last executing test programs:

347.736725ms ago: executing program 1 (id=580):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@local, @in6=@private2, 0x4e1f, 0x0, 0x0, 0x1, 0x2, 0x0, 0x80}, {0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd}, {0xd, 0x2, 0x0, 0xb}, 0x0, 0x6e6bc0, 0x1, 0x0, 0x3}, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x6c}, 0xa, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1, 0x5, 0x0, 0xb3}}, 0xe8)

289.663363ms ago: executing program 1 (id=584):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="b702000002000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000006f64ea000000000045040400010000001704000001000a00b7040080ff0100006a0a00fe0000000085000000bd000000b70000000000000095000000000000009e17f1"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r1)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=@newlink={0x50, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300, 0x8042}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x2}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3, 0x34}}]}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x50}}, 0x0)
r5 = gettid()
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00'}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r6, &(0x7f0000001600)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000015c0)={&(0x7f00000003c0)={0x64, r7, 0x4, 0x70bd28, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xa}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x16}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x20}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x44014}, 0x8004)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0900000004000000080000000986000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000001640), 0x400000, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000040), 0x4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, &(0x7f0000000180))
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r2, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
recvmmsg(r0, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}, 0xffffffe1}, {{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/159, 0x9f}, {&(0x7f0000001500)=""/155, 0x9b}], 0x3}, 0x9}, {{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, 0x0}, 0xab}], 0x6, 0x2000, 0x0)

222.070839ms ago: executing program 2 (id=585):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa0000000003"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x0, 0x2, 0x0, @empty=0x300, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x1000000}}}}}, 0x0)

221.179716ms ago: executing program 0 (id=588):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x30, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_CHAIN_COUNTERS={0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

220.903664ms ago: executing program 2 (id=589):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001280)=@mangle={'mangle\x00', 0x8, 0x6, 0x520, 0x120, 0x0, 0x1f0, 0x1f0, 0x120, 0x510, 0x510, 0x510, 0x510, 0x510, 0x6, 0x0, {[{{@ipv6={@local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [0xff000000, 0x0, 0xffffff00, 0xff000000], [0xff, 0xff, 0xff000000, 0xffffffff], 'ipvlan1\x00', 'ipvlan1\x00', {}, {}, 0x0, 0x9, 0x2, 0x2}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x5002}}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@empty, @ipv4=@private=0xa010100, 0x0, 0x32, 0x4}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@dev, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, 0xff}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x0, 0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x580)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
getsockopt$sock_buf(r1, 0x1, 0x1c, 0x0, &(0x7f0000000000)=0x1c)

216.441143ms ago: executing program 1 (id=590):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

151.738703ms ago: executing program 0 (id=591):
r0 = socket$inet(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(r0, 0x1, 0x2, &(0x7f0000000040)=0x7f, 0x4)
bind$inet(r0, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x2, &(0x7f0000000040)=0x7f, 0x4)
bind$inet(r1, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
listen(r1, 0x0)
listen(r0, 0x0)

151.466822ms ago: executing program 1 (id=592):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001000500050007000000000008000900030000001400200000000000000000000000e1ffe000000108000a0000000000060002000100000014001f"], 0x5c}, 0x1, 0x6c}, 0x0)

151.333355ms ago: executing program 2 (id=593):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000540)={&(0x7f00000003c0)="975c49a232", &(0x7f0000001140)=""/4096, &(0x7f0000000300), &(0x7f00000004c0), 0x6b, r0}, 0x38)

91.252136ms ago: executing program 1 (id=594):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000000)={0x2, 0x0, 0x6, 0xffffffff}, 0x10)
sendto$inet6(r1, &(0x7f0000000240)='x', 0xfc1c, 0x4000050, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)

90.934074ms ago: executing program 0 (id=595):
r0 = socket(0x18, 0x0, 0x0)
bind$packet(r0, 0x0, 0x0)

90.823ms ago: executing program 2 (id=596):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000003e000701feffffff00000000017c0000040042800c000180"], 0x44}, 0x1, 0x0, 0x0, 0x200440e5}, 0xc000)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007"], 0x38}}, 0x0)

90.533631ms ago: executing program 2 (id=597):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000080), r0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000fc0), r0)
sendmsg$NL802154_CMD_SET_TX_POWER(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000001c0)={0x14, r1, 0x926fdb2c68a18847, 0x70bd29, 0x2, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x40040)

90.453713ms ago: executing program 0 (id=598):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, 0x0, 0x0)

664.962µs ago: executing program 0 (id=599):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r2, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=@newlink={0x40, 0x10, 0x439, 0x70bd2c, 0xffffffea, {0x0, 0x0, 0xe403, r2, 0x40083, 0x602a}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_6RD_RELAY_PREFIX={0x8, 0xc, 0x8}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)

284.277µs ago: executing program 1 (id=600):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001c80)=[{{&(0x7f0000000240)={0xa, 0x4e21, 0x8000001, @private0, 0x3}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000440)="14", 0x1}], 0x1}}, {{&(0x7f0000000300)={0xa, 0x4e24, 0x1, @dev={0xfe, 0x80, '\x00', 0x28}, 0x8}, 0x1c, &(0x7f0000000780)=[{&(0x7f0000000800)='M', 0x1}], 0x1}}], 0x2, 0x931766f6319eed40)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000280)={0x0, 0x9}, &(0x7f0000000340)=0x8)

