8, 0x0, 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, 0x0, &(0x7f0000000140)) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2e}}}) socketpair(0x1, 0x1, 0x0, 0x0) ioctl(0xffffffffffffffff, 0x8916, 0x0) 491.510872ms ago: executing program 1 (id=46): socket$packet(0x11, 0x2, 0x300) socket$packet(0x11, 0x2, 0x300) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) r2 = socket(0x10, 0x3, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r2, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44}, 0x20080011) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000300)=ANY=[], 0x10) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@delchain={0x24, 0x26, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff1}}}, 0x24}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xb, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 426.418786ms ago: executing program 3 (id=47): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a000028060001001a"], 0x1c}}, 0x0) r1 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020000000000000800000524050000082407000000009e0c240700000000a3"], 0x0) syz_usb_control_io(r1, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$uac1(r1, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000080)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0) syz_usb_control_io(r1, 0x0, &(0x7f0000000940)={0x84, &(0x7f0000000500)={0x60, 0x9, 0x2, "77a3"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$uac1(r1, &(0x7f00000000c0)={0x14, 0x0, 0x0}, &(0x7f0000000540)={0x44, &(0x7f0000000180)={0x20, 0x8, 0x19, "f2742cc83d7337362ee352bfa2714b4d69ff741bb91a359d59"}, 0x0, 0x0, &(0x7f00000003c0)={0x20, 0x81, 0x1, '7'}, 0x0, &(0x7f0000000000)={0x20, 0x83, 0x2, "12cf"}, 0x0, 0x0}) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0xc004811}, 0x4010) syz_open_procfs(0x0, &(0x7f0000000080)='loginuid\x00') 161.66811ms ago: executing program 0 (id=48): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000) ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, &(0x7f0000000140)={0xc9, 0x0, 0xc}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0) 161.487148ms ago: executing program 2 (id=49): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x0, @void}, 0x10) syz_emit_ethernet(0xfdef, &(0x7f0000000a80)=ANY=[], 0x0) 0s ago: executing program 0 (id=50): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f00000000c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000006c0)=""/83, 0x53}}, 0x120) writev(r0, &(0x7f0000000780)=[{0x0}], 0x1) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:8962' (ED25519) to the list of known hosts. [ 40.990299][ T5931] cgroup: Unknown subsys name 'net' [ 41.157475][ T5931] cgroup: Unknown subsys name 'cpuset' [ 41.162263][ T5931] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.010239][ T5931] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.839154][ T5955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 43.839802][ T5951] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 43.841899][ T5955] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 43.844185][ T5957] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 43.846463][ T5955] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 43.848741][ T5957] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 43.849770][ T5955] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 43.850885][ T5956] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 43.851643][ T5957] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 43.854021][ T5955] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 43.855660][ T5956] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 43.855718][ T5957] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 43.857223][ T5951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 43.857353][ T5955] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 43.857483][ T5955] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 43.859437][ T5956] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 43.859933][ T5955] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 43.860451][ T5949] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 43.861670][ T5951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 43.867357][ T5949] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 43.869669][ T5951] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 43.870975][ T5949] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 43.873683][ T5951] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 43.884618][ T5951] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 43.987146][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 44.079350][ T5943] chnl_net:caif_netlink_parms(): no params data found [ 44.119159][ T5952] chnl_net:caif_netlink_parms(): no params data found [ 44.142157][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.146059][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.148355][ T5942] bridge_slave_0: entered allmulticast mode [ 44.151261][ T5942] bridge_slave_0: entered promiscuous mode [ 44.157370][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.160054][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.162722][ T5942] bridge_slave_1: entered allmulticast mode [ 44.167028][ T5942] bridge_slave_1: entered promiscuous mode [ 44.212857][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 44.225578][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.248434][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.250472][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.252474][ T5943] bridge_slave_0: entered allmulticast mode [ 44.255255][ T5943] bridge_slave_0: entered promiscuous mode [ 44.259731][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.276729][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.278810][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.280930][ T5943] bridge_slave_1: entered allmulticast mode [ 44.283141][ T5943] bridge_slave_1: entered promiscuous mode [ 44.361137][ T5942] team0: Port device team_slave_0 added [ 44.364873][ T5952] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.367696][ T5952] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.369983][ T5952] bridge_slave_0: entered allmulticast mode [ 44.372599][ T5952] bridge_slave_0: entered promiscuous mode [ 44.385014][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.389348][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.394504][ T5942] team0: Port device team_slave_1 added [ 44.412891][ T5952] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.415698][ T5952] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.418404][ T5952] bridge_slave_1: entered allmulticast mode [ 44.421427][ T5952] bridge_slave_1: entered promiscuous mode [ 44.496554][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.498591][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.500579][ T5944] bridge_slave_0: entered allmulticast mode [ 44.502694][ T5944] bridge_slave_0: entered promiscuous mode [ 44.505303][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.507298][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.509281][ T5944] bridge_slave_1: entered allmulticast mode [ 44.511354][ T5944] bridge_slave_1: entered promiscuous mode [ 44.514825][ T5943] team0: Port device team_slave_0 added [ 44.516841][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.518767][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.525917][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.531711][ T5952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.547328][ T5943] team0: Port device team_slave_1 added [ 44.561011][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.562944][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.570563][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.577498][ T5952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.592046][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 44.597192][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 44.641908][ T5952] team0: Port device team_slave_0 added [ 44.644717][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.646645][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.654105][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.666611][ T5944] team0: Port device team_slave_0 added [ 44.669041][ T5952] team0: Port device team_slave_1 added [ 44.671239][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.673155][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.680457][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.696963][ T5942] hsr_slave_0: entered promiscuous mode [ 44.699752][ T5942] hsr_slave_1: entered promiscuous mode [ 44.704111][ T5944] team0: Port device team_slave_1 added [ 44.721035][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.722988][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.730327][ T5952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.733971][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.735902][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.742784][ T5952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.788903][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 44.790999][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.798230][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 44.825120][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 44.827430][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 44.835133][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 44.854022][ T5943] hsr_slave_0: entered promiscuous mode [ 44.856512][ T5943] hsr_slave_1: entered promiscuous mode [ 44.858748][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.861584][ T5943] Cannot create hsr debugfs directory [ 44.872453][ T5952] hsr_slave_0: entered promiscuous mode [ 44.874530][ T5952] hsr_slave_1: entered promiscuous mode [ 44.876324][ T5952] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.878505][ T5952] Cannot create hsr debugfs directory [ 44.964830][ T5944] hsr_slave_0: entered promiscuous mode [ 44.966799][ T5944] hsr_slave_1: entered promiscuous mode [ 44.969169][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 44.972064][ T5944] Cannot create hsr debugfs directory [ 45.095423][ T5942] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 45.102829][ T5942] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 45.108223][ T5942] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 45.112859][ T5942] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 45.133942][ T5943] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 45.137910][ T5943] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 45.141082][ T5943] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 45.144152][ T5943] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 45.162935][ T5952] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 45.168452][ T5952] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 45.172925][ T5952] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 45.184441][ T5952] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 