last executing test programs: 7.197892126s ago: executing program 1 (id=272): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_usb_connect(0x0, 0x24, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xb, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) r3 = eventfd(0xc) ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3) ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3}) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000002c0)=""/100, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000e40)) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000009c0)=""/251, 0x0, 0x100000}) ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1) unshare(0x64000600) 6.533426974s ago: executing program 1 (id=276): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) syz_io_uring_setup(0x10d2, &(0x7f0000000340)={0x0, 0x6bf6, 0x100, 0x5, 0x12}, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r1) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) write$tun(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a0088a8aaaaaaaaaaaa00000000000081002b0086dd6900040000102c"], 0x4e) 6.422082439s ago: executing program 1 (id=277): r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x46d, 0xc71b, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x9, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200}}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0) 5.082294707s ago: executing program 0 (id=282): ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x1}, 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r4}, 0x18) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = userfaultfd(0x80801) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000d00000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r6, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r7}, 0x18) inotify_init() ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) mremap(&(0x7f00003cd000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000c9a000/0x2000)=nil) close_range(r5, 0xffffffffffffffff, 0x0) 4.856668927s ago: executing program 1 (id=284): r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0) syz_usb_disconnect(r0) r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000440)={{0x12, 0x1, 0x300, 0x41, 0xd1, 0xe0, 0x70, 0x403, 0xb810, 0x5a2e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc1, 0xc3, 0x1, 0x53, 0x7e, 0xbc, 0x10, [], [{{0x9, 0x5, 0x2, 0x0, 0x8, 0xf0, 0x9, 0x6}}]}}]}}]}}, 0x0) syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0) syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x44, &(0x7f00000001c0)=ANY=[]) syz_usb_connect$cdc_ecm(0x5, 0x0, 0x0, 0x0) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x0, 0x0) read$char_usb(r2, &(0x7f0000000040)=""/143, 0x8f) syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x62403) syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x10d8, &(0x7f0000001600)=ANY=[@ANYBLOB="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"]) syz_usb_disconnect(r1) r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0) syz_usb_control_io(r3, 0x0, 0x0) syz_usb_control_io$hid(r3, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0) 4.117732546s ago: executing program 0 (id=288): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000240)=""/45, 0x0) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x4b2dfe21750f744b, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e21, @local}, 0x10) r7 = socket$packet(0x11, 0x2, 0x300) sendmsg$NFNL_MSG_CTHELPER_NEW(r7, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x10) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) mlock(&(0x7f0000300000/0x2000)=nil, 0x2000) mlock(&(0x7f0000726000/0x3000)=nil, 0x3000) 3.133747221s ago: executing program 0 (id=292): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0) syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x2001) creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb) r1 = open(&(0x7f0000000100)='./file0\x00', 0x800, 0x10e) fcntl$setlease(r1, 0x400, 0x1) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000040)={0xffffffffffffffff}) close_range(r2, 0xffffffffffffffff, 0x0) 2.462296656s ago: executing program 2 (id=294): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xf177c000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000007040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000007000)={0xffffffffffffffe7, 0x0, 0x843ca, {0x0, 0x4}}, 0x0}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f00000001c0)="430fc73f0f2390b9800000c00f32f30f090f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e00b9600500000f322d1aa80000460f1c46004b41ad", 0x4b}], 0x1, 0x74, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240)) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_clone3(&(0x7f000000dd80)={0xa00400, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) 2.319253102s ago: executing program 2 (id=295): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={0x0, &(0x7f00000004c0)=""/160, 0x0, 0xa0, 0x0, 0x3, 0xe590d75b13ca84cc}, 0x28) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x20048010) r8 = socket$nl_route(0x10, 0x3, 0x0) r9 = socket(0x10, 0x803, 0x2) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r9) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/ip_mr_vif\x00') sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r10, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000440)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000580)="d0ed84069269528687a0f1bcb212fdccfcd828a038f3b0d0e0a552d799609750b83325a54a008641a9a2d5878b5c3007fd9ebe54a14b347925b87c8eece15f319d3052a717cd9de689db0d54bfac816bfed5a7e1928f8fa9279c0b20246a3b3a1bfa30de043700d9a421527d1662d29a149d9aaa3b51489ed1c6ed0bf76d0d7a75c213ed0eea9a55de17c07f711f766e7b2cf8a9c74570190e5f5608cefabb6e8069d0d9f068a6e139a02b8803241e7e803f", 0xb2}, {&(0x7f0000000180)="041a834e45fb3c6995dafd6fbfa9162b444b8c7c3e48b7042aaf7928ba79eed9817a", 0x22}], 0x2, &(0x7f0000000880)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r2}}}], 0x40, 0x4000}}, {{&(0x7f00000008c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000b40)=[{&(0x7f0000000940)="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", 0xfe}, {&(0x7f0000000a40)="5703b4915e54114326f130a39e8b20030cc75a309ba7c7409ca42729ff375ef9bd4bdfe084c6d699c360dd85cf7ced1cb02e19d80985fd0a56e0400b6a7aa4913927ff94521616998e797894a0229257f80ffbbcfd2761ae5fd079bd6cab4f401c3dc6175e0d543c89bba6ccd80d75d81adb5aae185a244a69540b9474c5964b7451c33ada97464e4a01bb08708471463c8a8d031a7be273fdca2b4a5c7bdff1ec034bf20f4f900d0dd1cfc3d09e373efc02dc769e8505aae6395c746e105a6b5deea08d5100ff08954855434ec765", 0xcf}], 0x2, &(0x7f0000000e80)=[@rights={{0x24, 0x1, 0x1, [r9, r5, r9, r6, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r8]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xffffffffffffffff}}}, @rights={{0x34, 0x1, 0x1, [r6, r6, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r4, 0xffffffffffffffff, r4]}}], 0x98, 0x80}}, {{&(0x7f0000000f40)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000011c0)=[{&(0x7f0000000fc0)="742c88fd35e8b4343c7d2bb83dac5f0b28059119cb3ed2d2303f0165c2ec22432eaad11b0876b23bc8ab87c2ad6be4aa217e60f44ec1b729062d8b064c783b21a8a45dad5d5b4aa7327eca7e48ca3825212240bb16200e92c043e3287eacd5a42dbcdc64fc4aca7470b3bd25b442b0ae57a0eb7378b9ddc4f99d4957e5f55eb5099f417039077d4f8d868d0ce335207edd614eaa14f2928f876323ead85762d4c45e11c53b9a9bf2bd33f7da00e54bcc683f", 0xb2}, {&(0x7f0000001080)="3429ab1f4438b518c2fbd4a0727f870734352c251cec4aec54289673a992c05f44f124f1bf954741cda601d50a1435daeb2c8768cdb9d7dfc72142b4aaf3875c4af1e33cef6b0f2f66e34bb372c9e979e4b59aece09fc9b50fc317c74b1ec1ed16656238ad20dc5aed0b7d8fe742f0c8f38985ddaabf1879f276d65ae2a1fcb42975073fb9fde395a6d94050d4de8f5d1c62bff1c7a2c7bc734231710817e180f254f7f528599b497ee87a4b318383ad816e8ae97207e2e7cd1ec7a39807f136c3b7293779f7833377ea237c98ec985355a5d8", 0xd3}, {&(0x7f0000001180)}], 0x3, 0x0, 0x0, 0x4}}, {{0x0, 0x0, &(0x7f0000001300)=[{&(0x7f0000001200)="512d39fbd5a9a2b6d26aac64a5b6cd04b9dd3574931ee104bc26ff612900", 0x1e}, {&(0x7f0000001240)="fa95f4ead0df3fcbbe6a06b85983cbef60f8fe663e37c556a4feacbb0de235ba80f4d7af4b695a4b9b76a6f7e3d11a1f4b39dbbe47ab397180603540a17107698e079eafbd379834308b63546c67e61dec79cf5f297c2d84dc708dd9acd4fe4ad6bda17cd4499886b69513cf47d1dd7627aab1148fa369f868fb29e8073a00af4748d4686933eb45b76d3e350e454b272ed3f90485015eab32972d5752fcdee80bbb657a6d26b75ef905", 0xaa}], 0x2, &(0x7f0000001600)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x24, 0x1, 