243.906µs ago: executing program 2 (id=601):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'dummy0\x00', &(0x7f0000000000)=@ethtool_sset_info={0x37, 0x80000000, 0x9c}})

0s ago: executing program 0 (id=602):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x8}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
unshare(0x2c020400)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000500)={r0, 0x0, 0x0}, 0x20)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:29343' (ED25519) to the list of known hosts.
syzkaller login: [   49.957498][ T5799] cgroup: Unknown subsys name 'net'
[   50.053592][ T5799] cgroup: Unknown subsys name 'cpuset'
[   50.059914][ T5799] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.382058][ T5799] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.442786][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.446755][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.450385][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.454249][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.457787][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.478357][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.482080][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.485362][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.490357][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.493847][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.656347][ T5204] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.662339][ T5204] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.665812][ T5204] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.670181][ T5204] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.674648][ T5204] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.774766][ T5815] chnl_net:caif_netlink_parms(): no params data found
[   55.796397][ T5811] chnl_net:caif_netlink_parms(): no params data found
[   55.965819][ T5815] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.969470][ T5815] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.972817][ T5815] bridge_slave_0: entered allmulticast mode
[   55.976748][ T5815] bridge_slave_0: entered promiscuous mode
[   55.999491][ T5815] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.002670][ T5815] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.005754][ T5815] bridge_slave_1: entered allmulticast mode
[   56.013077][ T5815] bridge_slave_1: entered promiscuous mode
[   56.017198][ T5811] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.020633][ T5811] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.023866][ T5811] bridge_slave_0: entered allmulticast mode
[   56.027796][ T5811] bridge_slave_0: entered promiscuous mode
[   56.050325][ T5811] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.053515][ T5811] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.056644][ T5811] bridge_slave_1: entered allmulticast mode
[   56.060876][ T5811] bridge_slave_1: entered promiscuous mode
[   56.093050][ T5815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.113608][ T5811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.120262][ T5815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.125413][ T5811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.172132][ T5811] team0: Port device team_slave_0 added
[   56.190927][ T5811] team0: Port device team_slave_1 added
[   56.195493][ T5815] team0: Port device team_slave_0 added
[   56.223846][ T5815] team0: Port device team_slave_1 added
[   56.265387][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.268682][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.280332][ T5811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.304123][ T5815] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.307008][ T5815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.319905][ T5815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.325266][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.328222][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.340117][ T5811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.352285][ T5815] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.355282][ T5815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.365913][ T5815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.381111][ T5821] chnl_net:caif_netlink_parms(): no params data found
[   56.441497][ T5815] hsr_slave_0: entered promiscuous mode
[   56.443986][ T5815] hsr_slave_1: entered promiscuous mode
[   56.450267][ T5811] hsr_slave_0: entered promiscuous mode
[   56.452803][ T5811] hsr_slave_1: entered promiscuous mode
[   56.455042][ T5811] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.457689][ T5811] Cannot create hsr debugfs directory
[   56.536753][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.540342][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.542920][ T5821] bridge_slave_0: entered allmulticast mode
[   56.545749][ T5821] bridge_slave_0: entered promiscuous mode
[   56.569302][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.571773][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.574255][ T5821] bridge_slave_1: entered allmulticast mode
[   56.577099][ T5821] bridge_slave_1: entered promiscuous mode
[   56.623188][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.646111][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.687192][ T5821] team0: Port device team_slave_0 added
[   56.696932][ T5821] team0: Port device team_slave_1 added
[   56.745143][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.747516][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.756533][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.761334][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.763518][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.772352][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.798151][ T5815] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.826917][ T5815] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.847733][ T5821] hsr_slave_0: entered promiscuous mode
