Warning: Permanently added '[localhost]:65039' (ED25519) to the list of known hosts.
2026/02/15 07:07:58 parsed 1 programs
syzkaller login: [   87.660227][ T5304] cgroup: Unknown subsys name 'net'
[   87.722911][ T5304] cgroup: Unknown subsys name 'cpuset'
[   87.730509][ T5304] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   89.639927][ T5304] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   90.431049][   T79] ODEBUG: Out of memory. ODEBUG disabled
[   91.862814][    T9] cfg80211: failed to load regulatory.db
[   94.758468][ T1153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.762771][ T1153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.818386][   T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.828243][   T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.946109][ T5320] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   97.573183][ T5352] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   97.577536][ T5352] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   97.580959][ T5352] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   97.584728][ T5352] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   97.588802][ T5352] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  100.891175][ T5387] chnl_net:caif_netlink_parms(): no params data found
[  101.035580][ T5387] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.047431][ T5387] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.050472][ T5387] bridge_slave_0: entered allmulticast mode
[  101.058092][ T5387] bridge_slave_0: entered promiscuous mode
[  101.069253][ T5387] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.072450][ T5387] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.075609][ T5387] bridge_slave_1: entered allmulticast mode
[  101.088283][ T5387] bridge_slave_1: entered promiscuous mode
[  101.135750][ T5387] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.150675][ T5387] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.181302][ T5387] team0: Port device team_slave_0 added
[  101.185969][ T5387] team0: Port device team_slave_1 added
[  101.205475][ T5387] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.208511][ T5387] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  101.219693][ T5387] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.225332][ T5387] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.228325][ T5387] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  101.238899][ T5387] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  101.276287][ T5387] hsr_slave_0: entered promiscuous mode
[  101.279878][ T5387] hsr_slave_1: entered promiscuous mode
[  101.440606][ T5387] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  101.449791][ T5387] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  101.456009][ T5387] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  101.462658][ T5387] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  101.489269][ T5387] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.492702][ T5387] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.496189][ T5387] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.499276][ T5387] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.579277][ T5387] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.591877][ T1153] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.595371][ T1153] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.605969][ T5387] 8021q: adding VLAN 0 to HW filter on device team0
[  101.615608][   T71] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.618787][   T71] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.632489][   T71] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.635825][   T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.790535][ T5387] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.823321][ T5387] veth0_vlan: entered promiscuous mode
[  101.833658][ T5387] veth1_vlan: entered promiscuous mode
[  101.856069][ T5387] veth0_macvtap: entered promiscuous mode
[  101.868148][ T5387] veth1_macvtap: entered promiscuous mode
[  101.882538][ T5387] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.892547][ T5387] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.903178][  T156] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.906515][  T156] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.924316][  T156] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.931532][  T156] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.159691][ T3010] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.189608][ T3010] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.228632][ T3010] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.273166][ T3010] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/02/15 07:08:16 executed programs: 0
