last executing test programs: 1.18242169s ago: executing program 0 (id=273): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$inet_opts(r0, 0x0, 0x6, &(0x7f0000000380)='\a', 0x1) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x632a, 0x4) sendmmsg$inet6(r0, &(0x7f00000002c0)=[{{&(0x7f0000000400)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xfffffffd}, 0x1c, 0x0}}], 0x1, 0x0) recvmmsg(r0, &(0x7f00000018c0)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x12141, 0x0) 1.131772696s ago: executing program 1 (id=274): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000005c0)={r1, r0, 0x15, 0x0, @val=@kprobe_multi=@addrs={0x0, 0x0, 0x0, 0x0, 0xfff}}, 0x30) r2 = openat$cgroup_procs(r0, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000400), 0x12) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ftruncate(r3, 0x8008976) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x4, 0x12, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r4, 0x6, 0x1a, 0x0, &(0x7f0000000000)) 1.131404216s ago: executing program 0 (id=275): bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000540)={0x0, 0x76c, 0x8}, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x258, 0x65, 0x100, 0x170bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x1, 0x2}, {0x0, 0xe}, {0x0, 0xb}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x8, 0x81}}, @filter_kind_options=@f_bpf={{0x8}, {0x218, 0x2, [@TCA_BPF_ACT={0x130, 0x1, [@m_skbedit={0x12c, 0x11, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0x5, 0x5a01ae4d}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x5}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x4}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x6}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xa1}]}, {0xd5, 0x6, "30cbb705b416ba0830f20a58294437adf387be2c5c0be289398c099b2e0fad0a4e749a52e1f5a75d291f8d128db69182792fc2d2dbf61c190aa5138085d5d1951d7457c5c0b4920793d96054893043f112825e710e6e179fa7d28f3c6acd5d743d405349005c0f6844ffcfe048e388a1892a78b93651bb59aba27cca473a0b429df512055b4c2f60e2129626ee8e15fb1bf13e9eee7666aeb8dbadabba9390558fb564b10d8157063b659e8fef7826919e49eb188a131ccb59a77af84e69b3494839567e5e29a2241bc2664912b1c349e9"}, {0xc}, {0xc, 0x8, {0x2}}}}]}, @TCA_BPF_FD={0x8}, @TCA_BPF_ACT={0xdc, 0x1, [@m_connmark={0xd8, 0x15, 0x0, 0x0, {{0xd}, {0x74, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x2, 0x8, 0x3ff, 0x4}, 0x661}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x9, 0x200, 0x6, 0x8, 0x4}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x5, 0x0, 0x5, 0x6, 0x1}, 0x6}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xc6e, 0x0, 0x4, 0x5, 0x1}, 0xd}}]}, {0x35, 0x6, "0fdc401c94aa908312019756e78d106f29a8ecf9aef9b418e6eff93ef467a48e551aa78003ae4bc16b5e25228460b59f11"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x258}, 0x1, 0x0, 0x0, 0x80}, 0x200400a0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400}) 943.5176ms ago: executing program 1 (id=276): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000240)={0x3, &(0x7f0000000000)=[{0x28, 0x0, 0xfd, 0x5ae9}, {0x20, 0x7f, 0x6, 0xfffff00c}, {0x6, 0x9, 0xa1, 0x1000}]}, 0x10) sendmmsg$inet(r0, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0) 853.055702ms ago: executing program 0 (id=277): r0 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x68, 0x10, 0x437, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x40c89}, [@IFLA_LINKINFO={0x48, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x38, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_LOCAL={0x14, 0x6, @private1}, @IFLA_GRE_REMOTE={0x14, 0x7, @private0}, @IFLA_GRE_TTL={0x5, 0x8, 0x3}]}}}]}, 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) 701.437631ms ago: executing program 1 (id=278): mprotect(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0) rt_sigtimedwait(&(0x7f0000000000)={[0xe]}, 0x0, 0x0, 0x8) 701.172911ms ago: executing program 0 (id=279): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc) getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404c084}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000001000010800"/20, @ANYRES32=r2, @ANYBLOB="0180ef00011200000a0001008526cca51fd6e534818aaaaaaaaaaa00"], 0x2c}}, 0x0) 594.716414ms ago: executing program 1 (id=280): r0 = socket$inet6(0xa, 0x5, 0x0) r1 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x200, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) 481.172749ms ago: executing program 0 (id=281): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x9801}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}]}}}]}, 0x38}}, 0x0) sendto$packet(r0, &(0x7f0000000240)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc966", 0x27, 0x40, &(0x7f0000000540)={0xc9, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14) 271.694935ms ago: executing program 0 (id=282): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r1) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) write$tun(r0, &(0x7f0000000480)={@void, @void, @eth={@remote, @local, @val={@void, {0x8100, 