last executing test programs:

3.271198417s ago: executing program 2 (id=69):
syz_usb_connect(0x5, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="120100003b7431087d077a62010001020301090224000100000000090400000203"], 0x0)

1.650656038s ago: executing program 2 (id=78):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001040)=ANY=[@ANYBLOB="a00000000001050500000000000000000a000005440002802c00018014000300ff01000000000000000000000000000114000400ff0200000000000000000000000000010c000280050001000000000006080000000000003c0001800c00028005000100000000002c00018014000300"], 0xa0}}, 0x0)

1.547952871s ago: executing program 2 (id=79):
fanotify_mark(0xffffffffffffffff, 0x8, 0x1010, 0xffffffffffffffff, 0x0)

1.484504885s ago: executing program 2 (id=82):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000001a00010027bd700003dcdf2502202001000000000020000008001d00ac1434aa08001e80"], 0x2c}}, 0x4040000)

1.380594091s ago: executing program 2 (id=83):
syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x20, [0x6, 0x8, 0xfffffff1, 0x9, 0x7f, 0x7, 0x10001, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0x7fffffff, 0x40000000, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x2, 0xffff, 0x7, 0x9, 0xffff, 0x3c5b, 0x1, 0x24, 0x3, 0xfffffffe, 0x3ff, 0x2, 0x24, 0x3, 0x3, 0x43, 0x7fff, 0x4c74, 0xf, 0x8001, 0x4, 0xa, 0x9, 0x80071, 0x5, 0xfffff000, 0x104, 0x0, 0x5, 0x803c, 0x4, 0x1, 0x3, 0x3, 0x5, 0x4, 0x8, 0x0, 0x80, 0x2, 0x5, 0xa, 0x8, 0x7, 0x1, 0xfffffffe], [0x10000004, 0xfffd, 0xfff, 0x8000, 0xc, 0xfffffff5, 0x129432e6, 0x3, 0x6, 0x0, 0x2bf, 0x8, 0x9, 0xffff7ffe, 0x3, 0x4002, 0x101, 0x5, 0x2f, 0xe, 0xfff, 0x78, 0x10000ea3, 0xa, 0xe, 0x0, 0x8000, 0xfffffff8, 0x400, 0x101, 0x0, 0xfffffffd, 0xff, 0x1005, 0x7ff, 0x5f31, 0xc, 0x6000000, 0x6, 0x2, 0xc, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x4, 0x1, 0x0, 0xffff, 0x0, 0x7f, 0xb, 0xfff, 0x1000, 0x4, 0x143, 0x7, 0xb, 0x9, 0x48c93690, 0x2, 0x3], [0xfffffff9, 0x4, 0xffffffff, 0x64e, 0xfffffdfe, 0x5, 0x8d2, 0x9, 0x5, 0xfffffff7, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x2, 0x10000009, 0x3ea, 0xb, 0x5, 0x6, 0x2, 0x14, 0x87, 0x0, 0x5, 0x5, 0x3b, 0xda6, 0x5, 0x80, 0x3, 0xfffffffe, 0x202, 0x0, 0xa2, 0x7, 0x53cf697b, 0x3, 0x3, 0x1, 0xbf, 0x200, 0x0, 0x400002, 0x8, 0x4, 0x5, 0xf23, 0x0, 0x6, 0x8, 0x9, 0x3, 0x6, 0xd, 0x4, 0x3], [0x9, 0x7e06, 0x3, 0xb, 0x5, 0x938, 0x6, 0x3, 0xfffffffc, 0x5, 0xce7, 0x1ff, 0x6, 0x5, 0x5, 0x0, 0x101, 0x10003, 0x2006, 0x7fff, 0x8ffff, 0x6, 0x100002, 0x2, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0x400007, 0xffffffa1, 0x5, 0x9, 0x8, 0x4, 0x50fd, 0x10001, 0x3, 0x9, 0x100, 0x9, 0xa, 0x2, 0x80000007, 0x6, 0x1, 0x10000, 0xfffffffe, 0x8, 0x6, 0xa23, 0x8, 0x9, 0x1, 0x6c1b, 0x2d513b50, 0x4, 0x5, 0x4b1c, 0x1, 0xa, 0xffff7441, 0xfff]}, 0x45c)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
write$char_usb(r1, &(0x7f0000000040)="e2", 0x918)
clock_gettime(0x0, &(0x7f00000008c0))
ppoll(&(0x7f0000000880)=[{r0, 0x10}], 0x1, 0x0, 0x0, 0x0)

1.380365573s ago: executing program 0 (id=84):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.319690843s ago: executing program 1 (id=85):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000049c0)={0x3, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x87}, @call={0x85, 0x0, 0x0, 0xe}]}, &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x56, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)

1.319304596s ago: executing program 0 (id=86):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
mknod(&(0x7f0000000280)='./file0\x00', 0x1ffa, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f0000000080))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./bus\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000000)='./bus/file0\x00', 0x0)

1.269565994s ago: executing program 1 (id=87):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000000800000000000003000000850000002c00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000010000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2107, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1.269217092s ago: executing program 0 (id=88):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x27)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f00000001c0)='./file0\x00')
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)

1.197967531s ago: executing program 1 (id=89):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

1.197802701s ago: executing program 0 (id=90):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)={0x28, 0x3e, 0x107, 0xfffffffe, 0x0, {0x4, 0x7c}, [@nested={0x8, 0x142, 0x0, 0x1, [@nested={0x4, 0x7}]}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xc000}, 0xc000)

