last executing test programs:

20m13.234694407s ago: executing program 2 (id=237):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x2000010, &(0x7f0000000c00)=ANY=[], 0x2, 0x6e5, &(0x7f00000002c0)="$eJzs3c1vHGcdB/DvrNeON1TBaRMaoSBMIhWkiMSJlUK4YBBCOVSoKoeercRprGySKnFRWiFwAcEJiUP/gILkGweExD0oXLiUW68+VkLiEnGIelk0s7P27nr9lvgloZ9PNZnnmeeZZ377m2dmvOtaG+AL6+q5NB+myNVzbzwo66srs+3VldkjdXM7SVluJM3uKsWdpHiUzJXtRd+SvvUGHy1eeevTx6ufdWvNeqn6j2213wgj+i7XS6br8aZH7jm+00Ms1+HlpSTX6vWgiZ2ONdCxTNrZeg2HrjOokc7ybnbfzXULPGd6T6ei+9zcYCo5mmSy/jkg9d2hcXAR7qlv9Aq7ussBAADAC+qTu4cdAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALx4qu//b61VG91NyXSK3vf/T/S21eXn0NyOez7c1zgAAAAAAAAA4GB8/Ume5EGO9eqdovqd/5mqciKfd5Iv5b3cz0Lu5XweZD5LWcq9XEwy1TfQxIP5paV7F9f2LI3e89LIPS8d1CsGAAAAAAAAgP9Lv0pr/ff/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwPCiSse6qWk7U60yl0cx6W5aTfyWZOOx4d6EYtfHhwccBAAAAz2TyKfb58pM8yYMc69U7RfWe/yvV++XJvJc7WcpiltLOQq7X76HLd/2N1ZXZ9urK7O1yKeuD4/7gP7sKY6IeYayqjTryqapHKzeyWG05n2tVMNfT6B77bHKqF09fXH0+LGMqvl/bYWTNOq3lwf6w2acIe2Lwo4jGFj1b68ElaxmZqWMr9zzezUBRfVCTDGdi+OxsOFhzoDZVdRlfO9LFNNY++TmxDzk/Wq/L1/Pbfc35TvTnYi0TjVSZuNSbfeU1s3Umkm/+7c9v32zfuXXzxv1zh/uSdmFsk+3Dc2K2LxOvvtCZaO6y/0yViZNr9av5cX6ac5nOm7mXxfws81nKQjp1+3w9n8t/p7bO1NxA7c3tIpmoz0v3nO0kpun8qCrN50y177EspsjdXM9CXq/+u5SL+U4u53Ku9J3hk5vGXb226qpvDF/1vTP995HBn/1WXSjvbr9bv8vNbfWKN5ude6V77y/zerwvr91Z/3it1/G+62CmL0sv97IzPnLwp7k3Nr9aF8pj/Hqb58TBmqozUV5AvadEL7pXuploVs+ijfP8j51yv7TvdDo359/dZPzlofpr9bqcVitf2653z+hTsbfK+fJyJus7yeDsKNteWbvL9LV11udyt23wiVvud7JqK4relfqT3K0mwMYrdaL+GW7jSJeqtleH2k7X9/Cy7VRf28DPW7mbdq4fQP4AeBr/fHutOJWjE61/tz5pfdz6Tetm643JHx757pHTExn/x/j3mjNjrzVOF3/Nx/nF+vt/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg6d1//4Nb8+32wr3RhcbmTQOFVoa3bDfyUKGov9BnVJ9b9bcU7GrAQy5MJhnYUn3P0YGH0RoOY0Oh88vkwPPT+xLB0X1+XxaaOzrdcwNb/rJxwA+3j2csQ/NwB9fFPhYaOdiDjmX0BDisOxJwUC4s3X73wv33P/j24u35dxbeWbgzfvnylZkrl1+fvXBjsb0w0/33sKME9sP6Q/+wIwEAAAAAAAAAAAB2atQfBpx5abs/GtlQaCQZ/hsP/2chAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsCeunkvzYYpcnDk/U9ZXV2bb5dIrr/dsJmk0kuLnSfEomUt3yVTfcEX+9CidEcf5aPHKW58+Xv1sfaxmt3/SqNeb27o1yXK9ZDrJWL1+BgPjXXvm8Yr/9l5DmbDPO53O3LPFB3vjfwEAAP//qWztYw==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x40441, 0x15)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
truncate(&(0x7f0000000040)='./file1\x00', 0x41bfc)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x185)
fallocate(r2, 0x0, 0x1000000, 0x3)
pselect6(0x40, &(0x7f0000000240)={0x9, 0x0, 0x1ff, 0x0, 0x1000000, 0x7, 0x4, 0x1}, 0x0, 0x0, 0x0, 0x0)
truncate(&(0x7f0000000000)='./file1\x00', 0x103000)
symlink(&(0x7f0000000580)='.\x02/file1\x00', &(0x7f00000002c0)='.\x02\x00')