0x1, [r11, r7, r11, r9, r4]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r9, r5]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2}}}], 0xe0, 0x20040800}}, {{&(0x7f0000001700)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000002ac0)=[{&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000002780)="0b22ffdc69654c44980d10b821afc3f27c48", 0x12}, {&(0x7f00000027c0)="f6a1c435d1e52a73c742b2fd276de2128042568a57439daa48b58597988187c7f135ff0eaf8a4f07e36c9e59a2649588a553b5ce1e772be30cc705744c3ce691d1ed47f9a04d149a481e124d665709560e3c84428b79f5806822855fbe6ac7824d13749dd11c28afc00976980717b069a73a9f3bb6342f7106f431028608fe0aa586f9e826259f2c1d451f1b1baf8336dba36cce61b30f97844c30561e41357a1c0410b4edaf4e04f122", 0xaa}, {&(0x7f0000002880)="8c3d806a824d096cf65f312f4b5a48a03dbbb2", 0x13}, {&(0x7f00000028c0)="7808ada0c219d529c86b9fd43986c03b83b8d2c81ffb098c37400bef94694fa76c0632d746998183128b1f679bc81ff9c43cd8c89ea4", 0x36}, {&(0x7f0000002900)="c0b169e943c74c55d5c94a0b1c3276119b6b409464cecd75bdd530f6b0d7a7c0428e2cc9789c6005004b11667cf700525798103ae5a7eacd5774f5eb4a3c7ced4ee09cac9e1a29e293e615e1243e106367e798dec2dc8f2ee953378cd83c2e86243e50709a539d87a422f36977b9fc7b6a683de38a4b0d352c69f1b7946d03c1da08dc06a020f473893653d457737a389dc9f885d1bc1b1505f9c136772cdf72d6d166e53e8ae62fbc1d822339cad23212e92e021ad01af87e09e89fb58917477a6e2bb3194a26cb6467d08f", 0xcc}, {&(0x7f0000002a00)="c30eb6d5f93d336b61a4f9d759003b301b51659b15c66f795f8338c8dd3d0060420f8e338177b6145e1d152c1c31f173230fa90f4c2bd65c214c5e1e808921e15eae6e34a51f7ee100", 0x49}, {&(0x7f0000002a80)="c5fc34ee1313923728e38d996d3cef344fbbda6c96bed6cf3cc2d142222424f3601f791fa315aa88a649306ab7615a1730585c479fed2b4a", 0x38}], 0x8, &(0x7f0000003000)=[@cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x38, 0x1, 0x1, [r7, 0xffffffffffffffff, r0, r8, r6, r7, r6, r5, r9, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r6, 0xffffffffffffffff, r1, r3, r1]}}], 0x110, 0x20000800}}], 0x5, 0x20000080) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x2, 0x8}}]}}]}, 0x48}}, 0x0) sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@newtfilter={0x68, 0x28, 0xd27, 0x70bd28, 0x4, {0x0, 0x0, 0x0, r10, {0x1}, {0xd}, {0xfff1, 0x3d}}, [@filter_kind_options=@f_bpf={{0x8}, {0x34, 0x2, [@TCA_BPF_ACT={0x30, 0x1, [@m_bpf={0x2c, 0x17, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x9, 0x1}}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000804}, 0x40) 1.681751471s ago: executing program 3 (id=298): bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='fdb_delete\x00', r1}, 0x18) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"}) 1.646426327s ago: executing program 3 (id=299): bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={0xffffffffffffffff, 0x0, 0x25, 0x14, @void}, 0x10) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x40) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0xfffffff9) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/246, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="500000001000ffff27bd7000fcdbdf2500000001", @ANYRES32=0x0, @ANYBLOB="100a0500231a05002c0012800b00010067726574617000001c0002800500130020000000080014000a00000005000a000000000004"], 0x50}, 0x1, 0x0, 0x0, 0x85}, 0x20040040) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) 1.556973938s ago: executing program 3 (id=300): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 1.50678229s ago: executing program 0 (id=301): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x10000000000) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000640)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) 1.436436418s ago: executing program 0 (id=302): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x48050) socket(0x10, 0x2, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r3 = getpid() r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000000000008404"]) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000ec0)={@local, @random="b557a0758659", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast2, @local, @dev={0xac, 0x14, 0x14, 0x3e}}}}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x48) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) bpf$MAP_CREATE(0x0, 0x0, 0x48) r9 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x70bd29, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe, 0x9}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0) 1.362877394s ago: executing program 3 (id=303): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x8000}}) read$FUSE(r3, &(0x7f0000002380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r3, &(0x7f00000004c0)={0x50, 0x0, r4, {0x7, 0x9, 0x0, 0x18292, 0x0, 0x0, 0x0, 0xffffffff}}, 0x50) read$FUSE(r3, &(0x7f0000006580)={0x2020, 0x0, 0x0}, 0x2020) truncate(&(0x7f0000000080)='./file0\x00', 0x8001) write$FUSE_INIT(r3, &(0x7f0000006500)={0x50, 0x0, r5, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x50) syz_open_procfs(0x0, 0x0) 1.35290883s ago: executing program 2 (id=304): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x22}, 0x49) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)={[0x6, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x8, 0x1004, 0x9, 0xc595, 0x9, 0x8, 0xfffffffffffffffe, 0x8, 0x80000004000000, 0x1c], 0x80a0000, 0x2010d3}) ioctl$KVM_GET_MSRS_cpu(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d01}]}) open(&(0x7f0000000000)='./bus\x00', 0x40, 0x170) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1.139376935s ago: executing program 2 (id=305): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r0}, 0x10) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004080), 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4001c00) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4400000010004b04000023dc5ad93c5c2b7b0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500160003"], 0x44}}, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x40) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0) r4 = eventfd(0xfffffff9) ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r4}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/56, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000}) ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f00000002c0)={0x1, r4}) ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1) 1.076497638s ago: executing program 1 (id=306): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r1) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) write$tun(r0, &(0x7f0000001080)=ANY=[], 0xc5) 903.834841ms ago: executing program 2 (id=307): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xe, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) memfd_create(&(0x7f0000000340)='\x00', 0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x88b81, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) bind$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) syz_clone3(0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r5, 0x701, 0x70bd2b, 0xffffffff, {0x41}}, 0x14}}, 0x0) 897.387868ms ago: executing program 1 (id=308): r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0) eventfd2(0xe5c, 0x80000) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f00000006c0)={0x2c, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0}) 454.243153ms ago: executing program 0 (id=309): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) memfd_create(&(0x7f0000000440)='[\v\xdbX\xae[5\xa9\x90\xbemd\xe7\xe2\x7f\x9b\xd5R\x10\xf3\xb6\xffT\xbf\xd1\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eF\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1e{\n\x00\x00\x00jS\xd6\x91%||\xa0\x8e]\xc7T\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\x9fc\xda\xa9\x83r\xd8\x98\x00\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5\x02nN&\xf8#\x80z8Z\xd2}\xf5\xe4\xdf5\x9b\x01\xf8', 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(0xffffffffffffffff, &(0x7f0000000400)={0x14, &(0x7f0000000340)={0x0, 0x5, 0xb, {0xb, 0x22, "636521e776c4527978"}}, 0x0}, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708"], 0x0}, 0x94) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x4000000000000002, 0x80, 0xbbc, 0x20000004, 0x1, 0x4234, 0xbe61, 0x81, 0x9c1, 0x8001, 0x1005, 0x7, 0x4db6, 0x0, 0xfffffdfffffffffd], 0x2000, 0x80300}) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0x5, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x5, 0xfffffff8, 0x40, 0xff, 0xff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 434.659071ms ago: executing program 3 (id=310): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000240)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xffffffffffffff6b, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000340)="168fc20100010000000000000000", 