[  102.763807][ T4663] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.768495][ T4663] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.772036][ T4663] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.775769][ T4663] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.779609][ T4663] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  102.958869][ T5413] chnl_net:caif_netlink_parms(): no params data found
[  103.062296][ T5413] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.065661][ T5413] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.069201][ T5413] bridge_slave_0: entered allmulticast mode
[  103.077977][ T5413] bridge_slave_0: entered promiscuous mode
[  103.085856][ T5413] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.091401][ T5413] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.094143][ T5413] bridge_slave_1: entered allmulticast mode
[  103.101552][ T5413] bridge_slave_1: entered promiscuous mode
[  103.120729][ T5413] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.126668][ T5413] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.149895][ T5413] team0: Port device team_slave_0 added
[  103.155035][ T5413] team0: Port device team_slave_1 added
[  103.181569][ T5413] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.184666][ T5413] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  103.197509][ T5413] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.203466][ T5413] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.206467][ T5413] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  103.219017][ T5413] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.260402][ T5413] hsr_slave_0: entered promiscuous mode
[  103.263997][ T5413] hsr_slave_1: entered promiscuous mode
[  103.267662][ T5413] debugfs: 'hsr0' already exists in 'hsr'
[  103.270287][ T5413] Cannot create hsr debugfs directory
[  104.750002][ T3010] bridge_slave_1: left allmulticast mode
[  104.752866][ T3010] bridge_slave_1: left promiscuous mode
[  104.756002][ T3010] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.763231][ T3010] bridge_slave_0: left allmulticast mode
[  104.765371][ T3010] bridge_slave_0: left promiscuous mode
[  104.768429][ T3010] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.818405][ T5352] Bluetooth: hci0: command tx timeout
[  104.872288][ T3010] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  104.879261][ T3010] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  104.884143][ T3010] bond0 (unregistering): Released all slaves
[  104.974932][ T3010] hsr_slave_0: left promiscuous mode
[  104.990077][ T3010] hsr_slave_1: left promiscuous mode
[  104.993591][ T3010] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.007464][ T3010] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.010557][ T3010] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.013007][ T3010] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.040073][ T3010] veth1_macvtap: left promiscuous mode
[  105.043297][ T3010] veth0_macvtap: left promiscuous mode
[  105.048507][ T3010] veth1_vlan: left promiscuous mode
[  105.050629][ T3010] veth0_vlan: left promiscuous mode
[  105.344041][ T3010] team0 (unregistering): Port device team_slave_1 removed
[  105.357826][ T3010] team0 (unregistering): Port device team_slave_0 removed
[  105.722658][ T5413] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.772929][ T5413] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.788529][ T5413] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.806030][ T5413] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  105.962580][ T5413] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.998497][ T5413] 8021q: adding VLAN 0 to HW filter on device team0
[  106.006419][ T1153] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.009414][ T1153] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.027824][ T1153] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.030831][ T1153] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.311014][ T5413] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.379224][ T5413] veth0_vlan: entered promiscuous mode
[  106.385872][ T5413] veth1_vlan: entered promiscuous mode
[  106.462744][ T5413] veth0_macvtap: entered promiscuous mode
[  106.469687][ T5413] veth1_macvtap: entered promiscuous mode