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x2d, 0x0, 0xffffffff89002300, 0x3, 0xa94, 0x9, 0x7ff, 0x0, 0x0, 0x40, 0x7}}, 0x50)

20m10.896318711s ago: executing program 2 (id=240):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000340)}, 0x40000)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000580)={0x401, 0x0, 0x0, &(0x7f00000000c0)=[0x3], &(0x7f0000000200), &(0x7f0000000340), 0x0, 0xfffffffffffffffe})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2, 0x1}, 0x20)
mount(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000000)='minix\x00', 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e90937920fcba13d90af61beaa44d66a6535daf1bc35fb3af1e9197e31d26589d073c10184095fb00", 0x14}, 0x48, 0xffffffffffffffff)
unshare(0x2c020400)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, 0x0, 0x48810)
recvmsg(0xffffffffffffffff, 0x0, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x0, 0x2, 0x3, 0x9, 0x0, 0xc96e}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)

20m8.043559342s ago: executing program 2 (id=245):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4043, 0x1ff)
r3 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_DQEVENT(r3, 0x80885659, &(0x7f0000000100)={0x0, @frame_sync})
ioctl$VIDIOC_SUBSCRIBE_EVENT(r3, 0x4020565a, &(0x7f00000000c0)={0x3, 0x980900, 0x3})

20m7.186469538s ago: executing program 2 (id=248):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x1, 0x194, &(0x7f0000000640)="$eJzsmD9P+kAYx7/X8if88ktw1UUTScDB0hY1MjgwO2ii0bhJpBK0iIEOwGZ8Ec6+AmfiwvvQQZ0cxM3Joebawx4oYuI/jM9neO57dw/Hc0+Tb5OCIIg/y831w9VZMhHj+j8SiIr1WzXIUaT8Vvxx5qK0cn6i31+22svZ/vMYANd9//+HALRzKhwxd93eXyfEuA6lq8Py/iYYNKG3oWBDaAsMW0LvSbrC8zVtt2Rb2k7FLnCh82DwYPKQ6a+vc8RQkOpj0n6t0dzP27ZV/UIxrH+dnIIlqT75eXV7owf9gwEFhtAZMKwJvYhotzd+S6T7T4SC89Vvvv/vFuPxITlhjEqpJD5BMHBxFwNGo56fEoE/uacMScmfQpJ/pJ3yYbrWaM6WyvmiVbQOTDOzoM/p+ryZ9ozIj2/4X8zzp3/S+eEBuREWQT3vOFXDj89zsx6FUzVfc9yI538KUtN+1UysyXjvgzE2xYeUChwPrJYgCIIgCIIgCIIgCIIgCOIjTIJ5X0F7yL5YMle97KcAAAD//5Z1cak=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
syz_fuse_handle_req(r3, &(0x7f00000021c0)="f7a1cad85cc10eea68fdee41cb0874a0bc6d6cb8b6057ce44708f94f251ad561c33ae4b4a5f3548734ab9d7a8f0f1e7dab1c009bda16940720a287d6fbae8389d584199d01a5f037880765144e99727c2bd7f71b6c5591ea76b7f830fa095a5650607e2f1f1fda77712e885173a67397b349c144c88c0519aaa4c1189526eaa1cac9e42596dd989eddb0fd744b1cc24fd210f1fef0f26866313c0bb644112a0593d3196eeab83427bd2bc48d942f16d1452c8482e0d21fd4ce2978986a9345690947d8daf5f11a727b861f0ff115b01f75c7039b1ab28c4b0b4a50f4a5d3cb50b37cc3772a5d70ace52960d2efb673478ec7667dec75e7cf65a205e66dff9ce66569871bcb9295787c664e78f2a4ad2f2293ae10d59ed51c5d689e049aaba21bbe594364ea773bd8bdd3c1f3a80436cb1e3ad4ae4f7d9f8da4c29e2b8dcc6127ecaf2c0ff40d1311a9cff6b0c0c505