[   56.851317][ T5821] hsr_slave_1: entered promiscuous mode
[   56.853514][ T5821] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.856017][ T5821] Cannot create hsr debugfs directory
[   56.857978][ T5815] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.865461][ T5815] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.929805][ T5811] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.945395][ T5811] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.954974][ T5811] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.970732][ T5811] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.101751][ T5815] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.136727][ T5821] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.146179][ T5815] 8021q: adding VLAN 0 to HW filter on device team0
[   57.153847][ T5821] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.160302][ T5821] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.166764][ T5821] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.184018][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.187178][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.210214][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.213139][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.244120][ T5811] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.296078][ T5811] 8021q: adding VLAN 0 to HW filter on device team0
[   57.320615][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.323537][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.344307][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.347218][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.405191][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.441514][ T5821] 8021q: adding VLAN 0 to HW filter on device team0
[   57.454861][ T1085] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.457907][ T1085] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.472939][ T1085] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.476040][ T1085] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.524968][ T5815] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.558965][ T5204] Bluetooth: hci1: command tx timeout
[   57.559243][   T54] Bluetooth: hci0: command tx timeout
[   57.629540][ T5815] veth0_vlan: entered promiscuous mode
[   57.641846][ T5811] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.662208][ T5815] veth1_vlan: entered promiscuous mode
[   57.706009][ T5815] veth0_macvtap: entered promiscuous mode
[   57.720464][   T54] Bluetooth: hci2: command tx timeout
[   57.728279][ T5815] veth1_macvtap: entered promiscuous mode
[   57.741021][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.763409][ T5811] veth0_vlan: entered promiscuous mode
[   57.775687][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.793205][ T5811] veth1_vlan: entered promiscuous mode
[   57.802631][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.816149][ T5815] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.820921][ T5815] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.824612][ T5815] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.828297][ T5815] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.857462][ T5821] veth0_vlan: entered promiscuous mode
[   57.876397][ T5821] veth1_vlan: entered promiscuous mode
[   57.897535][ T5811] veth0_macvtap: entered promiscuous mode
[   57.919835][ T5811] veth1_macvtap: entered promiscuous mode
[   57.964076][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.971083][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.980559][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.985247][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.995728][ T5811] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.000947][ T5811] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.004637][ T5811] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.008321][ T5811] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.014856][ T5821] veth0_macvtap: entered promiscuous mode
[   58.026812][ T5821] veth1_macvtap: entered promiscuous mode
[   58.059707][ T5113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.062974][ T5113] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.097709][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.120880][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.153234][ T5815] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.160876][ T5821] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.164038][ T5821] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.167279][ T5821] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.170656][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.172254][ T5821] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.180020][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.242986][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.246301][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.314845][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.330429][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.386408][ T1085] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.391244][ T1085] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.550422][ T5889] IPv6: addrconf: prefix option has invalid lifetime
[   59.545693][ T5902] tipc: Started in network mode
[   59.547364][ T5902] tipc: Node identity ce47ea1daa74, cluster identity 4711
[   59.551804][ T5902] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.555606][ T5902] syzkaller0: MTU too low for tipc bearer
[   59.561791][ T5902] tipc: Disabling bearer <eth:syzkaller0>
[   59.583840][ T5908] netlink: 64 bytes leftover after parsing attributes in process `syz.2.16'.
[   59.628976][   T54] Bluetooth: hci0: command tx timeout
[   59.629050][ T5204] Bluetooth: hci1: command tx timeout
[   59.738878][ T5906] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15'.
[   59.790251][ T5204] Bluetooth: hci2: command tx timeout