[  106.500094][ T5413] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.514325][ T5413] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.537110][ T1153] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.540923][ T1153] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.544565][ T1153] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.576711][ T1153] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.679084][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.682579][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.716495][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.720330][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.799511][ T5454] ------------[ cut here ]------------
[  106.801977][ T5454] UBSAN: shift-out-of-bounds in net/mac80211/tx.c:2174:30
[  106.804767][ T5454] shift exponent 235 is too large for 64-bit type 'unsigned long'
[  106.808068][ T5454] CPU: 0 UID: 0 PID: 5454 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  106.808078][ T5454] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  106.808082][ T5454] Call Trace:
[  106.808087][ T5454]  <TASK>
[  106.808091][ T5454]  dump_stack_lvl+0xe8/0x150
[  106.808188][ T5454]  ubsan_epilogue+0xa/0x30
[  106.808198][ T5454]  __ubsan_handle_shift_out_of_bounds+0x385/0x410
[  106.808257][ T5454]  ieee80211_parse_tx_radiotap+0xadb/0x1950
[  106.808311][ T5454]  ? __pfx_ieee80211_parse_tx_radiotap+0x10/0x10
[  106.808334][ T5454]  ? ieee80211_select_queue_80211+0x241/0x380
[  106.808351][ T5454]  ieee80211_monitor_start_xmit+0xb1f/0x1250
[  106.808368][ T5454]  ? ieee80211_monitor_start_xmit+0x60d/0x1250
[  106.808385][ T5454]  ? __pfx_ieee80211_monitor_start_xmit+0x10/0x10
[  106.808406][ T5454]  dev_hard_start_xmit+0x2d8/0x870
[  106.808430][ T5454]  __dev_queue_xmit+0x168f/0x38a0
[  106.808450][ T5454]  ? __dev_queue_xmit+0x274/0x38a0
[  106.808467][ T5454]  ? _copy_from_iter+0x21b/0x1670
[  106.808482][ T5454]  ? __pfx___dev_queue_xmit+0x10/0x10
[  106.808495][ T5454]  ? sock_alloc_send_pskb+0x896/0x990
[  106.808514][ T5454]  ? __pfx__copy_from_iter+0x10/0x10
[  106.808532][ T5454]  ? packet_parse_headers+0x4c9/0x790
[  106.808543][ T5454]  ? packet_parse_headers+0x575/0x790
[  106.808555][ T5454]  ? __pfx_packet_parse_headers+0x10/0x10
[  106.808568][ T5454]  ? packet_xmit+0x68/0x320
[  106.808580][ T5454]  packet_sendmsg+0x3eb6/0x50f0
[  106.808595][ T5454]  ? security_file_alloc+0x34/0x310
[  106.808614][ T5454]  ? kmem_cache_alloc_noprof+0x2bc/0x650
[  106.808626][ T5454]  ? init_file+0x90/0x2b0
[  106.808636][ T5454]  ? alloc_empty_file+0x6e/0x1d0
[  106.808647][ T5454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.808660][ T5454]  ? __lock_acquire+0x6b5/0x2cf0
[  106.808679][ T5454]  ? aa_sk_perm+0x15a/0x960
[  106.808693][ T5454]  ? aa_sk_perm+0x82d/0x960
[  106.808704][ T5454]  ? __pfx_packet_sendmsg+0x10/0x10
[  106.808722][ T5454]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  106.808739][ T5454]  ? aa_sock_msg_perm+0xf1/0x1b0
[  106.808753][ T5454]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  106.808768][ T5454]  __sys_sendto+0x709/0x7a0
[  106.808783][ T5454]  ? __pfx___sys_sendto+0x10/0x10
[  106.808802][ T5454]  ? do_futex+0x395/0x420
[  106.808827][ T5454]  ? __pfx___se_sys_futex+0x10/0x10
[  106.808838][ T5454]  ? fd_install+0x306/0x3d0
[  106.808854][ T5454]  __x64_sys_sendto+0xde/0x100
[  106.808868][ T5454]  do_syscall_64+0x14d/0xf80
[  106.808878][ T5454]  ? trace_irq_disable+0x3b/0x150
[  106.808891][ T5454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.808901][ T5454]  ? clear_bhb_loop+0x40/0x90
[  106.808913][ T5454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.808923][ T5454] RIP: 0033:0x7f251db9bf79
[  106.808935][ T5454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  106.808943][ T5454] RSP: 002b:00007fff388b1f78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  106.808955][ T5454] RAX: ffffffffffffffda RBX: 00007f251de15fa0 RCX: 00007f251db9bf79
[  106.808963][ T5454] RDX: 0000000000000038 RSI: 0000200000000640 RDI: 0000000000000007
[  106.808969][ T5454] RBP: 00007f251dc327e0 R08: 0000200000000380 R09: 0000000000000014
[  106.808975][ T5454] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000
[  106.808981][ T5454] R13: 00007f251de15fac R14: 00007f251de15fa0 R15: 00007f251de15fa0
[  106.809002][ T5454]  </TASK>
[  106.809006][ T5454] ---[ end trace ]---
[  106.957430][ T5454] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  106.960601][ T5454] CPU: 0 UID: 0 PID: 5454 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  106.964628][ T5454] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  106.968807][ T5454] Call Trace:
[  106.970276][ T5454]  <TASK>
[  106.971584][ T5454]  vpanic+0x56c/0xa60
[  106.973457][ T5454]  ? __pfx_vpanic+0x10/0x10
[  106.975594][ T5454]  panic+0xc5/0xd0
[  106.977172][ T5454]  ? __pfx_panic+0x10/0x10
[  106.979099][ T5454]  ? __pfx__printk+0x10/0x10
