last executing test programs:

6.981867556s ago: executing program 3 (id=4591):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xb31}, [@call={0x85, 0x0, 0x0, 0x87}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000003c0)="386d178529a39dea18dd3f87d7a5", 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

6.101158551s ago: executing program 3 (id=4599):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r0, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
write$binfmt_script(r0, &(0x7f0000001ac0)={'#! ', './file0'}, 0xb)

6.00028689s ago: executing program 3 (id=4605):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x48, r0, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_IDX={0x5}]}]}, 0x48}}, 0x0)

5.930803324s ago: executing program 3 (id=4608):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x0, 0x0, {{0x26}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)

5.842308249s ago: executing program 3 (id=4611):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x7d, &(0x7f0000019340), 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r2, &(0x7f0000000200), 0x10)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x7ffff}, &(0x7f0000019300), 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
pipe2(&(0x7f0000000240), 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000840)='io\x00')
read$FUSE(r4, &(0x7f0000002140)={0x2020}, 0x2100)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000083c0)={{0x1}})
readv(r3, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x4000}})
mount$9p_fd(0x0, &(0x7f00000005c0)='./file0/file0/file0/file0/file0\x00', 0x0, 0x800040, 0x0)
umount2(&(0x7f0000000180)='./file0/file0/file0/file0/file0\x00', 0x0)
read$FUSE(r6, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r6, 0x0, 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)

4.191491011s ago: executing program 2 (id=4636):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000401d00000008000300", @ANYRES32=r2], 0x24}}, 0x0)

4.122009698s ago: executing program 2 (id=4637):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xd4}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x6, 0x6, 0x80, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, @void, @value, @void, @value}, 0x48)
socket$rxrpc(0x21, 0x2, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="05000000000000e000000600000008000300", @ANYRES32=<r5=>r4, @ANYBLOB="0800050002"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000001c0)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x24060951}, 0x0)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, 0x0)
socketpair(0x29, 0x2, 0x0, &(0x7f0000000a40)={<r6=>0xffffffffffffffff})
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000000000)=0x84, 0x4)
sendto$inet6(r7, 0x0, 0x0, 0x200c8004, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c)
sendmsg$inet6(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000ac0)="2f6c62fdf406a1a017d356c35c10e4d1be87033978d275293527325d1cd47e250c86", 0x22}], 0x1}, 0x0)
r8 = socket$unix(0x1, 0x2, 0x0)
syz_80211_inject_frame(&(0x7f0000000280), &(0x7f0000000580)=ANY=[@ANYRES8=r7, @ANYRESDEC=r7, @ANYRES32=r8, @ANYRES64=r5, @ANYRESDEC, @ANYRES64=r0, @ANYRESHEX=r3], 0x28)
sendto$inet(0xffffffffffffffff, &(0x7f0000000300)="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", 0xffffff6d, 0x4048041, 0x0, 0x0)
socket(0x21, 0x2, 0x2)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000680)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x40, r3, 0x10, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x40}, 0x1, 0x0, 0x0, 0x4084}, 0x8000)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e4001020303090224002af62300000904000002ca744d0009053f034d00ff99090805848f"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

2.051155202s ago: executing program 0 (id=4638):
openat$vimc0(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
r2 = socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_io_uring_setup(0x69a7, &(0x7f0000000600)={0x0, 0xae22, 0x50e83aaeac7bb425, 0x2, 0x177}, &(0x7f0000000000), 0x0)
syz_io_uring_setup(0x67fd, &(0x7f0000000100)={0x0, 0x203400, 0x412, 0x2, 0x0, 0x0, r4}, 0x0, 0x0)
r5 = io_uring_setup(0x4d63, &(0x7f0000000080)={0x0, 0xd974, 0x0, 0x2, 0x2d6, 0x0, r4})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r6 = getpid()
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000))
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x8)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000051}, 0x805)
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000606000/0x2000)=nil, &(0x7f0000508000/0x4000)=nil, 0x2000})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000001000000018000180140002006e657464657673696d3000000000000008000a00040e00000800090000a800000800070000000000080008"], 0x4c}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100"], 0x64}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000000101040000ff0f0000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000010000580"], 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0xb, 0x0, 0x1, 0xcf, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x48)

2.050962678s ago: executing program 3 (id=4640):
r0 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x7, 0x1, 0x1}}]}}]}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000006c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x20, 0x0, 0x1}})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5002, 0x0)

1.046857612s ago: executing program 2 (id=4644):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
sendmmsg$unix(r0, &(0x7f00000bd000), 0x80, 0x0)
connect$unix(r0, &(0x7f0000000140)=@abs, 0x6e)

971.592499ms ago: executing program 1 (id=4645):
r0 = socket$inet(0x2, 0x802, 0x1)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
write(r0, &(0x7f0000000080)="08008edf773c8000", 0xfd)
readv(r0, &(0x7f0000002740)=[{&(0x7f0000000100)=""/222, 0xde}], 0x1)

971.422056ms ago: executing program 1 (id=4646):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x40d, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_DEFAULT_PVID={0x6, 0x27, 0x5}]}}}]}, 0x3c}}, 0x0)

901.649355ms ago: executing program 1 (id=4647):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x4, &(0x7f0000000a80)=ANY=[@ANYBLOB="180008"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), r0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000000000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)

851.714707ms ago: executing program 1 (id=4648):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000100)={@val={0x2000}, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x300, 0x0, 0x28, 0x0, @gue={{0x2}, "ebc7a1e0ff5befe1fdbc66e400d7e83306de422b4a81099b"}}}}}}}, 0x4e)

711.971899ms ago: executing program 1 (id=4649):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f00000000c0), 0x2, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000006c0), 0x12)
write$cgroup_freezer_state(r1, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r1, &(0x7f0000000080)='THAWED\x00', 0x7)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000002e00)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x28}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340))
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00')
lseek(r3, 0xae7e, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, 0x0, 0x0)

698.631043ms ago: executing program 0 (id=4650):
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x74)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x74)

601.981718ms ago: executing program 0 (id=4651):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
clock_gettime(0x0, &(0x7f0000000100)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x1, &(0x7f00000001c0)={{0x0, 0x3938700}, {r1, r2+10000000}}, 0x0)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

601.534694ms ago: executing program 1 (id=4652):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xd4}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x6, 0x6, 0x80, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, @void, @value, @void, @value}, 0x48)
socket$rxrpc(0x21, 0x2, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="05000000000000e000000600000008000300", @ANYRES32=<r5=>r4, @ANYBLOB="0800050002"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000001c0)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x24060951}, 0x0)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, 0x0)
socketpair(0x29, 0x2, 0x0, &(0x7f0000000a40)={<r6=>0xffffffffffffffff})
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000000000)=0x84, 0x4)
sendto$inet6(r7, 0x0, 0x0, 0x200c8004, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c)
sendmsg$inet6(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000ac0)="2f6c62fdf406a1a017d356c35c10e4d1be87033978d275293527325d1cd47e250c86", 0x22}], 0x1}, 0x0)
r8 = socket$unix(0x1, 0x2, 0x0)
syz_80211_inject_frame(&(0x7f0000000280), &(0x7f0000000580)=ANY=[@ANYRES8=r7, @ANYRESDEC=r7, @ANYRES32=r8, @ANYRES64=r5, @ANYRESDEC, @ANYRES64=r0, @ANYRESHEX=r3], 0x28)
sendto$inet(0xffffffffffffffff, &(0x7f0000000300)="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", 0xffffff6d, 0x4048041, 0x0, 0x0)
socket(0x21, 0x2, 0x2)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000680)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x40, r3, 0x10, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x40}, 0x1, 0x0, 0x0, 0x4084}, 0x8000)
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e4001020303090224002af62300000904000002ca744d0009053f034d00ff99090805848f"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

601.336277ms ago: executing program 0 (id=4653):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x40814)
r0 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00'})
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)="2e00000010008188040f46ecdb4cb9cca7480ef421000000e3bd6efb440013030e000a000d000008ba8000001201", 0x2e}], 0x1}, 0x0)

546.138975ms ago: executing program 0 (id=4654):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x2b, &(0x7f0000000040)=0x200000000005)
syz_emit_vhci(0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x1c9100, 0x0)
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="02c8204d00490001000cfb05000600feff080d7f080002000800000000010df8080009000f000a0008000f01040005007b00110c0200050002010400020001000383080002000000136aac0700015b0200050026db42aec9e47fb72220a280b6d882cec6e41ad1cf0a4982214bf5303844857d91872640e1cb8520784bfc7b58a8bbdbfac7dcb1aafec9af78ea69ab8f724194509a88e8c8973e4d957a2ed4d9a83396348da132dd9b0bccf67c58f1276b2e7ea5cc7c8a47568bc5ff8c"], 0x52)

461.649745ms ago: executing program 0 (id=4655):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000240), &(0x7f00000002c0)=0x8)

111.987487ms ago: executing program 2 (id=4656):
r0 = memfd_create(&(0x7f0000001d00)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81\x01\x00\x00\x00\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;|\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea%\xc0\xe9\x9d,K\x97\xe1m|g', 0xd)
r1 = fcntl$dupfd(r0, 0x0, r0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0)
r2 = socket(0xa, 0x2400000001, 0x0)
getsockopt$inet6_buf(r2, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f0000e5f000)=0x90)