[   59.843282][ T5928] netlink: 260 bytes leftover after parsing attributes in process `syz.2.22'.
[   59.997604][ T5932] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   60.161307][ T5938] IPv6: addrconf: prefix option has invalid lifetime
[   60.667163][ T5966] netlink: 'syz.2.40': attribute type 30 has an invalid length.
[   60.733857][ T5972] syz.1.44 uses obsolete (PF_INET,SOCK_PACKET)
[   61.167216][ T6001] netlink: 'syz.0.57': attribute type 2 has an invalid length.
[   61.195219][ T6005] netlink: 1041 bytes leftover after parsing attributes in process `syz.1.59'.
[   61.272833][ T6013] netlink: 'syz.1.62': attribute type 32 has an invalid length.
[   61.291297][ T6015] netlink: 16 bytes leftover after parsing attributes in process `syz.0.64'.
[   61.708688][ T5204] Bluetooth: hci0: command tx timeout
[   61.709001][   T54] Bluetooth: hci1: command tx timeout
[   61.759533][  T971] hid-generic 0005:16BF:5505.0001: unknown main item tag 0x0
[   61.769830][  T971] hid-generic 0005:16BF:5505.0001: unknown main item tag 0x0
[   61.776784][  T971] hid-generic 0005:16BF:5505.0001: hidraw0: BLUETOOTH HID vc3.b8 Device [syz0] on aa:aa:aa:aa:aa:aa
[   61.870167][   T54] Bluetooth: hci2: command tx timeout
[   61.919951][ T6063] netlink: 'syz.0.85': attribute type 2 has an invalid length.
[   62.050272][ T6075] xt_CT: You must specify a L4 protocol and not use inversions on it
[   62.221791][ T6095] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   62.387742][ T6106] sock: sock_set_timeout: `syz.1.106' (pid 6106) tries to set negative timeout
[   62.570198][ T6120] netlink: 40 bytes leftover after parsing attributes in process `syz.2.114'.
[   62.667767][ T6127] Cannot find add_set index 0 as target
[   63.531853][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.140'.
[   63.548259][ T6176] netlink: 20 bytes leftover after parsing attributes in process `syz.2.140'.
[   63.617323][ T6182] bridge_slave_0: left allmulticast mode
[   63.620999][ T6182] bridge_slave_0: left promiscuous mode
[   63.623602][ T6182] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.646189][ T6182] bridge_slave_1: left allmulticast mode
[   63.656439][ T6182] bridge_slave_1: left promiscuous mode
[   63.665443][ T6182] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.686976][ T6182] bond0: (slave bond_slave_0): Releasing backup interface
[   63.698660][ T6182] bond0: (slave bond_slave_1): Releasing backup interface
[   63.717914][ T6182] team0: Port device team_slave_0 removed
[   63.738331][ T6182] team0: Port device team_slave_1 removed
[   63.752349][ T6182] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.754791][ T6182] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.761257][ T6182] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.763672][ T6182] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.788906][   T54] Bluetooth: hci1: command tx timeout
[   63.801424][   T54] Bluetooth: hci0: command tx timeout
[   63.835014][ T6191] netlink: 128 bytes leftover after parsing attributes in process `syz.0.147'.
[   63.948858][   T54] Bluetooth: hci2: command tx timeout
[   64.470834][ T6233] xt_SECMARK: invalid mode: 0
[   64.760078][ T6259] netlink: 24 bytes leftover after parsing attributes in process `syz.2.180'.
[   64.762998][ T6259] netlink: 'syz.2.180': attribute type 1 has an invalid length.
[   64.801331][ T6263] xt_TPROXY: Can be used only with -p tcp or -p udp
[   64.950079][ T6280] netlink: 'syz.0.190': attribute type 1 has an invalid length.
[   64.952665][ T6280] netlink: 'syz.0.190': attribute type 1 has an invalid length.
[   64.958073][ T6281] netlink: 24 bytes leftover after parsing attributes in process `syz.2.191'.
[   65.034220][ T6287] netlink: 24 bytes leftover after parsing attributes in process `syz.2.194'.
[   65.162401][ T6297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.199'.
[   65.165704][ T6297] netlink: 32 bytes leftover after parsing attributes in process `syz.2.199'.
[   65.357535][ T6313] syzkaller0: entered promiscuous mode
[   65.362159][ T6313] syzkaller0: entered allmulticast mode
[   65.373841][ T6313] tipc: Started in network mode
[   65.375885][ T6313] tipc: Node identity f6b6feb967a1, cluster identity 4711
[   65.382033][ T6313] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   65.407217][ T6313] tipc: Resetting bearer <eth:syzkaller0>
[   65.417255][ T6317] netlink: 4 bytes leftover after parsing attributes in process `syz.2.209'.
[   65.421171][ T6312] tipc: Resetting bearer <eth:syzkaller0>
[   65.432059][ T6312] tipc: Disabling bearer <eth:syzkaller0>
[   65.442556][ T6317] netlink: 12 bytes leftover after parsing attributes in process `syz.2.209'.
[   66.077638][ T6370] netlink: 8 bytes leftover after parsing attributes in process `syz.0.234'.
[   66.081942][ T6370] netlink: 20 bytes leftover after parsing attributes in process `syz.0.234'.
[   67.006254][ T6397] netlink: 27 bytes leftover after parsing attributes in process `syz.1.243'.
[   67.760311][ T6429] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[   67.769347][ T6429] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[   67.773267][ T6429] bond0: (slave ipvlan2): Error -95 calling set_mac_address
[   67.920957][ T6437] netlink: 'syz.1.263': attribute type 2 has an invalid length.
[   67.923682][ T6437] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   68.108059][ T6451] netlink: 'syz.0.270': attribute type 1 has an invalid length.
[   68.111140][ T6451] netlink: 'syz.0.270': attribute type 4 has an invalid length.
[   68.189964][ T6457] Bluetooth: MGMT ver 1.23
[   68.238180][ T6358] Set syz1 is full, maxelem 65536 reached
[   68.557027][ T6489] netlink: 'syz.1.289': attribute type 1 has an invalid length.
[   68.751483][ T6500] block nbd0: server does not support multiple connections per device.
[   68.755889][ T6500] block nbd0: shutting down sockets
[   68.875283][ T6518] netlink: 'syz.1.303': attribute type 2 has an invalid length.
[   68.880014][ T6518] netlink: 'syz.1.303': attribute type 1 has an invalid length.
