last executing test programs:

3.213378932s ago: executing program 2 (id=23):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20340, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x9, 0x5b02, 0x4000000000003, 0x630, 0x6, 0x6, 0x0, 0x5, 0x7f, 0x7, 0xe, 0x40000000, 0x7, 0x0, 0x2000000000000049], 0xdddd1000, 0x3c7052})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.160806197s ago: executing program 2 (id=25):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2002)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
ioctl$EVIOCGBITSND(r1, 0x40044591, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
write$evdev(r0, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)

3.076370118s ago: executing program 2 (id=27):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r0}, &(0x7f0000001c00), &(0x7f0000001c40)=r1}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.98492791s ago: executing program 2 (id=29):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)=0x7)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040301, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0684113, &(0x7f0000000540)={0x1, 0x1fe, 0x4, 0xe, 0x4f, 0x1, 0x7, 0x6c7, 0x7, 0xffffff98, 0x6})

2.471241364s ago: executing program 2 (id=36):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101000, 0x59)
open$dir(&(0x7f0000000340)='./file1\x00', 0x2000, 0x80)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r1, &(0x7f0000001440)=""/126, 0x7e, 0x41)

2.185380198s ago: executing program 0 (id=44):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r0, 0x0, r3, 0x0, 0x39000, 0x0)
r4 = memfd_create(&(0x7f0000000080), 0x0)
splice(r2, 0x0, r4, 0x0, 0x408cd, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfffffe3e)

1.603015277s ago: executing program 2 (id=47):
syz_usb_connect(0x2, 0x2d, 0x0, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000280)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000080)={0x1d, r1, 0x0, {0x0, 0xf0, 0x2}, 0x1}, 0x18)
sendmsg$can_j1939(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)='.', 0x1a000}}, 0x0)

1.309609815s ago: executing program 0 (id=52):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x470bd2d, 0xfffffffd, {0x60, 0x0, 0x0, r2, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x7, 0x5, 0x20, 0x2, 0x3, 0xd1c, 0x1}}, {0x6, 0x2, [0x4f]}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000040}, 0x44080)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000)

1.30402649s ago: executing program 3 (id=53):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x101)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000400)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)

1.277706685s ago: executing program 0 (id=54):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
fcntl$setstatus(r0, 0x4, 0x6800)
sendfile(r0, r0, 0x0, 0x7f03)

1.239800727s ago: executing program 0 (id=55):
r0 = io_uring_setup(0x61d8, &(0x7f0000000a40)={0x0, 0x5, 0x800, 0xfffffffe, 0x40003be})
io_setup(0x9, &(0x7f0000000b80)=<r1=>0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0xff, 0x0, 0x7fc00100}]})
io_getevents(0x0, 0xfffe, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f00000002c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
close_range(r0, 0xffffffffffffffff, 0x0)

1.083193807s ago: executing program 3 (id=56):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
sendmmsg$inet6(r1, &(0x7f0000002fc0)=[{{&(0x7f0000000340)={0xa, 0x4e23, 0xfffffff9, @dev={0xfe, 0x80, '\x00', 0x36}, 0x9}, 0x1c, &(0x7f00000004c0)=[{&(0x7f00000005c0)="05", 0x1}], 0x1}}, {{&(0x7f0000000500)={0xa, 0x4e22, 0x3, @remote, 0x40}, 0x1c, &(0x7f0000000b00)=[{&(0x7f00000006c0)="02", 0x1}], 0x1}}], 0x2, 0x24000045)
shutdown(r1, 0x1)
sendfile(r1, r0, 0x0, 0x3ff)

1.071133081s ago: executing program 3 (id=57):
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4001c00)

1.002352374s ago: executing program 3 (id=58):
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket(0x1e, 0x1, 0x0)
connect$tipc(r1, &(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r1, &(0x7f0000000340), 0x2000011a)
sendmmsg$sock(r1, &(0x7f0000001600)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="15", 0x1}], 0x1}}], 0x1, 0x40001)
splice(r1, 0x0, r0, 0x0, 0x4ff9c, 0x0)

873.652061ms ago: executing program 3 (id=59):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0x3)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
accept4$rose(r0, 0x0, 0x0, 0x0)

426.344506ms ago: executing program 1 (id=67):
r0 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000000)="0900bf65653f47f4020000008bd458d1e7cbdaf300000f34e7e4165f081ae36850f6d15c3e681411f7a496c0da04003c242f5bedaf6bec340dee49474362b24cb800edc500", 0x0, 0x48)
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}})

303.759013ms ago: executing program 1 (id=68):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

172.619046ms ago: executing program 1 (id=69):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