111.824739ms ago: executing program 2 (id=4657):
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r1 = openat$uhid(0xffffff9c, &(0x7f0000000100), 0x802, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000380)={0x8, {"bd61d4e0997b9ed8964493aa9df9f9479ace7e4c92a53b2a41d22119c69e5dc656bdde9c102b88df6dd80aee7d2c3496947c881870dcc263530c5fae28c7ab3afae41515351fd2caccc3450da978640b86097933b8866092c3db75e29816c2e774900f8a3ef9c3ea14c54ae5bda2978696c60b61d023a5b26c47dc04184c7e19868b0e1e5583e08b5ee28c8cdd48ffbc03157bc45169aba9d790e212a8b304471a24f5a58693089d958e33bff97d4c0ad94b779e1dff6e58b57903d6335b8c47d0b2f40feff85ff9437afd60bfa6cb2b9cf4c65ff7807f296aa5986028d7346a95fbf54f6cd4dcc6e587c36041bd500749dcdd123b0a5cb5b920efa01650b0054f40b82b1d9ae6844f043f79a8854fb01c05f1fdd2a64aa1b618f97cefddda0a24ff03b4a2a1e69072748fcdf6b55ae77a183f391f4176225c937ae43c6e17112140e38589a29c17b74d4aa1865f12a5b51c9410bacffd70a6cc93df86e977a4bbfd8068ace2f26d5d901baf02478cd85692fa0a3d3b134af11615a5de4e14b23c47f34625cfbe88c582db17fb7f5f2600258f9a1b91868175e27c76a9b4a439c0d612966ebe2db2227eb7712cc9aa63bd3210835298972d36de9b665ce37e2b2f1c4960daa11ce958ed8181d9220fb4a8b574170ddea18fb1e8b9c2e242452ff9c2f571a4da1255715486638fa43784649a4069db0fecc4e3a2907b95a866a947776e00937c93e2469070b9d02ac8acd343414537cfe73dcbae756f8fecd24b7d43dabd8fe6548116505460c162a9eccb31014e0b4ccdcb35de88cf821387269e8b12b8ee92d5d041ffa6dfe3dfdb670bc517d1009868c961ee61bbff0f17cf0789fc2e8b58a894b4397730d97f3111723a49130de80d333f7faae14e600ee295352e0b35c61a8123fc0492d213e5a92fc5606322e8331294253104dfa6ba5a0a153bc5baed5c5244bbef25ee0dc02a423a09ca1ccf51f18d97614f88efb11ff3ccbd4f7d1682acf281c45909f46914f23b7d1a837f53883135f19acd583c953fb6d3c99bee6aff713d74960ae2ff4844748746da5084eae653662f1794eb51a95940c6fce3ad8152176289f9e2b33ff4bf168cff02d5485b4966a3145c71985ec853313e97c82ab7c80f34155b176e4044a3d13e0e0fbf27afb07c37f6cc3fe8c0806e23e813b253f83eca8cd21bd0027c9d4ec34b488ff1309fbd2f94e52ba8c3f1346ce71cb8cda06809414ec034d5f887ced4d5fa5facaeb6660eb489551176eeecb4f4787fa7ce4ca096a84788fad56f4e4cace876149de04001e92407e9124ae906bfffea5fdfc7b863f14c6f769f25f595b75e021ed79a750e65b27c28c2a2b6ac0e3cae81a847639714c707b1eed6fa8a916074c30727a2a81da6a65ce581a3ea4208190b0c4ced192d7e3cbbcf51ee5b216fe0e2edb41e4bae1bbf1f560bf6040802a6689dc593f8c1f7a884b9dc925e9411e460ee7dbf6d770de25c3e20f12d1beb2e35ddcb40c62411194dd3df6110df267a13718bf2775a8a113135b547ac51648014ad1240206f7a30da292a5b7e0facf755e374d473f37c6248717c31cb572d8e2061ea70e7f741b86eea0928045324e7674310f8f613993e78afb616b4295711af000e77c8b8a0548612c4fa3882bfad5e309ecfb31dcfe6130d8e5de1227d2a76bb7cc420dd5130cd00e44a826e8860d9c09bc6c77bc154f872cdb14e3d4b133b950873f5407725b672d6b09eb9427c2d2b8996c4a5f75d3ce0f90bc0a5128370c79af9b58ec6d56cbc49a38b1d549d3f3c112c94d3888952f7950bdcb774b49bd213a22c0bd95df9292128c655f98f3ecaec4d82a9e0eb7441095aa9e1410365244886b3d78bff1eda58a37180a41c632777999902b951d0219c7b4f7adf98b7880795d476a3cf85b87c8f98313b4ad47adc2ad40cc0238a1aef273f2b91ff0eb86d6db7263270225ffd7b33a09f88d88705fecc5990a081c21c48c0cd7edcb0767825530e82d9821b81f425c4e97ec1607d466e95f789150681e7e34c3513a69dfa2ba1cfeed262b05c52a829b16e5b1578ac580508faf4be3550319e27560141cadc1488b0964d8040a287499df8c1f1fc17277e95889ba55e8aa41739ea4b7acb203e0b2df133ac2e46b8a91c272051089be3da96b0e8b6a64f638b08b47d06f4751ee142fe2877ec2ac33ab9928c36472208de8702209bdfcd3703047b38862e84624ab192d94b3c93eb0955040b8dc7f1a4597ee8e59f7d43e67a9ab029af1591c6173e75212110f79dbe5bc2866ca65244f035c22691af81989ad7a4e8990ed5ebccb445dd67ad4ebc500ff1ee8b77dbe4c4098eaf42512a971eced566a3c7cb22de73de7361232c28e647924d3b69ef80dd1fb30f38632e468944fe2cd4a09db5e8c5d1b2406200f78f438af61a726d1e1e313743dee228a9d5b7d1d0458660a499be77e4fee739a456868e991239c0f0aec728460397f4cbdf5b4cf9d069c5cfc8d31c9b609f960d64c5971be9497f3e0ef241ffc1090f6835d392e29d152978340b64b0cc0128beebece17418cdbcf0df353b70f5293b680f4df52895aa3d627f033e74f64b7e87797f32a6c21cf22959a8ee72d357fc38fd8cc6cca6867c7f6a2feaa42f4309603a17d9ec3adcaa644fa1906cb62dedaf1172f694990ed25e1e4e2eeb47b975d7912a166fd5e6907fccb72987e6c1562ffe54751536122ab270c4276908e6c3aa3c3b32fddd3c61cddc2f43ff0fdc72a7077eff1a55d13e6623ada56c8cc8fb5f82d4187809fe75aa760c50eca268a12c888f524364872994508f5397405a15c8485e8f58d54453b9343a3f390046a7062332370512378dcf72884a44c7f8bcb8b55d1cac7616d75ac651e9231c4782e342776c351514eb4e2de154f25b13b13919a42fa85b4a6d2e802eff22e51d33c7e541ee233ff5e245a07683bcb197b08405070fe725acd2bcf8079fe3d281ef96c064caad72e35bfe564bdb9aa1190fa65424ad17d5416957161b18a04b7ea69568ee94e0e1affa8ba74dc90859e0f02769a4ff2cdcbc17b1e5206ecacb15f078db0c639d9d5949db315e9074c379ac5f85025f02dc27b6843158aac7e64bcc3d44ec65e1136e03780c5250651007793102c9046bc0a8162e9be6d3361b0d60963727bcb187deea415fbce9b799f024f23c797ddeba3f6cee9edf3e96e86af134971ec53220a067312d12ada05d2c6e8d4eb57f736e02b86aee269882a7f63e46fdb38af04d14ccc020980429851d3e1226cd6e86a783320980642432d483bc87f0eb74742ebbee07edf813fe0a1fc2894e73db005d00e5900cc9bc8653a6638fe05201e051ea7b9a8f14a2ff82698e545b587fb4f6f22169f0984a9da3b182447ae6074b2cfeba9e627acbe4a1743c92814963acad9ea0dac1e3bebf31954900755ecd94d7191f97b5249565164a9c6af80eb325b99082a3831fd164cbc0b2a9ec4bcf068959a721b41bfdd90af0ab07541ed99fbdbdd3521a9dbf0792fdb68ba4f85e9e7a9306347ccad21aef91e4f2c14e969198175eb7f98843d078f0202246b28fb4f0e5f2dcb3c548477cab152e6fc91ca26f816d43617011bd7dd0d3760c4ecfd445ac68db189392244aa355c01b162c93efc2be43cd7084a692274ac7a27910d20ed0188398d4fc658de94c05e680444ab8817522422d311344b126e5bb8578ee38eacf5719560d847f105e19edfcff77f7284542ec7937bf47054cd1cbc88d95c8e1414e4a458aa5b155ea9be8a98e62959a2d3bcd629cb101d43b22d3706da2a28fe34150449f6f57e21a4f088545f240a9d5179f540767e706e05ccec3bb2608148ed9ee5fba727ddb6606ce9963a447f3b1bd3cccbc4858b18514f5e9febb4fb8487a9fe4a519e883251f2fa3253a5b9245ec55eb959d30e00ac0ff24eb33ebe2f28f1589fd064a244fa625a6b56cdca66a23355d8d2f9248e85a1bd4ab2f1172fa7a96b2d622c4f701d64011b9907c5bda04c2ebc9ae31aa398ce7d8c8b372da031dffb7281e97b61987411f57cb127bbfb662d76ae4d07f1ee424abb364ea20b3a234efce8e40b33f759b3bf9e6f0f055bd7eb1d9b57bbd575ccc77ed4c8cc3e965daf1a3bddd8517739e3a4e3418faebc2b36f785e296ddddb875d1ebd1e83a21a33e060a7d1c35e8a95af70caa3871ff00b0dcbf315bb71faa1096596ddbc44652b425389d1765a3cb44d77b2192a7e7f7138fc5e24ff1fe0edd6e58fa20291133708b15ebd9543075e5996ab59ef920a5e5ea3d7ae31839b7efc37fc537a29fa10ea51abe8cc4a02cfb249a4c36d8576aee6edc9c6fcce3cf2f5ac3ec684c81e3e323797203e4f3d79f57469ece5c4141755b9691f7a82a5cf9eb03423839057cf9406b940169dfbda7d6a61cbd091fca64287a00eb7d95f39d1d447b10457727cab1ee790e5ad8dae404e22e65863141346ac4b5f142a4cc36a103e9358cb6d5010d52358d07e7372f90add0e4b06b6d65f9735e4284db9ecaf0c5d05307e8396afd405487573c45bcba7d73e93a5e44765f4a558f8a91a100e9da8b472df394718924a0474d45ef7a0815cbf22fe30de63029a8e1e47260442e23f935a79c8c4fbddadb30e9b088a7c387a2acf3d5e76d4bab333f9b71677cbfc383b3d31e34ffdcdfbb9c8818c20c4ef78a62991c94e175238b2c82819c58bd951b9524673d568596ba42d039dd65599f431774104ebfb7b8f48a652452777b0c422356064f8bc6ea1ec449ab249f4d90bc6686fe543643136994ad79c1fc5b15543bd5fa686a448d2c55e5eff05ee3db1ee1b278cd009dbb12f7940c862596f6094e0d2f9c6e968704360ea6b5d7dfa8d9a6d5d8d581abf07ce925d654b3bac7cb71269056dfe7d2eebfdaf8ed9447b1fd8c5e7e05b0094a584665997700f3091f7f136dad315f43458986d445509f58e980a305dea20ce0d085cd1a1d5e4ed0d20a988d9218120df20a692e5605376fb3a7f1c2c383c59061b91e92365a83957fdccea713ed67b8c7791834cc6e8969fbf5b2d3cf01af1e3b72bc22295865acd34ea8ebd0ba2a124ae0c05dd673c3df27c37d1b8acd1c67d6bc40ef173bbe43cf6c38b790d9c5938248baeb19ebd230ab4b43fbec29c941cd370df18af81f12c86f06380d094101902e44da74e686a75c2c9330e8d746e0fcf949a50f4b12d0435b63a66bf07a1fbef7fb6b9bdd7c35c4559f5ea4f805287ebc506b90a0eb11e102ac52c225fd3001e6b8d37e3b69c774d480e1048f59f8be6c55ce85fae8b2c233037638c79e7258b31f307d8be3116ea5a0649208061534983e430af664888e76477816ec04427de86cf449ae0c1fb5926605f38b9b704076d5f7f956db07c2cb803b3dc0d41a27c8f5545ee0c7f78eaa3b031d6327bd48420ab935b64904b119e9474558365f5578b89bac316e21af0331a6c210d3c3042f6320a1f4a7cd14df5ff96b3897f7a8c07cc986dac350e0c3421014ec8508c31dba2257c9af55e47e5978fbb90984ee554fc00dc9ff9985517b9b19723cdc2e22bfe133228ba23c7093d0977e7e0133dd33270a58da55e7c77bb26613a96e9a242c5dd316e9be591a5beeea7bd213fcc86784faee31a78878010089053966d4bf508adfd950be035acef95b491c765e944c462d79d5f7a474abd076c682b179ecbfa5661481fc6f7bd54cd3389f1a4b334ee42aea9f3e2f644f2d09b2dc712b93bec1b7f475d790dc22cce5db5e8a302b6fc39c3108c894113995eb471b2", 0x1000}}, 0x1006)

0s ago: executing program 2 (id=4658):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r2}, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x7d243a6ea807936d, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x3}]}, 0x1c}}, 0x0)

0s ago: executing program 2 (id=4659):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x5, 0x401d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000535000/0x800000)=nil, 0x802202, 0x19)
move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f00007df000/0x1000)=nil], &(0x7f00000001c0), &(0x7f0000000200), 0x0)

kernel console output (not intermixed with test programs):