[   68.884359][ T6516] netlink: 'syz.2.300': attribute type 2 has an invalid length.
[   68.887443][ T6516] netlink: 'syz.2.300': attribute type 1 has an invalid length.
[   69.069183][ T6518] Zero length message leads to an empty skb
[   69.125676][ T6533] netlink: 'syz.2.308': attribute type 39 has an invalid length.
[   69.131233][ T6533] veth0_macvtap: left promiscuous mode
[   69.211890][ T6538] netlink: 'syz.0.310': attribute type 1 has an invalid length.
[   69.442207][ T6561] Cannot find del_set index 2 as target
[   69.617865][ T6581] TCP: tcp_parse_options: Illegal window scaling value 236 > 14 received
[   70.454224][ T6639] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073709551614)
[   70.680403][ T6654] __nla_validate_parse: 8 callbacks suppressed
[   70.680418][ T6654] netlink: 4 bytes leftover after parsing attributes in process `syz.2.362'.
[   70.835695][ T6665] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   70.841839][ T5841] IPVS: starting estimator thread 0...
[   70.916873][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   70.929429][ T6669] IPVS: using max 80 ests per chain, 192000 per kthread
[   72.200249][ T6733] warning: `syz.1.396' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   72.212121][ T6731] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   72.231880][ T6735] netlink: 240 bytes leftover after parsing attributes in process `syz.0.397'.
[   72.691525][ T6773] erspan0: entered promiscuous mode
[   72.694877][ T6773] batman_adv: batadv0: Adding interface: macvlan2
[   72.697003][ T6773] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.705927][ T6773] batman_adv: batadv0: Interface activated: macvlan2
[   72.721411][ T6773] netlink: 12 bytes leftover after parsing attributes in process `syz.0.416'.
[   72.777066][ T6779] macsec1: entered promiscuous mode
[   72.780484][ T6779] macsec1: entered allmulticast mode
[   72.864551][ T6785] netlink: 8 bytes leftover after parsing attributes in process `syz.0.422'.
[   72.880239][ T6785] netlink: 16 bytes leftover after parsing attributes in process `syz.0.422'.
[   73.050639][ T6799] validate_nla: 3 callbacks suppressed
[   73.050650][ T6799] netlink: 'syz.2.429': attribute type 1 has an invalid length.
[   73.055635][ T6799] netlink: 236 bytes leftover after parsing attributes in process `syz.2.429'.
[   73.230932][ T1268] cfg80211: failed to load regulatory.db
[   73.298859][ T6816] netlink: 'syz.0.437': attribute type 10 has an invalid length.
[   73.380592][ T6823] pim6reg: entered allmulticast mode
[   73.383935][ T6823] macvlan0: entered allmulticast mode
[   73.386347][ T6823] veth1_vlan: entered allmulticast mode
[   73.397005][ T6823] veth1_vlan: left allmulticast mode
[   73.422334][ T6823] macvlan0 (unregistering): left allmulticast mode
[   73.499245][ T6833] netlink: 12 bytes leftover after parsing attributes in process `syz.0.444'.
[   73.540611][ T6833] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.591008][ T6833] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.594109][ T6833] bond1: (slave vti0): The slave device specified does not support setting the MAC address
[   73.598485][ T6833] bond1: (slave vti0): Error -95 calling set_mac_address
[   73.705197][ T6843] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[   73.714340][ T6843] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[   73.917672][ T6859] netlink: 'syz.0.456': attribute type 3 has an invalid length.
[   73.924045][ T6859] netlink: 24 bytes leftover after parsing attributes in process `syz.0.456'.
[   74.081588][ T6872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.462'.
[   74.243414][ T6883] netlink: 268 bytes leftover after parsing attributes in process `syz.2.467'.
[   74.248357][ T6883] unsupported nla_type 65024
[   74.353461][ T6891] netlink: 'syz.0.471': attribute type 4 has an invalid length.
[   74.435701][ T6901] netlink: 'syz.1.476': attribute type 3 has an invalid length.
[   74.442104][ T6901] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   74.495986][ T6907] batadv1: entered allmulticast mode
[   74.506846][ T6907] 8021q: adding VLAN 0 to HW filter on device batadv1
[   74.671079][ T6925] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   74.963406][ T6948] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   74.968297][ T6948] gretap1: entered promiscuous mode
[   74.971509][ T6948] gretap1: entered allmulticast mode
[   75.435057][ T6984] netlink: 'syz.0.515': attribute type 1 has an invalid length.
[   75.792596][ T7014] Bluetooth: hci1: Opcode 0x080f failed: -4
[   76.305944][ T7043] __nla_validate_parse: 11 callbacks suppressed
[   76.305960][ T7043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.543'.
[   76.634148][ T7057] netlink: 4 bytes leftover after parsing attributes in process `syz.1.550'.
[   76.705221][ T7064] TCP: tcp_parse_options: Illegal window scaling value 236 > 14 received
[   76.765109][ T7069] netlink: 'syz.2.553': attribute type 9 has an invalid length.
[   76.774641][ T7069] netlink: 8 bytes leftover after parsing attributes in process `syz.2.553'.
[   76.791334][ T7069] hsr0: entered promiscuous mode
[   76.795667][ T7069] macvlan2: entered promiscuous mode
[   76.802588][ T7069] macvlan2: entered allmulticast mode
[   76.807924][ T7069] hsr0: entered allmulticast mode
[   76.812217][ T7069] hsr_slave_0: entered allmulticast mode
[   76.818720][ T7069] hsr_slave_1: entered allmulticast mode
[   77.120846][ T7095] dvmrp1: tun_chr_ioctl cmd 1074025677
[   77.122692][ T7095] dvmrp1: linktype set to 805
[   77.181069][ T7104] netlink: 8 bytes leftover after parsing attributes in process `syz.2.568'.
[   77.208634][ T7104] netlink: 16 bytes leftover after parsing attributes in process `syz.2.568'.
[   77.319860][ T7118] netlink: 4 bytes leftover after parsing attributes in process `syz.1.574'.
[   77.323828][ T7120] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   77.868603][   T54] Bluetooth: hci1: command 0x080f tx timeout