0x0, 0xe00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 216.162707ms ago: executing program 3 (id=311): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f0000000a40)=ANY=[@ANYBLOB="1801000000050000000000000000ea0485000000d000000095"], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_clone3(&(0x7f0000000200)={0x4001000, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000003c0)=[@text64={0x40, 0x0}], 0x1, 0x6c, 0x0, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008604"]) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r4, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xf8}], 0x1}, 0x1f00) sendmsg$tipc(r5, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) r6 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r6, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) listen(r6, 0x0) r7 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r7, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r8}, &(0x7f0000000240), &(0x7f0000000280)=r9}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r9}, 0x18) syslog(0x3, 0x0, 0x0) sendmsg$nl_route(r7, &(0x7f0000000540)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000005a0000032bbd7000fddbdf2500080089940e680000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x0) write$binfmt_elf64(r7, &(0x7f0000000240)=ANY=[], 0x40000) accept4$unix(r6, 0x0, 0x0, 0x0) 0s ago: executing program 2 (id=312): bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x4, 0x4, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000007}, [@call={0x85, 0x0, 0x0, 0x53}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 0s ago: executing program 2 (id=313): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:21755' (ED25519) to the list of known hosts. [ 47.006397][ T5931] cgroup: Unknown subsys name 'net' [ 47.118134][ T5931] cgroup: Unknown subsys name 'cpuset' [ 47.122913][ T5931] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 48.063025][ T5931] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 52.105462][ T5954] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 52.108551][ T5954] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 52.111287][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 52.128048][ T5963] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 52.129597][ T5958] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 52.129753][ T5959] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 52.130575][ T5959] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 52.131249][ T5963] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 52.131455][ T5963] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 52.131886][ T5963] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 52.132382][ T5963] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 52.134692][ T5963] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 52.136167][ T5959] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 52.138758][ T5963] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 52.141077][ T5959] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 52.143055][ T5963] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 52.145232][ T5959] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 52.147371][ T5963] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 52.150463][ T5960] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 52.165867][ T5960] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 52.444439][ T5961] chnl_net:caif_netlink_parms(): no params data found [ 52.475487][ T5956] chnl_net:caif_netlink_parms(): no params data found [ 52.748423][ T5951] chnl_net:caif_netlink_parms(): no params data found [ 52.753650][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.758650][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.762467][ T5961] bridge_slave_0: entered allmulticast mode [ 52.766410][ T5961] bridge_slave_0: entered promiscuous mode [ 52.812787][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.815811][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.819174][ T5961] bridge_slave_1: entered allmulticast mode [ 52.823106][ T5961] bridge_slave_1: entered promiscuous mode [ 52.847215][ T5956] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.849951][ T5956] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.853217][ T5956] bridge_slave_0: entered allmulticast mode [ 52.858337][ T5956] bridge_slave_0: entered promiscuous mode [ 52.928835][ T5956] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.931936][ T5956] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.935085][ T5956] bridge_slave_1: entered allmulticast mode [ 52.939050][ T5956] bridge_slave_1: entered promiscuous mode [ 52.949137][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 52.952486][ T5948] chnl_net:caif_netlink_parms(): no params data found [ 52.959151][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.143574][ T5961] team0: Port device team_slave_0 added [ 53.149179][ T5956] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.176081][ T5951] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.179371][ T5951] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.182731][ T5951] bridge_slave_0: entered allmulticast mode [ 53.186864][ T5951] bridge_slave_0: entered promiscuous mode [ 53.192446][ T5961] team0: Port device team_slave_1 added [ 53.198357][ T5956] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.212133][ T5951] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.214604][ T5951] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.219485][ T5951] bridge_slave_1: entered allmulticast mode [ 53.222548][ T5951] bridge_slave_1: entered promiscuous mode [ 53.399732][ T5956] team0: Port device team_slave_0 added [ 53.429427][ T5951] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.434155][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.437280][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 53.446132][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.452402][ T5956] team0: Port device team_slave_1 added [ 53.455271][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.457805][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.460346][ T5948] bridge_slave_0: entered allmulticast mode [ 53.463202][ T5948] bridge_slave_0: entered promiscuous mode [ 53.468164][ T5951] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.482967][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.485311][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 53.493293][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.531829][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.535434][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.538608][ T5948] bridge_slave_1: entered allmulticast mode [ 53.542657][ T5948] bridge_slave_1: entered promiscuous mode [ 53.580043][ T5956] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.583546][ T5956] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 53.594459][ T5956] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.629014][ T5951] team0: Port device team_slave_0 added [ 53.631384][ T5956] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.633582][ T5956] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 53.642135][ T5956] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.681363][ T5951] team0: Port device team_slave_1 added [ 53.711722][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.768871][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.776282][ T5961] hsr_slave_0: entered promiscuous mode [ 53.779225][ T5961] hsr_slave_1: entered promiscuous mode [ 53.808591][ T5956] hsr_slave_0: entered promiscuous mode [ 53.811481][ T5956] hsr_slave_1: entered promiscuous mode [ 53.814652][ T5956] debugfs: 'hsr0' already exists in 'hsr' [ 53.817746][ T5956] Cannot create hsr debugfs directory [ 53.855543][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.858621][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 53.868740][ T5951] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.873919][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.876479][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 53.885443][ T5951] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.891246][ T5948] team0: Port device team_slave_0 added [ 53.938140][ T5948] team0: Port device team_slave_1 added [ 