ring
[ 1148.982017][T20243] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1148.985431][T20243] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1148.988766][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1148.994363][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1149.001481][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1149.011741][T20243] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1149.020014][T20243] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1149.025548][T20243] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1149.031944][T20243] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1149.036766][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1149.039782][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1149.042932][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1149.060494][T20243] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1149.064701][T20243] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1149.067861][T20243] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1149.070937][T20243] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1149.075336][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1149.079707][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1149.092901][T20243] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1149.139068][T20243] usb 5-1: string descriptor 0 read error: -22
[ 1149.142159][T20243] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1149.145774][T20243] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1149.184034][T20243] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1149.496154][  T779] team0 (unregistering): Port device team_slave_1 removed
[ 1149.637071][  T779] team0 (unregistering): Port device team_slave_0 removed
[ 1150.133957][T13790] Bluetooth: hci4: command tx timeout
[ 1150.605190][T20243] usb 5-1: USB disconnect, device number 59
[ 1151.100954][  T779] bridge_slave_1: left allmulticast mode
[ 1151.103539][  T779] bridge_slave_1: left promiscuous mode
[ 1151.109545][  T779] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1151.135260][  T779] gretap1: left allmulticast mode
[ 1151.139562][  T779] gretap1: left promiscuous mode
[ 1151.142425][  T779] bridge4: port 1(gretap1) entered disabled state
[ 1151.763810][  T779] dvmrp0 (unregistering): left allmulticast mode
[ 1152.213994][T13790] Bluetooth: hci4: command tx timeout
[ 1152.501052][T20326] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4011'.
[ 1152.566028][  T779] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1152.569188][  T779] bond_slave_1: left promiscuous mode
[ 1152.572550][  T779] bond0 (unregistering): Released all slaves
[ 1152.715520][  T779] bond1 (unregistering): Released all slaves
[ 1152.796909][  T779] Κό: left promiscuous mode
[ 1152.864283][  T779] : left promiscuous mode
[ 1152.872558][T20331] dlm: no locking on control device
[ 1152.961385][  T779] tipc: Disabling bearer <eth:macvlan1>
[ 1152.981284][  T779] tipc: Left network mode
[ 1153.247967][T13790] Bluetooth: hci1: SCO packet for unknown connection handle 768
[ 1153.250099][T13790] Bluetooth: hci1: unexpected event 0x09 length: 10 > 3
[ 1153.252161][T13790] Bluetooth: hci1: SCO packet for unknown connection handle 1039
[ 1153.383226][  T779] hsr_slave_0: left promiscuous mode
[ 1153.396373][  T779] hsr_slave_1: left promiscuous mode
[ 1153.398886][  T779] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1153.405548][  T779] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1153.408375][  T779] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1153.457741][  T779] veth1_macvtap: left promiscuous mode
[ 1153.475156][  T779] veth0_macvtap: left promiscuous mode
[ 1153.479982][  T779] veth1_vlan: left promiscuous mode
[ 1154.446319][T20357] netlink: 9 bytes leftover after parsing attributes in process `syz.2.4017'.
[ 1154.947336][T20363] overlayfs: failed to resolve './file1': -2
[ 1155.107471][  T779] team0 (unregistering): Port device team_slave_1 removed
[ 1155.231971][T20366] autofs: Bad value for 'fd'
[ 1155.323666][   T39] audit: type=1804 audit(2000000840.513:12792): pid=20368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4019" name="/newroot/10/bus/bus" dev="overlay" ino=79 res=1 errno=0
[ 1155.694329][T20373] hub 9-0:1.0: USB hub found
[ 1155.696707][T20373] hub 9-0:1.0: 1 port detected
[ 1156.591842][T10143] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1156.612266][T10143] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1156.615677][T10143] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1156.618793][T10143] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1156.625873][T10143] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1156.629888][T10143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1156.942508][T20388] chnl_net:caif_netlink_parms(): no params data found
[ 1157.113890][T20388] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1157.116738][T20388] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1157.119292][T20388] bridge_slave_0: entered allmulticast mode
[ 1157.126692][T20388] bridge_slave_0: entered promiscuous mode
[ 1157.132058][T20388] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.135292][T20388] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1157.139687][T20388] bridge_slave_1: entered allmulticast mode
[ 1157.142132][T20388] bridge_slave_1: entered promiscuous mode
[ 1157.221293][T20388] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1157.238349][T20388] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1157.268587][T20388] team0: Port device team_slave_0 added
[ 1157.273319][T20388] team0: Port device team_slave_1 added
[ 1157.317739][T20388] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1157.320122][T20388] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1157.333860][T20388] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1157.339805][T20388] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1157.342325][T20388] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1157.353242][T20388] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1157.436280][T20388] hsr_slave_0: entered promiscuous mode
[ 1157.443817][T20388] hsr_slave_1: entered promiscuous mode
[ 1157.448831][T20388] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1157.451014][T20388] Cannot create hsr debugfs directory
[ 1157.528019][T20402] tipc: Started in network mode
[ 1157.529347][T20402] tipc: Node identity fffffff9, cluster identity 4711
[ 1157.531231][T20402] tipc: Node number set to 4294967289
[ 1157.542392][T20402] tmpfs: Bad value for 'nr_blocks'
[ 1157.667603][T20388] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1157.801261][T20388] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1157.922009][T20388] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1157.937130][T20407] ebtables: wrong size: *len 80, entries_size 144, replsz 144
[ 1157.992587][T20406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4027'.
[ 1158.058926][T20388] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1158.422796][T20388] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1158.435832][T20388] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1158.444073][T20388] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1158.455743][T20388] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1158.508139][T20388] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1158.515963][T20388] 8021q: adding VLAN 0 to HW filter on device team0
[ 1158.520749][T20302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1158.522654][T20302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1158.527553][T20302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1158.529452][T20302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1158.623199][T20388] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1158.642714][T20388] veth0_vlan: entered promiscuous mode
[ 1158.645984][T20423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4031'.
[ 1158.647971][T20388] veth1_vlan: entered promiscuous mode
[ 1158.660607][T20388] veth0_macvtap: entered promiscuous mode
[ 1158.664939][T20388] veth1_macvtap: entered promiscuous mode
[ 1158.671180][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.676961][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.679527][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.682726][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.686089][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.688873][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.691460][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.694363][T13790] Bluetooth: hci0: command tx timeout
[ 1158.697589][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.700092][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1158.702533][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.705995][T20388] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1158.710199][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.713172][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.716660][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.719418][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.721931][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.724970][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.727507][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.730634][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.733159][T20388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1158.736174][T20388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1158.739615][T20388] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1158.745382][T20388] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1158.747706][T20388] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1158.749979][T20388] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1158.752351][T20388] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1158.782713][T20302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1158.793787][T20302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1158.808539][T20302] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1158.810596][T20302] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1159.993878][T20440] tmpfs: Bad value for 'mpol'
[ 1160.257087][T20446] dlm: no locking on control device
[ 1160.407694][T20449] netlink: 9 bytes leftover after parsing attributes in process `syz.0.4036'.
[ 1160.764071][T13790] Bluetooth: hci0: command tx timeout
[ 1160.870452][T20455] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4037'.
[ 1162.173337][T20479] netlink: 'syz.1.4042': attribute type 3 has an invalid length.
[ 1162.176335][T20479] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4042'.
[ 1162.499548][T20485] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4044'.
[ 1162.845352][T13790] Bluetooth: hci0: command tx timeout
[ 1162.875321][T20492] tmpfs: Bad value for 'mpol'
[ 1162.959987][T20495] autofs: Bad value for 'fd'
[ 1163.051047][   T39] audit: type=1804 audit(2000000848.243:12793): pid=20493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4047" name="/newroot/3/bus/bus" dev="overlay" ino=44 res=1 errno=0
[ 1164.084278][T20514] vivid-002: =================  START STATUS  =================
[ 1164.086178][T20514] vivid-002: Radio HW Seek Mode: Bounded
[ 1164.087651][T20514] vivid-002: Radio Programmable HW Seek: false
[ 1164.089145][T20514] vivid-002: RDS Rx I/O Mode: Block I/O
[ 1164.090603][T20514] vivid-002: Generate RBDS Instead of RDS: false
[ 1164.092287][T20514] vivid-002: RDS Reception: true
[ 1164.093789][T20514] vivid-002: RDS Program Type: 0 inactive
[ 1164.095435][T20514] vivid-002: RDS PS Name:  inactive
[ 1164.099880][T20514] vivid-002: RDS Radio Text:  inactive
[ 1164.101746][T20514] vivid-002: RDS Traffic Announcement: false inactive
[ 1164.109657][T20514] vivid-002: RDS Traffic Program: false inactive
[ 1164.113258][T20514] vivid-002: RDS Music: false inactive
[ 1164.127815][T20514] vivid-002: ==================  END STATUS  ==================
[ 1164.929538][T13790] Bluetooth: hci0: command tx timeout
[ 1165.853907][T20546] netlink: 9 bytes leftover after parsing attributes in process `syz.3.4058'.
[ 1166.126816][T20551] tmpfs: Bad value for 'mpol'
[ 1167.031293][T20562] autofs: Bad value for 'fd'
[ 1167.075814][   T39] audit: type=1804 audit(2000000852.273:12794): pid=20562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4060" name="/newroot/23/bus/bus" dev="overlay" ino=149 res=1 errno=0
[ 1167.883865][T13790] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1167.884548][T20542] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[ 1167.893190][T20542] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[ 1168.123884][T15202] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[ 1168.273842][T15202] usb 5-1: Using ep0 maxpacket: 16
[ 1168.292079][T20575] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4064'.
[ 1168.298993][T15202] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1168.302289][T15202] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1168.305373][T15202] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1168.309544][T15202] usb 5-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1168.312409][T15202] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1168.317778][T15202] usb 5-1: config 0 descriptor??
[ 1168.730123][T15202] hid-generic 0003:1E7D:71CE.0057: collection stack underflow
[ 1168.732220][T15202] hid-generic 0003:1E7D:71CE.0057: item 0 2 0 12 parsing failed
[ 1168.743205][T20542] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1168.745011][T20542] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[ 1168.747507][T15202] hid-generic 0003:1E7D:71CE.0057: probe with driver hid-generic failed with error -22
[ 1168.761860][T20542] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1168.764381][T20542] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[ 1168.773342][T20542] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1168.775683][T20542] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1169.653564][T20597] tmpfs: Bad value for 'mpol'
[ 1170.295106][ T5388] usb 5-1: USB disconnect, device number 60
[ 1170.953538][T20612] netlink: 'syz.0.4073': attribute type 3 has an invalid length.
[ 1170.963796][T20612] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4073'.
[ 1172.660464][T20628] tmpfs: Bad value for 'mpol'
[ 1172.747889][   T45] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1172.917119][   T45] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1172.947453][T20632] netlink: 'syz.0.4082': attribute type 3 has an invalid length.
[ 1172.953048][T20632] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4082'.
[ 1173.018453][   T45] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.116040][   T45] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.117712][T20635] autofs: Bad value for 'fd'
[ 1173.122386][T10143] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1173.132816][T10143] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1173.138590][T10143] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1173.148149][T10143] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1173.153662][T10143] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1173.157347][T10143] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1173.192345][T13790] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1173.203885][T13790] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1173.207077][T13790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1173.214221][T13790] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1173.217209][T13790] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1173.220834][T13790] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1173.293920][   T45] bridge_slave_1: left allmulticast mode
[ 1173.295722][   T45] bridge_slave_1: left promiscuous mode
[ 1173.297458][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1173.304104][   T45] bridge_slave_0: left allmulticast mode
[ 1173.306401][   T45] bridge_slave_0: left promiscuous mode
[ 1173.308329][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1173.782630][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1173.789332][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1173.798237][   T45] bond0 (unregistering): Released all slaves
[ 1173.917788][   T45] tipc: Left network mode
[ 1174.149869][T20637] chnl_net:caif_netlink_parms(): no params data found
[ 1174.321736][   T45] hsr_slave_0: left promiscuous mode
[ 1174.338767][   T45] hsr_slave_1: left promiscuous mode
[ 1174.343364][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1174.347176][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1174.351022][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1174.353354][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1174.421416][   T45] veth1_macvtap: left promiscuous mode
[ 1174.423469][   T45] veth0_macvtap: left promiscuous mode
[ 1174.426042][   T45] veth1_vlan: left promiscuous mode
[ 1174.428289][   T45] veth0_vlan: left promiscuous mode
[ 1174.689522][T20659] cdrom: dropping to single frame dma
[ 1175.255563][T13790] Bluetooth: hci2: command tx timeout
[ 1175.900098][   T45] team0 (unregistering): Port device team_slave_1 removed
[ 1176.033329][   T45] team0 (unregistering): Port device team_slave_0 removed
[ 1177.057613][T20657] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4085'.
[ 1177.061795][T20657] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1177.160688][T20637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1177.166826][T20637] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1177.168757][T20637] bridge_slave_0: entered allmulticast mode
[ 1177.174208][T20637] bridge_slave_0: entered promiscuous mode
[ 1177.183903][T20637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1177.188481][T20637] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1177.191166][T20637] bridge_slave_1: entered allmulticast mode
[ 1177.194620][T20637] bridge_slave_1: entered promiscuous mode
[ 1177.221080][T20637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1177.225876][T20637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1177.310276][T20637] team0: Port device team_slave_0 added
[ 1177.321602][T20637] team0: Port device team_slave_1 added
[ 1177.323990][T13790] Bluetooth: hci2: command tx timeout
[ 1177.343934][T20637] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1177.345791][T20637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1177.355898][T20637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1177.360279][T20637] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1177.362217][T20637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1177.382486][T20637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1177.446041][T20637] hsr_slave_0: entered promiscuous mode
[ 1177.448712][T20637] hsr_slave_1: entered promiscuous mode
[ 1177.451139][T20637] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1177.453776][T20637] Cannot create hsr debugfs directory
[ 1177.465125][T20243] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 1177.623821][T20243] usb 5-1: Using ep0 maxpacket: 32
[ 1177.624028][   T45] bridge_slave_1: left allmulticast mode
[ 1177.627124][   T45] bridge_slave_1: left promiscuous mode
[ 1177.628176][T20243] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1177.628644][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1177.630730][T20243] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1177.643475][   T45] bridge_slave_0: left allmulticast mode
[ 1177.646405][   T45] bridge_slave_0: left promiscuous mode
[ 1177.648209][T20243] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1177.648555][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1177.651747][T20243] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1177.651763][T20243] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1177.681765][T20243] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1177.685129][T20243] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1177.687996][T20243] usb 5-1: Product: syz
[ 1177.689465][T20243] usb 5-1: Manufacturer: syz
[ 1177.691117][T20243] usb 5-1: SerialNumber: syz
[ 1177.704196][T20243] usb 5-1: config 0 descriptor??
[ 1177.716706][T20243] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1177.728878][T20243] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1178.108885][T15202] usb 5-1: USB disconnect, device number 61
[ 1178.110909][    C2] ldusb 5-1:0.0: usb_submit_urb failed (-19)
[ 1178.118898][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1178.119591][T15202] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[ 1178.127808][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1178.133462][   T45] bond0 (unregistering): Released all slaves
[ 1178.218373][   T45] Κό: left promiscuous mode
[ 1178.320558][   T39] audit: type=1326 audit(2000000863.513:12795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20681 comm="syz.0.4091" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x0
[ 1178.508784][   T45] hsr_slave_0: left promiscuous mode
[ 1178.511396][   T45] hsr_slave_1: left promiscuous mode
[ 1178.514644][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1178.516773][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1178.519628][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1178.521663][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1178.573384][   T45] veth1_macvtap: left promiscuous mode
[ 1178.575006][   T45] veth0_macvtap: left promiscuous mode