[   77.998526][ T6051] ==================================================================
[   78.001895][ T6051] BUG: KASAN: slab-use-after-free in __mutex_lock+0x738/0xe80
[   78.004875][ T6051] Read of size 8 at addr ffff88810b8c80a0 by task khidpd_16bf5505/6051
[   78.009030][ T6051] 
[   78.010067][ T6051] CPU: 0 UID: 0 PID: 6051 Comm: khidpd_16bf5505 Not tainted 6.16.0-rc3-syzkaller-00159-g223e2288f4b8-dirty #0 PREEMPT(full) 
[   78.010083][ T6051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   78.010090][ T6051] Call Trace:
[   78.010098][ T6051]  <TASK>
[   78.010104][ T6051]  dump_stack_lvl+0x189/0x250
[   78.010127][ T6051]  ? __virt_addr_valid+0x1c8/0x5c0
[   78.010139][ T6051]  ? rcu_is_watching+0x15/0xb0
[   78.010156][ T6051]  ? __kasan_check_byte+0x12/0x40
[   78.010169][ T6051]  ? __pfx_dump_stack_lvl+0x10/0x10
[   78.010185][ T6051]  ? rcu_is_watching+0x15/0xb0
[   78.010201][ T6051]  ? lock_release+0x4b/0x3e0
[   78.010218][ T6051]  ? __virt_addr_valid+0x1c8/0x5c0
[   78.010229][ T6051]  ? __virt_addr_valid+0x4a5/0x5c0
[   78.010241][ T6051]  print_report+0xd2/0x2b0
[   78.010258][ T6051]  ? __mutex_lock+0x738/0xe80
[   78.010275][ T6051]  kasan_report+0x118/0x150
[   78.010288][ T6051]  ? __mutex_lock+0x738/0xe80
[   78.010305][ T6051]  __mutex_lock+0x738/0xe80
[   78.010322][ T6051]  ? __mutex_lock+0x51b/0xe80
[   78.010339][ T6051]  ? l2cap_unregister_user+0x6a/0x1b0
[   78.010357][ T6051]  ? __pfx___mutex_lock+0x10/0x10
[   78.010374][ T6051]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.010393][ T6051]  l2cap_unregister_user+0x6a/0x1b0
[   78.010422][ T6051]  hidp_session_thread+0x3c9/0x410
[   78.010441][ T6051]  ? __pfx_hidp_session_thread+0x10/0x10
[   78.010457][ T6051]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.010472][ T6051]  ? __pfx_hidp_session_wake_function+0x10/0x10
[   78.010490][ T6051]  ? __pfx_hidp_session_wake_function+0x10/0x10
[   78.010506][ T6051]  ? __kthread_parkme+0x7b/0x200
[   78.010518][ T6051]  ? __kthread_parkme+0x1a1/0x200
[   78.010530][ T6051]  kthread+0x711/0x8a0
[   78.010543][ T6051]  ? __pfx_hidp_session_thread+0x10/0x10
[   78.010584][ T6051]  ? __pfx_kthread+0x10/0x10
[   78.010599][ T6051]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.010618][ T6051]  ? lockdep_hardirqs_on+0x9c/0x150
[   78.010634][ T6051]  ? __pfx_kthread+0x10/0x10
[   78.010647][ T6051]  ret_from_fork+0x3fc/0x770
[   78.010665][ T6051]  ? __pfx_ret_from_fork+0x10/0x10
[   78.010681][ T6051]  ? __switch_to_asm+0x39/0x70
[   78.010692][ T6051]  ? __switch_to_asm+0x33/0x70
[   78.010703][ T6051]  ? __pfx_kthread+0x10/0x10
[   78.010715][ T6051]  ret_from_fork_asm+0x1a/0x30
[   78.010731][ T6051]  </TASK>
[   78.010735][ T6051] 
[   78.101333][ T6051] Allocated by task 5821:
[   78.103069][ T6051]  kasan_save_track+0x3e/0x80
[   78.104991][ T6051]  __kasan_kmalloc+0x93/0xb0
[   78.106860][ T6051]  __kmalloc_noprof+0x27a/0x4f0
[   78.108849][ T6051]  hci_alloc_dev_priv+0x28/0x2040
[   78.110926][ T6051]  vhci_create_device+0x120/0x6e0
[   78.112543][ T6051]  vhci_write+0x3ce/0x4a0
[   78.113914][ T6051]  vfs_write+0x54b/0xa90
[   78.115255][ T6051]  ksys_write+0x145/0x250
[   78.116625][ T6051]  do_syscall_64+0xfa/0x3b0
[   78.118042][ T6051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.120256][ T6051] 
[   78.121233][ T6051] Freed by task 5821:
[   78.122857][ T6051]  kasan_save_track+0x3e/0x80
[   78.124807][ T6051]  kasan_save_free_info+0x46/0x50
[   78.126409][ T6051]  __kasan_slab_free+0x62/0x70
[   78.127933][ T6051]  kfree+0x18e/0x440
[   78.129319][ T6051]  bt_host_release+0x82/0x90
[   78.131235][ T6051]  device_release+0x9c/0x1c0
[   78.132768][ T6051]  kobject_put+0x22b/0x480
[   78.134224][ T6051]  vhci_release+0x88/0xd0
[   78.135611][ T6051]  __fput+0x44c/0xa70
[   78.136864][ T6051]  task_work_run+0x1d4/0x260
[   78.138317][ T6051]  do_exit+0x6b5/0x22e0
[   78.139655][ T6051]  do_group_exit+0x21c/0x2d0
[   78.141108][ T6051]  __x64_sys_exit_group+0x3f/0x40
[   78.142701][ T6051]  x64_sys_call+0x21ba/0x21c0
[   78.144195][ T6051]  do_syscall_64+0xfa/0x3b0
[   78.145688][ T6051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.147557][ T6051] 
[   78.148338][ T6051] Last potentially related work creation:
[   78.150638][ T6051]  kasan_save_stack+0x3e/0x60
[   78.152523][ T6051]  kasan_record_aux_stack+0xbd/0xd0
[   78.154584][ T6051]  insert_work+0x3d/0x330
[   78.156326][ T6051]  __queue_work+0xbd9/0xfe0
[   78.158152][ T6051]  queue_work_on+0x181/0x270
[   78.160001][ T6051]  process_scheduled_works+0xae1/0x17b0
[   78.162207][ T6051]  worker_thread+0x8a0/0xda0
[   78.164073][ T6051]  kthread+0x711/0x8a0
[   78.165741][ T6051]  ret_from_fork+0x3fc/0x770
[   78.167633][ T6051]  ret_from_fork_asm+0x1a/0x30
[   78.169524][ T6051] 
[   78.170539][ T6051] Second to last potentially related work creation:
[   78.173189][ T6051]  kasan_save_stack+0x3e/0x60
[   78.175144][ T6051]  kasan_record_aux_stack+0xbd/0xd0
[   78.177269][ T6051]  insert_work+0x3d/0x330
[   78.179058][ T6051]  __queue_work+0xcfc/0xfe0
[   78.180903][ T6051]  call_timer_fn+0x17e/0x5f0
[   78.182798][ T6051]  __run_timer_base+0x646/0x860
[   78.184839][ T6051]  run_timer_softirq+0xb7/0x180
[   78.186875][ T6051]  handle_softirqs+0x286/0x870
[   78.188849][ T6051]  __irq_exit_rcu+0xca/0x1f0
[   78.190742][ T6051]  irq_exit_rcu+0x9/0x30
[   78.192459][ T6051]  sysvec_apic_timer_interrupt+0xa6/0xc0
[   78.194731][ T6051]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   78.197234][ T6051] 
[   78.198249][ T6051] The buggy address belongs to the object at ffff88810b8c8000
[   78.198249][ T6051]  which belongs to the cache kmalloc-8k of size 8192
[   78.203840][ T6051] The buggy address is located 160 bytes inside of
[   78.203840][ T6051]  freed 8192-byte region [ffff88810b8c8000, ffff88810b8ca000)
[   78.209386][ T6051] 
[   78.210414][ T6051] The buggy address belongs to the physical page:
[   78.212960][ T6051] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10b8c8