45.211090][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.216935][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.221486][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.230362][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.257381][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.276015][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.283017][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.294902][ T1211] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.296948][ T1211] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.299916][ T1211] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.301904][ T1211] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.311272][ T5943] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.319442][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.321574][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.326473][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.331001][ T1136] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.332974][ T1136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.346017][ T5952] 8021q: adding VLAN 0 to HW filter on device bond0 [ 45.355864][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.364598][ T1232] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.366600][ T1232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.376042][ T1232] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.378030][ T1232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.384233][ T5952] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.389904][ T1137] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.392576][ T1137] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.405715][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.407747][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.442025][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.467993][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.479925][ T5942] veth0_vlan: entered promiscuous mode [ 45.490037][ T5942] veth1_vlan: entered promiscuous mode [ 45.501353][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.505581][ T5943] veth0_vlan: entered promiscuous mode [ 45.511033][ T5943] veth1_vlan: entered promiscuous mode [ 45.517154][ T5942] veth0_macvtap: entered promiscuous mode [ 45.520605][ T5942] veth1_macvtap: entered promiscuous mode [ 45.531583][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.542821][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.548722][ T5952] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.550887][ T5943] veth0_macvtap: entered promiscuous mode [ 45.554160][ T5942] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.556671][ T5942] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.559067][ T5942] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.561453][ T5942] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.568439][ T5943] veth1_macvtap: entered promiscuous mode [ 45.574705][ T5944] veth0_vlan: entered promiscuous mode [ 45.578944][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.581900][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.585283][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.597619][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.600495][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.604709][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.612212][ T5944] veth1_vlan: entered promiscuous mode [ 45.614949][ T5943] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.617380][ T5943] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.619751][ T5943] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.622126][ T5943] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.649031][ T1136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.651475][ T1136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.657643][ T5952] veth0_vlan: entered promiscuous mode [ 45.659562][ T5944] veth0_macvtap: entered promiscuous mode [ 45.664188][ T5944] veth1_macvtap: entered promiscuous mode [ 45.668523][ T98] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.670670][ T98] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.680858][ T1232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.681551][ T5952] veth1_vlan: entered promiscuous mode [ 45.683022][ T1232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.687775][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.690392][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.692769][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.695698][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.698655][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.704268][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.706854][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.709270][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.711897][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.715141][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.724679][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.725015][ T5944] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.726883][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.729303][ T5944] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.729320][ T5944] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.736971][ T5944] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.756454][ T5952] veth0_macvtap: entered promiscuous mode [ 45.764804][ T5952] veth1_macvtap: entered promiscuous mode [ 45.769354][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 45.779546][ T1232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.779833][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.781752][ T1232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.785199][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.788995][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.791597][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.794710][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 45.797312][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.801086][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.819708][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.822356][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.825722][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.829551][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.832842][ T5952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 45.836586][ T5952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 45.840248][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.845820][ T1232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.847155][ T5952] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.848656][ T1232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.851021][ T5952] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.855753][ T5952] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.858000][ T5952] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.885168][ T98] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.887846][ T98] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.899513][ T98] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 45.902197][ T98] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.915064][ T67] Bluetooth: hci2: command tx timeout [ 45.923681][ T67] Bluetooth: hci0: command tx timeout [ 45.925391][ T67] Bluetooth: hci3: command tx timeout [ 45.927341][ T5951] Bluetooth: hci1: command tx timeout [ 46.244927][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 46.654590][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 46.973648][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.104367][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.106878][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.109386][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.112352][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.223659][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.233510][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 47.235843][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 48.007267][ T67] Bluetooth: hci3: command tx timeout [ 48.009423][ T67] Bluetooth: hci1: command tx timeout [ 48.011661][ T67] Bluetooth: hci2: command tx timeout [ 48.014289][ T5951] Bluetooth: hci0: command tx timeout [ 48.519554][ T6052] capability: warning: `syz.3.14' uses deprecated v2 capabilities in a way that may be insecure [ 48.564489][ T6054] Zero length message leads to an empty skb [ 48.693709][ T67] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 48.696462][ T67] CPU: 0 UID: 0 PID: 67 Comm: kworker/u33:0 Not tainted 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 48.696476][ T67] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 48.696484][ T67] Workqueue: hci3 hci_rx_work [ 48.696497][ T67] Call Trace: [ 48.696501][ T67] [ 48.696505][ T67] dump_stack_lvl+0x16c/0x1f0 [ 48.696521][ T67] sysfs_warn_dup+0x7f/0xa0 [ 48.696547][ T67] sysfs_create_dir_ns+0x24d/0x2b0 [ 48.696562][ T67] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 48.696577][ T67] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 48.696587][ T67] ? kobject_add_internal+0x12d/0x990 [ 48.696604][ T67] ? do_raw_spin_unlock+0x172/0x230 [ 48.696615][ T67] kobject_add_internal+0x2c8/0x990 [ 48.696631][ T67] kobject_add+0x16f/0x240 [ 48.696645][ T67] ? __pfx_kobject_add+0x10/0x10 [ 48.696658][ T67] ? class_to_subsys+0x3e/0x160 [ 48.696671][ T67] ? do_raw_spin_unlock+0x172/0x230 [ 48.696680][ T67] ? kobject_put+0xab/0x5a0 [ 48.696698][ T67] device_add+0x289/0x1a70 [ 48.696710][ T67] ? __pfx_dev_set_name+0x10/0x10 [ 48.696723][ T67] ? __pfx_device_add+0x10/0x10 [ 48.696735][ T67] ? mgmt_send_event_skb+0x2f2/0x460 [ 48.696753][ T67] hci_conn_add_sysfs+0x17e/0x230 [ 48.696763][ T67] le_conn_complete_evt+0x1077/0x1d60 [ 48.696781][ T67] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 48.696794][ T67] ? __mutex_lock+0x1cc/0xb10 [ 48.696812][ T67] hci_le_enh_conn_complete_evt+0x23d/0x380 [ 48.696827][ T67] ? skb_pull_data+0x166/0x210 [ 48.696841][ T67] hci_le_meta_evt+0x2e2/0x5d0 [ 48.696850][ T67] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 48.696867][ T67] hci_event_packet+0x666/0x1180 [ 48.696881][ T67] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 48.696890][ T67] ? __pfx_hci_event_packet+0x10/0x10 [ 48.696906][ T67] ? mark_held_locks+0x9f/0xe0 [ 48.696925][ T67] ? kcov_remote_start+0x3cf/0x6e0 [ 48.696945][ T67] ? lockdep_hardirqs_on+0x7c/0x110 [ 48.696965][ T67] hci_rx_work+0x2c5/0x16b0 [ 48.696975][ T67] ? process_one_work+0x921/0x1ba0 [ 48.696990][ T67] process_one_work+0x9c5/0x1ba0 [ 48.697013][ T67] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 48.697027][ T67] ? __pfx_process_one_work+0x10/0x10 [ 48.697044][ T67] ? assign_work+0x1a0/0x250 [ 48.697058][ T67] worker_thread+0x6c8/0xf00 [ 48.697076][ T67] ? __pfx_worker_thread+0x10/0x10 [ 48.697091][ T67] kthread+0x3af/0x750 [ 48.697104][ T67] ? __pfx_kthread+0x10/0x10 [ 48.697117][ T67] ? lock_acquire+0x2f/0xb0 [ 48.697132][ T67] ? __pfx_kthread+0x10/0x10 [ 48.697145][ T67] ret_from_fork+0x45/0x80 [ 48.697158][ T67] ? __pfx_kthread+0x10/0x10 [ 48.697169][ T67] ret_from_fork_asm+0x1a/0x30 [ 48.697186][ T67] [ 48.697242][ T67] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 