last executing test programs: 514.335624ms ago: executing program 1 (id=2): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x995e1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x6) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 500.756132ms ago: executing program 2 (id=3): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2) write$binfmt_misc(r0, &(0x7f0000000040), 0x4) 389.930929ms ago: executing program 2 (id=5): prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0x81, &(0x7f0000000080), &(0x7f0000000000)=0x4) 389.712542ms ago: executing program 2 (id=6): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000003c0)={'ip6_vti0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x80, 0x0, 0x4, 0x43, @ipv4={'\x00', '\xff\xff', @local}, @loopback={0xfec0ffff00000000, 0xffff8881114a4aa8}, 0x40, 0x0, 0x0, 0x6}}) 372.076085ms ago: executing program 0 (id=1): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$unix(0x1, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) r3 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000015006b03000000d86e6c1d0002847ea622fb564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 290.113629ms ago: executing program 2 (id=7): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r3}, 0x38) 290.023166ms ago: executing program 3 (id=4): bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8) 289.958762ms ago: executing program 3 (id=8): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe55a118001500060014c3ff0000120800030043000040a80019000400014006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f6d7f3ef48286112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4260000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c0aaac99eddc64193071e9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb06000000588a6364", 0xd8}], 0x1}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0) 189.976186ms ago: executing program 3 (id=9): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x2, 0x5, 0x3}) r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8166, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000240)={0x200, 0x1fb, 0xc3c}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000140)={0x6, 0x1000, 0x800}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0xff, 0x3, 0xd83f}) dup(r2) close_range(r0, 0xffffffffffffffff, 0x0) 80.558747ms ago: executing program 3 (id=10): syz_emit_vhci(&(0x7f0000000380)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0xa, 0x4}, {0xffff, 0x9}}}}, 0x11) 0s ago: executing program 3 (id=11): setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socket$inet(0x2, 0x4000000805, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r3, 0xc2604110, &(0x7f0000000040)={0x0, [[0x8000000, 0x0, 0x0, 0x20000000, 0x0, 0xb, 0x2000], [0x10000, 0x0, 0x3, 0x200000, 0x0, 0x0, 0x9], [0x7]], '\x00', [{}, {0xc}, {}, {0x0, 0x8}, {0x3, 0x7}, {0x8000000, 0x4005f, 0x1}, {0x80001}, {0x1}, {}, {}, {}, {0x0, 0x400000}], '\x00', 0x1000}) socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0) r4 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000003240)={@in={{0x2, 0x4e23, @loopback}}, 0xaa, 0x0, 0x48, 0x0, "9e62d38162d1a425146c79037c8d4898d6a94f453da1788337c9c9b9ae7339d4fae6277a84865228acf356c070f9404400000000000002007c2b69aac55e1b172f0c0dcc8ca7134702e02bd673843fac"}, 0xd8) connect$inet(r4, &(0x7f00000003c0)={0x2, 0x0, @loopback}, 0x10) shutdown(0xffffffffffffffff, 0x1) r5 = syz_open_dev$dri(0x0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000100)={0x0}) r6 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x28011, r6, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:17697' (ED25519) to the list of known hosts. [ 42.055018][ T5870] cgroup: Unknown subsys name 'net' [ 42.229986][ T5870] cgroup: Unknown subsys name 'cpuset' [ 42.234530][ T5870] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 43.190836][ T5870] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 46.919806][ T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 46.944416][ T5962] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 46.947728][ T5962] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.956328][ T5965] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.959145][ T5965] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 46.961561][ T5965] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.964455][ T5965] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 46.967565][ T5965] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 46.970250][ T5965] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 46.974260][ T5965] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 46.976630][ T5965] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.979783][ T5970] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 46.982660][ T5970] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.984279][ T5967] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.987965][ T5967] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.991681][ T5967] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.994560][ T5967] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.997284][ T5967] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 