54.017949][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.020556][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.029129][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.033568][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.036144][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.044352][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.094110][ T5951] hsr_slave_0: entered promiscuous mode [ 54.097897][ T5951] hsr_slave_1: entered promiscuous mode [ 54.101374][ T5951] debugfs: 'hsr0' already exists in 'hsr' [ 54.103923][ T5951] Cannot create hsr debugfs directory [ 54.155918][ T5305] Bluetooth: hci2: command tx timeout [ 54.164974][ T5305] Bluetooth: hci3: command tx timeout [ 54.235180][ T5305] Bluetooth: hci1: command tx timeout [ 54.245455][ T5305] Bluetooth: hci0: command tx timeout [ 54.256998][ T5948] hsr_slave_0: entered promiscuous mode [ 54.260263][ T5948] hsr_slave_1: entered promiscuous mode [ 54.263424][ T5948] debugfs: 'hsr0' already exists in 'hsr' [ 54.267814][ T5948] Cannot create hsr debugfs directory [ 54.473361][ T5956] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 54.483582][ T5956] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 54.508655][ T5956] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 54.524778][ T5956] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 54.546998][ T5961] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 54.557390][ T5961] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 54.567679][ T5961] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 54.575766][ T5961] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 54.622714][ T5951] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 54.627755][ T5951] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 54.632060][ T5951] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 54.646063][ T5951] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 54.741414][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 54.746852][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 54.760361][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.765098][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.772465][ T5956] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.802360][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.807449][ T5956] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.828061][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.830971][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.842892][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.845952][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.862968][ T5961] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.877834][ T1232] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.880759][ T1232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.908220][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.912205][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.914457][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.970318][ T5951] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.979970][ T5956] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 54.996820][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.999904][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.019617][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.027223][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.030672][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.062348][ T5948] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.089195][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.092632][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.100010][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.103250][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.193150][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.202032][ T5956] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.249024][ T5956] veth0_vlan: entered promiscuous mode [ 55.264666][ T5961] veth0_vlan: entered promiscuous mode [ 55.270830][ T5956] veth1_vlan: entered promiscuous mode [ 55.283077][ T5961] veth1_vlan: entered promiscuous mode [ 55.305914][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.320004][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.329510][ T5956] veth0_macvtap: entered promiscuous mode [ 55.335613][ T5956] veth1_macvtap: entered promiscuous mode [ 55.359973][ T5961] veth0_macvtap: entered promiscuous mode [ 55.368836][ T5961] veth1_macvtap: entered promiscuous mode [ 55.379930][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.398241][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.419472][ T1190] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.423447][ T1190] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.432936][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.445346][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.457106][ T1190] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.460515][ T1190] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.468880][ T5948] veth0_vlan: entered promiscuous mode [ 55.478188][ T1190] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.484131][ T5951] veth0_vlan: entered promiscuous mode [ 55.492558][ T1190] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.497220][ T1190] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.501274][ T1190] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.510693][ T5951] veth1_vlan: entered promiscuous mode [ 55.527774][ T5948] veth1_vlan: entered promiscuous mode [ 55.567118][ T1232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.570253][ T1232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.582876][ T5948] veth0_macvtap: entered promiscuous mode [ 55.615589][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.615758][ T5948] veth1_macvtap: entered promiscuous mode [ 55.618885][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.627555][ T5951] veth0_macvtap: entered promiscuous mode [ 55.637349][ T5951] veth1_macvtap: entered promiscuous mode [ 55.641480][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.644566][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.665737][ T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.667662][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.669818][ T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.681305][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.687788][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.699784][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.700689][ T5956] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 55.711748][ T61] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.715776][ T61] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.725260][ T61] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.728689][ T61] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.738888][ T61] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.745805][ T61] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.760523][ T1146] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.764821][ T1146] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.840373][ T1232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.843739][ T1232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.949927][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.953665][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.957700][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 55.961991][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 56.027823][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.031928][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.084509][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.087871][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.156048][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 56.204041][ T6043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2'. [ 56.223591][ T6047] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'. [ 56.235488][ T5305] Bluetooth: hci3: command tx timeout [ 56.237840][ T5305] Bluetooth: hci2: command tx timeout [ 56.316900][ T5960] Bluetooth: hci0: command tx timeout [ 56.318688][ T5960] Bluetooth: hci1: command tx timeout [ 56.667854][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 56.770125][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 56.855410][ T6043] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 56.885438][ T1459] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 57.063560][ T1459] usb 8-1: Using ep0 maxpacket: 16 [ 57.094821][ T1459] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 57.100804][ T1459] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 57.130085][ T1459] usb 8-1: config 0 interface 0 altsetting 0 has a duplicate endpoint with address 0x2, skipping [ 57.135357][ T1459] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 57.159832][ T1459] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 57.162599][ T1459] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 57.165450][ T1459] usb 8-1: Manufacturer: syz [ 57.172278][ T1459] usb 8-1: config 0 descriptor?? [ 57.395853][ T6066] IPVS: sync thread started: state = MASTER, mcast_ifn = vcan0, syncid = 0, id = 0 [ 57.569523][ T6071] Zero length message leads to an empty skb [ 58.324994][ T5305] Bluetooth: hci2: command tx timeout [ 58.329023][ T5305] Bluetooth: hci3: command tx timeout [ 58.395080][ T5963] Bluetooth: hci1: command tx timeout [ 58.398082][ T5963] Bluetooth: hci0: command tx timeout [ 58.818326][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 58.835430][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.860794][ T6019] usb 8-1: USB disconnect, device number 2 [ 58.886050][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.889741][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.893953][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 59.438310][ T6016] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 59.644033][ T6075] bridge0: port 3(syz_tun) entered blocking state [ 59.647598][ T6075] bridge0: port 3(syz_tun) entered disabled state [ 59.652918][ T6075] syz_tun: entered allmulticast mode [ 59.662595][ T6075] syz_tun: entered promiscuous mode [ 59.665766][ T6075] bridge0: port 3(syz_tun) entered blocking state [ 59.668452][ T6075] bridge0: port 3(syz_tun) entered forwarding state [ 59.755184][ T5960] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 59.757724][ T5963] Bluetooth: hci4: command 0x1003 tx timeout [ 59.903978][ T6091] IPVS: set_ctl: invalid protocol: 22 100.1.1.2:20004 [ 60.405173][ T5960] Bluetooth: hci3: command tx timeout [ 60.407741][ T5963] Bluetooth: hci2: command tx timeout [ 60.476115][ T5963] Bluetooth: hci0: command tx timeout [ 60.478607][ T5960] Bluetooth: hci1: command tx timeout [ 60.931986][ T6089] e1000e 0000:00:02.0 eth1: NIC Link is Down [ 68.465654][ T40] audit: type=1326 audit(1759995396.408:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.473757][ T40] audit: type=1326 audit(1759995396.408:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.551790][ T40] audit: type=1326 audit(1759995396.408:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.580416][ T40] audit: type=1326 audit(1759995396.408:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.593394][ T40] audit: type=1326 audit(1759995396.408:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.625392][ T40] audit: type=1326 audit(1759995396.408:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.636157][ T40] audit: type=1326 audit(1759995396.408:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.645736][ T40] audit: type=1326 audit(1759995396.408:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.665383][ T40] audit: type=1326 audit(1759995396.408:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.677427][ T40] audit: type=1326 audit(1759995396.408:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.0.14" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 68.705309][ T6200] mmap: syz.0.14 (6200) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 69.583005][ T6215] netlink: 'syz.0.20': attribute type 10 has an invalid length. [ 69.614150][ T6215] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 69.723555][ T6017] libceph: connect (1)[c::]:6789 error -101 [ 69.727258][ T6017] libceph: mon0 (1)[c::]:6789 connect error [ 69.769569][ T6219] ceph: No mds server is up or the cluster is laggy [ 70.655569][ T6233] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24'. [ 70.784442][ T6236] capability: warning: `syz.0.23' uses deprecated v2 capabilities in a way that may be insecure [ 70.880584][ T6239] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input5 [ 70.958683][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.960797][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.191398][ T6241] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 71.194018][ T6241] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 71.220356][ T6241] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 71.224717][ T6241] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 71.227427][ T6241] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 71.231207][ T6241] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 71.266142][ T6241] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 71.268274][ T6241] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 71.274151][ T6241] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 71.288338][ T6241] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 71.290463][ T6241] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 71.315635][ T6241] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 71.821939][ T6257] xt_l2tp: v2 sid > 0xffff: 1114112 [ 72.208714][ T6260] netlink: 144 bytes leftover after parsing attributes in process `syz.1.30'. [ 72.673915][ T6267] FAULT_INJECTION: forcing a failure. [ 72.673915][ T6267] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 72.673937][ T6267] CPU: 0 UID: 0 PID: 6267 Comm: syz.0.33 Not tainted syzkaller #0 PREEMPT(full) [ 72.673949][ T6267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 72.673962][ T6267] Call Trace: [ 72.673965][ T6267] [ 72.673969][ T6267] dump_stack_lvl+0x16c/0x1f0 [ 72.673986][ T6267] should_fail_ex+0x512/0x640 [ 72.674002][ T6267] _copy_from_user+0x2e/0xd0 [ 72.674016][ T6267] move_addr_to_kernel+0x65/0x170 [ 72.674033][ T6267] __get_compat_msghdr+0x3f1/0x4d0 [ 72.674079][ T6267] get_compat_msghdr+0xd2/0x170 [ 72.674090][ T6267] ? __pfx_get_compat_msghdr+0x10/0x10 [ 72.674102][ T6267] ? __pfx__kstrtoull+0x10/0x10 [ 72.674121][ T6267] ___sys_sendmsg+0x1ae/0x1d0 [ 72.674134][ T6267] ? __pfx____sys_sendmsg+0x10/0x10 [ 72.674161][ T6267] __sys_sendmmsg+0x2f9/0x420 [ 72.674175][ T6267] ? __pfx___sys_sendmmsg+0x10/0x10 [ 72.674190][ T6267] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 72.674208][ T6267] ? fput+0x9b/0xd0 [ 72.674223][ T6267] ? ksys_write+0x1ac/0x250 [ 72.674233][ T6267] ? __pfx_ksys_write+0x10/0x10 [ 72.674246][ T6267] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 72.674258][ T6267] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 72.674271][ T6267] __do_fast_syscall_32+0x7c/0x300 [ 72.674285][ T6267] do_fast_syscall_32+0x32/0x80 [ 72.674297][ T6267] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 72.674310][ T6267] RIP: 0023:0xf708d579 [ 72.674319][ T6267] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 72.674328][ T6267] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 72.674338][ T6267] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000600 [ 72.674344][ T6267] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000 [ 72.674350][ T6267] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 72.674356][ T6267] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 72.674361][ T6267] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 72.674374][ T6267] [ 72.679603][ T54] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 72.751680][ T6269] netlink: 76 bytes leftover after parsing attributes in process `syz.3.32'. [ 72.817086][ T6269] netlink: 'syz.3.32': attribute type 1 has an invalid length. [ 72.914993][ T54] usb 7-1: Using ep0 maxpacket: 8 [ 72.917652][ T54] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 72.923829][ T54] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 72.928678][ T54] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 72.928704][ T54] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 72.928745][ T54] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 72.928764][ T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.160833][ T54] usb 7-1: usb_control_msg returned -71 [ 73.163535][ T54] usbtmc 7-1:16.0: can't read capabilities [ 73.163623][ T6263] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 73.181028][ T54] usb 7-1: USB disconnect, device number 2 [ 73.198840][ T5963] Bluetooth: hci0: command 0x0c1a tx timeout [ 73.275142][ T5963] Bluetooth: hci2: command 0x0c1a tx timeout [ 73.275190][ T5960] Bluetooth: hci1: command 0x0c1a tx timeout [ 73.355000][ T5960] Bluetooth: hci3: command 0x0c1a tx timeout [ 74.247406][ T6292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.40'. [ 