[ 1178.576624][   T45] veth1_vlan: left promiscuous mode
[ 1178.578268][   T45] veth0_vlan: left promiscuous mode
[ 1179.413052][T13790] Bluetooth: hci2: command tx timeout
[ 1180.095800][   T45] team0 (unregistering): Port device team_slave_0 removed
[ 1181.269107][T20637] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1181.274882][T20637] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1181.312734][T20637] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1181.333673][T20637] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1181.438939][T20637] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1181.448726][T20637] 8021q: adding VLAN 0 to HW filter on device team0
[ 1181.452871][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1181.454844][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1181.462683][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1181.464644][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1181.490823][T20637] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1181.493882][T13790] Bluetooth: hci2: command tx timeout
[ 1181.624324][T20637] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1181.650207][T20637] veth0_vlan: entered promiscuous mode
[ 1181.657019][T20637] veth1_vlan: entered promiscuous mode
[ 1181.679138][T20637] veth0_macvtap: entered promiscuous mode
[ 1181.687353][T20637] veth1_macvtap: entered promiscuous mode
[ 1181.717611][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1181.720962][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.729421][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1181.732818][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.737282][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1181.740529][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.743963][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1181.747279][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.751670][T20637] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1181.759473][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1181.765514][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.768236][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1181.771189][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.774494][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1181.777846][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.780814][T20637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1181.794190][T20637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1181.797931][T20637] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1181.811613][T20637] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1181.819990][T20637] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1181.822614][T20637] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1181.827960][T20637] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1181.888218][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1181.893846][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1181.908118][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1181.910092][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1182.574462][T20783] random: crng reseeded on system resumption
[ 1182.634100][T20783] Restarting kernel threads ... done.
[ 1182.895263][T20792] netlink: 'syz.0.4106': attribute type 3 has an invalid length.
[ 1182.898209][T20792] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4106'.
[ 1182.943790][ T9718] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[ 1183.114903][ T9718] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1183.117469][ T9718] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1183.120207][ T9718] usb 6-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=c6.98
[ 1183.123168][ T9718] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1183.139859][ T9718] usb 6-1: config 0 descriptor??
[ 1184.184349][T20800] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1185.152167][ T1448] usb 6-1: USB disconnect, device number 48
[ 1185.831008][T20814] netlink: 80 bytes leftover after parsing attributes in process `syz.1.4112'.
[ 1185.839585][T20814] No control pipe specified
[ 1186.061170][T20824] netlink: 'syz.1.4115': attribute type 3 has an invalid length.
[ 1186.063207][T20824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4115'.
[ 1186.256277][T20829] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma?
[ 1186.314256][T20830] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4117'.
[ 1187.073975][ T1411] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[ 1187.235328][ T1411] usb 6-1: Using ep0 maxpacket: 16
[ 1187.241067][ T1411] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1187.245206][ T1411] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1187.248032][ T1411] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1187.251378][ T1411] usb 6-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1187.254888][ T1411] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1187.259960][ T1411] usb 6-1: config 0 descriptor??
[ 1187.689708][ T1411] hid-generic 0003:1E7D:71CE.0058: collection stack underflow
[ 1187.691781][ T1411] hid-generic 0003:1E7D:71CE.0058: item 0 2 0 12 parsing failed
[ 1187.722115][ T1411] hid-generic 0003:1E7D:71CE.0058: probe with driver hid-generic failed with error -22
[ 1188.495667][T20243] libceph: connect (1)[c::]:6789 error -101
[ 1188.497878][T20243] libceph: mon0 (1)[c::]:6789 connect error
[ 1188.535597][T20243] libceph: connect (1)[c::]:6789 error -101
[ 1188.537774][T20243] libceph: mon0 (1)[c::]:6789 connect error
[ 1188.759748][T20243] libceph: connect (1)[c::]:6789 error -101
[ 1188.767088][T20243] libceph: mon0 (1)[c::]:6789 connect error
[ 1188.804073][T20243] libceph: connect (1)[c::]:6789 error -101
[ 1188.807954][T20243] libceph: mon0 (1)[c::]:6789 connect error
[ 1189.020042][T20302] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1189.171438][T20302] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1189.224544][T10143] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1189.228737][T10143] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1189.232359][T10143] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1189.235882][T10143] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1189.243568][T10143] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1189.247904][T10143] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1189.280260][T20302] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1189.301347][T20243] libceph: connect (1)[c::]:6789 error -101
[ 1189.303187][T20243] libceph: mon0 (1)[c::]:6789 connect error
[ 1189.324075][T20243] libceph: connect (1)[c::]:6789 error -101
[ 1189.325746][T20243] libceph: mon0 (1)[c::]:6789 connect error
[ 1189.430884][T20302] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1189.450308][T20862] chnl_net:caif_netlink_parms(): no params data found
[ 1189.454283][T20848] ceph: No mds server is up or the cluster is laggy
[ 1189.457620][T20852] ceph: No mds server is up or the cluster is laggy
[ 1189.470841][ T1411] usb 6-1: USB disconnect, device number 49
[ 1189.584895][T20871] Bluetooth: MGMT ver 1.23
[ 1189.633991][T20862] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1189.636461][T20862] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1189.639377][T20862] bridge_slave_0: entered allmulticast mode
[ 1189.642526][T20862] bridge_slave_0: entered promiscuous mode
[ 1189.655502][T20862] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1189.657563][T20862] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1189.660719][T20862] bridge_slave_1: entered allmulticast mode
[ 1189.666613][T20862] bridge_slave_1: entered promiscuous mode
[ 1189.703545][T20862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1189.712738][T20862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1189.760117][T20862] team0: Port device team_slave_0 added
[ 1189.766145][T20862] team0: Port device team_slave_1 added
[ 1189.780277][T20302] bridge_slave_1: left allmulticast mode
[ 1189.782293][T20302] bridge_slave_1: left promiscuous mode
[ 1189.787153][T20302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1189.791254][T20302] bridge_slave_0: left allmulticast mode
[ 1189.793228][T20302] bridge_slave_0: left promiscuous mode
[ 1189.798857][T20302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1190.102911][T20874] netlink: 92 bytes leftover after parsing attributes in process `syz.1.4128'.
[ 1190.111081][T20874] netlink: 92 bytes leftover after parsing attributes in process `syz.1.4128'.
[ 1190.236010][T20878] autofs: Bad value for 'fd'
[ 1190.248881][T20302] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1190.260792][T20302] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1190.273682][T20302] bond0 (unregistering): Released all slaves
[ 1190.380269][   T39] audit: type=1804 audit(2000000875.573:12796): pid=20880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4129" name="/newroot/41/bus/bus" dev="overlay" ino=266 res=1 errno=0
[ 1190.437410][T20884] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(11)
[ 1190.439454][T20884] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1190.443163][T20884] vhci_hcd vhci_hcd.0: Device attached
[ 1190.460778][T20862] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1190.463612][T20862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1190.493787][T20862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1190.538359][T20862] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1190.540936][T20885] vhci_hcd: connection closed
[ 1190.543048][  T779] vhci_hcd: stop threads
[ 1190.544155][T20862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1190.553290][  T779] vhci_hcd: release socket
[ 1190.553820][T20862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1190.558195][  T779] vhci_hcd: disconnect device
[ 1190.666807][T20862] hsr_slave_0: entered promiscuous mode
[ 1190.670238][T20862] hsr_slave_1: entered promiscuous mode
[ 1190.784081][T20302] hsr_slave_0: left promiscuous mode
[ 1190.788295][T20302] hsr_slave_1: left promiscuous mode
[ 1190.792410][T20302] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1190.795130][T20302] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1190.798716][T20302] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1190.801684][T20302] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1190.851841][T20302] veth1_macvtap: left promiscuous mode
[ 1190.854310][T20302] veth0_macvtap: left promiscuous mode
[ 1190.856640][T20302] veth1_vlan: left promiscuous mode
[ 1190.858535][T20302] veth0_vlan: left promiscuous mode
[ 1191.340879][T13790] Bluetooth: hci2: command tx timeout
[ 1191.350831][T20895] vivid-002: disconnect
[ 1191.720278][T20893] vivid-002: reconnect
[ 1192.260159][T20906] netlink: 201400 bytes leftover after parsing attributes in process `syz.3.4133'.
[ 1192.322118][T20906] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1192.434078][T20302] team0 (unregistering): Port device team_slave_1 removed
[ 1192.614786][T20302] team0 (unregistering): Port device team_slave_0 removed
[ 1193.405589][T13790] Bluetooth: hci2: command tx timeout
[ 1194.580150][T20862] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1194.585428][T20862] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1194.589982][T20862] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1194.594847][T20862] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1194.667509][T20862] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1194.680882][T20862] 8021q: adding VLAN 0 to HW filter on device team0
[ 1194.687071][T20302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1194.688960][T20302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1194.699634][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1194.702254][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1194.957467][T20862] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1194.996103][T20862] veth0_vlan: entered promiscuous mode
[ 1195.009025][T20862] veth1_vlan: entered promiscuous mode
[ 1195.040270][T20862] veth0_macvtap: entered promiscuous mode
[ 1195.056098][T20862] veth1_macvtap: entered promiscuous mode
[ 1195.078580][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1195.081290][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.088144][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1195.091717][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.094712][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1195.104600][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.108305][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1195.115920][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.127882][T20862] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1195.150320][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1195.154236][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.157789][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1195.161554][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.166674][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1195.169622][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.172012][T20862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1195.175171][T20862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1195.179387][T20862] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1195.185665][T20862] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.187840][T20862] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.190033][T20862] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.192853][T20862] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.248847][T20957] bond0: option fail_over_mac: unable to set because the bond device has slaves
[ 1195.257135][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1195.259937][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1195.273316][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1195.279713][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1195.483872][T13790] Bluetooth: hci2: command tx timeout
[ 1195.509328][T20967] xt_cgroup: path and classid specified
[ 1197.564100][T13790] Bluetooth: hci2: command tx timeout
[ 1197.712371][T20984] mkiss: ax0: crc mode is auto.
[ 1198.319866][   T39] audit: type=1326 audit(2000000883.513:12797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.338993][   T39] audit: type=1326 audit(2000000883.513:12798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.352159][   T39] audit: type=1326 audit(2000000883.513:12799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.388811][   T39] audit: type=1326 audit(2000000883.513:12800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.414304][   T39] audit: type=1326 audit(2000000883.513:12801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.421652][   T39] audit: type=1326 audit(2000000883.513:12802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.428202][   T39] audit: type=1326 audit(2000000883.513:12803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.433926][   T39] audit: type=1326 audit(2000000883.513:12804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.440052][   T39] audit: type=1326 audit(2000000883.543:12805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1198.449712][   T39] audit: type=1326 audit(2000000883.553:12806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21001 comm="syz.0.4145" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x7ffc0000
[ 1199.631193][T21018] xt_cgroup: path and classid specified
[ 1201.503887][T20983] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 1201.507225][T21041] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4157'.
[ 1201.650084][T21042] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1201.663819][T20983] usb 5-1: Using ep0 maxpacket: 16
[ 1201.670979][T20983] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1201.674788][T20983] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1201.677585][T20983] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1201.682865][T20983] usb 5-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1201.690746][T20983] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1201.694726][T20983] usb 5-1: config 0 descriptor??
[ 1202.113480][T20983] hid-generic 0003:1E7D:71CE.0059: collection stack underflow
[ 1202.119565][T20983] hid-generic 0003:1E7D:71CE.0059: item 0 2 0 12 parsing failed
[ 1202.122326][T20983] hid-generic 0003:1E7D:71CE.0059: probe with driver hid-generic failed with error -22
[ 1203.270400][    T9] usb 5-1: USB disconnect, device number 62
[ 1204.177962][T21081] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4165'.
[ 1204.239858][T21083] overlayfs: failed to resolve './file1': -2
[ 1204.603293][T21087] netlink: 'syz.3.4166': attribute type 3 has an invalid length.
[ 1204.613823][T21087] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4166'.
[ 1206.110768][T21105] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4172'.
[ 1207.633825][    T9] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[ 1207.688713][T21115] vivid-000: disconnect
[ 1207.803865][    T9] usb 6-1: Using ep0 maxpacket: 16
[ 1207.808122][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1207.812023][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1207.815411][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1207.819167][    T9] usb 6-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1207.822358][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1207.834567][    T9] usb 6-1: config 0 descriptor??
[ 1207.977616][T21112] vivid-000: reconnect
[ 1208.084842][T21120] trusted_key: encrypted_key: master key parameter '' is invalid
[ 1208.247839][    T9] hid-generic 0003:1E7D:71CE.005A: collection stack underflow
[ 1208.249942][    T9] hid-generic 0003:1E7D:71CE.005A: item 0 2 0 12 parsing failed
[ 1208.252158][    T9] hid-generic 0003:1E7D:71CE.005A: probe with driver hid-generic failed with error -22
[ 1209.333869][ T5593] usb 6-1: USB disconnect, device number 50
[ 1210.049894][   T39] kauditd_printk_skb: 53 callbacks suppressed
[ 1210.049910][   T39] audit: type=1326 audit(2000000895.243:12860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.061996][   T39] audit: type=1326 audit(2000000895.253:12861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.069087][   T39] audit: type=1326 audit(2000000895.273:12862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.088595][   T39] audit: type=1326 audit(2000000895.273:12863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.107942][   T39] audit: type=1326 audit(2000000895.283:12864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.114189][   T39] audit: type=1326 audit(2000000895.283:12865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.120494][   T39] audit: type=1326 audit(2000000895.283:12866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=333 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.133858][   T39] audit: type=1326 audit(2000000895.283:12867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.139655][   T39] audit: type=1326 audit(2000000895.283:12868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.163759][   T39] audit: type=1326 audit(2000000895.283:12869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21145 comm="syz.1.4183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[ 1210.199563][T21147] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1211.298844][T21166] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4188'.
[ 1211.849398][T21178] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4190'.
[ 1212.557276][T21190] syzkaller1: entered promiscuous mode
[ 1212.559577][T21190] syzkaller1: entered allmulticast mode
[ 1212.576550][T21190] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4202'.
[ 1214.434965][T21207] autofs: Bad value for 'fd'
[ 1215.728995][T21223] syzkaller1: entered promiscuous mode
[ 1215.731050][T21223] syzkaller1: entered allmulticast mode
[ 1215.748445][T21223] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4204'.
[ 1216.014853][T21225] netlink: 92 bytes leftover after parsing attributes in process `syz.3.4205'.
[ 1216.018353][T21225] netlink: 92 bytes leftover after parsing attributes in process `syz.3.4205'.
[ 1216.218454][T21225] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1216.220359][T21225] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1216.222799][T21225] vhci_hcd vhci_hcd.0: Device attached
[ 1216.229642][T21229] vhci_hcd: connection closed
[ 1216.229790][T20302] vhci_hcd: stop threads
[ 1216.232817][T20302] vhci_hcd: release socket
[ 1216.237386][T20302] vhci_hcd: disconnect device
[ 1217.095538][T21243] block nbd3: shutting down sockets
[ 1218.176320][T21248] input: syz0 as /devices/virtual/input/input64
[ 1219.012067][   T39] kauditd_printk_skb: 54 callbacks suppressed
[ 1219.012078][   T39] audit: type=1400 audit(2000000904.203:12924): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name="#" pid=21251 comm="syz.3.4213"
[ 1219.381065][T21257] ͺͺͺͺͺ: renamed from bond_slave_0 (while UP)
[ 1219.389487][T21261] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4215'.
[ 1219.642207][T21266] netlink: 'syz.1.4223': attribute type 10 has an invalid length.
[ 1219.646565][T21266] netlink: 2 bytes leftover after parsing attributes in process `syz.1.4223'.
[ 1219.650511][T21266] bond0: entered promiscuous mode
[ 1219.652234][T21266] bond_slave_0: entered promiscuous mode
[ 1219.665371][T21266] bond_slave_1: entered promiscuous mode
[ 1219.667832][T21266] bridge0: port 3(bond0) entered blocking state