e0529426082d612bd255541d87def043ec0d5f1d18d43f5814ec8b0ec0bb87e6280cc989fef119af77cb5b881f993e5142c3fef6f11a331848b112365907118ee817098c189c42caa11ede0843a9391e94b0b2a0f5002a1a6cf95bfcc558a82290494af5a80fe8d69f061f5635d9d7ebc74c2347c4bd125850a1bf2593c56702131b52d813f9d8767808c3740f6736a6d2dd95a2140bf383c38bf6aa167048ea562a2da7797b0e5e7265f87c8809ed3b37a312f3e6609bb4cfc70d05e628f152e4e0f5d26e281fe22c97b3d48d24f1068d8160383d9003011896989b21533021afd08f74b3d4e9c8b200ee3dda9dc48c66229dff67b37afefcfd9e68686bf3c7ea83aa531756fc28c5b191685c89dbf3fc811d6c83c93b4b94d04395e88f5291ff597a18d41e5024a01ce5da33da91e9a963f07e2ff146a0e42268d6182eb7bcfd5fc49ad007ae3a39ea39e931078a9b646c30a68dbe8d7952a983f257dc1bb6496ba8ce0c4a91149124f18cf6ceb3ff72f0c87915c7e95f47cd8f70cadc4d6e9f100d681051c32c02f563d8bbbaaf09ccdcff776ff1917653290637c02b2a8678e2cf9492077359b4ff97adee279a4e7d2a449b9232b0361c9d2a8611b81fbe80642894d3b9807082f83fa66f7a6d5a5b2bb8cfc76042915eb3b7c2c6a3d4107c5484fc53ef1d4f0c62e68d41f41e81d52b93069f104595aedc61c02d90100c1b2e891aebdc9a4a639f0384d66807d92c540ac61ea9eb75a52bff095a01370b15902f2d42229f57a9fc6e483094316d4f599cde024c5929e274ded88338115c07e4389fcead91d445a6c19463e58fdea8ad8cd38ede1bbfe409e1eaa9f70c6aedf99338d4efe95fcfa6c70bd0471f08c3a989c1a24ca3a5011c32b2487eb5dc0b3c7ac76b2e76612ba355ae09092e90329e07fe82436a0bde152bbddfcc499720d5691813b2bc3395313149e0f94abe372b82c494bc22e05210fb5c06974a2a98c71fecab7a094f3c3bf45f5fe8a3e70ba4abed52e611d111421ed36bd77c8076ad04ccc89fd6ba9a2227c62afd49a6ee12f799074772e0db030dfdfd89de75ab03d30d81ad6fb7faa758e9c91acc48b02e21707b87906a1171a4eaacc7baecba212679ee3d8c180c58ff8c2d4b07c58c76c96cbe4623b8ee41988f9b60b6e03ddece50b3ec150c29d0b2b87548c5777fa4e39f5349ab8dd2e30e29ff56ac7a615300a3298b07e07175713e7385ea09ec0b651702103b7d2f123cb09a23d91f623ec15ddff27044c2e6f7668cd9675f3ffbbaa9b9b2cf5a8494796eddc1c52beff638d806307ea3f617fe5dc46a68ad04517cf7d6a02b0edd19248825fcaf932adff98f0f25d1b304449df22bba96bc1b604134b495da501cccacbe3cad5743f8180cbb3e151313c6751ad98e1ae0495d762473be591629e3a059e7f25483c289bda68aa07ba027e072b1fc2497d85ba0f09e654032e48c54242d69a1e9d94dacd8c3f529fcf71363511714641a22151773f0edd930cfebcbc41ac530015c841910721c5cdc95301bd5ced984bae18c0cd1e56e61f881c3e98b91df488654e1a608bfce7bed930f2cd668e5920730d8ce6c191f4c1500ac0c707fcc3faa90ff991b39a839a168e47a9e5b6d45cc902879ff1dc4a9391b53b8a0bf7a9e9d356e43779b89564a8614014528dc536d9f6ed97bcac7b722f062acd802a854d1d555a7978951e6c000fab5a524f4d04505733db3a19bdcb3cbd2cf37f6e571e096a1f99527ac632bf605f3727ab6c76a3d89e1ff178ffea921f129f233faa6d7b1011fc78f38257a8dac5b15e93ae13c12baed0c823b47c35bf337dccfb7936ec27023bfdc4ae0498121c849848d5245d0e4f158c515dc3acd0956812482ebe19b99c31b3fb98db0eb690df38b