1.14087232s ago: executing program 1 (id=91):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000280)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)

1.090745436s ago: executing program 0 (id=92):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x4000)

1.090510366s ago: executing program 0 (id=93):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x48, 0x3, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0x1}}], {0x14}}, 0xa4}}, 0x0)

359.252278ms ago: executing program 2 (id=94):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x17)
r0 = userfaultfd(0x801)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})

150.527638ms ago: executing program 1 (id=95):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ip6_mr_vif\x00')
pread64(r0, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)

0s ago: executing program 1 (id=96):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000600), 0xfec8)
recvmmsg(r1, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000000ac0)=[{&(0x7f00000004c0)=""/203, 0xcb}, {&(0x7f0000000140), 0xa}, {&(0x7f0000000300)=""/225, 0x2}, {&(0x7f0000000400)=""/41, 0xfeb2}, {&(0x7f00000001c0)=""/200, 0x6}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f0000000800)=""/49}, {&(0x7f00000009c0)=""/222}], 0x6, &(0x7f0000000640)=""/123, 0xfffffffffffffe63, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000880)=""/24, 0xffffffffffffffe5}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='mm_vmscan_write_folio\x00', r2, 0x0, 0x200}, 0x18)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:33587' (ED25519) to the list of known hosts.
syzkaller login: [   48.197364][ T5769] cgroup: Unknown subsys name 'net'
[   48.306073][ T5769] cgroup: Unknown subsys name 'cpuset'
[   48.314701][ T5769] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.332645][ T5769] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.153937][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.157115][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.159614][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.166022][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.168802][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.172538][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.176372][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.196783][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.201521][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.204556][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.236173][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.240741][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.252110][ T5844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.256386][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.259803][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.557872][ T5842] chnl_net:caif_netlink_parms(): no params data found
[   55.584560][ T5837] chnl_net:caif_netlink_parms(): no params data found
[   55.636818][ T5847] chnl_net:caif_netlink_parms(): no params data found
[   55.790828][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.793721][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.796892][ T5837] bridge_slave_0: entered allmulticast mode
[   55.801767][ T5837] bridge_slave_0: entered promiscuous mode
[   55.812806][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.815745][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.818734][ T5837] bridge_slave_1: entered allmulticast mode
[   55.832179][ T5837] bridge_slave_1: entered promiscuous mode
[   55.840086][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.844090][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.847080][ T5842] bridge_slave_0: entered allmulticast mode
[   55.852509][ T5842] bridge_slave_0: entered promiscuous mode
[   55.883896][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.886244][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.888504][ T5842] bridge_slave_1: entered allmulticast mode
[   55.892276][ T5842] bridge_slave_1: entered promiscuous mode
[   55.924273][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.927597][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.931092][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.934239][ T5847] bridge_slave_0: entered allmulticast mode
[   55.938094][ T5847] bridge_slave_0: entered promiscuous mode
[   55.951264][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.954355][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.957430][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.961273][ T5847] bridge_slave_1: entered allmulticast mode
[   55.965165][ T5847] bridge_slave_1: entered promiscuous mode
[   55.982144][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.029967][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.048554][ T5837] team0: Port device team_slave_0 added
[   56.053731][ T5837] team0: Port device team_slave_1 added
[   56.070555][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.090900][ T5842] team0: Port device team_slave_0 added
[   56.105402][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.110021][ T5842] team0: Port device team_slave_1 added