0x3}}, {@generic={0x60}}}}, 0x12) 128.667064ms ago: executing program 1 (id=283): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) socket$nl_netfilter(0x10, 0x3, 0xc) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3000001, 0x11, r0, 0x0) mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil) 0s ago: executing program 1 (id=284): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f00000001c0), 0x2, 0x0) write$cgroup_type(r1, &(0x7f0000000280), 0x9) r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000c40), 0x12) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:16797' (ED25519) to the list of known hosts. syzkaller login: [ 68.708687][ T3309] cgroup: Unknown subsys name 'net' [ 68.927195][ T3309] cgroup: Unknown subsys name 'cpuset' [ 68.948577][ T3309] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 69.289622][ T3309] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 78.680288][ T3317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.689891][ T3317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.871707][ T3316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.889392][ T3316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.605639][ T3317] hsr_slave_0: entered promiscuous mode [ 79.610784][ T3317] hsr_slave_1: entered promiscuous mode [ 79.900270][ T3316] hsr_slave_0: entered promiscuous mode [ 79.903545][ T3316] hsr_slave_1: entered promiscuous mode [ 79.908431][ T3316] debugfs: 'hsr0' already exists in 'hsr' [ 79.909439][ T3316] Cannot create hsr debugfs directory [ 80.414887][ T3317] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 80.469325][ T3317] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 80.512027][ T3317] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 80.550377][ T3317] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.834038][ T3316] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 80.849733][ T3316] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 80.861045][ T3316] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 80.874695][ T3316] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 81.685894][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.733281][ T3317] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.866030][ T3317] veth0_vlan: entered promiscuous mode [ 84.921115][ T3317] veth1_vlan: entered promiscuous mode [ 85.089435][ T3316] veth0_vlan: entered promiscuous mode [ 85.133049][ T3317] veth0_macvtap: entered promiscuous mode [ 85.160925][ T3317] veth1_macvtap: entered promiscuous mode [ 85.176046][ T3316] veth1_vlan: entered promiscuous mode [ 85.403184][ T3316] veth0_macvtap: entered promiscuous mode [ 85.414372][ T116] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.423253][ T116] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.423946][ T116] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.424113][ T116] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.466243][ T3316] veth1_macvtap: entered promiscuous mode [ 85.722668][ T1137] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.723151][ T1137] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.723281][ T1137] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.723422][ T1137] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.886425][ T3317] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 90.581763][ T3546] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9'. [ 95.967218][ T3403] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 95.992547][ T3403] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 101.191026][ T3582] block nbd1: NBD_DISCONNECT [ 102.568951][ T3592] random: crng reseeded on system resumption [ 108.511381][ T3615] netlink: 180 bytes leftover after parsing attributes in process `syz.1.30'. [ 111.512289][ T3636] netlink: 8 bytes leftover after parsing attributes in process `syz.0.38'. [ 112.161167][ T3640] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 112.176550][ T3640] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 118.995601][ T925] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 119.027219][ T925] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 119.389332][ T3669] fido_id[3669]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 120.188938][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 120.358378][ T9] usb 1-1: Using ep0 maxpacket: 8 [ 120.380891][ T9] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 120.382577][ T9] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 120.382767][ T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 120.383057][ T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 120.384042][ T9] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 120.384791][ T9] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 120.384961][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.630413][ T9] usb 1-1: usb_control_msg returned -32 [ 120.630790][ T9] usbtmc 1-1:16.0: can't read capabilities [ 124.140013][ T3676] capability: warning: `syz.0.48' uses deprecated v2 capabilities in a way that may be insecure [ 124.160748][ T3676] usbtmc 1-1:16.0: usb_bulk_msg returned -71 [ 124.371002][ T3403] usb 1-1: USB disconnect, device number 2 [ 124.549476][ T3571] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 124.567116][ T3571] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 125.042382][ T3691] fido_id[3691]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 126.180805][ T3531] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.182765][ T3531] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.184567][ T3531] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.188037][ T3531] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.361858][ T24] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 126.372004][ T24] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 126.726283][ T3701] fido_id[3701]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 132.133258][ T3732] input: syz1 as /devices/virtual/input/input1 [ 133.275650][ T3732] netlink: 28 bytes leftover after parsing attributes in process `syz.1.68'. [ 136.141020][ T3752] fuse: Bad value for 'fd' [ 146.154548][ T3811] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 146.163835][ T3811] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 146.318627][ T24] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 146.478610][ T24] usb 1-1: Using ep0 maxpacket: 16 [ 146.499417][ T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 146.520551][ T24] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 146.520746][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 146.521973][ T24] usb 1-1: Product: syz [ 146.522038][ T24] usb 1-1: Manufacturer: syz [ 146.522083][ T24] usb 1-1: SerialNumber: syz [ 146.534965][ T24] usb 1-1: config 0 descriptor?? [ 146.659643][ T3815] binder: 3814:3815 got reply transaction with no transaction stack [ 146.660359][ T3815] binder: 3814:3815 transaction reply to 0:0 failed 3/29201/-71, code 0 size 0-0 line 3135 [ 146.669459][ T24] binder: undelivered freeze notification, 0000000000000000 [ 160.994553][ T3403] usb 1-1: USB disconnect, device number 3 [ 163.422210][ T3889] fuse: Bad value for 'fd' [ 164.859619][ T30] audit: type=1326 audit(164.670:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3899 comm="syz.1.119" exe="/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff83d5c3e8 code=0x0 [ 168.031734][ T3907] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 168.638451][ T3461] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 168.829706][ T3461] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 168.831415][ T3461] usb 1-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00 [ 168.834192][ T3461] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 168.845532][ T3461] usb 1-1: config 0 descriptor?? [ 169.298313][ T3461] usbhid 1-1:0.0: can't add hid device: -71 [ 169.299315][ T3461] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 169.325793][ T3461] usb 1-1: USB disconnect, device number 4 [ 172.055899][ T3928] misc userio: Invalid payload size [ 180.184193][ T30] audit: type=1326 audit(180.000:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.187127][ T30] audit: type=1326 audit(180.000:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.198422][ T30] audit: type=1326 audit(180.000:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.209133][ T30] audit: type=1326 audit(180.000:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.209708][ T30] audit: type=1326 audit(180.000:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.209854][ T30] audit: type=1326 audit(180.010:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=47 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.209990][ T30] audit: type=1326 audit(180.010:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.210136][ T30] audit: type=1326 audit(180.020:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.210284][ T30] audit: type=1326 audit(180.020:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3991 comm="syz.0.154" exe="/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 180.387375][ T4000] netlink: 12 bytes leftover after parsing attributes in process `syz.1.158'. [ 180.390996][ T4000] Zero length message leads to an empty skb [ 180.918414][ T4014] mmap: syz.0.165 (4014) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 186.231229][ T4069] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 186.726413][ T30] audit: type=1326 audit(186.540:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.732561][ T30] audit: type=1326 audit(186.550:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.735608][ T30] audit: type=1326 audit(186.550:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.749270][ T30] audit: type=1326 audit(186.540:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.753201][ T30] audit: type=1326 audit(186.570:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=59 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.758697][ T30] audit: type=1326 audit(186.570:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.761573][ T30] audit: type=1326 audit(186.580:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 186.764956][ T30] audit: type=1326 audit(186.580:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4080 comm="syz.0.193" exe="/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 189.622971][ T4116] syz.0.204 uses obsolete (PF_INET,SOCK_PACKET) [ 190.430305][ T30] audit: type=1326 audit(190.240:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4129 comm="syz.0.211" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 190.433368][ T30] audit: type=1326 audit(190.240:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4129 comm="syz.0.211" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 190.624006][ T4134] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 190.625548][ T4134] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 191.439074][ T3571] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 191.598613][ T3571] usb 1-1: Using ep0 maxpacket: 8 [ 191.619010][ T3571] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 191.619998][ T3571] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 191.621360][ T3571] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 191.622159][ T3571] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 191.622812][ T3571] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 191.623828][ T3571] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 191.624551][ T3571] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.846513][ T3571] usb 1-1: usb_control_msg returned -32 [ 191.852699][ T3571] usbtmc 1-1:16.0: can't read capabilities [ 195.366963][ T4169] usbtmc 1-1:16.0: usb_bulk_msg returned -71 [ 195.571721][ T3571] usb 1-1: USB disconnect, device number 5 [ 196.771242][ T4185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 196.781503][ T4185] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 197.888571][ T925] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 198.039342][ T925] usb 1-1: Using ep0 maxpacket: 8 [ 198.064513][ T925] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 198.064789][ T925] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 198.065650][ T925] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 198.065735][ T925] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 198.065785][ T925] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 198.065926][ T925] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 198.066003][ T925] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 198.315207][ T925] usb 1-1: usb_control_msg returned -32 [ 198.315600][ T925] usbtmc 1-1:16.0: can't read capabilities [ 201.840965][ T4228] usbtmc 1-1:16.0: usb_bulk_msg returned -71 [ 202.059658][ T24] usb 1-1: USB disconnect, device number 6 [ 202.973471][ T4243] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 202.979920][ T4243] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 203.180144][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 203.185895][ T30] audit: type=1326 audit(202.990:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4246 comm="syz.1.254" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83d5c3e8 code=0x7ffc0000 [ 203.186371][ T30] audit: type=1326 audit(202.990:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4246 comm="syz.1.254" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83d5c3e8 code=0x7ffc0000 [ 203.192955][ T30] audit: type=1326 audit(203.010:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4246 comm="syz.1.254" exe="/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff83d5c3e8 code=0x7ffc0000 [ 203.197004][ T30] audit: type=1326 audit(203.010:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4246 comm="syz.1.254" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83d5c3e8 code=0x7ffc0000 [ 203.209579][ T30] audit: type=1326 audit(203.030:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4246 comm="syz.1.254" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff83d5c3e8 code=0x7ffc0000 [ 203.857087][ T30] audit: type=1326 audit(203.670:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4259 comm="syz.0.260" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 203.861149][ T30] audit: type=1326 audit(203.680:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4259 comm="syz.0.260" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 203.867230][ T30] audit: type=1326 audit(203.680:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4259 comm="syz.0.260" exe="/syz-executor" sig=0 arch=c00000b7 syscall=113 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 