172.069185ms ago: executing program 0 (id=70):
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x100)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', &(0x7f00000004c0), 0x80, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x24, &(0x7f0000000000)={0x2})

160.127959ms ago: executing program 0 (id=71):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x2, 0x2)

102.992101ms ago: executing program 1 (id=72):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000380)={0x1, @pix_mp={0x8000000, 0x0, 0x32525942, 0x9, 0x0, [{}, {0x0, 0xffffffff}, {}, {}, {}, {0x0, 0x6}, {0x6}], 0x0, 0x8, 0x16, 0x1, 0x7}})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock(&(0x7f0000126000/0x2000)=nil, 0x2000)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

68.111315ms ago: executing program 1 (id=73):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x48, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x48}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000057c0)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private1}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x8}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000084)

568.433µs ago: executing program 3 (id=74):
r0 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r0, &(0x7f0000000440)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
listen(r0, 0x3)
connect$inet(0xffffffffffffffff, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r1, &(0x7f0000001500), 0x588, 0x0)

0s ago: executing program 1 (id=75):
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:32903' (ED25519) to the list of known hosts.
[   41.574802][ T5870] cgroup: Unknown subsys name 'net'
[   41.714512][ T5870] cgroup: Unknown subsys name 'cpuset'
[   41.718190][ T5870] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.555982][ T5870] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.846297][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.851961][ T5942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.855414][ T5942] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.857933][ T5942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.862645][ T5943] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.865830][ T5943] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.868349][ T5943] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.869846][ T5300] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.870771][ T5943] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.874276][ T5300] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.875328][ T5943] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.879311][ T5300] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.880368][ T5943] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.883712][ T5300] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.886001][ T5943] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.889257][ T5300] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.905325][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.907745][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.910917][   T67] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.914527][   T67] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   46.214446][ T5940] chnl_net:caif_netlink_parms(): no params data found
[   46.233071][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   46.349445][ T5936] chnl_net:caif_netlink_parms(): no params data found
[   46.371594][ T5949] chnl_net:caif_netlink_parms(): no params data found
[   46.375946][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.378450][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.380673][ T5940] bridge_slave_0: entered allmulticast mode
[   46.384755][ T5940] bridge_slave_0: entered promiscuous mode
[   46.390505][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.393813][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.396843][ T5940] bridge_slave_1: entered allmulticast mode
[   46.400648][ T5940] bridge_slave_1: entered promiscuous mode
[   46.489624][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.491781][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.493952][ T5944] bridge_slave_0: entered allmulticast mode
[   46.496342][ T5944] bridge_slave_0: entered promiscuous mode
[   46.518137][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.520827][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.524215][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.526255][ T5944] bridge_slave_1: entered allmulticast mode
[   46.528613][ T5944] bridge_slave_1: entered promiscuous mode
[   46.554182][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.635782][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.656244][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.658319][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.660396][ T5949] bridge_slave_0: entered allmulticast mode
[   46.664570][ T5949] bridge_slave_0: entered promiscuous mode
[   46.668499][ T5940] team0: Port device team_slave_0 added
[   46.671655][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.689168][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.692346][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.695300][ T5949] bridge_slave_1: entered allmulticast mode
[   46.699001][ T5949] bridge_slave_1: entered promiscuous mode
[   46.723845][ T5940] team0: Port device team_slave_1 added
[   46.739673][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.741804][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.743859][ T5936] bridge_slave_0: entered allmulticast mode
[   46.746241][ T5936] bridge_slave_0: entered promiscuous mode
[   46.803508][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.805576][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.807730][ T5936] bridge_slave_1: entered allmulticast mode
[   46.810190][ T5936] bridge_slave_1: entered promiscuous mode
[   46.814744][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.834029][ T5944] team0: Port device team_slave_0 added
[   46.852519][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.855860][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.857855][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.865655][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.870971][ T5944] team0: Port device team_slave_1 added
[   46.904481][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.906489][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.913921][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.938821][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.962729][ T5949] team0: Port device team_slave_0 added
[   46.984440][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.003256][ T5949] team0: Port device team_slave_1 added
[   47.005673][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.007902][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.017566][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.037769][ T5936] team0: Port device team_slave_0 added
[   47.040942][ T5936] team0: Port device team_slave_1 added
[   47.058326][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.060461][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.068318][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.148653][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.153044][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.162937][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.167506][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.169673][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.177623][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.184572][ T5940] hsr_slave_0: entered promiscuous mode
[   47.187632][ T5940] hsr_slave_1: entered promiscuous mode