48.778186][ T67] Bluetooth: hci3: failed to register connection device [ 49.279434][ T6037] syz.0.8 (6037) used greatest stack depth: 20800 bytes left [ 49.385429][ T6046] syz.2.12 (6046) used greatest stack depth: 20416 bytes left [ 49.578343][ T6077] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.016233][ T5951] Bluetooth: hci0: unexpected event 0x03 length: 17 > 11 [ 50.073621][ T5951] Bluetooth: hci2: command tx timeout [ 50.077715][ T5951] Bluetooth: hci0: command tx timeout [ 50.079356][ T5951] Bluetooth: hci1: command tx timeout [ 50.080972][ T5951] Bluetooth: hci3: command tx timeout [ 50.343523][ T5984] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 50.503501][ T5984] usb 6-1: Using ep0 maxpacket: 16 [ 50.510816][ T5984] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 50.516781][ T5984] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 50.519529][ T5984] usb 6-1: New USB device found, idVendor=056a, idProduct=00b2, bcdDevice= 0.00 [ 50.522432][ T5984] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 50.529390][ T5984] usb 6-1: config 0 descriptor?? [ 50.949449][ T5984] wacom 0003:056A:00B2.0002: Unknown device_type for 'HID 056a:00b2'. Assuming pen. [ 50.960572][ T5984] wacom 0003:056A:00B2.0002: hidraw1: USB HID v0.00 Device [HID 056a:00b2] on usb-dummy_hcd.1-1/input0 [ 50.968786][ T5984] input: Wacom Intuos3 9x12 Pen as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:056A:00B2.0002/input/input5 [ 51.152096][ T1017] usb 6-1: USB disconnect, device number 2 [ 52.153611][ T67] Bluetooth: hci3: command tx timeout [ 52.155864][ T67] Bluetooth: hci1: command tx timeout [ 52.158053][ T67] Bluetooth: hci0: command tx timeout [ 52.160228][ T67] Bluetooth: hci2: command tx timeout [ 53.533601][ T5984] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 53.698782][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.701043][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.703056][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.711396][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.713609][ T5984] usb 8-1: Using ep0 maxpacket: 16 [ 53.718024][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.720377][ T5984] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 53.732902][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.735153][ T5984] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 53.737852][ T5984] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 53.740300][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.742917][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.745133][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.747192][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.749253][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.751291][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.753327][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.764264][ T5984] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 53.766707][ T5984] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 53.769317][ T5984] usb 8-1: Product: syz [ 53.770519][ T5984] usb 8-1: Manufacturer: syz [ 53.771794][ T5984] usb 8-1: SerialNumber: syz [ 53.783450][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.785451][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.787485][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.789499][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.791497][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.803640][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.805705][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.807801][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.809807][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.811827][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.823482][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.825503][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.827572][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.829623][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.831625][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.834208][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.836305][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.838381][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.840417][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.842450][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.844695][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.846755][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.848832][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.850880][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.852975][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.856851][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.858968][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.860962][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.862981][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.865232][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.867299][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.869353][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.871400][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.873659][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.875736][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.877854][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.879911][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.881940][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.884289][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.886349][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.888473][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.890508][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.892562][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.894805][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.896934][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.898984][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.901012][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.903023][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.908494][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.912230][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.914432][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.916484][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.918574][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.920593][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.922605][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.925676][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.927892][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.929969][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.932051][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.934263][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.936366][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.938510][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.940564][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.942600][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.944913][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.949330][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.950251][ T6148] BUG: Bad page state in process syz.2.49 pfn:68aec [ 53.951414][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.953644][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x68aec [ 53.953659][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 53.957218][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.959362][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 53.959374][ T6148] raw: 0000000000000000 3fffffffffffffff 00000000ffffffff 0000000000000000 [ 53.959380][ T6148] page dumped because: page_pool leak [ 53.959385][ T6148] page_owner tracks the page as allocated [ 53.961378][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.963445][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950205661, free_ts 47413616041 [ 53.963466][ T6148] post_alloc_hook+0x181/0x1b0 [ 53.966018][ T5983] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 53.968099][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 53.968120][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 53.968136][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 53.974126][ T5983] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [syz0] on syz0 [ 53.977576][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 53.989750][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 53.991202][ T6148] page_pool_alloc_frag_netmem+0x220/0x760 [ 53.992779][ T6148] skb_pp_cow_data+0x571/0xf10 [ 53.994268][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 53.995687][ T6148] do_xdp_generic+0x3f1/0xe70 [ 53.997008][ T6148] tun_get_user+0x1e04/0x3e50 [ 53.998412][ T6148] tun_chr_write_iter+0xdc/0x210 [ 53.999816][ T6148] vfs_write+0x5ae/0x1150 [ 54.001006][ T6148] ksys_write+0x12b/0x250 [ 54.002201][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.003719][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.005070][ T6148] page last free pid 35 tgid 35 stack trace: [ 54.006691][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.008089][ T6148] tlb_remove_table_rcu+0x116/0x1a0 [ 54.009529][ T6148] rcu_core+0x79d/0x14d0 [ 54.010700][ T6148] handle_softirqs+0x213/0x8f0 [ 54.012018][ T6148] run_ksoftirqd+0x3a/0x60 [ 54.013251][ T6148] smpboot_thread_fn+0x661/0xa30 [ 54.014669][ T6148] kthread+0x3af/0x750 [ 54.015798][ T6148] ret_from_fork+0x45/0x80 [ 54.017033][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.018351][ T6148] Modules linked in: [ 54.019445][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Not tainted 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.019457][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.019463][ T6148] Call Trace: [ 54.019466][ T6148] [ 54.019470][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.019486][ T6148] bad_page+0xb3/0x1f0 [ 54.019496][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.019506][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.019516][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.019532][ T6148] page_frag_free+0x255/0x2a0 [ 54.019541][ T6148] __xdp_return+0x363/0xac0 [ 54.019556][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.019571][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.019592][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.019600][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.019618][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.019630][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.019648][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.019665][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.019682][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.019698][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.019711][ T6148] ? find_held_lock+0x2d/0x110 [ 54.019725][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.019744][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.019758][ T6148] vfs_write+0x5ae/0x1150 [ 