[  106.981174][ T5454]  ? dump_stack_lvl+0x103/0x150
[  106.983447][ T5454]  check_panic_on_warn+0x89/0xb0
[  106.985726][ T5454]  __ubsan_handle_shift_out_of_bounds+0x385/0x410
[  106.988547][ T5454]  ieee80211_parse_tx_radiotap+0xadb/0x1950
[  106.991050][ T5454]  ? __pfx_ieee80211_parse_tx_radiotap+0x10/0x10
[  106.993687][ T5454]  ? ieee80211_select_queue_80211+0x241/0x380
[  106.996175][ T5454]  ieee80211_monitor_start_xmit+0xb1f/0x1250
[  106.998758][ T5454]  ? ieee80211_monitor_start_xmit+0x60d/0x1250
[  107.001539][ T5454]  ? __pfx_ieee80211_monitor_start_xmit+0x10/0x10
[  107.004476][ T5454]  dev_hard_start_xmit+0x2d8/0x870
[  107.006811][ T5454]  __dev_queue_xmit+0x168f/0x38a0
[  107.009124][ T5454]  ? __dev_queue_xmit+0x274/0x38a0
[  107.011418][ T5454]  ? _copy_from_iter+0x21b/0x1670
[  107.013741][ T5454]  ? __pfx___dev_queue_xmit+0x10/0x10
[  107.016143][ T5454]  ? sock_alloc_send_pskb+0x896/0x990
[  107.018502][ T5454]  ? __pfx__copy_from_iter+0x10/0x10
[  107.020969][ T5454]  ? packet_parse_headers+0x4c9/0x790
[  107.023521][ T5454]  ? packet_parse_headers+0x575/0x790
[  107.026024][ T5454]  ? __pfx_packet_parse_headers+0x10/0x10
[  107.028531][ T5454]  ? packet_xmit+0x68/0x320
[  107.030485][ T5454]  packet_sendmsg+0x3eb6/0x50f0
[  107.032644][ T5454]  ? security_file_alloc+0x34/0x310
[  107.034968][ T5454]  ? kmem_cache_alloc_noprof+0x2bc/0x650
[  107.037446][ T5454]  ? init_file+0x90/0x2b0
[  107.039437][ T5454]  ? alloc_empty_file+0x6e/0x1d0
[  107.041583][ T5454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.044314][ T5454]  ? __lock_acquire+0x6b5/0x2cf0
[  107.046515][ T5454]  ? aa_sk_perm+0x15a/0x960
[  107.048510][ T5454]  ? aa_sk_perm+0x82d/0x960
[  107.050438][ T5454]  ? __pfx_packet_sendmsg+0x10/0x10
[  107.052753][ T5454]  ? tomoyo_socket_sendmsg_permission+0x1e0/0x300
[  107.055682][ T5454]  ? aa_sock_msg_perm+0xf1/0x1b0
[  107.057937][ T5454]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  107.060099][ T5454]  __sys_sendto+0x709/0x7a0
[  107.062078][ T5454]  ? __pfx___sys_sendto+0x10/0x10
[  107.065050][ T5454]  ? do_futex+0x395/0x420
[  107.066965][ T5454]  ? __pfx___se_sys_futex+0x10/0x10
[  107.069179][ T5454]  ? fd_install+0x306/0x3d0
[  107.071217][ T5454]  __x64_sys_sendto+0xde/0x100
[  107.073387][ T5454]  do_syscall_64+0x14d/0xf80
[  107.075373][ T5454]  ? trace_irq_disable+0x3b/0x150
[  107.077521][ T5454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.080261][ T5454]  ? clear_bhb_loop+0x40/0x90
[  107.082484][ T5454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.085223][ T5454] RIP: 0033:0x7f251db9bf79
[  107.087204][ T5454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.095262][ T5454] RSP: 002b:00007fff388b1f78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  107.098752][ T5454] RAX: ffffffffffffffda RBX: 00007f251de15fa0 RCX: 00007f251db9bf79
[  107.102382][ T5454] RDX: 0000000000000038 RSI: 0000200000000640 RDI: 0000000000000007
[  107.105942][ T5454] RBP: 00007f251dc327e0 R08: 0000200000000380 R09: 0000000000000014
[  107.109417][ T5454] R10: 0000000004000000 R11: 0000000000000246 R12: 0000000000000000
[  107.112836][ T5454] R13: 00007f251de15fac R14: 00007f251de15fa0 R15: 00007f251de15fa0
[  107.116272][ T5454]  </TASK>
[  107.118027][ T5454] Kernel Offset: disabled
[  107.120081][ T5454] Rebooting in 86400 seconds..

VM DIAGNOSIS:
07:08:20  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=0000000000000030 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900033a6d50
R8 =ffff888034d58237 R9 =1ffff110069ab046 R10=dffffc0000000000 R11=ffffffff854098c0
R12=dffffc0000000000 R13=ffffffff9a2b4a4b R14=ffffffff9a5ccae0 R15=0000000000000000
RIP=ffffffff8540993c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555570250500 ffffffff 00c00000
GS =0000 ffff88808ca62000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f251da71980 CR3=00000000120ab000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffff80 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003072 656c6c616b7a7973
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff388b23c6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff388b23c6 00007fff388b23cc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f251dc32e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f251dc32e86
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f251dc32fea
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f251dc32e78
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e675b118b215e808 da45195a7434aa00 010000000055eb00 00000c0000180a00
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 183e2f2fff4a6e80 8408f9dc7ce5aadd f43e6d59c5d9902e e675b118b215e808
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000