[   78.215821][ T6051] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   78.219096][ T6051] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[   78.222172][ T6051] page_type: f5(slab)
[   78.223837][ T6051] raw: 057ff00000000040 ffff88801a442280 dead000000000122 0000000000000000
[   78.226891][ T6051] raw: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[   78.230074][ T6051] head: 057ff00000000040 ffff88801a442280 dead000000000122 0000000000000000
[   78.233282][ T6051] head: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[   78.236070][ T6051] head: 057ff00000000003 ffffea00042e3201 00000000ffffffff 00000000ffffffff
[   78.238845][ T6051] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[   78.241815][ T6051] page dumped because: kasan: bad access detected
[   78.243783][ T6051] page_owner tracks the page as allocated
[   78.245697][ T6051] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5821, tgid 5821 (syz-executor), ts 55648834091, free_ts 55647480765
[   78.252989][ T6051]  post_alloc_hook+0x240/0x2a0
[   78.254698][ T6051]  get_page_from_freelist+0x21e4/0x22c0
[   78.256650][ T6051]  __alloc_frozen_pages_noprof+0x181/0x370
[   78.258434][ T6051]  alloc_pages_mpol+0x232/0x4a0
[   78.260147][ T6051]  allocate_slab+0x8a/0x3b0
[   78.261588][ T6051]  ___slab_alloc+0xbfc/0x1480
[   78.263057][ T6051]  __kmalloc_noprof+0x305/0x4f0
[   78.264608][ T6051]  hci_alloc_dev_priv+0x28/0x2040
[   78.266219][ T6051]  vhci_create_device+0x120/0x6e0
[   78.267866][ T6051]  vhci_write+0x3ce/0x4a0
[   78.269422][ T6051]  vfs_write+0x54b/0xa90
[   78.271081][ T6051]  ksys_write+0x145/0x250
[   78.272492][ T6051]  do_syscall_64+0xfa/0x3b0
[   78.273989][ T6051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.275935][ T6051] page last free pid 5821 tgid 5821 stack trace:
[   78.278300][ T6051]  __free_frozen_pages+0xc71/0xe70
[   78.280381][ T6051]  __put_partials+0x161/0x1c0
[   78.281998][ T6051]  put_cpu_partial+0x17c/0x250
[   78.283555][ T6051]  __slab_free+0x2f7/0x400
[   78.285227][ T6051]  qlist_free_all+0x97/0x140
[   78.287248][ T6051]  kasan_quarantine_reduce+0x148/0x160
[   78.289439][ T6051]  __kasan_slab_alloc+0x22/0x80
[   78.291289][ T6051]  __kmalloc_cache_noprof+0x1be/0x3d0
[   78.293015][ T6051]  vhci_open+0x57/0x360
[   78.294334][ T6051]  misc_open+0x2bc/0x330
[   78.295769][ T6051]  chrdev_open+0x4cc/0x5e0
[   78.297167][ T6051]  do_dentry_open+0xdf3/0x1970
[   78.298800][ T6051]  vfs_open+0x3b/0x340
[   78.300206][ T6051]  path_openat+0x2ee5/0x3830
[   78.301903][ T6051]  do_filp_open+0x1fa/0x410
[   78.303654][ T6051]  do_sys_openat2+0x121/0x1c0
[   78.305159][ T6051] 
[   78.306056][ T6051] Memory state around the buggy address:
[   78.307989][ T6051]  ffff88810b8c7f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   78.310768][ T6051]  ffff88810b8c8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   78.313683][ T6051] >ffff88810b8c8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   78.316251][ T6051]                                ^
[   78.318062][ T6051]  ffff88810b8c8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   78.320730][ T6051]  ffff88810b8c8180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   78.323198][ T6051] ==================================================================
[   78.326418][ T6051] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   78.329043][ T6051] CPU: 0 UID: 0 PID: 6051 Comm: khidpd_16bf5505 Not tainted 6.16.0-rc3-syzkaller-00159-g223e2288f4b8-dirty #0 PREEMPT(full) 
[   78.334005][ T6051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   78.337405][ T6051] Call Trace:
[   78.338485][ T6051]  <TASK>
[   78.339433][ T6051]  dump_stack_lvl+0x99/0x250
[   78.340941][ T6051]  ? __asan_memcpy+0x40/0x70
[   78.342580][ T6051]  ? __pfx_dump_stack_lvl+0x10/0x10
[   78.344348][ T6051]  ? __pfx__printk+0x10/0x10
[   78.345818][ T6051]  panic+0x2db/0x790
[   78.347067][ T6051]  ? __pfx_panic+0x10/0x10
[   78.348790][ T6051]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[   78.351168][ T6051]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.353506][ T6051]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   78.355953][ T6051]  ? print_memory_metadata+0x314/0x400
[   78.357698][ T6051]  ? __mutex_lock+0x738/0xe80
[   78.359238][ T6051]  check_panic_on_warn+0x89/0xb0
[   78.360953][ T6051]  ? __mutex_lock+0x738/0xe80
[   78.362532][ T6051]  end_report+0x78/0x160
[   78.363885][ T6051]  kasan_report+0x129/0x150
[   78.365302][ T6051]  ? __mutex_lock+0x738/0xe80
[   78.366818][ T6051]  __mutex_lock+0x738/0xe80
[   78.368269][ T6051]  ? __mutex_lock+0x51b/0xe80
[   78.369923][ T6051]  ? l2cap_unregister_user+0x6a/0x1b0
[   78.371709][ T6051]  ? __pfx___mutex_lock+0x10/0x10
[   78.373386][ T6051]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.375449][ T6051]  l2cap_unregister_user+0x6a/0x1b0
[   78.377088][ T6051]  hidp_session_thread+0x3c9/0x410
[   78.378741][ T6051]  ? __pfx_hidp_session_thread+0x10/0x10
[   78.380588][ T6051]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.382457][ T6051]  ? __pfx_hidp_session_wake_function+0x10/0x10
[   78.384493][ T6051]  ? __pfx_hidp_session_wake_function+0x10/0x10
[   78.386835][ T6051]  ? __kthread_parkme+0x7b/0x200
[   78.388764][ T6051]  ? __kthread_parkme+0x1a1/0x200
[   78.390526][ T6051]  kthread+0x711/0x8a0
[   78.391858][ T6051]  ? __pfx_hidp_session_thread+0x10/0x10
[   78.393879][ T6051]  ? __pfx_kthread+0x10/0x10
[   78.395445][ T6051]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.397235][ T6051]  ? lockdep_hardirqs_on+0x9c/0x150
[   78.399042][ T6051]  ? __pfx_kthread+0x10/0x10
[   78.400538][ T6051]  ret_from_fork+0x3fc/0x770
[   78.402087][ T6051]  ? __pfx_ret_from_fork+0x10/0x10
[   78.403874][ T6051]  ? __switch_to_asm+0x39/0x70
[   78.405544][ T6051]  ? __switch_to_asm+0x33/0x70
[   78.407598][ T6051]  ? __pfx_kthread+0x10/0x10
[   78.409334][ T6051]  ret_from_fork_asm+0x1a/0x30
[   78.411072][ T6051]  </TASK>
[   78.412936][ T6051] Kernel Offset: disabled
[   78.414343][ T6051] Rebooting in 86400 seconds..