54.019771][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.019786][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.019799][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.019812][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.019824][ T6148] ? __fget_files+0x40/0x3b0 [ 54.019843][ T6148] ksys_write+0x12b/0x250 [ 54.019856][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.019872][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.019887][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.019900][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.019916][ T6148] RIP: 0023:0xf748e579 [ 54.019923][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.019932][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.019941][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.019947][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.019953][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.019958][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.019963][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.019974][ T6148] [ 54.019978][ T6148] Disabling lock debugging due to kernel taint [ 54.090903][ T6148] BUG: Bad page state in process syz.2.49 pfn:696a9 [ 54.092693][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x8 pfn:0x696a9 [ 54.095071][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.097045][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.099380][ T6148] raw: 0000000000000008 0000000000000001 00000000ffffffff 0000000000000000 [ 54.101724][ T6148] page dumped because: page_pool leak [ 54.103218][ T6148] page_owner tracks the page as allocated [ 54.104843][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950201152, free_ts 47413927163 [ 54.109362][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.110700][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.112233][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.113932][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.115480][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.117134][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.118628][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.119973][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.121380][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.122688][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.124034][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.125398][ T6148] vfs_write+0x5ae/0x1150 [ 54.126596][ T6148] ksys_write+0x12b/0x250 [ 54.127854][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.129283][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.130650][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.132417][ T6148] page last free pid 35 tgid 35 stack trace: [ 54.134129][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.135524][ T6148] tlb_remove_table_rcu+0x116/0x1a0 [ 54.136995][ T6148] rcu_core+0x79d/0x14d0 [ 54.138192][ T6148] handle_softirqs+0x213/0x8f0 [ 54.139546][ T6148] run_ksoftirqd+0x3a/0x60 [ 54.140795][ T6148] smpboot_thread_fn+0x661/0xa30 [ 54.142175][ T6148] kthread+0x3af/0x750 [ 54.143323][ T6148] ret_from_fork+0x45/0x80 [ 54.144613][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.145947][ T6148] Modules linked in: [ 54.147064][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.147079][ T6148] Tainted: [B]=BAD_PAGE [ 54.147082][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.147088][ T6148] Call Trace: [ 54.147091][ T6148] [ 54.147095][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.147109][ T6148] bad_page+0xb3/0x1f0 [ 54.147131][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.147142][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.147156][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.147170][ T6148] page_frag_free+0x255/0x2a0 [ 54.147179][ T6148] __xdp_return+0x363/0xac0 [ 54.147193][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.147206][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.147223][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.147232][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.147246][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.147257][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.147270][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.147286][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.147300][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.147314][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.147327][ T6148] ? find_held_lock+0x2d/0x110 [ 54.147339][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.147354][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.147368][ T6148] vfs_write+0x5ae/0x1150 [ 54.147381][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.147395][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.147407][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.147420][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.147432][ T6148] ? __fget_files+0x40/0x3b0 [ 54.147447][ T6148] ksys_write+0x12b/0x250 [ 54.147460][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.147473][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.147488][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.147501][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.147517][ T6148] RIP: 0023:0xf748e579 [ 54.147524][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.147534][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.147543][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.147549][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.147555][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.147560][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.147565][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.147573][ T6148] [ 54.147579][ T6148] BUG: Bad page state in process syz.2.49 pfn:696a8 [ 54.221170][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880696ad000 pfn:0x696a8 [ 54.223904][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.225856][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.228220][ T6148] raw: ffff8880696ad000 0000000000000001 00000000ffffffff 0000000000000000 [ 54.230533][ T6148] page dumped because: page_pool leak [ 54.232005][ T6148] page_owner tracks the page as allocated [ 54.233618][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950196686, free_ts 47413920727 [ 54.238073][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.239416][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.240911][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.242529][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.244095][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.245698][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.247194][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.248511][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.249903][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.251201][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.252493][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.253890][ T6148] vfs_write+0x5ae/0x1150 [ 54.255084][ T6148] ksys_write+0x12b/0x250 [ 54.256284][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.257720][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.259060][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.260791][ T6148] page last free pid 35 tgid 35 stack trace: [ 54.262415][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.263831][ T6148] tlb_remove_table_rcu+0x116/0x1a0 [ 54.265261][ T6148] rcu_core+0x79d/0x14d0 [ 54.266427][ T6148] handle_softirqs+0x213/0x8f0 [ 54.267767][ T6148] run_ksoftirqd+0x3a/0x60 [ 54.268997][ T6148] smpboot_thread_fn+0x661/0xa30 [ 54.270370][ T6148] kthread+0x3af/0x750 [ 54.271498][ T6148] ret_from_fork+0x45/0x80 [ 54.272734][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.274091][ T6148] Modules linked in: [ 54.275198][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.275212][ T6148] Tainted: [B]=BAD_PAGE [ 54.275215][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.275221][ T6148] Call Trace: [ 54.275225][ T6148] [ 54.275229][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.275243][ T6148] bad_page+0xb3/0x1f0 [ 54.275252][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.275261][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.275271][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.275285][ T6148] page_frag_free+0x255/0x2a0 [ 54.275294][ T6148] __xdp_return+0x363/0xac0 [ 54.275308][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.275321][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.275339][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.275347][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.275361][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.275372][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.275385][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.275400][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.275415][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.275429][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.275443][ T6148] ? find_held_lock+0x2d/0x110 [ 54.275454][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.275470][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.275483][ T6148] vfs_write+0x5ae/0x1150 [ 54.275496][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.275510][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.275522][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.275535][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.275547][ T6148] ? __fget_files+0x40/0x3b0 [ 54.275563][ T6148] ksys_write+0x12b/0x250 [ 54.275575][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.275589][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.275602][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.275615][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.275631][ T6148] RIP: 0023:0xf748e579 [ 54.275638][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.275647][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.275656][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.275662][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.275667][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.275673][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.275678][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.275686][ T6148] [ 54.275691][ T6148] BUG: Bad page state in process syz.2.49 pfn:69701 [ 54.348591][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2 pfn:0x69701 [ 54.351000][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.352997][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.355398][ T6148] raw: 0000000000000002 0000000000000001 00000000ffffffff 0000000000000000 [ 54.357766][ T6148] page dumped because: page_pool leak [ 54.359259][ T6148] page_owner tracks the page as allocated [ 54.360832][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950192584, free_ts 49384272652 [ 