46.998259][ T5965] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 47.003376][ T5968] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 47.264399][ T5954] chnl_net:caif_netlink_parms(): no params data found [ 47.317748][ T5964] chnl_net:caif_netlink_parms(): no params data found [ 47.333330][ T5961] chnl_net:caif_netlink_parms(): no params data found [ 47.498537][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.500958][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.503534][ T5954] bridge_slave_0: entered allmulticast mode [ 47.507368][ T5954] bridge_slave_0: entered promiscuous mode [ 47.512941][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.515608][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.518071][ T5954] bridge_slave_1: entered allmulticast mode [ 47.521535][ T5954] bridge_slave_1: entered promiscuous mode [ 47.626688][ T5964] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.629752][ T5964] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.632414][ T5964] bridge_slave_0: entered allmulticast mode [ 47.636910][ T5964] bridge_slave_0: entered promiscuous mode [ 47.642171][ T5964] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.645591][ T5964] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.648844][ T5964] bridge_slave_1: entered allmulticast mode [ 47.653121][ T5964] bridge_slave_1: entered promiscuous mode [ 47.695824][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.714944][ T5964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.719301][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.721872][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.724290][ T5961] bridge_slave_0: entered allmulticast mode [ 47.727197][ T5961] bridge_slave_0: entered promiscuous mode [ 47.734351][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.738255][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.741125][ T5961] bridge_slave_1: entered allmulticast mode [ 47.744710][ T5961] bridge_slave_1: entered promiscuous mode [ 47.749086][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.753961][ T5964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.758455][ T5955] chnl_net:caif_netlink_parms(): no params data found [ 47.882520][ T5964] team0: Port device team_slave_0 added [ 47.889922][ T5964] team0: Port device team_slave_1 added [ 47.894708][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.899856][ T5954] team0: Port device team_slave_0 added [ 47.931370][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.936308][ T5954] team0: Port device team_slave_1 added [ 48.046161][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.048647][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.058097][ T5964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.064960][ T5961] team0: Port device team_slave_0 added [ 48.069647][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.071990][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.081584][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.089456][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.091756][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.101613][ T5964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.106880][ T5961] team0: Port device team_slave_1 added [ 48.109338][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.111837][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.120651][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.156617][ T5955] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.159013][ T5955] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.161454][ T5955] bridge_slave_0: entered allmulticast mode [ 48.164279][ T5955] bridge_slave_0: entered promiscuous mode [ 48.200551][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.202860][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.211489][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.216840][ T5955] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.219219][ T5955] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.221861][ T5955] bridge_slave_1: entered allmulticast mode [ 48.225193][ T5955] bridge_slave_1: entered promiscuous mode [ 48.257002][ T5955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 48.260556][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.262954][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.272426][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.297086][ T5955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 48.390193][ T5955] team0: Port device team_slave_0 added [ 48.425279][ T5954] hsr_slave_0: entered promiscuous mode [ 48.428792][ T5954] hsr_slave_1: entered promiscuous mode [ 48.436672][ T5964] hsr_slave_0: entered promiscuous mode [ 48.440110][ T5964] hsr_slave_1: entered promiscuous mode [ 48.443170][ T5964] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.447040][ T5964] Cannot create hsr debugfs directory [ 48.464609][ T5955] team0: Port device team_slave_1 added [ 48.536115][ T5961] hsr_slave_0: entered promiscuous mode [ 48.538446][ T5961] hsr_slave_1: entered promiscuous mode [ 48.540498][ T5961] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.542831][ T5961] Cannot create hsr debugfs directory [ 48.546070][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.548840][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.561157][ T5955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.614626][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.618254][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.629405][ T5955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.837255][ T5955] hsr_slave_0: entered promiscuous mode [ 48.840991][ T5955] hsr_slave_1: entered promiscuous mode [ 48.843386][ T5955] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.846759][ T5955] Cannot create hsr debugfs directory [ 49.066928][ T67] Bluetooth: hci1: command tx timeout [ 49.067072][ T5305] Bluetooth: hci0: command tx timeout [ 49.067161][ T5967] Bluetooth: hci2: command tx timeout [ 49.067854][ T5968] Bluetooth: hci3: command tx timeout [ 49.100012][ T5954] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 49.109014][ T5954] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 49.119162][ T5954] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 49.123663][ T5954] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 49.160482][ T5964] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 49.166530][ T5964] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 49.171608][ T5964] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 49.179871][ T5964] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 49.222790][ T5961] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 49.227106][ T5961] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 49.231801][ T5961] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 49.236971][ T5961] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 49.293030][ T5955] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 49.304452][ T5955] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 49.310013][ T5955] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 49.326345][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.330970][ T5955] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 49.374314][ T5954] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.392556][ T94] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.395150][ T94] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.411870][ T5964] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.421441][ T94] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.424206][ T94] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.453852][ T5964] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.479926][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.482247][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.489008][ T94] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.491624][ T94] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.496864][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.516327][ T5955] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.556522][ T5955] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.563633][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.566038][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.573900][ T5961] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.593984][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.596673][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.610712][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.613540][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.642024][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.645285][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.735821][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.756044][ T5964] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.790020][ T5954] veth0_vlan: entered promiscuous mode [ 49.807066][ T5954] veth1_vlan: entered promiscuous mode [ 49.814495][ T5964] veth0_vlan: entered promiscuous mode [ 49.824767][ T5964] veth1_vlan: entered promiscuous mode [ 49.856620][ T5954] veth0_macvtap: entered promiscuous mode [ 49.862849][ T5954] veth1_macvtap: entered promiscuous mode [ 49.870138][ T5955] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.882902][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.890869][ T5964] veth0_macvtap: entered promiscuous mode [ 49.896772][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.906785][ T5964] veth1_macvtap: entered promiscuous mode [ 49.912097][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.929507][ T5954] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.932631][ T5954] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.936338][ T5954] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.940017][ T5954] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.952192][ T5964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 49.955928][ T5964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 49.960138][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.965600][ T5964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 49.969054][ T5964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 49.972943][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.999178][ T5964] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.001981][ T5964] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.004712][ T5964] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.008198][ T5964] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.014705][ T5961] veth0_vlan: entered promiscuous mode [ 50.022358][ T5955] veth0_vlan: entered promiscuous mode [ 50.035922][ T5955] veth1_vlan: entered promiscuous mode [ 50.051194][ T5961] veth1_vlan: entered promiscuous mode [ 50.089140][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.092114][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.097414][ T5961] veth0_macvtap: entered promiscuous mode [ 50.118927][ T5961] veth1_macvtap: entered promiscuous mode [ 50.124207][ T5955] veth0_macvtap: entered promiscuous mode [ 50.132907][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.136647][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.141928][ T5955] veth1_macvtap: entered promiscuous mode [ 50.163750][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.166505][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.166930][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 50.166954][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.166960][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 50.166967][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.168272][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 50.168965][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.169709][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.177135][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 50.195993][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.199199][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 50.202722][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.207195][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 50.214545][ T5961] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.218071][ T5961] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.220976][ T5961] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.224204][ T5961] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.237276][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 50.241194][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.244826][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 50.249428][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.253042][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 50.256970][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.261833][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 50.266729][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 50.270660][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.274265][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 50.279151][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.282725][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 50.287050][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 50.292261][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 50.300293][ T5955] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.303511][ T5955] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.307926][ T5955] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.311112][ T5955] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.312328][ T5964] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 50.365044][ T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.370094][ T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.405080][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.411865][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.443801][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.452555][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.470284][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 50.472819][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 50.483030][ T6030] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.608301][ T6040] Zero length message leads to an empty skb [ 51.143645][ T6041] ================================================================== [ 51.146278][ T6041] BUG: KASAN: vmalloc-out-of-bounds in vrealloc_noprof+0x132/0x320 [ 51.148865][ T6041] Write of size 4064 at addr ffffc90003da1020 by task syz.1.2/6041 [ 51.153069][ T6041] [ 51.154384][ T6041] CPU: 1 UID: 0 PID: 6041 Comm: syz.1.2 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 51.154398][ T6041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 51.154404][ T6041] Call Trace: [ 51.154408][ T6041] [ 51.154413][ T6041] dump_stack_lvl+0x116/0x1f0 [ 51.154431][ T6041] print_report+0xc3/0x670 [ 51.154448][ T6041] ? __virt_addr_valid+0x5e/0x590 [ 51.154465][ T6041] ? vrealloc_noprof+0x132/0x320 [ 51.154478][ T6041] kasan_report+0xe0/0x110 [ 51.154487][ T6041] ? vrealloc_noprof+0x132/0x320 [ 51.154504][ T6041] kasan_check_range+0xef/0x1a0 [ 51.154519][ T6041] __asan_memset+0x23/0x50 [ 51.154535][ T6041] vrealloc_noprof+0x132/0x320 [ 51.154553][ T6041] push_insn_history+0x2ae/0x6c0 [ 51.154573][ T6041] do_check_common+0xbd3/0xc2a0 [ 51.154600][ T6041] ? __pfx_do_check_common+0x10/0x10 [ 51.154614][ T6041] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.154629][ T6041] ? kfree+0x2b6/0x4d0 [ 51.154642][ T6041] ? bpf_check+0x6c86/0xb460 [ 51.154656][ T6041] ? bpf_check+0x7b2f/0xb460 [ 51.154671][ T6041] bpf_check+0x7f51/0xb460 [ 51.154688][ T6041] ? __pfx_bpf_check+0x10/0x10 [ 51.154702][ T6041] ? pcpu_alloc_noprof+0x949/0x1470 [ 51.154720][ T6041] ? __lock_acquire+0xaa4/0x1ba0 [ 51.154739][ T6041] ? find_held_lock+0x2b/0x80 [ 51.154756][ T6041] ? __asan_memset+0x23/0x50 [ 51.154771][ T6041] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 51.154783][ T6041] bpf_prog_load+0xe41/0x2490 [ 51.154794][ T6041] ? __pfx_bpf_prog_load+0x10/0x10 [ 51.154805][ T6041] ? __pfx___futex_wait+0x10/0x10 [ 51.154820][ T6041] ? bpf_lsm_bpf+0x9/0x10 [ 51.154835][ T6041] __sys_bpf+0x433c/0x4d80 [ 51.154846][ T6041] ? __pfx___sys_bpf+0x10/0x10 [ 51.154858][ T6041] ? do_futex+0x122/0x350 [ 51.154873][ T6041] ? __pfx_do_futex+0x10/0x10 [ 51.154889][ T6041] ? xfd_validate_state+0x5d/0x180 [ 51.154901][ T6041] ? rcu_is_watching+0x12/0xc0 [ 51.154914][ T6041] __ia32_sys_bpf+0x76/0xe0 [ 51.154926][ T6041] __do_fast_syscall_32+0x73/0x120 [ 51.154942][ T6041] do_fast_syscall_32+0x32/0x80 [ 51.154962][ T6041] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 51.154975][ T6041] RIP: 0023:0xf703e579 [ 51.154986][ T6041] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 51.154996][ T6041] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 51.155006][ T6041] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0 [ 51.155013][ T6041] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 51.155019][ T6041] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 51.155024][ T6041] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 51.155030][ T6041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 51.155038][ T6041] [ 51.155042][ T6041] [ 51.250022][ T6041] The buggy address belongs to the virtual mapping at [ 51.250022][ T6041] [ffffc90003d81000, ffffc90003da3000) created by: [ 51.250022][ T6041] kvrealloc_noprof+0x7d/0xd0 [ 51.256152][ T6041] [ 51.257001][ T6041] The buggy address belongs to the physical page: [ 51.259240][ T6041] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2424e [ 51.262594][ T6041] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 51.265435][ T6041] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 51.269068][ T6041] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 51.272767][ T6041] page dumped because: kasan: bad access detected [ 51.275712][ T6041] page_owner tracks the page as allocated [ 51.278414][ T6041] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102cc2(GFP_HIGHUSER|__GFP_NOWARN), pid 6041, tgid 6020 (syz.1.2), ts 51143525701, free_ts 20119263727 [ 51.285583][ T6041] post_alloc_hook+0x181/0x1b0 [ 51.287615][ T6041] get_page_from_freelist+0x1193/0x39b0 [ 51.289382][ T6041] __alloc_frozen_pages_noprof+0x5a8/0x23a0 [ 51.291345][ T6041] alloc_pages_mpol+0x1fb/0x550 [ 51.293044][ T6041] alloc_pages_noprof+0x131/0x390 [ 51.294834][ T6041] __vmalloc_node_range_noprof+0x732/0x1540 [ 51.296844][ T6041] __kvmalloc_node_noprof+0x2ff/0x600 [ 51.297668][ T5305] Bluetooth: hci1: command tx timeout [ 51.298654][ T6041] kvrealloc_noprof+0x7d/0xd0 [ 51.301077][ T5305] Bluetooth: hci3: command tx timeout [ 51.302088][ T6041] push_insn_history+0x2ae/0x6c0 [ 51.302107][ T6041] do_check_common+0xbd3/0xc2a0 [ 51.304604][ T5305] Bluetooth: hci2: command tx timeout [ 51.306363][ T6041] bpf_check+0x7f51/0xb460 [ 51.306385][ T6041] bpf_prog_load+0xe41/0x2490 [ 51.306395][ T6041] __sys_bpf+0x433c/0x4d80 [ 51.306404][ T6041] __ia32_sys_bpf+0x76/0xe0 [ 51.306415][ T6041] __do_fast_syscall_32+0x73/0x120 [ 51.306431][ T6041] do_fast_syscall_32+0x32/0x80 [ 51.306445][ T6041] page last free pid 9 tgid 9 stack trace: [ 51.306451][ T6041] __free_frozen_pages+0x69d/0xff0 [ 51.306464][ T6041] vfree+0x176/0x960 [ 51.306475][ T6041] delayed_vfree_work+0x56/0x70 [ 51.327444][ T6041] process_one_work+0x9cc/0x1b70 [ 51.329606][ T6041] worker_thread+0x6c8/0xf10 [ 51.331730][ T6041] kthread+0x3c2/0x780 [ 51.333481][ T6041] ret_from_fork+0x45/0x80 [ 51.335452][ T6041] ret_from_fork_asm+0x1a/0x30 [ 51.337509][ T6041] [ 51.338553][ T6041] Memory state around the buggy address: [ 51.340946][ T6041] ffffc90003da0f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 51.344446][ T6041] ffffc90003da0f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 51.347961][ T6041] >ffffc90003da1000: 00 00 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 51.351419][ T6041] ^ [ 51.353111][ T6041] ffffc90003da1080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 51.355796][ T6041] ffffc90003da1100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 51.358421][ T6041] ================================================================== [ 51.361095][ T67] Bluetooth: hci0: command tx timeout [ 51.462500][ T6041] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 51.465095][ T6041] CPU: 1 UID: 0 PID: 6041 Comm: syz.1.2 Not tainted 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full) [ 51.469884][ T6041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 51.473982][ T6041] Call Trace: [ 51.475682][ T6041] [ 51.476944][ T6041] dump_stack_lvl+0x3d/0x1f0 [ 51.478488][ T6041] panic+0x71c/0x800 [ 51.479801][ T6041] ? __pfx_panic+0x10/0x10 [ 51.481323][ T6041] ? rcu_is_watching+0x12/0xc0 [ 51.482897][ T6041] ? preempt_schedule_thunk+0x16/0x30 [ 51.484716][ T6041] ? vrealloc_noprof+0x132/0x320 [ 51.486378][ T6041] ? preempt_schedule_common+0x44/0xc0 [ 51.488204][ T6041] ? vrealloc_noprof+0x132/0x320 [ 51.489870][ T6041] check_panic_on_warn+0xab/0xb0 [ 51.491535][ T6041] end_report+0x107/0x170 [ 51.493023][ T6041] kasan_report+0xee/0x110 [ 51.494602][ T6041] ? vrealloc_noprof+0x132/0x320 [ 51.496342][ T6041] kasan_check_range+0xef/0x1a0 [ 51.497984][ T6041] __asan_memset+0x23/0x50 [ 51.499514][ T6041] vrealloc_noprof+0x132/0x320 [ 51.501063][ T6041] push_insn_history+0x2ae/0x6c0 [ 51.502871][ T6041] do_check_common+0xbd3/0xc2a0 [ 51.505019][ T6041] ? __pfx_do_check_common+0x10/0x10 [ 51.507264][ T6041] ? lockdep_hardirqs_on+0x7c/0x110 [ 51.509611][ T6041] ? kfree+0x2b6/0x4d0 [ 51.511345][ T6041] ? bpf_check+0x6c86/0xb460 [ 51.513281][ T6041] ? bpf_check+0x7b2f/0xb460 [ 51.514909][ T6041] bpf_check+0x7f51/0xb460 [ 51.516465][ T6041] ? __pfx_bpf_check+0x10/0x10 [ 51.518101][ T6041] ? pcpu_alloc_noprof+0x949/0x1470 [ 51.519792][ T6041] ? __lock_acquire+0xaa4/0x1ba0 [ 51.521460][ T6041] ? find_held_lock+0x2b/0x80 [ 51.523078][ T6041] ? __asan_memset+0x23/0x50 [ 51.524695][ T6041] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 51.526373][ T6041] bpf_prog_load+0xe41/0x2490 [ 51.527944][ T6041] ? __pfx_bpf_prog_load+0x10/0x10 [ 51.529750][ T6041] ? __pfx___futex_wait+0x10/0x10 [ 51.531490][ T6041] ? bpf_lsm_bpf+0x9/0x10 [ 51.532965][ T6041] __sys_bpf+0x433c/0x4d80 [ 51.534534][ T6041] ? __pfx___sys_bpf+0x10/0x10 [ 51.536162][ T6041] ? do_futex+0x122/0x350 [ 51.537637][ T6041] ? __pfx_do_futex+0x10/0x10 [ 51.539231][ T6041] ? xfd_validate_state+0x5d/0x180 [ 51.541024][ T6041] ? rcu_is_watching+0x12/0xc0 [ 51.542637][ T6041] __ia32_sys_bpf+0x76/0xe0 [ 51.544211][ T6041] __do_fast_syscall_32+0x73/0x120 [ 51.545955][ T6041] do_fast_syscall_32+0x32/0x80 [ 51.547590][ T6041] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 51.549699][ T6041] RIP: 0023:0xf703e579 [ 51.551081][ T6041] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 51.557479][ T6041] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 51.560198][ T6041] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0 [ 51.562786][ T6041] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 51.565311][ T6041] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 51.567925][ T6041] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 51.570519][ T6041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 51.572976][ T6041] [ 51.574619][ T6041] Kernel Offset: disabled [ 51.576024][ T6041] Rebooting in 86400 seconds.. VM DIAGNOSIS: 20:10:26 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000001 RBX=00000000245c6930 RCX=ffffffff816b7478 RDX=0000000000000000 RSI=000000000000002e RDI=000000000000003f RBP=000000000000002e RSP=ffffc900010cf280 R8 =0000000000000006 R9 =ffff8880a45c6930 R10=00000000245c6930 R11=0000000000000000 R12=0000000000000000 R13=ffff888024fce138 R14=0000000000000000 R15=ffff888024fce118 RIP=ffffffff81bb37a8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977b9000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000030301ffc CR3=0000000053968000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000026c00000000 0000000800000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854bc9a5 RDI=ffffffff9ae12b40 RBP=ffffffff9ae12b00 RSP=ffffc90003b26f00 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6366666666207264 R12=0000000000000000 R13=0000000000000064 R14=ffffffff9ae12b00 R15=ffffffff854bc940 RIP=ffffffff854bc9cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978b9000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000003031fffc CR3=000000004c6b0000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000022800000000 0000000700000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000040000 RBX=ffff8880223baf30 RCX=0000000000000000 RDX=0000000000040000 RSI=0000000000000000 RDI=ffff8880223baf30 RBP=ffff8880223baf30 RSP=ffffc90003ad7758 R8 =0000000000000000 R9 =0000000000000001 R10=0000000000000000 R11=ffff88806b547a40 R12=0000000000000000 R13=0000000000000000 R14=ffff8880223ba440 R15=0000000000000000 RIP=ffffffff8197fb0b RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979b9000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f4c31da4 CR3=0000000053968000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000026c00000000 0000000800000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffffc9000389e4e8 RCX=ffffc9000389e34c RDX=0000000000000000 RSI=ffffffff8dbc5f37 RDI=ffff888000b10444 RBP=ffff888000b10000 RSP=ffffc9000389e358 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000006 R11=00000000000060fd R12=ffffc9000389e498 R13=ffffc9000389e448 R14=ffffc9000389e4e8 R15=ffffc9000389e47c RIP=ffffffff81a1b750 RFL=00000a07 [-O---PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097ab9000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000c3ce05e CR3=000000004db8c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000