[   47.190427][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.192905][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.200986][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.208546][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.210744][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.219235][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.277533][ T5944] hsr_slave_0: entered promiscuous mode
[   47.279732][ T5944] hsr_slave_1: entered promiscuous mode
[   47.282145][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.285165][ T5944] Cannot create hsr debugfs directory
[   47.395561][ T5949] hsr_slave_0: entered promiscuous mode
[   47.398195][ T5949] hsr_slave_1: entered promiscuous mode
[   47.400347][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.402868][ T5949] Cannot create hsr debugfs directory
[   47.408199][ T5936] hsr_slave_0: entered promiscuous mode
[   47.410447][ T5936] hsr_slave_1: entered promiscuous mode
[   47.414841][ T5936] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.417244][ T5936] Cannot create hsr debugfs directory
[   47.695093][ T5940] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.700535][ T5940] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.705035][ T5940] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.714138][ T5940] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.737882][ T5936] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.742673][ T5936] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.746683][ T5936] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.750395][ T5936] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.794025][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.799216][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.805081][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.811730][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.847068][ T5949] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.851388][ T5949] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.855202][ T5949] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.868197][ T5949] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.892588][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.916423][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.923950][   T67] Bluetooth: hci2: command tx timeout
[   47.923953][ T5946] Bluetooth: hci1: command tx timeout
[   47.931739][   T67] Bluetooth: hci3: command tx timeout
[   47.931861][ T5946] Bluetooth: hci0: command tx timeout
[   47.943398][ T5940] 8021q: adding VLAN 0 to HW filter on device team0
[   47.955399][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   47.961658][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.963945][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.975636][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.977966][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.987421][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.989748][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.994655][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.996924][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.020987][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.042735][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   48.055744][   T85] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.058608][   T85] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.065367][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.067550][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.113784][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.136445][ T5949] 8021q: adding VLAN 0 to HW filter on device team0
[   48.147076][ T1174] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.149232][ T1174] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.155298][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.157438][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.195268][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.211038][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.227960][ T5940] veth0_vlan: entered promiscuous mode
[   48.236752][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.241148][ T5940] veth1_vlan: entered promiscuous mode
[   48.264979][ T5936] veth0_vlan: entered promiscuous mode
[   48.275998][ T5936] veth1_vlan: entered promiscuous mode
[   48.282976][ T5944] veth0_vlan: entered promiscuous mode
[   48.290454][ T5944] veth1_vlan: entered promiscuous mode
[   48.300569][ T5940] veth0_macvtap: entered promiscuous mode
[   48.306579][ T5940] veth1_macvtap: entered promiscuous mode
[   48.314748][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.325805][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.330751][ T5936] veth0_macvtap: entered promiscuous mode
[   48.336445][ T5936] veth1_macvtap: entered promiscuous mode
[   48.340488][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.344453][ T5944] veth0_macvtap: entered promiscuous mode
[   48.355931][ T5940] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.359166][ T5940] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.362989][ T5940] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.365986][ T5940] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.377625][ T5944] veth1_macvtap: entered promiscuous mode
[   48.391937][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.395411][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.399035][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.412241][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.415775][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.420046][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.434459][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.438025][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.441703][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.444956][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.448786][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.451443][ T5936] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.454123][ T5936] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.456597][ T5936] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.459256][ T5936] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.463307][ T5949] veth0_vlan: entered promiscuous mode
[   48.468538][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.472591][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.475980][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.480012][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.484666][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.506031][ T5944] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.509453][ T5944] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.512939][ T5944] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.516074][ T5944] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.523101][ T1174] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.525217][ T5949] veth1_vlan: entered promiscuous mode
[   48.525682][ T1174] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.556147][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.558770][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.590962][ T5949] veth0_macvtap: entered promiscuous mode
[   48.592294][   T85] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.595267][   T85] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.595648][ T5949] veth1_macvtap: entered promiscuous mode