54.365364][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.366703][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.368268][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.369907][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.371449][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.373071][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.374570][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.375888][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.377301][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.378608][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.379907][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.381264][ T6148] vfs_write+0x5ae/0x1150 [ 54.382459][ T6148] ksys_write+0x12b/0x250 [ 54.383695][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.385106][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.386438][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.388190][ T6148] page last free pid 1017 tgid 1017 stack trace: [ 54.389905][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.391280][ T6148] qlist_free_all+0x4e/0x120 [ 54.392572][ T6148] kasan_quarantine_reduce+0x195/0x1e0 [ 54.394127][ T6148] __kasan_slab_alloc+0x69/0x90 [ 54.395488][ T6148] __kmalloc_cache_noprof+0x243/0x410 [ 54.396969][ T6148] nsim_fib_event_work+0x1384/0x26d0 [ 54.398420][ T6148] process_one_work+0x9c5/0x1ba0 [ 54.399770][ T6148] worker_thread+0x6c8/0xf00 [ 54.401040][ T6148] kthread+0x3af/0x750 [ 54.402155][ T6148] ret_from_fork+0x45/0x80 [ 54.403430][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.404745][ T6148] Modules linked in: [ 54.405821][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.405835][ T6148] Tainted: [B]=BAD_PAGE [ 54.405838][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.405844][ T6148] Call Trace: [ 54.405847][ T6148] [ 54.405850][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.405865][ T6148] bad_page+0xb3/0x1f0 [ 54.405875][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.405884][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.405893][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.405907][ T6148] page_frag_free+0x255/0x2a0 [ 54.405916][ T6148] __xdp_return+0x363/0xac0 [ 54.405930][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.405943][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.405960][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.405968][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.405982][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.405993][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.406006][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.406021][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.406036][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.406051][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.406064][ T6148] ? find_held_lock+0x2d/0x110 [ 54.406075][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.406091][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.406105][ T6148] vfs_write+0x5ae/0x1150 [ 54.406117][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.406131][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.406147][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.406160][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.406172][ T6148] ? __fget_files+0x40/0x3b0 [ 54.406187][ T6148] ksys_write+0x12b/0x250 [ 54.406200][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.406214][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.406227][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.406240][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.406256][ T6148] RIP: 0023:0xf748e579 [ 54.406263][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.406272][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.406281][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.406287][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.406292][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.406297][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.406303][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.406310][ T6148] [ 54.406315][ T6148] BUG: Bad page state in process syz.2.49 pfn:69700 [ 54.478895][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888069701a40 pfn:0x69700 [ 54.481551][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.483559][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.485919][ T6148] raw: ffff888069701a40 0000000000000001 00000000ffffffff 0000000000000000 [ 54.488304][ T6148] page dumped because: page_pool leak [ 54.489767][ T6148] page_owner tracks the page as allocated [ 54.491358][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950188332, free_ts 49384272652 [ 54.495877][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.497216][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.498728][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.500388][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.501926][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.503617][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.504314][ T5984] usb 8-1: 0:2 : does not exist [ 54.505267][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.505288][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.509468][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.510777][ T5984] usb 8-1: USB disconnect, device number 2 [ 54.510795][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.513968][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.515353][ T6148] vfs_write+0x5ae/0x1150 [ 54.516557][ T6148] ksys_write+0x12b/0x250 [ 54.517790][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.519229][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.520595][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.522373][ T6148] page last free pid 1017 tgid 1017 stack trace: [ 54.524447][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.525824][ T6148] qlist_free_all+0x4e/0x120 [ 54.527132][ T6148] kasan_quarantine_reduce+0x195/0x1e0 [ 54.528652][ T6148] __kasan_slab_alloc+0x69/0x90 [ 54.530014][ T6148] __kmalloc_cache_noprof+0x243/0x410 [ 54.531516][ T6148] nsim_fib_event_work+0x1384/0x26d0 [ 54.532986][ T6148] process_one_work+0x9c5/0x1ba0 [ 54.534553][ T6148] worker_thread+0x6c8/0xf00 [ 54.535866][ T6148] kthread+0x3af/0x750 [ 54.537078][ T6148] ret_from_fork+0x45/0x80 [ 54.538455][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.540056][ T6148] Modules linked in: [ 54.541259][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.541274][ T6148] Tainted: [B]=BAD_PAGE [ 54.541277][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.541283][ T6148] Call Trace: [ 54.541287][ T6148] [ 54.541290][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.541306][ T6148] bad_page+0xb3/0x1f0 [ 54.541316][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.541326][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.541335][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.541349][ T6148] page_frag_free+0x255/0x2a0 [ 54.541358][ T6148] __xdp_return+0x363/0xac0 [ 54.541373][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.541388][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.541414][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.541426][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.541440][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.541451][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.541464][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.541479][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.541494][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.541509][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.541522][ T6148] ? find_held_lock+0x2d/0x110 [ 54.541533][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.541549][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.541563][ T6148] vfs_write+0x5ae/0x1150 [ 54.541576][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.541589][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.541602][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.541615][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.541626][ T6148] ? __fget_files+0x40/0x3b0 [ 54.541642][ T6148] ksys_write+0x12b/0x250 [ 54.541654][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.541668][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.541682][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.541695][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.541711][ T6148] RIP: 0023:0xf748e579 [ 54.541718][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.541727][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.541736][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.541742][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.541748][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.541753][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.541758][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.541766][ T6148] [ 54.541772][ T6148] BUG: Bad page state in process syz.2.49 pfn:5b029 [ 54.615597][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2 pfn:0x5b029 [ 54.618025][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.620004][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.622343][ T6148] raw: 0000000000000002 0000000000000001 00000000ffffffff 0000000000000000 [ 54.624727][ T6148] page dumped because: page_pool leak [ 54.626198][ T6148] page_owner tracks the page as allocated [ 54.627801][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950184270, free_ts 49384293001 [ 54.632285][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.633662][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.635184][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.636827][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.638358][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.640003][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.641492][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.642820][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.644275][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.645575][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.646896][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.648290][ T6148] vfs_write+0x5ae/0x1150 [ 54.649498][ T6148] ksys_write+0x12b/0x250 [ 54.650701][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.652120][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.653518][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.655276][ T6148] page last free pid 1017 tgid 1017 stack trace: [ 54.657037][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.658420][ T6148] qlist_free_all+0x4e/0x120 [ 54.659714][ T6148] kasan_quarantine_reduce+0x195/0x1e0 [ 54.661222][ T6148] __kasan_slab_alloc+0x69/0x90 [ 54.662581][ T6148] __kmalloc_cache_noprof+0x243/0x410 [ 54.664101][ T6148] nsim_fib_event_work+0x1384/0x26d0 [ 54.665561][ T6148] process_one_work+0x9c5/0x1ba0 [ 54.666945][ T6148] worker_thread+0x6c8/0xf00 [ 54.668249][ T6148] kthread+0x3af/0x750 [ 54.669538][ T6148] ret_from_fork+0x45/0x80 [ 54.670795][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.672141][ T6148] Modules linked in: [ 54.673242][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.673256][ T6148] Tainted: [B]=BAD_PAGE [ 54.673259][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.673264][ T6148] Call Trace: [ 54.673268][ T6148] [ 