[   56.124184][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.126824][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.135832][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.163511][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.165746][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.174152][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.192635][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.195564][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.205327][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.210345][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.213233][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.223794][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.230008][ T5847] team0: Port device team_slave_0 added
[   56.235406][ T5847] team0: Port device team_slave_1 added
[   56.299129][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.302201][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.312954][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.349772][ T5837] hsr_slave_0: entered promiscuous mode
[   56.353400][ T5837] hsr_slave_1: entered promiscuous mode
[   56.357516][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.360060][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.369922][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.379317][ T5842] hsr_slave_0: entered promiscuous mode
[   56.382675][ T5842] hsr_slave_1: entered promiscuous mode
[   56.385621][ T5842] debugfs: 'hsr0' already exists in 'hsr'
[   56.387978][ T5842] Cannot create hsr debugfs directory
[   56.512106][ T5847] hsr_slave_0: entered promiscuous mode
[   56.515457][ T5847] hsr_slave_1: entered promiscuous mode
[   56.518364][ T5847] debugfs: 'hsr0' already exists in 'hsr'
[   56.521457][ T5847] Cannot create hsr debugfs directory
[   56.789019][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.802841][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.825052][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.839488][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.881510][ T5837] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.893383][ T5837] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.907329][ T5837] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.914487][ T5837] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.968670][ T5847] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.982210][ T5847] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.988800][ T5847] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   57.001396][ T5847] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   57.079614][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.116470][ T5842] 8021q: adding VLAN 0 to HW filter on device team0
[   57.132459][   T70] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.135449][   T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.149847][   T70] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.152633][   T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.158963][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.195660][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   57.211183][ T5844] Bluetooth: hci1: command tx timeout
[   57.226392][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.229247][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.239323][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.250313][ T5842] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   57.254749][ T5842] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.265773][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.268604][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.301411][   T55] Bluetooth: hci0: command tx timeout
[   57.303597][ T5844] Bluetooth: hci2: command tx timeout
[   57.318101][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[   57.335637][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.337865][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.342335][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.344962][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.469634][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.522364][ T5842] veth0_vlan: entered promiscuous mode
[   57.537390][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.540121][ T5842] veth1_vlan: entered promiscuous mode
[   57.592588][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.599584][ T5842] veth0_macvtap: entered promiscuous mode
[   57.616680][ T5842] veth1_macvtap: entered promiscuous mode
[   57.620448][ T5847] veth0_vlan: entered promiscuous mode
[   57.642303][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.649439][ T5847] veth1_vlan: entered promiscuous mode
[   57.665848][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.699055][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.703182][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.707448][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.725441][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.729121][ T5837] veth0_vlan: entered promiscuous mode
[   57.755477][ T5847] veth0_macvtap: entered promiscuous mode
[   57.779179][ T5837] veth1_vlan: entered promiscuous mode
[   57.793802][ T5847] veth1_macvtap: entered promiscuous mode
[   57.834905][   T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.838022][   T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.864017][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.894124][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.907315][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.911870][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.922823][ T5837] veth0_macvtap: entered promiscuous mode
[   57.927813][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.937542][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.942194][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.945426][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.949266][ T5837] veth1_macvtap: entered promiscuous mode