[ 1219.672683][T21266] bridge0: port 3(bond0) entered disabled state
[ 1219.677152][T21266] bond0: entered allmulticast mode
[ 1219.681101][T21266] bond_slave_0: entered allmulticast mode
[ 1219.682686][T21266] bond_slave_1: entered allmulticast mode
[ 1219.703101][T21266] bridge0: port 3(bond0) entered blocking state
[ 1219.704897][T21266] bridge0: port 3(bond0) entered forwarding state
[ 1219.950192][T21279] kAFS: No cell specified
[ 1219.976131][T21283] mkiss: ax0: crc mode is auto.
[ 1219.991500][T21283] netlink: 'syz.3.4217': attribute type 4 has an invalid length.
[ 1219.995096][T21283] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.4217'.
[ 1220.067076][T21285] netlink: 92 bytes leftover after parsing attributes in process `syz.0.4218'.
[ 1220.082238][T21285] netlink: 92 bytes leftover after parsing attributes in process `syz.0.4218'.
[ 1220.364310][T21286] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[ 1220.366434][T21286] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1220.396633][T21286] vhci_hcd vhci_hcd.0: Device attached
[ 1220.521283][T21287] vhci_hcd: connection closed
[ 1220.533433][   T45] vhci_hcd: stop threads
[ 1220.543942][   T45] vhci_hcd: release socket
[ 1220.548852][   T45] vhci_hcd: disconnect device
[ 1220.838077][T21290] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1220.842827][   T39] audit: type=1326 audit(2000000906.033:12925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21289 comm="syz.1.4219" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0
[ 1220.851256][T21290] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1220.867278][T21298] blktrace: Concurrent blktraces are not allowed on nbd2
[ 1220.925162][T21290] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1221.124278][T17792] usb usb14-port1: attempt power cycle
[ 1221.311878][T21306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4222'.
[ 1221.594017][ T1411] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[ 1221.724711][T17792] usb usb14-port1: unable to enumerate USB device
[ 1221.753829][ T1411] usb 6-1: Using ep0 maxpacket: 16
[ 1221.757783][ T1411] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1221.772521][ T1411] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1221.776644][ T1411] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1221.781123][ T1411] usb 6-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1221.784828][ T1411] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1221.789197][ T1411] usb 6-1: config 0 descriptor??
[ 1222.208183][ T1411] hid-generic 0003:1E7D:71CE.005B: collection stack underflow
[ 1222.213124][ T1411] hid-generic 0003:1E7D:71CE.005B: item 0 2 0 12 parsing failed
[ 1222.216059][ T1411] hid-generic 0003:1E7D:71CE.005B: probe with driver hid-generic failed with error -22
[ 1222.523805][T13790] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1223.167554][T20243] usb 6-1: USB disconnect, device number 51
[ 1223.462164][T21322] netlink: 288 bytes leftover after parsing attributes in process `syz.2.4228'.
[ 1224.604144][T13790] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1226.422402][T21354] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1226.485311][T21355] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1226.656213][T13790] Bluetooth: hci2: Received unexpected HCI Event 0x00
[ 1226.673793][ T1993] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[ 1226.693954][T13790] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1226.713556][T13790] Bluetooth: hci2: ACL packet for unknown connection handle 201
[ 1226.843858][ T1993] usb 5-1: Using ep0 maxpacket: 8
[ 1226.852532][ T1993] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1226.855444][ T1993] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1226.857978][ T1993] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1226.860505][ T1993] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1226.864068][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1226.867272][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1226.871020][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1226.876971][ T1993] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1226.879800][ T1993] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1226.882245][ T1993] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1226.886487][ T1993] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1226.892529][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1226.901745][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1226.910802][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1226.917854][ T1993] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1226.920455][ T1993] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1226.922420][ T1993] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1226.925921][ T1993] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1226.929309][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1226.932541][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1226.936891][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1226.952889][ T1993] usb 5-1: string descriptor 0 read error: -22
[ 1226.955174][ T1993] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1226.961065][ T1993] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1226.971393][ T1993] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1228.068093][ T1993] usb 5-1: USB disconnect, device number 63
[ 1228.368186][T21365] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4240'.
[ 1228.372543][T21365] bridge0: port 3(bond0) entered disabled state
[ 1228.374723][T21365] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1228.376785][T21365] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1228.628042][T21367] netlink: 'syz.1.4241': attribute type 4 has an invalid length.
[ 1228.630643][T21367] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4241'.
[ 1229.838196][   T39] audit: type=1400 audit(2000000915.033:12926): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AAE61616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[ 1231.267769][T21395] netlink: 'syz.1.4248': attribute type 4 has an invalid length.
[ 1231.310378][T21395] netlink: 'syz.1.4248': attribute type 4 has an invalid length.
[ 1231.627224][T21397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4249'.
[ 1231.789576][T21409] kAFS: No cell specified
[ 1231.816184][T21408] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1232.133965][ T1411] usb 5-1: new high-speed USB device number 64 using dummy_hcd
[ 1232.284465][ T1411] usb 5-1: Using ep0 maxpacket: 8
[ 1232.287413][ T1411] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1232.287430][ T1411] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1232.287439][ T1411] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1232.287455][ T1411] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1232.287467][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1232.287481][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1232.287493][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1232.288436][ T1411] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1232.288448][ T1411] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1232.288457][ T1411] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1232.288472][ T1411] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1232.288484][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1232.288496][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1232.288508][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1232.290381][ T1411] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1232.290394][ T1411] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1232.290403][ T1411] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1232.290420][ T1411] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1232.290432][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1232.290444][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1232.290456][ T1411] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1232.300718][ T1411] usb 5-1: string descriptor 0 read error: -22
[ 1232.300762][ T1411] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1232.300773][ T1411] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1232.306295][ T1411] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1233.969269][T20243] usb 5-1: USB disconnect, device number 64
[ 1234.526081][T21426] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4256'.
[ 1234.633163][T21430] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[ 1235.559409][T21439] block nbd3: shutting down sockets
[ 1236.016275][T21444] block nbd1: shutting down sockets
[ 1236.778748][T21447] netlink: 168 bytes leftover after parsing attributes in process `syz.2.4262'.
[ 1236.781979][T21447] netlink: 168 bytes leftover after parsing attributes in process `syz.2.4262'.
[ 1236.806844][T21447] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[ 1236.809465][T21447] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1236.820778][T21447] vhci_hcd vhci_hcd.0: Device attached
[ 1236.826931][T21448] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 0
[ 1236.914490][   T67] vhci_hcd: stop threads
[ 1236.914500][   T67] vhci_hcd: release socket
[ 1236.914510][   T67] vhci_hcd: disconnect device
[ 1237.055623][T21453] autofs: Bad value for 'fd'
[ 1237.094307][   T39] audit: type=1804 audit(2000000922.293:12927): pid=21453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4263" name="/newroot/82/bus/bus" dev="overlay" ino=509 res=1 errno=0
[ 1238.758823][T21472] ebtables: wrong size: *len 120, entries_size 144, replsz 144
[ 1238.768915][T21472] 9pnet_fd: Insufficient options for proto=fd
[ 1239.243564][T21470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4268'.
[ 1239.636098][T21481] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4271'.
[ 1239.707134][T21483] overlayfs: failed to resolve './file1': -2
[ 1239.900044][   T39] audit: type=1400 audit(2000000925.093:12928): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AAE61616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[ 1240.033991][ T1411] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[ 1240.067246][    C2] hpet: Lost 1 RTC interrupts
[ 1240.087593][T21493] block nbd2: shutting down sockets
[ 1240.243963][ T1411] usb 5-1: Using ep0 maxpacket: 16
[ 1240.246569][ T1411] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1240.249363][ T1411] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1240.252784][ T1411] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1240.259262][ T1411] usb 5-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1240.261766][ T1411] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1240.270241][ T1411] usb 5-1: config 0 descriptor??
[ 1240.706933][ T1411] hid-generic 0003:1E7D:71CE.005C: collection stack underflow
[ 1240.709576][ T1411] hid-generic 0003:1E7D:71CE.005C: item 0 2 0 12 parsing failed
[ 1240.712393][ T1411] hid-generic 0003:1E7D:71CE.005C: probe with driver hid-generic failed with error -22
[ 1242.738382][T21507] rtc_cmos 00:05: Alarms can be up to one day in the future
[ 1242.843311][ T1993] usb 5-1: USB disconnect, device number 65
[ 1243.263834][T19591] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[ 1243.415449][T19591] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1243.418329][T19591] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1243.420887][T19591] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1243.423401][T19591] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1243.452245][T21522] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1243.461664][T19591] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1243.730349][T15202] rtc_cmos 00:05: Alarms can be up to one day in the future
[ 1243.774700][T15202] rtc_cmos 00:05: Alarms can be up to one day in the future
[ 1243.782056][T15202] rtc_cmos 00:05: Alarms can be up to one day in the future
[ 1243.797576][T15202] rtc_cmos 00:05: Alarms can be up to one day in the future
[ 1243.826328][T15202] rtc rtc0: __rtc_set_alarm: err=-22
[ 1245.075672][T20243] usb 6-1: USB disconnect, device number 52
[ 1245.183940][T19591] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[ 1245.434010][T19591] usb 5-1: Using ep0 maxpacket: 16
[ 1245.437460][T19591] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1245.441226][T19591] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1245.444765][T19591] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1245.449205][T19591] usb 5-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1245.452365][T19591] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1245.457966][T19591] usb 5-1: config 0 descriptor??
[ 1245.653891][T10143] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1245.868128][T19591] hid-generic 0003:1E7D:71CE.005D: collection stack underflow
[ 1245.870256][T19591] hid-generic 0003:1E7D:71CE.005D: item 0 2 0 12 parsing failed
[ 1245.872806][T19591] hid-generic 0003:1E7D:71CE.005D: probe with driver hid-generic failed with error -22
[ 1246.783456][T21561] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4291'.
[ 1246.930164][T19591] usb 5-1: USB disconnect, device number 66
[ 1247.408842][T21566] tipc: Started in network mode
[ 1247.410485][T21566] tipc: Node identity ac1414aa, cluster identity 4711
[ 1247.426485][T21566] tipc: Enabled bearer <udp:syz2>, priority 0
[ 1247.721729][T21569] ebtables: wrong size: *len 120, entries_size 144, replsz 144
[ 1247.731735][T21569] 9pnet_fd: Insufficient options for proto=fd
[ 1247.986157][T21573] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4294'.
[ 1248.544009][T15202] tipc: Node number set to 2886997162
[ 1250.986496][T21587] block device autoloading is deprecated and will be removed.
[ 1252.520452][T21598] ax25_connect(): syz.0.4302 uses autobind, please contact jreuter@yaina.de
[ 1253.183955][ T1993] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[ 1253.333954][ T1993] usb 5-1: Using ep0 maxpacket: 16
[ 1253.337074][ T1993] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1253.339876][ T1993] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1253.342420][ T1993] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1253.346730][ T1993] usb 5-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1253.349940][ T1993] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1253.354993][ T1993] usb 5-1: config 0 descriptor??
[ 1253.772802][ T1993] hid-generic 0003:1E7D:71CE.005E: collection stack underflow
[ 1253.776758][ T1993] hid-generic 0003:1E7D:71CE.005E: item 0 2 0 12 parsing failed
[ 1253.779873][ T1993] hid-generic 0003:1E7D:71CE.005E: probe with driver hid-generic failed with error -22
[ 1254.208507][T21612] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4305'.
[ 1254.473819][T17792] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[ 1254.623750][T17792] usb 6-1: Using ep0 maxpacket: 8
[ 1254.634560][T17792] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1254.637188][T17792] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1254.641153][T17792] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1254.644344][T17792] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1254.646495][T17792] usb 6-1: Product: syz
[ 1254.647588][T17792] usb 6-1: Manufacturer: syz
[ 1254.648844][T17792] usb 6-1: SerialNumber: syz
[ 1254.751914][   T63] usb 5-1: USB disconnect, device number 67
[ 1254.878799][T17792] usb 6-1: invalid UAC_HEADER (v1)
[ 1254.898726][T17792] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1254.907640][T20606] udevd[20606]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1254.912606][T17792] usb 6-1: USB disconnect, device number 53
[ 1255.073773][T21618] QAT: failed to copy from user cfg_data.
[ 1255.426273][T21620] netlink: 'syz.0.4308': attribute type 10 has an invalid length.
[ 1255.433595][T21620] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1255.449725][T21624] netlink: 'syz.1.4309': attribute type 3 has an invalid length.
[ 1255.451614][T21624] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4309'.
[ 1255.583686][T21630] binder: 21629:21630 ioctl 400c620e 20001380 returned -22
[ 1255.786814][T21634] mkiss: ax0: crc mode is auto.
[ 1255.890361][T21635] mkiss: ax0: crc mode is auto.
[ 1257.294255][   T67] EXT4-fs (sda1): Delayed block allocation failed for inode 1934 at logical offset 17 with max blocks 16 with error 117
[ 1257.298102][   T67] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1257.298102][   T67] 
[ 1257.305158][   T67] EXT4-fs (sda1): Delayed block allocation failed for inode 1936 at logical offset 18 with max blocks 15 with error 117
[ 1257.308397][   T67] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1257.308397][   T67] 
[ 1257.519728][T21640] random: crng reseeded on system resumption
[ 1257.530132][T21640] siw: device registration error -23
[ 1257.823805][T20983] usb 5-1: new high-speed USB device number 68 using dummy_hcd
[ 1257.975315][T20983] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1257.979310][T20983] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1257.982848][T20983] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1257.993787][T20983] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1258.000052][T21645] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1258.005020][T20983] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1258.104938][T21647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4315'.
[ 1258.474349][T13790] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1258.479678][T13790] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1258.482573][T13790] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1258.491633][T13790] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1258.494656][T13790] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1258.497366][T13790] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1258.634280][T21653] chnl_net:caif_netlink_parms(): no params data found
[ 1258.759404][T21653] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1258.762649][T21653] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1258.770052][T21653] bridge_slave_0: entered allmulticast mode
[ 1258.773404][T21653] bridge_slave_0: entered promiscuous mode
[ 1258.782552][T21653] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1258.786107][T21653] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1258.790937][T21653] bridge_slave_1: entered allmulticast mode
[ 1258.796037][T21653] bridge_slave_1: entered promiscuous mode
[ 1258.867439][T21653] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1258.873239][T21653] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1258.922646][T21653] team0: Port device team_slave_0 added
[ 1258.926883][T21653] team0: Port device team_slave_1 added
[ 1258.958825][T21653] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1258.961211][T21653] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1258.970056][T21653] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1258.974959][T21653] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1258.977343][T21653] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1258.988664][T21653] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1259.019272][T21653] hsr_slave_0: entered promiscuous mode
[ 1259.023234][T21653] hsr_slave_1: entered promiscuous mode
[ 1259.034276][T21653] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1259.036747][T21653] Cannot create hsr debugfs directory
[ 1259.095657][   T63] usb 5-1: USB disconnect, device number 68
[ 1259.225060][T21653] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.363092][T21653] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.428744][T21653] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.515304][T21653] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1259.762136][T21653] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1259.768182][T21653] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1259.769023][T21667] netlink: 'syz.0.4320': attribute type 3 has an invalid length.
[ 1259.772728][T21667] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4320'.
[ 1259.773977][T21653] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1259.783224][T21653] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1259.869118][T21653] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1259.876363][T21653] 8021q: adding VLAN 0 to HW filter on device team0
[ 1259.881463][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1259.883535][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1259.891688][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1259.893556][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1259.912419][T21653] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1259.916102][T21653] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1260.002112][T21670] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1260.098288][T21653] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1260.122784][T21653] veth0_vlan: entered promiscuous mode
[ 1260.130309][T21653] veth1_vlan: entered promiscuous mode
[ 1260.146163][T21653] veth0_macvtap: entered promiscuous mode
[ 1260.149273][T21653] veth1_macvtap: entered promiscuous mode