[   48.618239][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.621786][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.623712][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.627791][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.630792][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.634448][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.636738][ T5940] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.637404][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.637413][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.648813][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.664163][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.668084][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.671238][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.674551][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.677491][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.683035][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.686877][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.690887][ T5949] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.693937][ T5949] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.697010][ T5949] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.699728][ T5949] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.709008][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.714160][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.761787][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.764547][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.782798][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.785333][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.800433][  T103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.803282][  T103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.133305][ T6047] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19'.
[   49.137823][ T6047] netlink: 104 bytes leftover after parsing attributes in process `syz.1.19'.
[   49.140500][ T6047] netlink: 104 bytes leftover after parsing attributes in process `syz.1.19'.
[   49.208180][ T6053] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21'.
[   49.641161][ T6079] syz.1.32 uses obsolete (PF_INET,SOCK_PACKET)
[   50.002073][ T5946] Bluetooth: hci0: command tx timeout
[   50.002123][   T67] Bluetooth: hci1: command tx timeout
[   50.011462][   T67] Bluetooth: hci3: command tx timeout
[   50.012073][ T5946] Bluetooth: hci2: command tx timeout
[   50.064872][ T6091] netlink: 'syz.0.37': attribute type 4 has an invalid length.
[   50.074051][ T6091] netlink: 'syz.0.37': attribute type 4 has an invalid length.
[   50.249137][ T6104] mmap: syz.0.42 (6104) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   50.893499][ T6115] netlink: 'syz.1.46': attribute type 4 has an invalid length.
[   50.906882][ T6115] netlink: 'syz.1.46': attribute type 4 has an invalid length.
[   51.070981][ T6124] tmpfs: Bad value for 'mpol'
[   51.200635][ T6124] infiniband syz1: set active
[   51.209701][ T6124] infiniband syz1: added team0
[   51.242332][ T6124] RDS/IB: syz1: added
[   51.243909][ T6124] smc: adding ib device syz1 with port count 1
[   51.245923][ T6124] smc:    ib device syz1 port 1 has pnetid 
[   51.474608][   T40] audit: type=1326 audit(1745618001.671:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6136 comm="syz.0.55" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd8579 code=0x7fc00000
[   51.879018][ T6156] trusted_key: syz.1.62 sent an empty control message without MSG_MORE.
[   52.081984][ T5946] Bluetooth: hci3: command tx timeout
[   52.082834][   T67] Bluetooth: hci1: command tx timeout
[   52.091455][   T67] Bluetooth: hci2: command tx timeout
[   52.091683][ T5946] Bluetooth: hci0: command tx timeout
[   52.190373][    C2] vcan0: j1939_tp_rxtimer: 0xffff88804b2aec00: rx timeout, send abort
[   52.193924][    C2] vcan0: j1939_xtp_rx_abort_one: 0xffff88804b2aec00: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[   52.194415][   T40] audit: type=1326 audit(1745618002.391:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6136 comm="syz.0.55" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd8579 code=0x7fc00000
[   52.583392][ T6194] BUG: sleeping function called from invalid context at mm/util.c:743
[   52.586529][ T6194] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6194, name: syz.0.71
[   52.591468][ T6194] preempt_count: 1, expected: 0
[   52.593022][ T6194] RCU nest depth: 0, expected: 0
[   52.594609][ T6194] 1 lock held by syz.0.71/6194:
[   52.596138][ T6194]  #0: ffff8880425c1548 (&mapping->i_private_lock){+.+.}-{3:3}, at: __buffer_migrate_folio+0x25b/0x690
[   52.599784][ T6194] Preemption disabled at:
[   52.599790][ T6194] [<0000000000000000>] 0x0
[   52.602631][ T6194] CPU: 2 UID: 0 PID: 6194 Comm: syz.0.71 Not tainted 6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[   52.602646][ T6194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.602652][ T6194] Call Trace:
[   52.602656][ T6194]  <TASK>
[   52.602660][ T6194]  dump_stack_lvl+0x16c/0x1f0
[   52.602676][ T6194]  __might_resched+0x3c0/0x5e0
[   52.602689][ T6194]  ? __pfx___might_resched+0x10/0x10
[   52.602703][ T6194]  folio_mc_copy+0xfb/0x190
[   52.602720][ T6194]  __migrate_folio.constprop.0+0xa1/0x3d0
[   52.602735][ T6194]  __buffer_migrate_folio+0x5cd/0x690
[   52.602751][ T6194]  ? __pfx_buffer_migrate_folio_norefs+0x10/0x10
[   52.602766][ T6194]  move_to_new_folio+0x1d9/0x700
[   52.602781][ T6194]  migrate_pages_batch+0x201d/0x31a0
[   52.602802][ T6194]  ? __pfx_migrate_pages_batch+0x10/0x10
[   52.602816][ T6194]  ? kasan_save_stack+0x42/0x60
[   52.602826][ T6194]  ? kasan_save_stack+0x33/0x60
[   52.602835][ T6194]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[   52.602846][ T6194]  ? __mpol_dup+0x74/0x380
[   52.602858][ T6194]  ? mbind_range+0x2ad/0x570
[   52.602871][ T6194]  ? do_mbind+0x848/0xf30
[   52.602887][ T6194]  ? kernel_mbind+0x1e3/0x1f0
[   52.602902][ T6194]  migrate_pages_sync+0x12d/0x8a0
[   52.602917][ T6194]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[   52.602935][ T6194]  ? __pfx_migrate_pages_sync+0x10/0x10
[   52.602955][ T6194]  migrate_pages+0x1b28/0x2350
[   52.602970][ T6194]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[   52.602988][ T6194]  ? __pfx_migrate_pages+0x10/0x10
[   52.603003][ T6194]  ? find_held_lock+0x2b/0x80
[   52.603017][ T6194]  ? up_write+0x1b2/0x520
[   52.603034][ T6194]  do_mbind+0x6f0/0xf30
[   52.603052][ T6194]  ? __pfx_do_mbind+0x10/0x10
[   52.603067][ T6194]  ? __lock_acquire+0xaa4/0x1ba0
[   52.603084][ T6194]  ? __pfx_get_nodes+0x10/0x10
[   52.603095][ T6194]  ? rcu_is_watching+0x12/0xc0
[   52.603105][ T6194]  ? kfree+0x252/0x4d0
[   52.603122][ T6194]  kernel_mbind+0x1e3/0x1f0
[   52.603137][ T6194]  ? __pfx_kernel_mbind+0x10/0x10
[   52.603152][ T6194]  ? rcu_is_watching+0x12/0xc0
[   52.603163][ T6194]  __do_fast_syscall_32+0x73/0x120
[   52.603176][ T6194]  do_fast_syscall_32+0x32/0x80
[   52.603190][ T6194]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   52.603202][ T6194] RIP: 0023:0xf7fd8579
[   52.603210][ T6194] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   52.603221][ T6194] RSP: 002b:00000000f50b455c EFLAGS: 00000296 ORIG_RAX: 0000000000000112
[   52.603231][ T6194] RAX: ffffffffffffffda RBX: 0000000080001000 RCX: 0000000000800000
[   52.603238][ T6194] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000002
[   52.603244][ T6194] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[   52.603250][ T6194] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   52.603256][ T6194] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   52.603267][ T6194]  </TASK>
[   54.162679][ T5946] Bluetooth: hci2: command tx timeout
[   54.162890][   T67] Bluetooth: hci0: command tx timeout
[   54.162992][ T5948] Bluetooth: hci1: command tx timeout
[   54.163015][ T5948] Bluetooth: hci3: command tx timeout