[   58.016226][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.018750][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.049987][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.080610][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.102411][   T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.105515][   T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.110304][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.124595][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.128196][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.171794][ T5908] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   58.214247][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.224820][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.292785][ T5912] =======================================================
[   58.292785][ T5912] WARNING: The mand mount option has been deprecated and
[   58.292785][ T5912]          and is ignored by this kernel. Remove the mand
[   58.292785][ T5912]          option from the mount to silence this warning.
[   58.292785][ T5912] =======================================================
[   58.297368][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.309160][ T5912] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   58.316324][ T5912] hpfs: hpfs_map_sector(): read error
[   58.321212][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.371154][   T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.374306][   T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.505617][ T5920] AppArmor: change_hat: Invalid input '0'
[   58.548218][ T5918] I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[   58.570908][ T5918] EXT4-fs (loop1): unable to read superblock
[   58.660683][ T5928] I/O error, dev loop2, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[   58.680327][ T5930] random: crng reseeded on system resumption
[   58.883345][ T5938] delete_channel: no stack
[   59.134483][ T5944] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   59.137859][ T5944] FAT-fs (loop2): unable to read boot sector
[   59.202624][ T5946] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.322648][ T5871] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   59.381091][ T5844] Bluetooth: hci2: command tx timeout
[   59.381243][   T55] Bluetooth: hci0: command tx timeout
[   59.471492][ T5871] usb 2-1: Using ep0 maxpacket: 8
[   59.481738][ T5871] usb 2-1: config 179 has an invalid interface number: 97 but max is 0
[   59.485045][ T5871] usb 2-1: config 179 has no interface number 0
[   59.487499][ T5871] usb 2-1: config 179 interface 97 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   59.501287][ T5871] usb 2-1: config 179 interface 97 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   59.505687][ T5871] usb 2-1: config 179 interface 97 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[   59.513227][ T5871] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.ce
[   59.516866][ T5871] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.529800][ T5940] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   59.623366][ T5959] netlink: 'syz.0.24': attribute type 3 has an invalid length.
[   59.626485][ T5959] netlink: 'syz.0.24': attribute type 1 has an invalid length.
[   59.629460][ T5959] netlink: 220 bytes leftover after parsing attributes in process `syz.0.24'.
[   59.639655][ T5961] netlink: 'syz.2.25': attribute type 7 has an invalid length.
[   59.742236][ T5967] netlink: 'syz.0.28': attribute type 1 has an invalid length.
[   59.745257][ T5967] netlink: 'syz.0.28': attribute type 2 has an invalid length.
[   59.759299][ T5940] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15'.
[   59.771061][ T5905] usb 2-1: USB disconnect, device number 2
[   60.441014][ T5979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   60.445720][ T5979] exFAT-fs (loop1): unable to read boot sector
[   60.447942][ T5979] exFAT-fs (loop1): failed to read boot sector
[   60.450127][ T5979] exFAT-fs (loop1): failed to recognize exfat type
[   60.457888][ T5979] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   60.461745][ T5979] FAT-fs (loop1): unable to read boot sector
[   60.728865][ T5989] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   60.732238][ T5989] FAT-fs (loop2): unable to read boot sector
[   60.786429][ T5993] tipc: Started in network mode
[   60.788183][ T5993] tipc: Node identity a2742f3159cb, cluster identity 4711
[   60.790444][ T5993] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.795105][ T5993] syzkaller0: entered promiscuous mode
[   60.796944][ T5993] syzkaller0: entered allmulticast mode
[   60.815751][ T5993] tipc: Resetting bearer <eth:syzkaller0>
[   60.819957][ T5992] tipc: Resetting bearer <eth:syzkaller0>
[   60.831546][ T5992] tipc: Disabling bearer <eth:syzkaller0>
[   60.886353][ T5997] ntfs3(loop0): try to read out of volume at offset 0x0
[   61.248335][ T6003] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   61.252416][ T6003] FAT-fs (loop1): unable to read boot sector
[   61.268205][ T6003] msdos: Bad value for 'uid'
[   61.270252][ T6003] msdos: Bad value for 'uid'
[   61.420422][ T6008] I/O error, dev loop2, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   61.425842][ T6008] isofs_fill_super: bread failed, dev=loop2, iso_blknum=16, block=32
[   61.450694][   T55] Bluetooth: hci2: command tx timeout