VM DIAGNOSIS:
01:00:08  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000638f370
R8 =ffff888108a58237 R9 =1ffff1102114b046 R10=dffffc0000000000 R11=ffffffff85474610
R12=dffffc0000000000 R13=ffffffff99ac48df R14=ffffffff99dc9760 R15=0000000000000000
RIP=ffffffff8547468c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8650000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb5646e7d60 CR3=0000000028926000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000ff 0000000000000000 XMM01=6f6c2f7261762f00 6469756e69676f6c
XMM02=0000ffffffffff00 0000000000000000 XMM03=0000000000000000 000000000000002f
XMM04=74772f676f6c2f72 61762f00706d7475 XMM05=3f3f3f3f3f3f3f3f 3f3f3f3f3f3f3f3f
XMM06=9999999999999999 9999999999999999 XMM07=2020202020202020 2020202020202020
XMM08=0020202000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=0000000000000000 RCX=ad219e9aa21a0000 RDX=0000000000000000
RSI=ffffffff8d995ac4 RDI=ffffffff8be28d40 RBP=ffffffff822ee0e2 RSP=ffffc900030bf7b0
R8 =0000000000000000 R9 =0000000000000000 R10=dffffc0000000000 R11=fffff9400086f1a7
R12=0000000000000002 R13=ffffffff8e13ee60 R14=0000000000000000 R15=0000000000000246
RIP=ffffffff819e2271 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555579cb3500 ffffffff 00c00000
GS =0000 ffff8881a3c50000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f0e20487e20 CR3=000000000df38000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000000ff XMM01=0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
XMM02=0000000000000000 0000ffff00000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