74.258968][ T6292] wireguard0: entered promiscuous mode [ 74.261378][ T6292] wireguard0: entered allmulticast mode [ 74.663694][ T6297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 74.669439][ T6297] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.275578][ T5960] Bluetooth: hci0: command 0x0c1a tx timeout [ 75.356349][ T5960] Bluetooth: hci1: command 0x0c1a tx timeout [ 75.356406][ T5963] Bluetooth: hci2: command 0x0c1a tx timeout [ 75.437165][ T5963] Bluetooth: hci3: command 0x0c1a tx timeout [ 76.892683][ T6334] syz.3.53 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 77.104952][ T34] usb 6-1: new low-speed USB device number 2 using dummy_hcd [ 77.264956][ T34] usb 6-1: Invalid ep0 maxpacket: 64 [ 77.355119][ T5963] Bluetooth: hci0: command 0x0c1a tx timeout [ 77.394995][ T34] usb 6-1: new low-speed USB device number 3 using dummy_hcd [ 77.445096][ T5963] Bluetooth: hci2: command 0x0c1a tx timeout [ 77.445202][ T5960] Bluetooth: hci1: command 0x0c1a tx timeout [ 77.525118][ T5960] Bluetooth: hci3: command 0x0c1a tx timeout [ 77.554970][ T34] usb 6-1: Invalid ep0 maxpacket: 64 [ 77.558581][ T34] usb usb6-port1: attempt power cycle [ 77.915121][ T34] usb 6-1: new low-speed USB device number 4 using dummy_hcd [ 77.938116][ T34] usb 6-1: Invalid ep0 maxpacket: 64 [ 78.014058][ T6343] 9pnet_virtio: no channels available for device syz [ 78.062294][ T6341] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 78.075305][ T34] usb 6-1: new low-speed USB device number 5 using dummy_hcd [ 78.095757][ T34] usb 6-1: Invalid ep0 maxpacket: 64 [ 78.099099][ T34] usb usb6-port1: unable to enumerate USB device [ 78.317752][ T6357] ptm ptm7: ldisc open failed (-12), clearing slot 7 [ 78.362496][ T6363] netlink: 60 bytes leftover after parsing attributes in process `syz.3.61'. [ 78.368949][ T6363] FAULT_INJECTION: forcing a failure. [ 78.368949][ T6363] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 78.373554][ T6363] CPU: 3 UID: 0 PID: 6363 Comm: syz.3.61 Not tainted syzkaller #0 PREEMPT(full) [ 78.373573][ T6363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 78.373580][ T6363] Call Trace: [ 78.373584][ T6363] [ 78.373589][ T6363] dump_stack_lvl+0x16c/0x1f0 [ 78.373606][ T6363] should_fail_ex+0x512/0x640 [ 78.373622][ T6363] _copy_to_iter+0x463/0x1710 [ 78.373642][ T6363] ? __pfx__copy_to_iter+0x10/0x10 [ 78.373657][ T6363] ? __skb_recv_datagram+0x1b2/0x220 [ 78.373671][ T6363] ? __pfx___skb_recv_datagram+0x10/0x10 [ 78.373682][ T6363] simple_copy_to_iter+0x46/0x90 [ 78.373699][ T6363] __skb_datagram_iter+0x129/0x900 [ 78.373715][ T6363] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 78.373732][ T6363] ? skb_recv_datagram+0x88/0xc0 [ 78.373744][ T6363] skb_copy_datagram_iter+0x40/0x50 [ 78.373762][ T6363] netlink_recvmsg+0x27e/0xa90 [ 78.373776][ T6363] ? __pfx_netlink_recvmsg+0x10/0x10 [ 78.373787][ T6363] ? __lock_acquire+0xb97/0x1ce0 [ 78.373804][ T6363] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 78.373824][ T6363] sock_recvmsg+0x1f6/0x250 [ 78.373846][ T6363] ____sys_recvmsg+0x218/0x6b0 [ 78.373872][ T6363] ? __pfx_____sys_recvmsg+0x10/0x10 [ 78.373886][ T6363] ? import_iovec+0x86/0xb0 [ 78.373904][ T6363] ? __lock_acquire+0x62e/0x1ce0 [ 78.373921][ T6363] ___sys_recvmsg+0x114/0x1a0 [ 78.373933][ T6363] ? __pfx____sys_recvmsg+0x10/0x10 [ 78.373947][ T6363] ? find_held_lock+0x2b/0x80 [ 78.373966][ T6363] __sys_recvmsg+0x16a/0x220 [ 78.373979][ T6363] ? __pfx___sys_recvmsg+0x10/0x10 [ 78.374027][ T6363] ? rcu_is_watching+0x12/0xc0 [ 78.374043][ T6363] __do_fast_syscall_32+0x7c/0x300 [ 78.374057][ T6363] do_fast_syscall_32+0x32/0x80 [ 78.374070][ T6363] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 78.374083][ T6363] RIP: 0023:0xf7f14579 [ 78.374093][ T6363] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 78.374103][ T6363] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000174 [ 78.374114][ T6363] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040 [ 78.374120][ T6363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 78.374126][ T6363] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 78.374131][ T6363] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 78.374137][ T6363] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.374151][ T6363] [ 78.374216][ T6363] netlink: 60 bytes leftover after parsing attributes in process `syz.3.61'. [ 79.314407][ T6391] process 'syz.2.68' launched '/dev/fd/4' with NULL argv: empty string added [ 79.653043][ T1459] libceph: connect (1)[c::]:6789 error -101 [ 79.657078][ T1459] libceph: mon0 (1)[c::]:6789 connect error [ 79.740399][ T6398] ceph: No mds server is up or the cluster is laggy [ 81.188112][ T6430] netlink: 8 bytes leftover after parsing attributes in process `syz.0.76'. [ 81.291751][ T840] cfg80211: failed to load regulatory.db [ 81.746225][ T6426] wireguard0: entered promiscuous mode [ 81.747935][ T6426] wireguard0: entered allmulticast mode [ 81.832159][ T6437] vxfs: unable to read disk superblock at 1 [ 81.834521][ T6437] vxfs: unable to read disk superblock at 8 [ 81.839879][ T6437] vxfs: can't find superblock. [ 82.591506][ T6452] can0: slcan on ptm0. [ 82.773241][ T6451] can0 (unregistered): slcan off ptm0. [ 84.092258][ T6507] overlayfs: missing 'lowerdir' [ 84.459420][ T6519] pim6reg1: entered promiscuous mode [ 84.461491][ T6519] pim6reg1: entered allmulticast mode [ 84.462654][ T6521] binder: 6520:6521 ioctl c0306201 80000240 returned -14 [ 85.562997][ T6546] overlayfs: failed to resolve './bus': -2 [ 85.824725][ T6559] netlink: 4 bytes leftover after parsing attributes in process `syz.2.117'. [ 85.830895][ T6559] netlink: 12 bytes leftover after parsing attributes in process `syz.2.117'. [ 86.315079][ T29] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 86.414988][ T6016] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 86.474875][ T29] usb 5-1: Using ep0 maxpacket: 8 [ 86.478285][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 86.481738][ T29] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 86.486379][ T29] usb 5-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00 [ 86.489418][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.496938][ T29] usb 5-1: config 0 descriptor?? [ 86.584942][ T6016] usb 6-1: Using ep0 maxpacket: 16 [ 86.588548][ T6016] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 86.593991][ T6016] usb 6-1: config 0 has no interfaces? [ 86.599084][ T6016] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 86.603980][ T6016] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 86.608940][ T6016] usb 6-1: Product: syz [ 86.611365][ T6016] usb 6-1: Manufacturer: syz [ 86.613796][ T6016] usb 6-1: SerialNumber: syz [ 86.625081][ T6016] r8152-cfgselector 6-1: Unknown version 0x0000 [ 86.628432][ T6016] r8152-cfgselector 6-1: config 0 descriptor?? [ 86.846889][ T34] r8152-cfgselector 6-1: USB disconnect, device number 6 [ 86.920166][ T29] hid-rmi 0003:06CB:81A7.0002: item fetching failed at offset 5/11 [ 86.924185][ T29] hid-rmi 0003:06CB:81A7.0002: parse failed [ 86.927019][ T29] hid-rmi 0003:06CB:81A7.0002: probe with driver hid-rmi failed with error -22 [ 87.116689][ T1459] usb 5-1: USB disconnect, device number 2 [ 87.685057][ T6592] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 89.023494][ T6626] capability: warning: `syz.2.139' uses 32-bit capabilities (legacy support in use) [ 90.026880][ T6645] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 91.030505][ T6667] netlink: 96 bytes leftover after parsing attributes in process `syz.1.152'. [ 91.083422][ T6671] pim6reg1: entered promiscuous mode [ 91.086351][ T6671] pim6reg1: entered allmulticast mode [ 94.490911][ T6755] netlink: 'syz.0.181': attribute type 12 has an invalid length. [ 95.312876][ T6769] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 95.913553][ T6786] netlink: 4 bytes leftover after parsing attributes in process `syz.3.188'. [ 95.919614][ T6786] netlink: 12 bytes leftover after parsing attributes in process `syz.3.188'. [ 95.938473][ T6786] netlink: 3 bytes leftover after parsing attributes in process `syz.3.188'. [ 96.747374][ T6801] netlink: 4 bytes leftover after parsing attributes in process `syz.2.194'. [ 96.894974][ T6016] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 96.951020][ T6802] netlink: 4 bytes leftover after parsing attributes in process `syz.2.194'. [ 97.067000][ T6016] usb 8-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 97.070637][ T6016] usb 8-1: config 0 interface 0 has no altsetting 0 [ 97.072807][ T6016] usb 8-1: New USB device found, idVendor=056a, idProduct=0343, bcdDevice= 0.00 [ 97.076164][ T6016] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.080978][ T6016] usb 8-1: config 0 descriptor?? [ 97.205082][ T34] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 97.318618][ T6811] lo: Caught tx_queue_len zero misconfig [ 97.364951][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 97.368802][ T34] usb 7-1: config 0 has no interfaces? [ 97.374749][ T34] usb 7-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 97.378259][ T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.380800][ T34] usb 7-1: Product: syz [ 97.382316][ T34] usb 7-1: Manufacturer: syz [ 97.384183][ T34] usb 7-1: SerialNumber: syz [ 97.387508][ T34] usb 7-1: config 0 descriptor?? [ 97.551790][ T6016] usbhid 8-1:0.0: can't add hid device: -71 [ 97.554533][ T6016] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 97.560450][ T6016] usb 8-1: USB disconnect, device number 4 [ 97.596631][ T40] kauditd_printk_skb: 36 callbacks suppressed [ 97.596643][ T40] audit: type=1326 audit(1759995425.548:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6800 comm="syz.2.194" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x0 [ 98.308214][ T6830] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'. [ 98.335262][ T40] audit: type=1326 audit(1759995426.278:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.349106][ T40] audit: type=1326 audit(1759995426.278:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.355804][ T40] audit: type=1326 audit(1759995426.288:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.362617][ T40] audit: type=1326 audit(1759995426.288:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.369486][ T40] audit: type=1326 audit(1759995426.288:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.376505][ T40] audit: type=1326 audit(1759995426.288:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.383584][ T40] audit: type=1326 audit(1759995426.288:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.391610][ T40] audit: type=1326 audit(1759995426.288:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 98.400896][ T40] audit: type=1326 audit(1759995426.288:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6831 comm="syz.0.205" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000 [ 99.768776][ T53] usb 7-1: USB disconnect, device number 3 [ 99.891788][ T6857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.212'. [ 101.346951][ T6880] syz.0.219 (6880) used greatest stack depth: 18184 bytes left [ 101.664989][ T53] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 101.837052][ T53] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 101.841321][ T53] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 101.845342][ T53] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 101.848730][ T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 101.851584][ T53] usb 6-1: SerialNumber: syz [ 102.065143][ T53] usb 6-1: 0:2 : does not exist [ 102.078724][ T53] usb 6-1: USB disconnect, device number 7 [ 102.096973][ T6185] udevd[6185]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 102.364995][ T54] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 102.524963][ T54] usb 7-1: Using ep0 maxpacket: 32 [ 102.527844][ T54] usb 7-1: config 0 has an invalid interface number: 184 but max is 0 [ 102.530686][ T54] usb 7-1: config 0 has no interface number 0 [ 102.533249][ T54] usb 7-1: config 0 interface 184 has no altsetting 0 [ 102.537233][ T54] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 102.540097][ T54] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.543160][ T54] usb 7-1: Product: syz [ 102.544570][ T54] usb 7-1: Manufacturer: syz [ 102.546159][ T54] usb 7-1: SerialNumber: syz [ 102.550297][ T54] usb 7-1: config 0 descriptor?? [ 102.554293][ T54] smsc75xx v1.0.0 [ 102.654360][ T6909] random: crng reseeded on system resumption [ 103.168223][ T54] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 103.174454][ T54] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 104.003381][ T54] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 104.008002][ T54] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 104.011329][ T54] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 104.015315][ T54] smsc75xx 7-1:0.184: probe with driver smsc75xx failed with error -71 [ 104.021816][ T54] usb 7-1: USB disconnect, device number 4 [ 104.975720][ T6980] 9pnet_virtio: no channels available for device 127.0.0.1 [ 106.031109][ T6998] netlink: 4 bytes leftover after parsing attributes in process `syz.0.248'. [ 106.226692][ T6998] netlink: 4 bytes leftover after parsing attributes in process `syz.0.248'. [ 106.484986][ T29] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 106.634940][ T29] usb 5-1: Using ep0 maxpacket: 8 [ 106.639227][ T29] usb 5-1: config 0 has no interfaces? [ 106.643245][ T29] usb 5-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 106.646553][ T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.649308][ T29] usb 5-1: Product: syz [ 106.650815][ T29] usb 5-1: Manufacturer: syz [ 106.652695][ T29] usb 5-1: SerialNumber: syz [ 106.661090][ T29] usb 5-1: config 0 descriptor?? [ 106.865322][ T40] kauditd_printk_skb: 889 callbacks suppressed [ 106.865333][ T40] audit: type=1326 audit(1759995434.818:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6997 comm="syz.0.248" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x0 [ 107.763533][ T7018] fuse: Bad value for 'fd' [ 109.043493][ T6017] usb 5-1: USB disconnect, device number 3 [ 109.424969][ T6017] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 109.586608][ T6017] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 109.590488][ T6017] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 2031, setting to 1024 [ 109.594553][ T6017] usb 5-1: New USB device found, idVendor=044f, idProduct=b300, bcdDevice= 0.00 [ 109.598471][ T6017] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.602787][ T6017] usb 5-1: config 0 descriptor?? [ 109.606255][ T7036] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 109.743832][ T29] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 109.748166][ T29] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [syz1] on syz0 [ 110.226651][ T6017] usbhid 5-1:0.0: can't add hid device: -71 [ 110.229684][ T6017] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 110.235000][ T6017] usb 5-1: USB disconnect, device number 4 [ 112.685075][ T29] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 112.834981][ T29] usb 6-1: Using ep0 maxpacket: 16 [ 112.842877][ T29] usb 6-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 112.847890][ T29] usb 6-1: config 0 interface 0 has no altsetting 0 [ 112.850651][ T29] usb 6-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 112.854318][ T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.860159][ T29] usb 6-1: config 0 descriptor?? [ 113.272077][ T29] logitech-djreceiver 0003:046D:C71B.0004: hidraw1: USB HID v0.05 Device [HID 046d:c71b] on usb-dummy_hcd.1-1/input0 [ 113.428178][ T7114] hub 9-0:1.0: USB hub found [ 113.430317][ T7114] hub 9-0:1.0: 1 port detected [ 113.469734][ T9] usb 6-1: USB disconnect, device number 8 [ 114.133770][ T7125] netlink: 4 bytes leftover after parsing attributes in process `syz.3.283'. [ 114.264931][ T9] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 114.434982][ T9] usb 6-1: Using ep0 maxpacket: 32 [ 114.438119][ T9] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 114.441205][ T9] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 114.445101][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 114.448979][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 114.452334][ T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 114.455850][ T9] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 114.459944][ T9] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 114.462861][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.467202][ T9] usb 6-1: config 0 descriptor?? [ 114.676304][ T9] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 114.683577][ T9] usb 6-1: USB disconnect, device number 9 [ 114.688957][ T9] usblp0: removed [ 115.125210][ T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 115.276959][ T9] usb 6-1: Using ep0 maxpacket: 32 [ 115.280377][ T9] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 115.283165][ T9] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 115.286325][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 