[ 1260.161366][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1260.164853][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.167770][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1260.170509][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.173029][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1260.176218][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.179045][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1260.181827][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.184616][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1260.188217][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.193213][T21653] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1260.203085][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1260.206370][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.208889][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1260.211604][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.214775][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1260.218297][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.221636][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1260.225464][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.228843][T21653] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1260.232451][T21653] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1260.237161][T21653] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1260.243633][T21653] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.246981][T21653] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.250029][T21653] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.253024][T21653] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.284842][    T9] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[ 1260.313111][T13377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1260.315336][T13377] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1260.319503][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1260.321566][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1260.453993][    T9] usb 5-1: Using ep0 maxpacket: 8
[ 1260.463770][    T9] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1260.466130][    T9] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1260.479911][    T9] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1260.482342][    T9] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1260.496617][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1260.499715][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1260.502784][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1260.516799][    T9] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1260.519134][    T9] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1260.521064][    T9] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1260.523468][    T9] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1260.533399][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1260.533924][T13790] Bluetooth: hci3: command tx timeout
[ 1260.536611][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1260.542326][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1260.557265][    T9] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1260.559574][    T9] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1260.561487][    T9] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1260.563949][    T9] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1260.566958][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1260.569871][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1260.572685][    T9] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1260.599667][    T9] usb 5-1: string descriptor 0 read error: -22
[ 1260.601358][    T9] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1260.607976][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1260.628471][    T9] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1260.969452][T21689] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[ 1260.971909][T21689] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1261.002265][T21689] vhci_hcd vhci_hcd.0: Device attached
[ 1261.204495][T21690] vhci_hcd: connection closed
[ 1261.205026][   T45] vhci_hcd: stop threads
[ 1261.208167][   T45] vhci_hcd: release socket
[ 1261.210074][   T45] vhci_hcd: disconnect device
[ 1261.274177][    T9] usb 20-1: enqueue for inactive port 0
[ 1261.544121][ T1993] usb 5-1: USB disconnect, device number 69
[ 1261.764604][    T9] usb usb20-port1: attempt power cycle
[ 1262.128703][T21708] netlink: 'syz.0.4328': attribute type 3 has an invalid length.
[ 1262.131712][T21708] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4328'.
[ 1262.155836][T21709] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4327'.
[ 1262.454058][T15202] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[ 1262.454452][    T9] usb usb20-port1: unable to enumerate USB device
[ 1262.604066][T13790] Bluetooth: hci3: command tx timeout
[ 1262.615752][T15202] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1262.619454][T15202] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1262.622954][T15202] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1262.626429][T15202] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1262.630643][T15202] usb 5-1: config 0 descriptor??
[ 1263.825337][T21726] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1264.070891][T21726] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1264.677346][T15202] usbhid 5-1:0.0: can't add hid device: -71
[ 1264.679605][T15202] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1264.683863][T13790] Bluetooth: hci3: command tx timeout
[ 1264.686371][T15202] usb 5-1: USB disconnect, device number 70
[ 1265.488128][T21743] tipc: Started in network mode
[ 1265.492480][T21743] tipc: Node identity ac1414aa, cluster identity 4711
[ 1265.514916][T21743] tipc: Enabled bearer <udp:syz2>, priority 0
[ 1266.285877][T21746] trusted_key: encrypted_key: key user:syz not found
[ 1266.633863][T20172] tipc: Node number set to 2886997162
[ 1266.763941][T13790] Bluetooth: hci3: command tx timeout
[ 1267.533017][T21760] ALSA: mixer_oss: invalid OSS volume 'PHONEIΞ'
[ 1267.538988][T21760] ALSA: mixer_oss: invalid OSS volume '’’π½ρL²Ξύώ‰XTp0ώ₯œύ¦'
[ 1267.936957][T21769] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1267.944081][T21769] CIFS: Unable to determine destination address
[ 1268.573099][T21781] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond_slave_0, syncid = 0, id = 0
[ 1269.323972][T20983] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[ 1269.485331][T20983] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1269.488879][T20983] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1269.491851][T20983] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1269.503791][T20983] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1269.521190][T21786] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1269.525411][T20983] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1270.376180][T21793] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1270.533838][T17792] usb 5-1: USB disconnect, device number 71
[ 1270.673806][ T1993] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[ 1270.833939][ T1993] usb 6-1: Using ep0 maxpacket: 8
[ 1270.842465][ T1993] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1270.845081][ T1993] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1270.847078][ T1993] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1270.849874][ T1993] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1270.852886][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1270.856766][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1270.860970][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1270.866854][ T1993] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1270.870043][ T1993] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1270.872948][ T1993] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1270.876601][ T1993] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1270.880760][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1270.885136][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1270.889161][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1270.896673][ T1993] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1270.899671][ T1993] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1270.902244][ T1993] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1270.906156][ T1993] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1270.910202][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1270.914389][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1270.918777][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1270.933054][ T1993] usb 6-1: string descriptor 0 read error: -22
[ 1270.936116][ T1993] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1270.939768][ T1993] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1270.958272][ T1993] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1271.235698][T21799] Bluetooth: hci0: Opcode 0x0401 failed: -22
[ 1271.491221][T21805] rdma_rxe: rxe_newlink: failed to add team_slave_1
[ 1271.499990][T21805] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4351'.
[ 1271.538557][T21805] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[ 1271.542590][   T39] audit: type=1326 audit(2000000956.733:12929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21804 comm="syz.3.4351" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x0
[ 1271.763447][ T1993] usb 6-1: USB disconnect, device number 54
[ 1273.254083][T13790] Bluetooth: hci0: command tx timeout
[ 1273.308371][T21823] autofs: Bad value for 'fd'
[ 1273.372963][   T39] audit: type=1804 audit(2000000958.563:12930): pid=21823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4356" name="/newroot/8/bus/bus" dev="overlay" ino=76 res=1 errno=0
[ 1273.880336][T21828] netlink: 3 bytes leftover after parsing attributes in process `syz.2.4357'.
[ 1274.109939][T21832] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1274.155681][T21834] netlink: 288 bytes leftover after parsing attributes in process `syz.1.4358'.
[ 1276.077317][T21859] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[ 1276.079586][T21859] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1276.082432][T21859] vhci_hcd vhci_hcd.0: Device attached
[ 1276.310682][T21863] vhci_hcd: connection closed
[ 1276.332122][T13377] vhci_hcd: stop threads
[ 1276.336318][T13377] vhci_hcd: release socket
[ 1276.337965][T13377] vhci_hcd: disconnect device
[ 1276.384025][T15202] usb 14-1: enqueue for inactive port 0
[ 1276.875715][T15202] usb usb14-port1: attempt power cycle
[ 1276.955743][T13790] Bluetooth: hci3: unknown advertising packet type: 0x65
[ 1276.955810][T13790] Bluetooth: hci3: unknown advertising packet type: 0x07
[ 1276.960191][T13790] Bluetooth: hci3: Dropping invalid advertising data
[ 1276.964831][T13790] Bluetooth: hci3: Malformed LE Event: 0x02
[ 1277.113802][ T1448] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[ 1277.273823][ T1448] usb 6-1: Using ep0 maxpacket: 16
[ 1277.278980][ T1448] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1277.281799][ T1448] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1277.284744][ T1448] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1277.288195][ T1448] usb 6-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1277.290666][ T1448] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1277.323944][ T1448] usb 6-1: config 0 descriptor??
[ 1277.435124][T15202] usb usb14-port1: unable to enumerate USB device
[ 1277.513961][T21875] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4367'.
[ 1277.760825][ T1448] hid-generic 0003:1E7D:71CE.005F: collection stack underflow
[ 1277.764845][ T1448] hid-generic 0003:1E7D:71CE.005F: item 0 2 0 12 parsing failed
[ 1277.767102][ T1448] hid-generic 0003:1E7D:71CE.005F: probe with driver hid-generic failed with error -22
[ 1278.992056][T21888] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4368'.
[ 1279.681278][ T1448] usb 6-1: USB disconnect, device number 55
[ 1280.504526][T21909] autofs: Bad value for 'fd'
[ 1280.544941][   T39] audit: type=1804 audit(2000000965.743:12931): pid=21909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4375" name="/newroot/111/bus/bus" dev="overlay" ino=663 res=1 errno=0
[ 1281.521302][T21920] autofs: Unknown parameter './file1'
[ 1282.178487][T21926] syz.2.4380: attempt to access beyond end of device
[ 1282.178487][T21926] nbd2: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1282.182354][T21926] SQUASHFS error: Failed to read block 0x0: -5
[ 1282.184444][T21926] unable to read squashfs_super_block
[ 1282.660363][T21930] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[ 1282.942989][T21937] CIFS: Unable to determine destination address
[ 1284.615983][T21958] autofs: Bad value for 'fd'
[ 1284.683978][T13790] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1284.684511][   T39] audit: type=1804 audit(2000001481.888:12932): pid=21958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4387" name="/newroot/120/bus/bus" dev="overlay" ino=723 res=1 errno=0
[ 1284.773888][ T5593] usb 6-1: new full-speed USB device number 56 using dummy_hcd
[ 1284.935395][ T5593] usb 6-1: config 1 interface 0 has no altsetting 0
[ 1284.939440][ T5593] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1284.942929][ T5593] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1284.945950][ T5593] usb 6-1: Product: syz
[ 1284.947507][ T5593] usb 6-1: Manufacturer: syz
[ 1284.949123][ T5593] usb 6-1: SerialNumber: syz
[ 1285.135014][T21965] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond_slave_0, syncid = 0, id = 0
[ 1286.583382][T21978] netlink: 'syz.0.4394': attribute type 3 has an invalid length.
[ 1286.586088][T21978] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4394'.
[ 1287.276160][T21989] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4397'.
[ 1287.577727][   T12] EXT4-fs (sda1): Delayed block allocation failed for inode 1934 at logical offset 17 with max blocks 1 with error 117
[ 1287.581298][   T12] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1287.581298][   T12] 
[ 1287.666126][ T5593] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 56 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[ 1287.672377][ T5593] usb 6-1: USB disconnect, device number 56
[ 1287.684714][ T5593] usblp0: removed
[ 1288.213332][T13346] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[ 1288.222613][T13346] hid-generic 0000:0000:0000.0060: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1289.131189][   T39] audit: type=1326 audit(2000001486.318:12933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22013 comm="syz.0.4405" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x0
[ 1289.449740][T22021] rdma_rxe: rxe_newlink: failed to add team_slave_1
[ 1289.455592][T22021] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4406'.
[ 1289.458541][T22021] sch_tbf: burst 88 is lower than device netdevsim1 mtu (1514) !
[ 1289.482084][   T39] audit: type=1326 audit(2000001486.678:12934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22020 comm="syz.2.4406" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x0
[ 1290.411640][T22032] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4408'.
[ 1290.517764][   T76] bond0: (slave bond_slave_0): interface is now down
[ 1290.524189][   T76] bond0: (slave bond_slave_1): interface is now down
[ 1290.545722][   T76] bond0: now running without any active interface!
[ 1290.551314][T22033] netlink: 'syz.2.4408': attribute type 10 has an invalid length.
[ 1290.566675][T22033] bond0: (slave netdevsim0): no link monitoring support
[ 1290.572266][T22033] bond0: (slave netdevsim0): Enslaving as an active interface with a down link
[ 1292.816781][T22060] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4416'.
[ 1292.998900][T22060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1294.020374][   T39] audit: type=1800 audit(2000001491.218:12935): pid=22072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.0.4419" name="/file0" dev="overlay" ino=786 res=0 errno=0
[ 1294.033903][   T39] audit: type=1804 audit(2000001491.228:12936): pid=22077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4419" name="/newroot/129/bus/file0" dev="overlay" ino=786 res=1 errno=0
[ 1294.327135][T22087] trusted_key: encrypted_key: key user:syz not found
[ 1296.113817][T20983] usb 6-1: new high-speed USB device number 57 using dummy_hcd
[ 1296.263776][T20983] usb 6-1: Using ep0 maxpacket: 8
[ 1296.272140][T20983] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1296.275287][T20983] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1296.280780][T20983] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1296.284329][T20983] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1296.288339][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1296.292297][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1296.295954][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1296.300739][T20983] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1296.307350][T20983] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1296.309974][T20983] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1296.313163][T20983] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1296.319502][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1296.323409][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1296.331722][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1296.342443][T20983] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1296.348939][T20983] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1296.351565][T20983] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1296.357198][T20983] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1296.361119][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1296.368171][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1296.372092][T20983] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1296.381260][T20983] usb 6-1: string descriptor 0 read error: -22
[ 1296.385812][T20983] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1296.388980][T20983] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1296.409561][T20983] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1297.608830][ T1993] usb 6-1: USB disconnect, device number 57
[ 1297.627551][T22129] trusted_key: encrypted_key: key user:syz not found
[ 1297.836907][T22136] xt_connbytes: Forcing CT accounting to be enabled
[ 1297.841784][T22136] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1300.469224][T22178] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4456'.
[ 1300.513008][T22180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4457'.
[ 1300.744526][T22193] openvswitch: netlink: Missing valid actions attribute.
[ 1300.746388][T22193] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1300.784362][T22195] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4464'.
[ 1301.049184][   T39] audit: type=1800 audit(2000001498.248:12937): pid=22204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.4469" name="/file0" dev="overlay" ino=755 res=0 errno=0
[ 1301.081080][   T39] audit: type=1804 audit(2000001498.248:12938): pid=22204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4469" name="/newroot/127/bus/file0" dev="overlay" ino=755 res=1 errno=0
[ 1302.210850][T22256] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4491'.
[ 1302.213305][T22256] openvswitch: netlink: EtherType 0 is less than min 600
[ 1302.483856][ T5593] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[ 1302.633793][ T5593] usb 5-1: Using ep0 maxpacket: 8
[ 1302.636686][ T5593] usb 5-1: config 251 has an invalid interface number: 29 but max is 0
[ 1302.639271][ T5593] usb 5-1: config 251 has no interface number 0
[ 1302.641020][ T5593] usb 5-1: config 251 interface 29 altsetting 71 has an invalid descriptor for endpoint zero, skipping
[ 1302.644023][ T5593] usb 5-1: config 251 interface 29 altsetting 71 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[ 1302.647795][ T5593] usb 5-1: config 251 interface 29 has no altsetting 0
[ 1302.650036][ T5593] usb 5-1: New USB device found, idVendor=054c, idProduct=0069, bcdDevice= a.8d
[ 1302.652487][ T5593] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1302.867411][ T5593] usb 5-1: string descriptor 0 read error: -71
[ 1302.872190][ T5593] usb-storage 5-1:251.29: USB Mass Storage device detected
[ 1302.882283][ T5593] usb-storage 5-1:251.29: Quirks match for vid 054c pid 0069: 1
[ 1302.959145][ T5593] usb 5-1: USB disconnect, device number 72
[ 1304.440813][T22291] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4506'.
[ 1304.718864][T22318] pimreg: entered allmulticast mode
[ 1304.762681][T22322] random: crng reseeded on system resumption
[ 1305.103281][T22340] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1305.452971][T22353] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1306.257602][T22366] netlink: 'syz.0.4540': attribute type 3 has an invalid length.
[ 1306.260534][T22366] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4540'.
[ 1306.360236][T22369] netlink: 3 bytes leftover after parsing attributes in process `syz.0.4541'.
[ 1306.393502][T22369] netlink: 56 bytes leftover after parsing attributes in process `syz.0.4541'.
[ 1306.524445][T22369] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1306.813922][ T9505] usb 5-1: new high-speed USB device number 73 using dummy_hcd
[ 1306.963947][ T9505] usb 5-1: Using ep0 maxpacket: 8