[   61.461120][   T55] Bluetooth: hci0: command tx timeout
[   61.517721][ T6012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.46'.
[   61.524400][ T6012] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   61.527083][ T6012] macvlan2: entered allmulticast mode
[   61.529163][ T6012] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   62.525932][ T6033] ntfs3(loop2): try to read out of volume at offset 0x0
[   62.534897][ T6033] EXT4-fs: Ignoring removed nobh option
[   62.536915][ T6033] I/O error, dev loop2, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[   62.547047][ T6033] EXT4-fs (loop2): unable to read superblock
[   62.733170][   T55] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   62.736860][   T55] Bluetooth: hci1: Injecting HCI hardware error event
[   62.740786][   T55] Bluetooth: hci1: hardware error 0x00
[   62.895673][ T6041] (syz.1.58,6041,0):ocfs2_get_sector:1714 ERROR: status = -5
[   62.899065][ T6041] (syz.1.58,6041,0):ocfs2_sb_probe:753 ERROR: status = -5
[   62.902636][ T6041] (syz.1.58,6041,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   62.905790][ T6041] (syz.1.58,6041,0):ocfs2_fill_super:1177 ERROR: status = -5
[   63.023189][ T6045] netlink: 64 bytes leftover after parsing attributes in process `syz.1.59'.
[   63.068325][ T6039] xfs: Unknown parameter 'attr2'
[   63.163774][ T6050] EXT4-fs (loop0): unable to read superblock
[   63.204354][ T6052] FAT-fs (loop1): unable to read boot sector
[   63.218205][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   63.227013][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   63.240729][ T6050] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   63.243572][ T6050] UDF-fs: Scanning with blocksize 512 failed
[   63.262645][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   63.266428][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   63.269925][ T6050] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   63.289975][ T6050] UDF-fs: Scanning with blocksize 1024 failed
[   63.294270][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   63.298122][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   63.301812][ T6050] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   63.304706][ T6050] UDF-fs: Scanning with blocksize 2048 failed
[   63.307632][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   63.312086][ T6050] blk_print_req_error: 14 callbacks suppressed
[   63.312100][ T6050] I/O error, dev loop0, sector 4096 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   63.318020][ T6050] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   63.322147][ T6050] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   63.325156][ T6050] UDF-fs: Scanning with blocksize 4096 failed
[   63.327557][ T6050] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1)
[   63.384395][ T6054] ntfs3(loop1): try to read out of volume at offset 0x0
[   63.534829][ T6060] I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[   63.537109][ T5844] Bluetooth: hci0: command tx timeout
[   63.541666][ T5841] Bluetooth: hci2: command tx timeout
[   63.542181][ T6060] EXT4-fs (loop1): unable to read superblock
[   63.690227][ T6064] ntfs3(loop1): try to read out of volume at offset 0x0
[   64.173255][   T10] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   64.265319][ T6082] EXT4-fs: Ignoring removed orlov option
[   64.273973][ T6082] I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[   64.289670][ T6082] EXT4-fs (loop1): unable to read superblock
[   64.332649][   T10] usb 3-1: Using ep0 maxpacket: 8
[   64.345873][   T10] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   64.349696][   T10] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[   64.369645][   T10] usb 3-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.01
[   64.373871][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   64.380537][   T10] usb 3-1: Product: syz
[   64.382189][   T10] usb 3-1: Manufacturer: syz
[   64.384034][   T10] usb 3-1: SerialNumber: syz
[   64.405810][   T10] usb 3-1: config 0 descriptor??
[   64.419564][   T10] radioshark 3-1:0.0: Invalid radioSHARK device
[   64.425524][   T10] radioshark 3-1:0.0: probe with driver radioshark failed with error -22
[   64.429003][   T10] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[   64.666277][  T795] usb 3-1: USB disconnect, device number 2
[   64.811366][   T55] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   65.201825][ T6114] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.207410][ T6114] I/O error, dev loop0, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.211697][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   65.215711][ T6114] I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.220163][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   65.226586][ T6114] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.256073][ T6114] I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.259924][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   65.276737][ T6114] I/O error, dev loop0, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.280789][ T6118] netlink: 12 bytes leftover after parsing attributes in process `syz.2.78'.
[   65.284537][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   65.288870][ T6118] netlink: 20 bytes leftover after parsing attributes in process `syz.2.78'.