203.872701][ T30] audit: type=1326 audit(203.680:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4259 comm="syz.0.260" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 203.873085][ T30] audit: type=1326 audit(203.680:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4259 comm="syz.0.260" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d15c3e8 code=0x7ffc0000 [ 204.648486][ T24] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 204.818841][ T24] usb 1-1: Using ep0 maxpacket: 8 [ 204.835589][ T24] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 204.835997][ T24] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 204.845385][ T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 204.845820][ T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 204.845946][ T24] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 204.846207][ T24] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 204.846355][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 205.097136][ T24] usb 1-1: usb_control_msg returned -32 [ 205.097952][ T24] usbtmc 1-1:16.0: can't read capabilities [ 205.146382][ T24] usb 1-1: USB disconnect, device number 7 [ 206.652759][ T1147] ================================================================== [ 206.656794][ T1147] BUG: KASAN: slab-use-after-free in defer_free+0x3c/0xbc [ 206.659027][ T1147] Write at addr f7f00000059df7a0 by task kworker/u8:9/1147 [ 206.659489][ T1147] Pointer tag: [f7], memory tag: [fe] [ 206.659578][ T1147] [ 206.660415][ T1147] CPU: 0 UID: 0 PID: 1147 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT [ 206.660790][ T1147] Hardware name: linux,dummy-virt (DT) [ 206.661212][ T1147] Workqueue: events_unbound bpf_map_free_deferred [ 206.662393][ T1147] Call trace: [ 206.662704][ T1147] show_stack+0x18/0x24 (C) [ 206.663018][ T1147] dump_stack_lvl+0x78/0x90 [ 206.663135][ T1147] print_report+0x108/0x61c [ 206.663186][ T1147] kasan_report+0x88/0xac [ 206.663230][ T1147] __do_kernel_fault+0x170/0x1c8 [ 206.663281][ T1147] do_bad_area+0x68/0x78 [ 206.663326][ T1147] do_tag_check_fault+0x34/0x44 [ 206.663372][ T1147] do_mem_abort+0x44/0x94 [ 206.663416][ T1147] el1_abort+0x44/0x68 [ 206.663461][ T1147] el1h_64_sync_handler+0x50/0xac [ 206.663515][ T1147] el1h_64_sync+0x6c/0x70 [ 206.663672][ T1147] defer_free+0x3c/0xbc (P) [ 206.663728][ T1147] kfree_nolock+0x1a0/0x1d4 [ 206.663774][ T1147] range_tree_destroy+0x74/0x90 [ 206.663821][ T1147] arena_map_free+0x64/0x90 [ 206.663865][ T1147] bpf_map_free_deferred+0x70/0x180 [ 206.663912][ T1147] process_one_work+0x178/0x2cc [ 206.664180][ T1147] worker_thread+0x24c/0x354 [ 206.664231][ T1147] kthread+0x130/0x1fc [ 206.664276][ T1147] ret_from_fork+0x10/0x20 [ 206.664547][ T1147] [ 206.664614][ T1147] Allocated by task 4312: [ 206.664871][ T1147] kasan_save_stack+0x3c/0x64 [ 206.665145][ T1147] save_stack_info+0x40/0x158 [ 206.665186][ T1147] kasan_save_alloc_info+0x14/0x20 [ 206.665221][ T1147] __kasan_kmalloc+0xb4/0xb8 [ 206.665255][ T1147] kmalloc_nolock_noprof+0x1dc/0x4fc [ 206.665295][ T1147] range_tree_set+0x644/0x778 [ 206.665333][ T1147] arena_map_alloc+0x11c/0x17c [ 206.665367][ T1147] map_create+0x19c/0xa98 [ 206.665404][ T1147] __sys_bpf+0x348/0x1a88 [ 206.665439][ T1147] __arm64_sys_bpf+0x24/0x34 [ 206.665473][ T1147] invoke_syscall+0x48/0x110 [ 206.665521][ T1147] el0_svc_common.constprop.0+0x40/0xe0 [ 206.665557][ T1147] do_el0_svc+0x1c/0x28 [ 206.665642][ T1147] el0_svc+0x34/0x128 [ 206.665684][ T1147] el0t_64_sync_handler+0xa0/0xe4 [ 206.665717][ T1147] el0t_64_sync+0x1a4/0x1a8 [ 206.665800][ T1147] [ 206.665841][ T1147] Freed by task 1147: [ 206.665987][ T1147] kasan_save_stack+0x3c/0x64 [ 206.666048][ T1147] save_stack_info+0x40/0x158 [ 206.666081][ T1147] kasan_save_free_info+0x18/0x24 [ 206.666113][ T1147] __kasan_slab_free+0x7c/0x8c [ 206.666145][ T1147] kfree_nolock+0xcc/0x1d4 [ 206.666181][ T1147] range_tree_destroy+0x74/0x90 [ 206.666215][ T1147] arena_map_free+0x64/0x90 [ 206.666250][ T1147] bpf_map_free_deferred+0x70/0x180 [ 206.666290][ T1147] process_one_work+0x178/0x2cc [ 206.666323][ T1147] worker_thread+0x24c/0x354 [ 206.666357][ T1147] kthread+0x130/0x1fc [ 206.666528][ T1147] ret_from_fork+0x10/0x20 [ 206.666613][ T1147] [ 206.666720][ T1147] The buggy address belongs to the object at fff00000059df780 [ 206.666720][ T1147] which belongs to the cache kmalloc-64 of size 64 [ 206.666858][ T1147] The buggy address is located 32 bytes inside of [ 206.666858][ T1147] 64-byte region [fff00000059df780, fff00000059df7c0) [ 206.666932][ T1147] [ 206.667243][ T1147] The buggy address belongs to the physical page: [ 206.667742][ T1147] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x459df [ 206.668216][ T1147] flags: 0x1ffc00000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0) [ 206.668636][ T1147] page_type: f5(slab) [ 206.669162][ T1147] raw: 01ffc00000000000 f6f0000003001600 