54.673272][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.673286][ T6148] bad_page+0xb3/0x1f0 [ 54.673296][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.673306][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.673315][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.673329][ T6148] page_frag_free+0x255/0x2a0 [ 54.673338][ T6148] __xdp_return+0x363/0xac0 [ 54.673352][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.673366][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.673383][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.673402][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.673416][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.673427][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.673441][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.673457][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.673471][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.673485][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.673498][ T6148] ? find_held_lock+0x2d/0x110 [ 54.673510][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.673526][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.673540][ T6148] vfs_write+0x5ae/0x1150 [ 54.673553][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.673567][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.673579][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.673592][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.673604][ T6148] ? __fget_files+0x40/0x3b0 [ 54.673619][ T6148] ksys_write+0x12b/0x250 [ 54.673631][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.673645][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.673659][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.673672][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.673689][ T6148] RIP: 0023:0xf748e579 [ 54.673696][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.673705][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.673714][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.673720][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.673725][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.673731][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.673736][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.673744][ T6148] [ 54.735320][ T5935] udevd[5935]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 54.735519][ T6148] BUG: Bad page state in process syz.2.49 pfn:5b028 [ 54.735528][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88805b028140 pfn:0x5b028 [ 54.735538][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.735550][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.735559][ T6148] raw: ffff88805b028140 0000000000000001 00000000ffffffff 0000000000000000 [ 54.735565][ T6148] page dumped because: page_pool leak [ 54.735569][ T6148] page_owner tracks the page as allocated [ 54.735573][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950180015, free_ts 49384293001 [ 54.735587][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.735602][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.735616][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.735630][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.735643][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.775736][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.777230][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.778571][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.779979][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.781287][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.782602][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.784036][ T6148] vfs_write+0x5ae/0x1150 [ 54.785249][ T6148] ksys_write+0x12b/0x250 [ 54.786452][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.787895][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.789252][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.790995][ T6148] page last free pid 1017 tgid 1017 stack trace: [ 54.792737][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.794173][ T6148] qlist_free_all+0x4e/0x120 [ 54.795468][ T6148] kasan_quarantine_reduce+0x195/0x1e0 [ 54.796997][ T6148] __kasan_slab_alloc+0x69/0x90 [ 54.798357][ T6148] __kmalloc_cache_noprof+0x243/0x410 [ 54.799860][ T6148] nsim_fib_event_work+0x1384/0x26d0 [ 54.801328][ T6148] process_one_work+0x9c5/0x1ba0 [ 54.802705][ T6148] worker_thread+0x6c8/0xf00 [ 54.804056][ T6148] kthread+0x3af/0x750 [ 54.805201][ T6148] ret_from_fork+0x45/0x80 [ 54.806450][ T6148] ret_from_fork_asm+0x1a/0x30 [ 54.807837][ T6148] Modules linked in: [ 54.808935][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.808949][ T6148] Tainted: [B]=BAD_PAGE [ 54.808952][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.808959][ T6148] Call Trace: [ 54.808962][ T6148] [ 54.808966][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.808980][ T6148] bad_page+0xb3/0x1f0 [ 54.808989][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.808999][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.809008][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.809022][ T6148] page_frag_free+0x255/0x2a0 [ 54.809031][ T6148] __xdp_return+0x363/0xac0 [ 54.809044][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.809057][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.809075][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.809083][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.809096][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.809108][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.809121][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.809135][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.809151][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.809165][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.809178][ T6148] ? find_held_lock+0x2d/0x110 [ 54.809190][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.809206][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.809219][ T6148] vfs_write+0x5ae/0x1150 [ 54.809232][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.809246][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.809258][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.809271][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.809283][ T6148] ? __fget_files+0x40/0x3b0 [ 54.809298][ T6148] ksys_write+0x12b/0x250 [ 54.809311][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.809324][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.809338][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.809351][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.809367][ T6148] RIP: 0023:0xf748e579 [ 54.809374][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.809383][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.809392][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.809398][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.809403][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.809409][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.809414][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.809422][ T6148] [ 54.809427][ T6148] BUG: Bad page state in process syz.2.49 pfn:4f22d [ 54.883086][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2 pfn:0x4f22d [ 54.885550][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 54.887555][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 54.889917][ T6148] raw: 0000000000000002 0000000000000001 00000000ffffffff 0000000000000000 [ 54.892266][ T6148] page dumped because: page_pool leak [ 54.893797][ T6148] page_owner tracks the page as allocated [ 54.895377][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950175880, free_ts 49406706337 [ 54.899850][ T6148] post_alloc_hook+0x181/0x1b0 [ 54.901185][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 54.902678][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 54.904334][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 54.905830][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 54.907447][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 54.908889][ T6148] skb_pp_cow_data+0x776/0xf10 [ 54.910201][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 54.911581][ T6148] do_xdp_generic+0x3f1/0xe70 [ 54.912856][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.914173][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.915517][ T6148] vfs_write+0x5ae/0x1150 [ 54.916697][ T6148] ksys_write+0x12b/0x250 [ 54.917900][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.919292][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.920621][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.922330][ T6148] page last free pid 6071 tgid 6070 stack trace: [ 54.924093][ T6148] free_frozen_pages+0x6db/0xfb0 [ 54.925429][ T6148] __mmdrop+0xd5/0x460 [ 54.926537][ T6148] __mmput+0x36c/0x410 [ 54.927698][ T6148] mmput+0x62/0x70 [ 54.928753][ T6148] do_exit+0x9ba/0x2dc0 [ 54.929921][ T6148] do_group_exit+0xd3/0x2a0 [ 54.931184][ T6148] get_signal+0x24ed/0x26c0 [ 54.932457][ T6148] arch_do_signal_or_restart+0x90/0x7e0 [ 54.934009][ T6148] syscall_exit_to_user_mode+0x150/0x2a0 [ 54.935542][ T6148] __do_fast_syscall_32+0x80/0x120 [ 54.936946][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.938301][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.940054][ T6148] Modules linked in: [ 54.941132][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 54.941146][ T6148] Tainted: [B]=BAD_PAGE [ 54.941149][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 54.941155][ T6148] Call Trace: [ 54.941158][ T6148] [ 54.941162][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 54.941177][ T6148] bad_page+0xb3/0x1f0 [ 54.941187][ T6148] ? __pfx_bad_page+0x10/0x10 [ 54.941196][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 54.941206][ T6148] free_frozen_pages+0x701/0xfb0 [ 54.941220][ T6148] page_frag_free+0x255/0x2a0 [ 54.941229][ T6148] __xdp_return+0x363/0xac0 [ 54.941243][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 54.941256][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 54.941273][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 54.941281][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 54.941295][ T6148] do_xdp_generic+0x70a/0xe70 [ 54.941306][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 54.941319][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 54.941335][ T6148] tun_get_user+0x1e04/0x3e50 [ 54.941350][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 54.941364][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 54.941377][ T6148] ? find_held_lock+0x2d/0x110 [ 54.941389][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.941404][ T6148] tun_chr_write_iter+0xdc/0x210 [ 54.941418][ T6148] vfs_write+0x5ae/0x1150 [ 54.941431][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 54.941445][ T6148] ? __pfx_lock_release+0x10/0x10 [ 54.941458][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 54.941470][ T6148] ? lock_acquire+0x2f/0xb0 [ 54.941482][ T6148] ? __fget_files+0x40/0x3b0 [ 54.941498][ T6148] ksys_write+0x12b/0x250 [ 54.941510][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 54.941524][ T6148] __do_fast_syscall_32+0x73/0x120 [ 