[ 1306.985138][ T9505] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1306.987524][ T9505] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1306.989497][ T9505] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1306.991962][ T9505] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1306.995365][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1306.998571][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1307.001521][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1307.006631][ T9505] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1307.009656][ T9505] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1307.012188][ T9505] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1307.015753][ T9505] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1307.019675][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1307.022664][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1307.029896][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1307.033983][ T9505] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1307.036322][ T9505] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1307.038454][ T9505] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1307.041438][ T9505] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1307.048422][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1307.051528][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1307.054612][ T9505] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1307.059857][ T9505] usb 5-1: string descriptor 0 read error: -22
[ 1307.061511][ T9505] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1307.066801][ T9505] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1307.072241][ T9505] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1307.674578][T13346] usb 5-1: USB disconnect, device number 73
[ 1312.468440][T22384] netlink: 'syz.3.4546': attribute type 3 has an invalid length.
[ 1312.471181][T22384] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.4546'.
[ 1312.525333][T22392] netlink: 'syz.1.4551': attribute type 19 has an invalid length.
[ 1312.528771][T22389] netlink: 'syz.0.4549': attribute type 3 has an invalid length.
[ 1312.530956][T22389] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4549'.
[ 1312.562348][T10143] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1312.568418][T10143] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1312.571422][T10143] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1312.575064][T10143] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1312.577396][T10143] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1312.579690][T10143] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1312.607696][T22405] netlink: 'syz.3.4556': attribute type 10 has an invalid length.
[ 1312.624568][T22405] macvlan0: entered promiscuous mode
[ 1312.626050][T22405] macvlan0: entered allmulticast mode
[ 1312.629581][T22405] veth1_vlan: entered allmulticast mode
[ 1312.633081][T22405] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[ 1312.724315][T22395] chnl_net:caif_netlink_parms(): no params data found
[ 1312.731558][T22417] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4560'.
[ 1312.799943][T22425] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4563'.
[ 1312.802808][T22425] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4563'.
[ 1312.836556][T22395] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1312.841776][T22395] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1312.845897][T22395] bridge_slave_0: entered allmulticast mode
[ 1312.848301][T22395] bridge_slave_0: entered promiscuous mode
[ 1312.855157][T22395] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1312.857156][T22395] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1312.859100][T22395] bridge_slave_1: entered allmulticast mode
[ 1312.861690][T22395] bridge_slave_1: entered promiscuous mode
[ 1312.892873][T22395] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1312.896902][T22395] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1312.943625][T22395] team0: Port device team_slave_0 added
[ 1312.946929][T22395] team0: Port device team_slave_1 added
[ 1312.967683][T22395] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1312.969530][T22395] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1312.977763][T22395] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1312.981439][T22395] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1312.983328][T22395] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1312.991515][T22395] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1312.999408][T22445] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 3, id = 0
[ 1313.055403][T22395] hsr_slave_0: entered promiscuous mode
[ 1313.057482][T22395] hsr_slave_1: entered promiscuous mode
[ 1313.059363][T22395] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1313.061421][T22395] Cannot create hsr debugfs directory
[ 1313.152647][T22395] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.264786][T22395] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.323841][ T1448] usb 6-1: new high-speed USB device number 58 using dummy_hcd
[ 1313.335747][T22395] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.431897][T22395] bond0: (slave netdevsim0): Releasing backup interface
[ 1313.437639][T22395] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.483909][ T1448] usb 6-1: Using ep0 maxpacket: 16
[ 1313.487376][ T1448] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1313.491457][ T1448] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1313.496542][ T1448] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1313.501423][ T1448] usb 6-1: New USB device found, idVendor=1e7d, idProduct=71ce, bcdDevice= 0.00
[ 1313.505409][ T1448] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1313.512429][ T1448] usb 6-1: config 0 descriptor??
[ 1313.546021][T22395] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1313.549074][T22395] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1313.552114][T22395] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1313.566956][T22395] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1313.577017][T22395] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1313.578901][T22395] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1313.580988][T22395] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1313.583133][T22395] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1313.610995][T22395] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1313.618079][T22395] 8021q: adding VLAN 0 to HW filter on device team0
[ 1313.628923][T13377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1313.671842][T13377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1313.673810][T13377] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1313.756662][T22465] syz_tun: entered promiscuous mode
[ 1313.758575][T22465] macvlan2: entered promiscuous mode
[ 1313.805471][T22395] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1313.827165][T22395] veth0_vlan: entered promiscuous mode
[ 1313.833407][T22395] veth1_vlan: entered promiscuous mode
[ 1313.853252][T22395] veth0_macvtap: entered promiscuous mode
[ 1313.856873][T22395] veth1_macvtap: entered promiscuous mode
[ 1313.865081][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1313.870549][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.873160][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1313.876626][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.879383][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1313.882913][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.886662][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1313.890092][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.893192][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1313.897222][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.900415][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1313.903941][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.929247][T22395] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1313.933565][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1313.937450][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.939833][ T1448] hid-generic 0003:1E7D:71CE.0061: collection stack underflow
[ 1313.941038][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1313.947842][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.948496][ T1448] hid-generic 0003:1E7D:71CE.0061: item 0 2 0 12 parsing failed
[ 1313.951370][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1313.958686][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.960105][ T1448] hid-generic 0003:1E7D:71CE.0061: probe with driver hid-generic failed with error -22
[ 1313.962555][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1313.975729][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.978801][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1313.982526][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.986342][T22395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1313.990021][T22395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1313.994954][T22395] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1314.005213][T22395] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.008396][T22395] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.011553][T22395] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.016593][T22395] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1314.045635][T22478] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1314.089958][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1314.092648][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1314.105822][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1314.108760][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1314.145022][T22484] netlink: 'syz.0.4584': attribute type 3 has an invalid length.
[ 1314.147123][T22484] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4584'.
[ 1314.198024][T22486] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4585'.
[ 1314.304407][T22493] netlink: 'syz.0.4596': attribute type 3 has an invalid length.
[ 1314.309378][T22493] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4596'.
[ 1314.683937][T13790] Bluetooth: hci4: command 0x0409 tx timeout
[ 1314.861907][ T5593] usb 6-1: USB disconnect, device number 58
[ 1314.998649][T22500] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1315.283985][ T1993] usb 5-1: new high-speed USB device number 74 using dummy_hcd
[ 1315.443954][ T1993] usb 5-1: Using ep0 maxpacket: 8
[ 1315.448881][ T1993] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1315.451415][ T1993] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1315.455439][ T1993] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1315.461685][ T1993] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1315.466764][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1315.470778][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1315.475517][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1315.483815][ T1993] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1315.487791][ T1993] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1315.491714][ T1993] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1315.499773][ T1993] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1315.503340][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1315.506761][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1315.510306][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1315.514845][ T1993] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1315.517965][ T1993] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1315.520787][ T1993] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1315.523685][ T1993] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1315.529311][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1315.533329][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1315.537713][ T1993] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1315.552270][ T1993] usb 5-1: string descriptor 0 read error: -22
[ 1315.554927][ T1993] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1315.557675][ T1993] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1315.573227][ T1993] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1315.890875][T22525] netlink: 4272 bytes leftover after parsing attributes in process `syz.1.4601'.
[ 1315.893325][T22525] netlink: 133 bytes leftover after parsing attributes in process `syz.1.4601'.
[ 1316.572187][ T1993] usb 5-1: USB disconnect, device number 74
[ 1316.764061][T10143] Bluetooth: hci4: command 0x0409 tx timeout
[ 1317.255941][T10143] Bluetooth: hci4: Malformed LE Event: 0x0b
[ 1317.462304][T22602] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[ 1317.799265][T22609] __nla_validate_parse: 2 callbacks suppressed
[ 1317.799281][T22609] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4636'.
[ 1318.018116][T22613] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1318.843857][T10143] Bluetooth: hci4: command 0x0409 tx timeout
[ 1320.315102][T22623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4638'.
[ 1320.923865][T10143] Bluetooth: hci4: command 0x0409 tx timeout
[ 1321.413158][T22651] netlink: 'syz.0.4653': attribute type 10 has an invalid length.
[ 1321.416729][T22651] bond0: (slave ͺͺͺͺͺ): Releasing backup interface
[ 1321.484770][T22650] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1321.754016][ T1993] usb 6-1: new high-speed USB device number 59 using dummy_hcd
[ 1321.914094][ T1993] usb 6-1: Using ep0 maxpacket: 8
[ 1321.917577][ T1993] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1321.919965][ T1993] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1321.924551][ T1993] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1321.932772][ T1993] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1321.936582][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1321.941046][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1321.946316][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1321.951054][ T1993] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1321.954166][ T1993] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1321.956367][ T1993] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1321.958892][ T1993] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1321.962434][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1321.966421][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1321.969515][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1321.973594][ T1993] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1321.976837][ T1993] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1321.979093][ T1993] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1321.981604][ T1993] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1321.986474][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1321.989877][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1321.993074][ T1993] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1322.012043][ T1993] usb 6-1: string descriptor 0 read error: -22
[ 1322.014267][ T1993] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1322.016783][ T1993] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1322.028525][ T1993] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1322.067371][T22664] 
[ 1322.068266][T22664] ======================================================
[ 1322.070644][T22664] WARNING: possible circular locking dependency detected
[ 1322.073020][T22664] 6.11.0-syzkaller-11624-ge477dba5442c #0 Not tainted
[ 1322.075905][T22664] ------------------------------------------------------
[ 1322.079028][T22664] syz.2.4659/22664 is trying to acquire lock:
[ 1322.081052][T22664] ffff88802a76b708 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x39c/0x2370
[ 1322.084702][T22664] 
[ 1322.084702][T22664] but task is already holding lock:
[ 1322.087199][T22664] ffff888021eacd98 (&mm->mmap_lock){++++}-{3:3}, at: __do_sys_remap_file_pages+0x184/0x900
[ 1322.090564][T22664] 
[ 1322.090564][T22664] which lock already depends on the new lock.
[ 1322.090564][T22664] 
[ 1322.094048][T22664] 
[ 1322.094048][T22664] the existing dependency chain (in reverse order) is:
[ 1322.097060][T22664] 
[ 1322.097060][T22664] -> #1 (&mm->mmap_lock){++++}-{3:3}:
[ 1322.099646][T22664]        down_read_killable+0x9d/0x380
[ 1322.101525][T22664]        lock_mm_and_find_vma+0x3a9/0x6a0
[ 1322.103468][T22664]        do_user_addr_fault+0x2b5/0x13f0
[ 1322.105402][T22664]        exc_page_fault+0x5c/0xc0
[ 1322.107117][T22664]        asm_exc_page_fault+0x26/0x30
[ 1322.108980][T22664]        fault_in_readable+0x1a6/0x230
[ 1322.110830][T22664]        fault_in_iov_iter_readable+0x101/0x2c0
[ 1322.112967][T22664]        generic_perform_write+0x21b/0x920
[ 1322.114946][T22664]        shmem_file_write_iter+0x10e/0x140
[ 1322.116921][T22664]        vfs_write+0x6b5/0x1140
[ 1322.118596][T22664]        ksys_write+0x12f/0x260
[ 1322.120266][T22664]        __do_fast_syscall_32+0x73/0x120
[ 1322.122167][T22664]        do_fast_syscall_32+0x32/0x80
[ 1322.123962][T22664]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1322.126268][T22664] 
[ 1322.126268][T22664] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}:
[ 1322.129201][T22664]        __lock_acquire+0x250b/0x3ce0
[ 1322.131039][T22664]        lock_acquire+0x1b1/0x560
[ 1322.132686][T22664]        down_write+0x93/0x200
[ 1322.134226][T22664]        process_measurement+0x39c/0x2370
[ 1322.136211][T22664]        ima_file_mmap+0x146/0x1d0
[ 1322.137819][T22664]        security_mmap_file+0x8bd/0x990
[ 1322.139442][T22664]        __do_sys_remap_file_pages+0x526/0x900
[ 1322.140973][T22664]        __do_fast_syscall_32+0x73/0x120
[ 1322.142882][T22664]        do_fast_syscall_32+0x32/0x80
[ 1322.144651][T22664]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1322.146981][T22664] 
[ 1322.146981][T22664] other info that might help us debug this:
[ 1322.146981][T22664] 
[ 1322.150220][T22664]  Possible unsafe locking scenario:
[ 1322.150220][T22664] 
[ 1322.152474][T22664]        CPU0                    CPU1
[ 1322.154309][T22664]        ----                    ----
[ 1322.155876][T22664]   lock(&mm->mmap_lock);
[ 1322.157191][T22664]                                lock(&sb->s_type->i_mutex_key#12);
[ 1322.159924][T22664]                                lock(&mm->mmap_lock);
[ 1322.161967][T22664]   lock(&sb->s_type->i_mutex_key#12);
[ 1322.163793][T22664] 
[ 1322.163793][T22664]  *** DEADLOCK ***
[ 1322.163793][T22664] 
[ 1322.166444][T22664] 1 lock held by syz.2.4659/22664:
[ 1322.168054][T22664]  #0: ffff888021eacd98 (&mm->mmap_lock){++++}-{3:3}, at: __do_sys_remap_file_pages+0x184/0x900
[ 1322.170842][T22664] 
[ 1322.170842][T22664] stack backtrace:
[ 1322.172655][T22664] CPU: 2 UID: 0 PID: 22664 Comm: syz.2.4659 Not tainted 6.11.0-syzkaller-11624-ge477dba5442c #0
[ 1322.175814][T22664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1322.179289][T22664] Call Trace:
[ 1322.180421][T22664]  <TASK>
[ 1322.181227][T22664]  dump_stack_lvl+0x116/0x1f0
[ 1322.182856][T22664]  print_circular_bug+0x419/0x5d0
[ 1322.184583][T22664]  check_noncircular+0x31a/0x400
[ 1322.186336][T22664]  ? __pfx_check_noncircular+0x10/0x10
[ 1322.188070][T22664]  ? register_lock_class+0xb1/0x1240
[ 1322.189532][T22664]  ? lockdep_lock+0xc6/0x200
[ 1322.190845][T22664]  ? __pfx_lockdep_lock+0x10/0x10
[ 1322.192313][T22664]  __lock_acquire+0x250b/0x3ce0
[ 1322.194029][T22664]  ? __pfx___lock_acquire+0x10/0x10
[ 1322.195850][T22664]  lock_acquire+0x1b1/0x560
[ 1322.197453][T22664]  ? process_measurement+0x39c/0x2370
[ 1322.199330][T22664]  ? __pfx_lock_acquire+0x10/0x10
[ 1322.201088][T22664]  ? __pfx_ima_match_policy+0x10/0x10
[ 1322.202928][T22664]  ? __pfx___might_resched+0x10/0x10
[ 1322.204674][T22664]  down_write+0x93/0x200
[ 1322.206183][T22664]  ? process_measurement+0x39c/0x2370
[ 1322.208033][T22664]  ? __pfx_down_write+0x10/0x10
[ 1322.209770][T22664]  process_measurement+0x39c/0x2370
[ 1322.211584][T22664]  ? __pfx___lock_acquire+0x10/0x10
[ 1322.213389][T22664]  ? __pfx_process_measurement+0x10/0x10
[ 1322.215314][T22664]  ? find_held_lock+0x2d/0x110
[ 1322.216954][T22664]  ? aa_file_perm+0x4c6/0xfe0
[ 1322.218591][T22664]  ? __pfx_lock_release+0x10/0x10
[ 1322.220343][T22664]  ? __pfx_aa_file_perm+0x10/0x10
[ 1322.222096][T22664]  ? mtree_load+0x326/0xa40
[ 1322.223678][T22664]  ima_file_mmap+0x146/0x1d0
[ 1322.225306][T22664]  ? __pfx_ima_file_mmap+0x10/0x10
[ 1322.227099][T22664]  security_mmap_file+0x8bd/0x990
[ 1322.228864][T22664]  __do_sys_remap_file_pages+0x526/0x900
[ 1322.230855][T22664]  ? __pfx_do_futex+0x10/0x10
[ 1322.232528][T22664]  ? __pfx___do_sys_remap_file_pages+0x10/0x10
[ 1322.234670][T22664]  ? __ia32_sys_futex_time32+0x1da/0x460
[ 1322.236629][T22664]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[ 1322.238733][T22664]  __do_fast_syscall_32+0x73/0x120
[ 1322.240417][T22664]  do_fast_syscall_32+0x32/0x80
[ 1322.242116][T22664]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1322.244271][T22664] RIP: 0023:0xf73ae579
[ 1322.245678][T22664] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1322.252282][T22664] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000101
[ 1322.255167][T22664] RAX: ffffffffffffffda RBX: 0000000020800000 RCX: 0000000000800000
[ 1322.257875][T22664] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1322.260726][T22664] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1322.263485][T22664] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1322.266172][T22664] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1322.268797][T22664]  </TASK>
[ 1322.549565][ T1993] usb 6-1: USB disconnect, device number 59
[ 1323.003808][T10143] Bluetooth: hci4: command 0x0409 tx timeout