dead000000000122 0000000000000000 [ 206.669220][ T1147] raw: 0000000000000000 0000000080400040 00000000f5000000 0000000000000000 [ 206.669342][ T1147] page dumped because: kasan: bad access detected [ 206.669385][ T1147] [ 206.669415][ T1147] Memory state around the buggy address: [ 206.669681][ T1147] fff00000059df500: f5 f5 f5 fe f7 f7 f7 fe f9 f9 f9 fe fb fb fb fe [ 206.669771][ T1147] fff00000059df600: f8 f8 f8 fe f5 f5 f5 f5 f0 f0 f0 fe f0 f0 f0 fe [ 206.669824][ T1147] >fff00000059df700: f0 f0 f0 f0 fe fe fe fe fe fe fe fe f0 f0 f0 f0 [ 206.669879][ T1147] ^ [ 206.670014][ T1147] fff00000059df800: fe fe fe fe fc fc fc fe f6 f6 f6 f6 f4 f4 f4 fe [ 206.670043][ T1147] fff00000059df900: fe fe fe fe f0 f0 f0 f0 f3 f3 f3 f3 f6 f6 f6 fe [ 206.670111][ T1147] ================================================================== [ 206.671131][ T1147] Disabling lock debugging due to kernel taint SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 207.415853][ T1147] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 207.494354][ T1147] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 207.574679][ T1147] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 207.624298][ T1147] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.284527][ T1147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 208.330054][ T1147] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 208.368095][ T1147] bond0 (unregistering): Released all slaves [ 208.499798][ T1147] hsr_slave_0: left promiscuous mode [ 208.502460][ T1147] hsr_slave_1: left promiscuous mode [ 208.516482][ T1147] veth1_macvtap: left promiscuous mode [ 208.516829][ T1147] veth0_macvtap: left promiscuous mode [ 208.519262][ T1147] veth1_vlan: left promiscuous mode [ 208.519684][ T1147] veth0_vlan: left promiscuous mode VM DIAGNOSIS: 07:45:38 Registers: info registers vcpu 0 CPU#0 PC=ffff8000818c022c X00=0000000000000000 X01=f9f0000003199080 X02=0000000000000000 X03=fdf0000005846000 X04=0000000000000000 X05=000000000202000a X06=fbf00000056c1600 X07=ffff800082ddba24 X08=fbf000000532fa00 X09=fbf00000056c1601 X10=ffff800082d9d840 X11=2033caed2bae011f X12=b5bd301be769a829 X13=0000000000000004 X14=0000000000000004 X15=fff000007f8d7b80 X16=ffff800082dd8000 X17=fff07ffffcf04000 X18=0000000000000001 X19=ffff8000829eab50 X20=f7f0000006887700 X21=ffff800082d9d840 X22=0000000000000000 X23=ffff800082ddbb68 X24=0000000000000000 X25=ffff800082ddbbf8 X26=ffff800082d9d840 X27=000000000000001f X28=f7f0000006887700 X29=ffff800082ddb8d0 X30=bbbf800081885278 SP=ffff800082ddb8b0 PSTATE=60402009 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000aa006b736964 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffffffffffffff:ffff00ff00000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffffffff0f0000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ff0000ff0000:ffff000000ff0000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00f00f00ff000f00 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000000cccccc00 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000073:0000aaab0daccc90 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000074:0000aaab0dac9f70 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffd0b539f0:0000ffffd0b539f0 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffd0b539c0 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff80008092ef6c X00=ffff800082e05030 X01=0000000000000002 X02=0000000000000030 X03=0000000000000000 X04=0000000000000001 X05=000000000000000a X06=0000000000000020 X07=0000000000000000 X08=7f7f7f7f7f7f7f7f X09=ffff800082b9df18 X10=0000000000000001 X11=ffff8000831dbe20 X12=ffff800082acf248 X13=ffff8000831dbb8d X14=ffff8000831dbb98 X15=ffff8000831dba00 X16=00000000e07dd61c X17=0000000034929fb5 X18=00000000ffffffff X19=ffff8000831dbe20 X20=f4f000000335c880 X21=0000000000000064 X22=0000000000000f01 X23=0000000000000000 X24=0000000000000000 X25=f3f0000003e00000 X26=0000000000000001 X27=0000000000000000 X28=0000000000000000 X29=ffff8000831dbce0 X30=ffff80008092ef2c SP=ffff8000831dbce0 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:2525252525252525:2525252525252525 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6572207265767265:730073250a0d0a0d Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:68745f72656b726f:7720205d37343131 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00ff00ff00000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000000f0f0000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:65645f656572665f:70616d5f66706220 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6d6d6f4320373431:31203a4449502030 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:4e20393a38752f72:656b726f776b203a Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000fffff5bda310:0000fffff5bda310 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd8:0000fffff5bda2e0 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000