[   65.299758][ T6114] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   65.310015][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   65.320089][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   65.345539][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   65.350320][ T6114] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   65.369535][ T6114] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1)
[   65.438502][ T6124] netlink: 'syz.2.82': attribute type 29 has an invalid length.
[   65.474125][ T6126] EXT4-fs: Ignoring removed nobh option
[   65.476926][ T6126] EXT4-fs (loop0): unable to read superblock
[   65.652467][ T6136] EXT4-fs (loop0): unable to read superblock
[   65.708344][ T6140] evm: overlay not supported
[   65.773279][ T6144] netlink: 'syz.0.90': attribute type 1 has an invalid length.
[   67.002530][ T6163] ------------[ cut here ]------------
[   67.004773][ T6163] DEBUG_LOCKS_WARN_ON(1)
[   67.004890][ T6163] WARNING: kernel/locking/lockdep.c:238 at __lock_acquire+0x379/0xd20, CPU#0: syz.1.96/6163
[   67.010651][ T6163] Modules linked in:
[   67.012556][ T6163] CPU: 0 UID: 0 PID: 6163 Comm: syz.1.96 Not tainted syzkaller #0 PREEMPT(full) 
[   67.017087][ T6163] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   67.021029][ T6163] RIP: 0010:__lock_acquire+0x379/0xd20
[   67.023195][ T6163] Code: eb 33 90 e8 49 05 2b 03 85 c0 74 22 83 3d a2 08 27 0e 00 75 19 90 48 c7 c7 10 47 db 8d 48 c7 c6 c4 88 ca 8d e8 08 c6 e5 ff 90 <0f> 0b 90 90 90 31 c0 48 8b 3c 24 0f b6 98 c4 00 00 00 41 8b 46 20
[   67.030699][ T6163] RSP: 0018:ffffc90003d6e2f0 EFLAGS: 00010046
[   67.033232][ T6163] RAX: cd30105c726f7100 RBX: ffffffff87345be8 RCX: 0000000000080000
[   67.036398][ T6163] RDX: ffffc90021471000 RSI: 00000000000065a0 RDI: 00000000000065a1
[   67.039502][ T6163] RBP: 0000000000000b3b R08: ffff88804b024293 R09: 1ffff11009604852
[   67.042605][ T6163] R10: dffffc0000000000 R11: ffffed1009604853 R12: 0000000000000000
[   67.045737][ T6163] R13: 0000000000000000 R14: ffff888108064580 R15: ffff888108064530
[   67.048865][ T6163] FS:  00007f69370806c0(0000) GS:ffff8880b83dd000(0000) knlGS:0000000000000000
[   67.052347][ T6163] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   67.054893][ T6163] CR2: 000000110c2ee651 CR3: 0000000027de8000 CR4: 00000000000006f0
[   67.057863][ T6163] Call Trace:
[   67.059243][ T6163]  <TASK>
[   67.060463][ T6163]  ? idProduct_show+0x18/0x70
[   67.062359][ T6163]  ? get_partial_node+0x4e/0x4a0
[   67.064330][ T6163]  lock_acquire+0x120/0x360
[   67.066102][ T6163]  ? get_partial_node+0x4e/0x4a0
[   67.067965][ T6163]  ? __pfx_idProduct_show+0x10/0x10
[   67.069917][ T6163]  _raw_spin_lock_irqsave+0xa7/0xf0
[   67.072037][ T6163]  ? get_partial_node+0x4e/0x4a0
[   67.074030][ T6163]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[   67.076388][ T6163]  ? __pfx_scomp_acomp_comp_decomp+0x10/0x10
[   67.078826][ T6163]  ? __mutex_trylock_common+0x153/0x260
[   67.081058][ T6163]  ? __pfx_idProduct_show+0x10/0x10
[   67.083206][ T6163]  get_partial_node+0x4e/0x4a0
[   67.085145][ T6163]  ? do_syscall_64+0xfa/0xfa0
[   67.087033][ T6163]  ? crypto_acomp_compress+0x42f/0xb20
[   67.089190][ T6163]  ___slab_alloc+0xdea/0x1920
[   67.091083][ T6163]  ? __lock_acquire+0xab9/0xd20
[   67.093034][ T6163]  ? zs_malloc+0x88/0x720
[   67.094671][ T6163]  ? __pfx_crypto_acomp_compress+0x10/0x10
[   67.096984][ T6163]  ? __virt_addr_valid+0x1c8/0x5c0
[   67.099078][ T6163]  ? zs_malloc+0x88/0x720
[   67.100810][ T6163]  __slab_alloc+0x65/0x100
[   67.102576][ T6163]  kmem_cache_alloc_noprof+0x3f9/0x6e0
[   67.104787][ T6163]  ? zs_malloc+0x88/0x720
[   67.106643][ T6163]  zs_malloc+0x88/0x720
[   67.108402][ T6163]  ? sg_init_one+0xf5/0x1c0
[   67.110367][ T6163]  zswap_store+0x1062/0x1f40
[   67.112211][ T6163]  ? zswap_store+0x6ff/0x1f40
[   67.114132][ T6163]  ? __pfx_zswap_store+0x10/0x10
[   67.116114][ T6163]  ? do_raw_spin_unlock+0x4d/0x240
[   67.118157][ T6163]  ? swap_entry_swapped+0x139/0x1c0
[   67.120236][ T6163]  ? folio_free_swap+0x1ed/0x370
[   67.122220][ T6163]  swap_writeout+0x710/0xd70
[   67.124086][ T6163]  shrink_folio_list+0x3011/0x4c70
[   67.126221][ T6163]  ? __pfx_shrink_folio_list+0x10/0x10
[   67.128469][ T6163]  ? __lock_acquire+0xab9/0xd20
[   67.130443][ T6163]  ? is_bpf_text_address+0x292/0x2b0
[   67.132583][ T6163]  ? css_rstat_updated+0x23a/0x4f0
[   67.134562][ T6163]  reclaim_folio_list+0xeb/0x500
[   67.136625][ T6163]  ? __pfx_reclaim_folio_list+0x10/0x10
[   67.139211][ T6163]  ? lru_gen_update_size+0x818/0xd20
[   67.141307][ T6163]  ? __mod_zone_page_state+0xd7/0x140
[   67.143432][ T6163]  ? lru_gen_del_folio+0x359/0x540
[   67.145449][ T6163]  reclaim_pages+0x454/0x520
[   67.147311][ T6163]  ? __pfx_reclaim_pages+0x10/0x10
[   67.149381][ T6163]  ? madvise_cold_or_pageout_pte_range+0x194b/0x1d00
[   67.151947][ T6163]  madvise_cold_or_pageout_pte_range+0x1974/0x1d00
[   67.154430][ T6163]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[   67.157186][ T6163]  walk_pgd_range+0xfe9/0x1d40
[   67.159178][ T6163]  ? __pfx_walk_pgd_range+0x10/0x10
[   67.161270][ T6163]  ? __pfx___schedule+0x10/0x10
[   67.163182][ T6163]  __walk_page_range+0x14c/0x710
[   67.165123][ T6163]  ? __pfx_lru_add+0x10/0x10
[   67.166981][ T6163]  walk_page_range_vma+0x393/0x440
[   67.168975][ T6163]  ? mlock_drain_local+0x79/0x490
[   67.170929][ T6163]  ? __pfx_walk_page_range_vma+0x10/0x10
[   67.173263][ T6163]  ? mlock_drain_local+0x79/0x490
[   67.175309][ T6163]  madvise_vma_behavior+0x311f/0x3a10
[   67.177344][ T6163]  ? __pfx_madvise_vma_behavior+0x10/0x10
[   67.179540][ T6163]  ? __lock_acquire+0xab9/0xd20