115.289246][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 115.292332][ T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 115.295681][ T9] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 115.299849][ T9] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 115.302770][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.308021][ T9] usb 6-1: config 0 descriptor?? [ 115.513747][ T9] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 10 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 115.869340][ C0] usblp0: nonzero read bulk status received: -71 [ 115.872250][ T9] usb 6-1: USB disconnect, device number 10 [ 115.974997][ T34] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 116.137064][ T34] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 116.140559][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 116.144009][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 116.147369][ T34] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 116.152308][ T34] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 116.155395][ T34] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 116.157955][ T34] usb 5-1: Manufacturer: syz [ 116.161460][ T34] usb 5-1: config 0 descriptor?? [ 116.304953][ T840] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 116.465058][ T840] usb 6-1: Using ep0 maxpacket: 32 [ 116.468340][ T840] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 116.471149][ T840] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 116.473842][ T840] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 116.476691][ T840] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 116.479661][ T840] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 116.483011][ T840] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 116.487614][ T840] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 116.490375][ T840] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.495677][ T840] usb 6-1: config 0 descriptor?? [ 116.572144][ T34] appleir 0003:05AC:8243.0005: unknown main item tag 0x0 [ 116.585541][ T34] appleir 0003:05AC:8243.0005: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 116.597175][ T7160] 9pnet: p9_errstr2errno: server reported unknown error 00000000000000000000004 [ 116.705891][ T840] usblp 6-1:0.0: usblp1: USB Bidirectional printer dev 11 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 116.789663][ T7165] netlink: 12 bytes leftover after parsing attributes in process `syz.2.295'. [ 116.840519][ T840] usb 5-1: USB disconnect, device number 5 [ 117.707174][ T7189] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 117.727646][ T7191] netlink: 8 bytes leftover after parsing attributes in process `syz.2.305'. [ 117.738821][ T7120] usblp0: removed [ 117.746905][ T24] usb 6-1: USB disconnect, device number 11 [ 117.771386][ T24] usblp1: removed [ 118.214925][ T9] usb 6-1: new full-speed USB device number 12 using dummy_hcd [ 118.386513][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 118.389824][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 118.392905][ T9] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 118.396887][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.403449][ T9] usb 6-1: config 0 descriptor?? [ 118.416622][ T9] hub 6-1:0.0: USB hub found [ 118.615708][ T9] hub 6-1:0.0: 1 port detected [ 118.917233][ T7220] [ 118.918212][ T7220] ============================= [ 118.919822][ T7220] WARNING: suspicious RCU usage [ 118.921454][ T7220] syzkaller #0 Not tainted [ 118.923954][ T7220] ----------------------------- [ 118.927755][ T7220] kernel/events/callchain.c:163 suspicious rcu_dereference_check() usage! [ 118.930842][ T7220] [ 118.930842][ T7220] other info that might help us debug this: [ 118.930842][ T7220] [ 118.934049][ T7220] [ 118.934049][ T7220] rcu_scheduler_active = 2, debug_locks = 1 [ 118.936705][ T7220] 1 lock held by syz.2.313/7220: [ 118.938288][ T7220] #0: ffffffff8e3c39a0 (rcu_read_lock_trace){....}-{0:0}, at: bpf_prog_test_run_syscall+0x357/0xae0 [ 118.941895][ T7220] [ 118.941895][ T7220] stack backtrace: [ 118.943873][ T7220] CPU: 1 UID: 0 PID: 7220 Comm: syz.2.313 Not tainted syzkaller #0 PREEMPT(full) [ 118.943888][ T7220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 118.943894][ T7220] Call Trace: [ 118.943899][ T7220] [ 118.943905][ T7220] dump_stack_lvl+0x16c/0x1f0 [ 118.943920][ T7220] lockdep_rcu_suspicious+0x166/0x260 [ 118.943939][ T7220] get_callchain_entry+0x278/0x3f0 [ 118.943960][ T7220] get_perf_callchain+0x2d6/0x810 [ 118.943976][ T7220] ? __lock_acquire+0x540/0x1ce0 [ 118.943992][ T7220] ? __pfx_get_perf_callchain+0x10/0x10 [ 118.944010][ T7220] ? __lock_acquire+0x62e/0x1ce0 [ 118.944027][ T7220] __bpf_get_stack+0x4f4/0xa10 [ 118.944045][ T7220] ? __pfx___bpf_get_stack+0x10/0x10 [ 118.944064][ T7220] bpf_get_stack+0x32/0x40 [ 118.944080][ T7220] bpf_get_stack_raw_tp+0x1dd/0x280 [ 118.944106][ T7220] bpf_prog_e8e6327ccf46c9a7+0x46/0x4e [ 118.944117][ T7220] bpf_prog_test_run_syscall+0x45e/0xae0 [ 118.944131][ T7220] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 118.944144][ T7220] ? fput+0x9b/0xd0 [ 118.944160][ T7220] ? __bpf_prog_get+0x97/0x2a0 [ 118.944175][ T7220] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 118.944188][ T7220] __sys_bpf+0x1032/0x4980 [ 118.944199][ T7220] ? futex_private_hash_put+0x18a/0x300 [ 118.944214][ T7220] ? __pfx___sys_bpf+0x10/0x10 [ 118.944225][ T7220] ? __pfx_futex_wait+0x10/0x10 [ 118.944251][ T7220] ? do_futex+0x122/0x350 [ 118.944273][ T7220] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 118.944288][ T7220] ? xfd_validate_state+0x61/0x180 [ 118.944307][ T7220] __ia32_sys_bpf+0x76/0xe0 [ 118.944318][ T7220] __do_fast_syscall_32+0x7c/0x300 [ 118.944333][ T7220] do_fast_syscall_32+0x32/0x80 [ 118.944345][ T7220] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 118.944359][ T7220] RIP: 0023:0xf7f57579 [ 118.944368][ T7220] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 118.944378][ T7220] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 118.944387][ T7220] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000740 [ 118.944394][ T7220] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 118.944400][ T7220] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 118.944405][ T7220] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 118.944411][ T7220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 118.944424][ T7220] [ 119.026221][ T9] usb 6-1: USB disconnect, device number 12 VM DIAGNOSIS: 07:37:27 Registers: info registers vcpu 0 CPU#0 RAX=00000000001ba8fd RBX=0000000000000000 RCX=ffffffff8b61f2d9 RDX=0000000000000000 RSI=ffffffff8daff4f5 RDI=ffffffff8bf1d540 RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8 R8 =0000000000000001 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff908358d0 R15=0000000000000000 RIP=ffffffff8b61dd8f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977e7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000030a19ff8 CR3=0000000067d3d000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff852ca750 RDI=ffffffff9adebe40 RBP=ffffffff9adebe00 RSP=ffffc90022b07388 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bd81a R15=dffffc0000000000 RIP=ffffffff852ca777 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978e7000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000030afeff8 CR3=0000000077e27000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009800000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080080783 RBX=0000000000000000 RCX=ffff888023221070 RDX=000000000000009d RSI=ffffffff867cbf68 RDI=ffff8880232212d0 RBP=0000000000000001 RSP=ffffc90000538b80 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000005cec R12=0000000000000001 R13=0000000000002328 R14=ffff888023221070 R15=0000000000000001 RIP=ffffffff867cbfaf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880979e7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f71a522f CR3=000000004a883000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73e5ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000012eedf RBX=0000000000000003 RCX=ffffffff8b61f2d9 RDX=0000000000000000 RSI=ffffffff8daff4f5 RDI=ffffffff8bf1d540 RBP=ffffed10037e5000 RSP=ffffc9000048fde8 R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801bf28000 R14=ffffffff908358d0 R15=0000000000000000 RIP=ffffffff8b61dd8f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097ae7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000585134c0 CR3=000000000e182000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000