VM DIAGNOSIS:
21:53:22  Registers:
info registers vcpu 0

CPU#0
RAX=00000000000aeda7 RBX=0000000000000000 RCX=ffffffff8b68c3e9 RDX=0000000000000000
RSI=ffffffff8dbd9985 RDI=ffffffff8bf467a0 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000001 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90850d10 R15=0000000000000000
RIP=ffffffff8b68ac7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977ef000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f7ae40dd723 CR3=0000000000360000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=000000004eabf067 RCX=ffffffff820b4e80 RDX=ffff888021060000
RSI=0000000000000000 RDI=0000000000000007 RBP=ffff88804eabf530 RSP=ffffc900010fed38
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffffc900010fee20 R13=ffffea0000000000 R14=0000000000000000 R15=00007f02cdea6000
RIP=ffffffff81baab40 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978ef000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f505dda4 CR3=00000000517b0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bf175 RDI=ffffffff9addcb80 RBP=ffffffff9addcb40 RSP=ffffc90006c3f1a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9addcb40 R15=ffffffff854bf110
RIP=ffffffff854bf19f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979ef000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7492054 CR3=00000000214ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003800000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffffea00016a49c0 RCX=ffffffff81f099ad RDX=fffff940002d4939
RSI=0000000000000008 RDI=ffffea00016a49c0 RBP=ffffea00016a49c0 RSP=ffffc900074af6a8
R8 =0000000000000001 R9 =fffff940002d4938 R10=ffffea00016a49c7 R11=0000000000000000
R12=0000000000000000 R13=ffffea00016a49c0 R14=ffffc900074af9d8 R15=dffffc0000000000
RIP=ffffffff821f27b8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097aef000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000800afdd8 CR3=00000000517b0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2dac0b94a7f8bfb4 5f91d518b243369f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b538100c1a364f51 8e246e314af85ac9
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b0c69ef79dcd40a3 1dd6ef6ea9e3c673
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d5f4f69fc714e43d c66815d0ad67ca9b
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000005680
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0080010000800100 0406919400800100
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000002100000021 0000002100800100
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 03eb7d4200000021 0080010003ddbe58
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000210422610e 0408adca00000021
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 32a92c1a2a1924ab 89c4925bb27de34d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 92d0648119d4fba4 d09b7605ccd930ce
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000