[   67.181574][ T6163]  ? finish_task_switch+0x18b/0x950
[   67.183784][ T6163]  ? finish_task_switch+0x266/0x950
[   67.185825][ T6163]  ? lockdep_hardirqs_on+0x9c/0x150
[   67.187915][ T6163]  ? finish_task_switch+0x266/0x950
[   67.190010][ T6163]  ? rcu_is_watching+0x15/0xb0
[   67.191980][ T6163]  ? mas_prev_slot+0xb31/0xbb0
[   67.194055][ T6163]  ? find_vma_prev+0xe3/0x150
[   67.196027][ T6163]  ? __pfx_find_vma_prev+0x10/0x10
[   67.198182][ T6163]  ? preempt_schedule+0xae/0xc0
[   67.200153][ T6163]  madvise_walk_vmas+0x51c/0xa30
[   67.202239][ T6163]  ? __pfx_madvise_walk_vmas+0x10/0x10
[   67.204470][ T6163]  ? blk_start_plug+0x6f/0x1b0
[   67.206386][ T6163]  madvise_do_behavior+0x38e/0x550
[   67.208485][ T6163]  ? __pfx_madvise_do_behavior+0x10/0x10
[   67.210828][ T6163]  ? down_read+0x1ad/0x2e0
[   67.212665][ T6163]  do_madvise+0x1bc/0x270
[   67.214394][ T6163]  ? __pfx_do_madvise+0x10/0x10
[   67.216419][ T6163]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   67.219205][ T6163]  __x64_sys_madvise+0xa7/0xc0
[   67.221185][ T6163]  do_syscall_64+0xfa/0xfa0
[   67.223018][ T6163]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.225447][ T6163]  ? asm_sysvec_call_function_single+0x1a/0x20
[   67.228009][ T6163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.230364][ T6163] RIP: 0033:0x7f693618ec29
[   67.232221][ T6163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.239951][ T6163] RSP: 002b:00007f6937080038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   67.243282][ T6163] RAX: ffffffffffffffda RBX: 00007f69363d6090 RCX: 00007f693618ec29
[   67.246379][ T6163] RDX: 0000000000000015 RSI: 000000000040001e RDI: 0000200000000000
[   67.249498][ T6163] RBP: 00007f6936211e41 R08: 0000000000000000 R09: 0000000000000000
[   67.252673][ T6163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   67.255886][ T6163] R13: 00007f69363d6128 R14: 00007f69363d6090 R15: 00007ffdf9524e08
[   67.259230][ T6163]  </TASK>
[   67.260503][ T6163] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   67.263414][ T6163] CPU: 0 UID: 0 PID: 6163 Comm: syz.1.96 Not tainted syzkaller #0 PREEMPT(full) 
[   67.267001][ T6163] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   67.271071][ T6163] Call Trace:
[   67.272353][ T6163]  <TASK>
[   67.273635][ T6163]  dump_stack_lvl+0x99/0x250
[   67.275589][ T6163]  ? __asan_memcpy+0x40/0x70
[   67.277499][ T6163]  ? __pfx_dump_stack_lvl+0x10/0x10
[   67.279648][ T6163]  ? __pfx__printk+0x10/0x10
[   67.281577][ T6163]  vpanic+0x237/0x6d0
[   67.283207][ T6163]  ? __pfx_vpanic+0x10/0x10
[   67.285051][ T6163]  ? is_bpf_text_address+0x26/0x2b0
[   67.287144][ T6163]  panic+0xb9/0xc0
[   67.288636][ T6163]  ? __pfx_panic+0x10/0x10
[   67.290459][ T6163]  __warn+0x334/0x4c0
[   67.292118][ T6163]  ? __lock_acquire+0x379/0xd20
[   67.294104][ T6163]  ? __lock_acquire+0x379/0xd20
[   67.296217][ T6163]  report_bug+0x2be/0x4f0
[   67.298013][ T6163]  ? __lock_acquire+0x379/0xd20
[   67.299957][ T6163]  ? __lock_acquire+0x379/0xd20
[   67.301927][ T6163]  ? __lock_acquire+0x37b/0xd20
[   67.303922][ T6163]  handle_bug+0x84/0x160
[   67.305753][ T6163]  exc_invalid_op+0x1a/0x50
[   67.307738][ T6163]  asm_exc_invalid_op+0x1a/0x20
[   67.309938][ T6163] RIP: 0010:__lock_acquire+0x379/0xd20
[   67.312327][ T6163] Code: eb 33 90 e8 49 05 2b 03 85 c0 74 22 83 3d a2 08 27 0e 00 75 19 90 48 c7 c7 10 47 db 8d 48 c7 c6 c4 88 ca 8d e8 08 c6 e5 ff 90 <0f> 0b 90 90 90 31 c0 48 8b 3c 24 0f b6 98 c4 00 00 00 41 8b 46 20
[   67.320214][ T6163] RSP: 0018:ffffc90003d6e2f0 EFLAGS: 00010046
[   67.322659][ T6163] RAX: cd30105c726f7100 RBX: ffffffff87345be8 RCX: 0000000000080000
[   67.325919][ T6163] RDX: ffffc90021471000 RSI: 00000000000065a0 RDI: 00000000000065a1
[   67.329118][ T6163] RBP: 0000000000000b3b R08: ffff88804b024293 R09: 1ffff11009604852
[   67.332249][ T6163] R10: dffffc0000000000 R11: ffffed1009604853 R12: 0000000000000000
[   67.335369][ T6163] R13: 0000000000000000 R14: ffff888108064580 R15: ffff888108064530
[   67.338493][ T6163]  ? idProduct_show+0x18/0x70
[   67.340421][ T6163]  ? idProduct_show+0x18/0x70
[   67.342341][ T6163]  ? get_partial_node+0x4e/0x4a0
[   67.344323][ T6163]  lock_acquire+0x120/0x360
[   67.346231][ T6163]  ? get_partial_node+0x4e/0x4a0
[   67.348354][ T6163]  ? __pfx_idProduct_show+0x10/0x10
[   67.350624][ T6163]  _raw_spin_lock_irqsave+0xa7/0xf0
[   67.352895][ T6163]  ? get_partial_node+0x4e/0x4a0
[   67.354919][ T6163]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[   67.357268][ T6163]  ? __pfx_scomp_acomp_comp_decomp+0x10/0x10
[   67.359607][ T6163]  ? __mutex_trylock_common+0x153/0x260
[   67.361821][ T6163]  ? __pfx_idProduct_show+0x10/0x10
[   67.363875][ T6163]  get_partial_node+0x4e/0x4a0
[   67.365765][ T6163]  ? do_syscall_64+0xfa/0xfa0
[   67.367572][ T6163]  ? crypto_acomp_compress+0x42f/0xb20
[   67.369626][ T6163]  ___slab_alloc+0xdea/0x1920
[   67.371468][ T6163]  ? __lock_acquire+0xab9/0xd20
[   67.373478][ T6163]  ? zs_malloc+0x88/0x720
[   67.375162][ T6163]  ? __pfx_crypto_acomp_compress+0x10/0x10
[   67.377492][ T6163]  ? __virt_addr_valid+0x1c8/0x5c0
[   67.379384][ T6163]  ? zs_malloc+0x88/0x720
[   67.381066][ T6163]  __slab_alloc+0x65/0x100
[   67.382774][ T6163]  kmem_cache_alloc_noprof+0x3f9/0x6e0
[   67.384740][ T6163]  ? zs_malloc+0x88/0x720
[   67.386358][ T6163]  zs_malloc+0x88/0x720
[   67.387914][ T6163]  ? sg_init_one+0xf5/0x1c0
[   67.389623][ T6163]  zswap_store+0x1062/0x1f40
[   67.391315][ T6163]  ? zswap_store+0x6ff/0x1f40