VM DIAGNOSIS:
21:00:15  Registers:
info registers vcpu 0

CPU#0
RAX=0000000006d4586c RBX=0000000000000000 RCX=ffffffff8b111699 RDX=ffffed1005687026
RSI=ffffffff8bb11980 RDI=ffffffff81638d5c RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20
R8 =0000000000000000 R9 =ffffed1005687025 R10=ffff88802b43812b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff901cb048 R15=0000000000000000
RIP=ffffffff8b112a7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000032b1fffc CR3=00000000488ce000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000045cce24 RBX=0000000000000001 RCX=ffffffff8b111699 RDX=ffffed10056a7026
RSI=ffffffff8bb11980 RDI=ffffffff81638d5c RBP=ffffed10036e9910 RSP=ffffc90000477e08
R8 =0000000000000000 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000001
R12=0000000000000001 R13=ffff88801b74c880 R14=ffffffff901cb048 R15=0000000000000000
RIP=ffffffff8b112a7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020028000 CR3=00000000578b0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85027735 RDI=ffffffff9a62d260 RBP=ffffffff9a62d220 RSP=ffffc90002cb70c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000030 R14=ffffffff850276d0 R15=0000000000000000
RIP=ffffffff8502775f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73d5008 CR3=000000005805e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=ffff888072b9bd00 RCX=ffffffff81ca571a RDX=1ffff1100351400a
RSI=0000000020000000 RDI=0000000000000000 RBP=0000000020000000 RSP=ffffc90000e7f6d8
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000400 R11=ffff88802b728a40
R12=ffff88801a8a0000 R13=ffffc90000e7f870 R14=0000000000000002 R15=ffffc90000e7f860
RIP=ffffffff818c2b90 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7485008 CR3=00000000578b0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000076 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000