54.941537][ T6148] do_fast_syscall_32+0x32/0x80 [ 54.941550][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 54.941566][ T6148] RIP: 0023:0xf748e579 [ 54.941573][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 54.941582][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 54.941591][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 54.941597][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 54.941602][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 54.941607][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 54.941613][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 54.941621][ T6148] [ 54.941626][ T6148] BUG: Bad page state in process syz.2.49 pfn:4f22c [ 55.014278][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88804c23ee00 pfn:0x4f22c [ 55.017059][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 55.019042][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 55.021370][ T6148] raw: ffff88804c23ee00 0000000000000001 00000000ffffffff 0000000000000000 [ 55.023744][ T6148] page dumped because: page_pool leak [ 55.025194][ T6148] page_owner tracks the page as allocated [ 55.026710][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950171576, free_ts 49406706337 [ 55.031161][ T6148] post_alloc_hook+0x181/0x1b0 [ 55.032475][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 55.034033][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 55.035801][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 55.037344][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 55.038971][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 55.040452][ T6148] skb_pp_cow_data+0x776/0xf10 [ 55.041772][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 55.043176][ T6148] do_xdp_generic+0x3f1/0xe70 [ 55.044530][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.045830][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.047221][ T6148] vfs_write+0x5ae/0x1150 [ 55.048408][ T6148] ksys_write+0x12b/0x250 [ 55.049597][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.050985][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.052321][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.054081][ T6148] page last free pid 6071 tgid 6070 stack trace: [ 55.055803][ T6148] free_frozen_pages+0x6db/0xfb0 [ 55.057174][ T6148] __mmdrop+0xd5/0x460 [ 55.058289][ T6148] __mmput+0x36c/0x410 [ 55.059405][ T6148] mmput+0x62/0x70 [ 55.060438][ T6148] do_exit+0x9ba/0x2dc0 [ 55.061591][ T6148] do_group_exit+0xd3/0x2a0 [ 55.062826][ T6148] get_signal+0x24ed/0x26c0 [ 55.064128][ T6148] arch_do_signal_or_restart+0x90/0x7e0 [ 55.065642][ T6148] syscall_exit_to_user_mode+0x150/0x2a0 [ 55.067168][ T6148] __do_fast_syscall_32+0x80/0x120 [ 55.068575][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.069911][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.071588][ T6148] Modules linked in: [ 55.072664][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 55.072677][ T6148] Tainted: [B]=BAD_PAGE [ 55.072681][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.072686][ T6148] Call Trace: [ 55.072690][ T6148] [ 55.072694][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 55.072709][ T6148] bad_page+0xb3/0x1f0 [ 55.072719][ T6148] ? __pfx_bad_page+0x10/0x10 [ 55.072728][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 55.072738][ T6148] free_frozen_pages+0x701/0xfb0 [ 55.072752][ T6148] page_frag_free+0x255/0x2a0 [ 55.072761][ T6148] __xdp_return+0x363/0xac0 [ 55.072775][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 55.072788][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 55.072806][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 55.072814][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 55.072828][ T6148] do_xdp_generic+0x70a/0xe70 [ 55.072839][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 55.072856][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 55.072871][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.072886][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 55.072900][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 55.072914][ T6148] ? find_held_lock+0x2d/0x110 [ 55.072926][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.072941][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.072956][ T6148] vfs_write+0x5ae/0x1150 [ 55.072968][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 55.072982][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.072995][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 55.073007][ T6148] ? lock_acquire+0x2f/0xb0 [ 55.073019][ T6148] ? __fget_files+0x40/0x3b0 [ 55.073035][ T6148] ksys_write+0x12b/0x250 [ 55.073047][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 55.073061][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.073074][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.073087][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.073102][ T6148] RIP: 0023:0xf748e579 [ 55.073109][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 55.073118][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 55.073127][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 55.073133][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 55.073138][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 55.073143][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 55.073149][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 55.073157][ T6148] [ 55.073162][ T6148] BUG: Bad page state in process syz.2.49 pfn:67acf [ 55.145210][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67acf [ 55.147614][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 55.149622][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 55.151976][ T6148] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000 [ 55.154399][ T6148] page dumped because: page_pool leak [ 55.155900][ T6148] page_owner tracks the page as allocated [ 55.157500][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950167644, free_ts 48084863823 [ 55.162019][ T6148] post_alloc_hook+0x181/0x1b0 [ 55.163379][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 55.164969][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 55.166775][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 55.168440][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 55.170354][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 55.171857][ T6148] skb_pp_cow_data+0x776/0xf10 [ 55.173208][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 55.174674][ T6148] do_xdp_generic+0x3f1/0xe70 [ 55.176001][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.177339][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.178746][ T6148] vfs_write+0x5ae/0x1150 [ 55.179967][ T6148] ksys_write+0x12b/0x250 [ 55.181179][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.182609][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.184031][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.185790][ T6148] page last free pid 6046 tgid 6046 stack trace: [ 55.187567][ T6148] free_frozen_pages+0x6db/0xfb0 [ 55.188964][ T6148] tlb_remove_table_rcu+0x116/0x1a0 [ 55.190415][ T6148] rcu_core+0x79d/0x14d0 [ 55.191626][ T6148] handle_softirqs+0x213/0x8f0 [ 55.192972][ T6148] __irq_exit_rcu+0x109/0x170 [ 55.194376][ T6148] irq_exit_rcu+0x9/0x30 [ 55.195581][ T6148] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 55.197165][ T6148] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 55.198828][ T6148] Modules linked in: [ 55.199947][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 55.199961][ T6148] Tainted: [B]=BAD_PAGE [ 55.199964][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.199970][ T6148] Call Trace: [ 55.199974][ T6148] [ 55.199978][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 55.199993][ T6148] bad_page+0xb3/0x1f0 [ 55.200003][ T6148] ? __pfx_bad_page+0x10/0x10 [ 55.200012][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 55.200021][ T6148] free_frozen_pages+0x701/0xfb0 [ 55.200035][ T6148] page_frag_free+0x255/0x2a0 [ 55.200044][ T6148] __xdp_return+0x363/0xac0 [ 55.200059][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 55.200072][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 55.200089][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 55.200097][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 55.200111][ T6148] do_xdp_generic+0x70a/0xe70 [ 55.200122][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 55.200135][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 55.200150][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.200165][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 55.200179][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 55.200191][ T6148] ? find_held_lock+0x2d/0x110 [ 55.200203][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.200218][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.200232][ T6148] vfs_write+0x5ae/0x1150 [ 55.200246][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 55.200259][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.200272][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 55.200284][ T6148] ? lock_acquire+0x2f/0xb0 [ 55.200296][ T6148] ? __fget_files+0x40/0x3b0 [ 55.200312][ T6148] ksys_write+0x12b/0x250 [ 55.200324][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 55.200337][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.200352][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.200364][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.200379][ T6148] RIP: 0023:0xf748e579 [ 55.200386][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 55.200395][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 55.200405][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 55.200411][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 55.200416][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 55.200421][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 55.200427][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 55.200434][ T6148] [ 55.200440][ T6148] BUG: Bad page state in process syz.2.49 pfn:67ace [ 55.274676][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x67ace [ 55.277106][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 55.279085][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 55.281441][ T6148] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000 [ 55.283887][ T6148] page dumped because: page_pool leak [ 55.285376][ T6148] page_owner tracks the page as allocated [ 55.286964][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950163527, free_ts 48084853744 [ 55.291441][ T6148] post_alloc_hook+0x181/0x1b0 [ 55.292781][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 55.294318][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 55.295958][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 55.297498][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 55.299149][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 55.300649][ T6148] skb_pp_cow_data+0x776/0xf10 [ 55.301996][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 55.303451][ T6148] do_xdp_generic+0x3f1/0xe70 [ 55.304762][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.306073][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.307471][ T6148] vfs_write+0x5ae/0x1150 [ 55.308687][ T6148] ksys_write+0x12b/0x250 [ 55.309925][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.311353][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.312707][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.314506][ T6148] page last free pid 6046 tgid 6046 stack trace: [ 55.316249][ T6148] free_frozen_pages+0x6db/0xfb0 [ 55.317660][ T6148] tlb_remove_table_rcu+0x116/0x1a0 [ 55.319125][ T6148] rcu_core+0x79d/0x14d0 [ 55.320320][ T6148] handle_softirqs+0x213/0x8f0 [ 55.321656][ T6148] __irq_exit_rcu+0x109/0x170 [ 55.322969][ T6148] irq_exit_rcu+0x9/0x30 [ 55.324194][ T6148] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 55.325740][ T6148] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 55.327399][ T6148] Modules linked in: [ 55.328464][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 55.328478][ T6148] Tainted: [B]=BAD_PAGE [ 55.328482][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.328488][ T6148] Call Trace: [ 55.328491][ T6148] [ 55.328495][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 55.328509][ T6148] bad_page+0xb3/0x1f0 [ 55.328519][ T6148] ? __pfx_bad_page+0x10/0x10 [ 55.328528][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 55.328538][ T6148] free_frozen_pages+0x701/0xfb0 [ 55.328551][ T6148] page_frag_free+0x255/0x2a0 [ 55.328560][ T6148] __xdp_return+0x363/0xac0 [ 55.328574][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 55.328588][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 55.328605][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 55.328613][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 55.328626][ T6148] do_xdp_generic+0x70a/0xe70 [ 55.328638][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 55.328651][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 55.328666][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.328681][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 55.328695][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 55.328708][ T6148] ? find_held_lock+0x2d/0x110 [ 55.328720][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.328735][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.328749][ T6148] vfs_write+0x5ae/0x1150 [ 55.328762][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 55.328775][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.328788][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 55.328800][ T6148] ? lock_acquire+0x2f/0xb0 [ 55.328812][ T6148] ? __fget_files+0x40/0x3b0 [ 55.328828][ T6148] ksys_write+0x12b/0x250 [ 55.328840][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 55.328854][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.328868][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.328886][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.328901][ T6148] RIP: 0023:0xf748e579 [ 55.328908][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 55.328917][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 55.328926][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 55.328933][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 55.328938][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 55.328943][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 55.328949][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 55.328957][ T6148] [ 55.328963][ T6148] BUG: Bad page state in process syz.2.49 pfn:705ad [ 55.400605][ T6148] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x705ad [ 55.403001][ T6148] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 55.405070][ T6148] raw: 04fff00000000000 dead000000000040 ffff88801f0ae000 0000000000000000 [ 55.407453][ T6148] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000 [ 55.409800][ T6148] page dumped because: page_pool leak [ 55.411296][ T6148] page_owner tracks the page as allocated [ 55.412866][ T6148] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6148, tgid 6147 (syz.2.49), ts 53950159624, free_ts 47043731971 [ 55.417393][ T6148] post_alloc_hook+0x181/0x1b0 [ 55.418737][ T6148] get_page_from_freelist+0xfce/0x2f80 [ 55.420251][ T6148] __alloc_frozen_pages_noprof+0x221/0x2470 [ 55.421886][ T6148] alloc_pages_bulk_noprof+0x6f9/0x1390 [ 55.423465][ T6148] __page_pool_alloc_pages_slow+0x18c/0x770 [ 55.425112][ T6148] page_pool_alloc_netmems+0xc4/0x160 [ 55.426609][ T6148] skb_pp_cow_data+0x776/0xf10 [ 55.427989][ T6148] skb_cow_data_for_xdp+0x88/0xb0 [ 55.429395][ T6148] do_xdp_generic+0x3f1/0xe70 [ 55.430710][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.432037][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.433483][ T6148] vfs_write+0x5ae/0x1150 [ 55.434705][ T6148] ksys_write+0x12b/0x250 [ 55.435938][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.437387][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.438756][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.440526][ T6148] page last free pid 6022 tgid 6022 stack trace: [ 55.442276][ T6148] free_frozen_pages+0x6db/0xfb0 [ 55.443727][ T6148] free_pg_vec+0xf5/0x150 [ 55.444954][ T6148] packet_set_ring+0x69c/0x18f0 [ 55.446331][ T6148] packet_release+0x616/0xd90 [ 55.447698][ T6148] __sock_release+0xb0/0x270 [ 55.449009][ T6148] sock_close+0x1c/0x30 [ 55.450189][ T6148] __fput+0x3ff/0xb70 [ 55.451328][ T6148] task_work_run+0x14e/0x250 [ 55.452634][ T6148] syscall_exit_to_user_mode+0x27b/0x2a0 [ 55.454258][ T6148] __do_fast_syscall_32+0x80/0x120 [ 55.455706][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.457105][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.458892][ T6148] Modules linked in: [ 55.460008][ T6148] CPU: 2 UID: 0 PID: 6148 Comm: syz.2.49 Tainted: G B 6.14.0-syzkaller-00624-g2f2d52945852 #0 [ 55.460021][ T6148] Tainted: [B]=BAD_PAGE [ 55.460025][ T6148] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 55.460031][ T6148] Call Trace: [ 55.460034][ T6148] [ 55.460038][ T6148] dump_stack_lvl+0x16c/0x1f0 [ 55.460052][ T6148] bad_page+0xb3/0x1f0 [ 55.460063][ T6148] ? __pfx_bad_page+0x10/0x10 [ 55.460072][ T6148] ? page_bad_reason+0x9d/0x1e0 [ 55.460081][ T6148] free_frozen_pages+0x701/0xfb0 [ 55.460095][ T6148] page_frag_free+0x255/0x2a0 [ 55.460105][ T6148] __xdp_return+0x363/0xac0 [ 55.460118][ T6148] ? kmem_cache_free+0x2e2/0x4d0 [ 55.460132][ T6148] bpf_xdp_adjust_tail+0x9de/0xf70 [ 55.460149][ T6148] bpf_prog_f476d5219b92964a+0x1e/0x20 [ 55.460158][ T6148] bpf_prog_run_generic_xdp+0x623/0x1500 [ 55.460172][ T6148] do_xdp_generic+0x70a/0xe70 [ 55.460184][ T6148] ? __pfx_do_xdp_generic+0x10/0x10 [ 55.460197][ T6148] ? tun_get_user+0x1d55/0x3e50 [ 55.460213][ T6148] tun_get_user+0x1e04/0x3e50 [ 55.460228][ T6148] ? __pfx___futex_wait+0x10/0x10 [ 55.460242][ T6148] ? __pfx_tun_get_user+0x10/0x10 [ 55.460255][ T6148] ? find_held_lock+0x2d/0x110 [ 55.460267][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.460282][ T6148] tun_chr_write_iter+0xdc/0x210 [ 55.460296][ T6148] vfs_write+0x5ae/0x1150 [ 55.460309][ T6148] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 55.460323][ T6148] ? __pfx_lock_release+0x10/0x10 [ 55.460335][ T6148] ? __pfx_vfs_write+0x10/0x10 [ 55.460348][ T6148] ? lock_acquire+0x2f/0xb0 [ 55.460360][ T6148] ? __fget_files+0x40/0x3b0 [ 55.460375][ T6148] ksys_write+0x12b/0x250 [ 55.460387][ T6148] ? __pfx_ksys_write+0x10/0x10 [ 55.460401][ T6148] __do_fast_syscall_32+0x73/0x120 [ 55.460415][ T6148] do_fast_syscall_32+0x32/0x80 [ 55.460428][ T6148] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 55.460443][ T6148] RIP: 0023:0xf748e579 [ 55.460450][ T6148] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 55.460459][ T6148] RSP: 002b:00000000f5116520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 55.460468][ T6148] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000a80 [ 55.460473][ T6148] RDX: 000000000000fdef RSI: 00000000f747cff4 RDI: 0000000000000000 [ 55.460479][ T6148] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 55.460485][ T6148] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 55.460490][ T6148] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 55.460498][ T6148] VM DIAGNOSIS: 06:47:15 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffff88802b43ed40 RCX=1ffffffff20c4631 RDX=0000000000000000 RSI=ffffffff8b6cfd40 RDI=ffffffff8bd346a0 RBP=ffffffff8de07c60 RSP=ffffffff8de07b48 R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff90627517 R11=0000000000000000 R12=ffff88802b43ed40 R13=ffff888027cc8000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8189f150 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7425a60 CR3=0000000045e70000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000008358b RBX=0000000000000001 RCX=ffffffff8b55c5f9 RDX=0000000000000000 RSI=ffffffff8b6cfd40 RDI=ffffffff8bd346a0 RBP=ffffed1003765000 RSP=ffffc9000048fe08 R8 =0000000000000001 R9 =ffffed10056a6f85 R10=ffff88802b537c2b R11=0000000000000000 R12=0000000000000001 R13=ffff88801bb28000 R14=ffffffff90627510 R15=0000000000000000 RIP=ffffffff8b55d9df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f517b810 CR3=0000000024342000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000002d992 RBX=0000000000000038 RCX=ffffc90006c39000 RDX=0000000000080000 RSI=ffffffff8199ca26 RDI=0000000000000001 RBP=1ffff92000e22e5b RSP=ffffc900071172c8 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000001 R13=0000000000000200 R14=ffff888022d60000 R15=ffffc90007117390 RIP=ffffffff8199ca30 RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080010000 CR3=000000002366c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001d000000000 0000000700000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=000000000001be60 RCX=00000000000010b8 RDX=0000000000000e61 RSI=00007f4fb620f2ea RDI=000055c292c9b080 RBP=000055c292c9a130 RSP=00007ffc561fdb00 R8 =000055c292c9a130 R9 =000000000001be60 R10=000000000000020f R11=0000000000000000 R12=00007f4fb624baa0 R13=000055c292c9a1a0 R14=0000000000002000 R15=0000000000000000 RIP=00007f4fb61239e4 RFL=00010246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA] SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f4fb601c500 ffffffff 00c00000 GS =0000 0000000000000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000c37aaee CR3=00000000231a6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000200 Opmask01=0000000000000000 Opmask02=00000000fffffdff Opmask03=0000000000000000 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc561fdd30 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313654205b5d3135 323035392e333520 20205b3e313c0a30 783020676174206d ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3136542051573135 3230353324333520 2020513431360030 7230206761742067 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7274206464616767 6563200000303772 6562677544666163 7265532026303774 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3e3420003030202c 2430200000203730 2b30303330000000 3024302026273620 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7a646325383a3a3a 2438483a3a304b3c 3f3a30393a3a3a25 3a243a303b273c25 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 727e2a6e646b6767 65692a0a0a3a3778 6f68677f44666b63 786f592a263a377e ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000