[   67.393046][ T6163]  ? __pfx_zswap_store+0x10/0x10
[   67.394994][ T6163]  ? do_raw_spin_unlock+0x4d/0x240
[   67.397068][ T6163]  ? swap_entry_swapped+0x139/0x1c0
[   67.399043][ T6163]  ? folio_free_swap+0x1ed/0x370
[   67.400853][ T6163]  swap_writeout+0x710/0xd70
[   67.402649][ T6163]  shrink_folio_list+0x3011/0x4c70
[   67.404664][ T6163]  ? __pfx_shrink_folio_list+0x10/0x10
[   67.407002][ T6163]  ? __lock_acquire+0xab9/0xd20
[   67.409037][ T6163]  ? is_bpf_text_address+0x292/0x2b0
[   67.411177][ T6163]  ? css_rstat_updated+0x23a/0x4f0
[   67.413284][ T6163]  reclaim_folio_list+0xeb/0x500
[   67.415290][ T6163]  ? __pfx_reclaim_folio_list+0x10/0x10
[   67.417489][ T6163]  ? lru_gen_update_size+0x818/0xd20
[   67.419592][ T6163]  ? __mod_zone_page_state+0xd7/0x140
[   67.421765][ T6163]  ? lru_gen_del_folio+0x359/0x540
[   67.423838][ T6163]  reclaim_pages+0x454/0x520
[   67.425663][ T6163]  ? __pfx_reclaim_pages+0x10/0x10
[   67.427654][ T6163]  ? madvise_cold_or_pageout_pte_range+0x194b/0x1d00
[   67.430311][ T6163]  madvise_cold_or_pageout_pte_range+0x1974/0x1d00
[   67.432894][ T6163]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[   67.435512][ T6163]  walk_pgd_range+0xfe9/0x1d40
[   67.437438][ T6163]  ? __pfx_walk_pgd_range+0x10/0x10
[   67.439616][ T6163]  ? __pfx___schedule+0x10/0x10
[   67.441583][ T6163]  __walk_page_range+0x14c/0x710
[   67.443571][ T6163]  ? __pfx_lru_add+0x10/0x10
[   67.445439][ T6163]  walk_page_range_vma+0x393/0x440
[   67.447493][ T6163]  ? mlock_drain_local+0x79/0x490
[   67.449494][ T6163]  ? __pfx_walk_page_range_vma+0x10/0x10
[   67.451710][ T6163]  ? mlock_drain_local+0x79/0x490
[   67.453731][ T6163]  madvise_vma_behavior+0x311f/0x3a10
[   67.455897][ T6163]  ? __pfx_madvise_vma_behavior+0x10/0x10
[   67.458186][ T6163]  ? __lock_acquire+0xab9/0xd20
[   67.460122][ T6163]  ? finish_task_switch+0x18b/0x950
[   67.462173][ T6163]  ? finish_task_switch+0x266/0x950
[   67.464240][ T6163]  ? lockdep_hardirqs_on+0x9c/0x150
[   67.466334][ T6163]  ? finish_task_switch+0x266/0x950
[   67.468422][ T6163]  ? rcu_is_watching+0x15/0xb0
[   67.470351][ T6163]  ? mas_prev_slot+0xb31/0xbb0
[   67.472313][ T6163]  ? find_vma_prev+0xe3/0x150
[   67.474212][ T6163]  ? __pfx_find_vma_prev+0x10/0x10
[   67.476191][ T6163]  ? preempt_schedule+0xae/0xc0
[   67.478061][ T6163]  madvise_walk_vmas+0x51c/0xa30
[   67.480023][ T6163]  ? __pfx_madvise_walk_vmas+0x10/0x10
[   67.482143][ T6163]  ? blk_start_plug+0x6f/0x1b0
[   67.484050][ T6163]  madvise_do_behavior+0x38e/0x550
[   67.486090][ T6163]  ? __pfx_madvise_do_behavior+0x10/0x10
[   67.488320][ T6163]  ? down_read+0x1ad/0x2e0
[   67.490126][ T6163]  do_madvise+0x1bc/0x270
[   67.491879][ T6163]  ? __pfx_do_madvise+0x10/0x10
[   67.493860][ T6163]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   67.496445][ T6163]  __x64_sys_madvise+0xa7/0xc0
[   67.498372][ T6163]  do_syscall_64+0xfa/0xfa0
[   67.500167][ T6163]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.502586][ T6163]  ? asm_sysvec_call_function_single+0x1a/0x20
[   67.505139][ T6163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.507583][ T6163] RIP: 0033:0x7f693618ec29
[   67.509391][ T6163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.516996][ T6163] RSP: 002b:00007f6937080038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   67.520267][ T6163] RAX: ffffffffffffffda RBX: 00007f69363d6090 RCX: 00007f693618ec29
[   67.523361][ T6163] RDX: 0000000000000015 RSI: 000000000040001e RDI: 0000200000000000
[   67.526508][ T6163] RBP: 00007f6936211e41 R08: 0000000000000000 R09: 0000000000000000
[   67.529735][ T6163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   67.533031][ T6163] R13: 00007f69363d6128 R14: 00007f69363d6090 R15: 00007ffdf9524e08
[   67.536329][ T6163]  </TASK>
[   67.538283][ T6163] Kernel Offset: disabled
[   67.540032][ T6163] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:26:09  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000031 RBX=0000000000000031 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000008b9e RDI=0000000000008b9f RBP=00000000000003f8 RSP=ffffc90003d6da90
R8 =ffff8880219a0237 R9 =1ffff11004334046 R10=dffffc0000000000 R11=ffffffff855472f0
R12=dffffc0000000000 R13=ffffffff99d388f3 R14=ffffffff9a02d140 R15=0000000000000000
RIP=ffffffff8554736c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f69370806c0 ffffffff 00c00000
GS =0000 ffff8880b83dd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c2ee651 CR3=0000000027de8000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f69363a7498 00007f69363a7470 XMM03=00007f69363a74a8 00007f69363a74a0
XMM04=00007f6936f0d100 00007f69363a7460 XMM05=00007f69363a7478 00007f69363a74c0
XMM06=00007f69363a74b8 00007f69363a74b0 XMM07=00007f69363a74a8 00007f69363a74a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f6936212fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff81b4692b RBX=1ffff11009608449 RCX=0000000000080000 RDX=ffffc90008829000
RSI=0000000000077a35 RDI=0000000000077a36 RBP=ffffc90003d5e800 RSP=ffffc90003d5e680
R8 =ffffffff8fc45d37 R9 =1ffffffff1f88ba6 R10=dffffc0000000000 R11=fffffbfff1f88ba7
R12=ffff88804b042248 R13=dffffc0000000000 R14=ffff88813663b240 R15=0000000000000000
RIP=ffffffff81b46913 RFL=00000287 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fac1c5fb6c0 ffffffff 00c00000
GS =0000 ffff8881a39dd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa0ddc1ed20 CR3=0000000107a4c000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