45c279a84b9611aa7a64cfbc713428d2cc6362308d8fdfdf671cd0b07c6b41745afa14cf040fc7783a560c58a580d1c014ad4cf3eafaf5e6075dd82e0d040cfdac17476f1c766288f7ee5d595626122ef7cdfbacce07484fd0b0bf4645236a5835c26415b4132617eed202d759f8106f2733ffe700c2d91ff452be0261d81d16752d3fdac1610dae8c61213e300df255be17a96467b1ff11818e4df78eb9c69d83bed93fd69db43ee05e32857a996de057778d962d7f19d81dbf7c4c1809274ff7650e85b5529cbe66d951896ac57f9e0f3790d03d9ae79c926118766038d4cffb72292bddd064f491dfba999eed7407c03aa988c9fcfe13042bef4e947f715bb29ccb2af80fe88ffe12a4d9cf0966db7e99463c32083d9b4bf504f69de3e524f7633bbed07d2e452099005d05a198ab1544d3617bddd2bda2374d1fbbf698e5252ecf610b5deae2bf382cc4fad21fd22dae74cc892de97fe5d3848d742cf5ecb2b1af88b8a0edb6b0c932822fd0b54aa1bc1745bbbcd2f592dc6611042f60f5012f64d8b66ddbf96b09536b0fd257e9561fbe3f74dd9ab5e72ec906b8ce685f9a8aa8d2de66cec3babaaaa0b02f79413c21f348824e383d952ae54787bfc24a34c416fb6fa849e08f3fb0dff9f00bcfa4c93b642c4ddceda526d94b3f0fe9746e543d040ef03b8378452deb46972fb940db08ca2472f81158bcd5bf8d11672bcf2b773269c9138d12ae4ce17786b26b028a4ecc4ac09e20b579a05035e4f3a1bcbbac012a3e8b78e20e51f82e79b39db76625abe2905a7825691b21254e2526fd5b15b752d3a3e799dd0457753d1b1bd106c96825269da36f702396d1ee5d6495a757bf629bd763e3b490f5c19dffc14f14e23c18988054d28179aeed71450f44b58b1c5483350d4b9f340b91d5ef75a24d224ed2ab53e3564438616f1cd004019e8fdbb5d66591a44487202ccbfc5f2d963777d926b69f747901f0c41a88ae04a136a85ba965270f97023e40972eea7e33ac17bd49c83d334e4212b7160781fde3a4fcc539fb684ec76409593165a88b18b9a5b60d01bd12c53dbba50d35b2771a1bdf67d8b1d86f8b424f59fbf1bfa25cc2a5b283a1314d8ffa64eb9fd5aad1110f041fe67f04f906020b15b48302d94c8ce99c11db1dd9fb85b1300249ae0fe091027c4684eb57df03b90e9955e660a7e3deb450e7a812892b99d6e798ceb89d31c2780db69bb61449f29f38c9dcfedce389c8a0362258e8aa2ed9a7c1f6248ad3b2ba46dda0eed2de7e4f861c5b54171706f92740d74499beef012abb14a472af2eacbd8e131c820833338feefdb2766a19089e564b6529d2fc4d21b7ae11dc1ef017c6dc6669a6fc31c17964296a1be6f2652d9ef80376a8066da18c3019e20c63859942334787b952e40e005da1bb2318da5fefe39618cd1dd8c190003234ea970b84d1bc77bc66edeb1e4f72d46b629e2da016460354d3c90f1b452683b958314dfc643170fd6ff355f76f79730c763b51fbd3242bd352411bff28f25716519adad795536306e7cc4960bc8a8a18abb6757457dda72c9f91ca76c52512d8d94ca7c8defa565f6ba31f89529b5806697b83172d6b1457647fd793d98597aadd0dc853181931aae0d8a88c45785d4a36b54214be020909f403cd75ac1ab669cf69da9c0edab449f0342d1d458c1b6edbd4544a61fe833f18da2191f484a50936cdb4e00239fff61e94994ce206c3f4193788971baee8e255eaa20689a8dff5383b769a3ae99738813adc5d172f7e3c31df0ed87d997880e8296eb41302fb3096d8ef40f193281e38f9e8d421be966aabc4bec224453679ac2b0873cc53130a13bd4893c825de059313603e06c35930d1157b163a977fb30f260a5c786c5d18093b754d6422ec8fdcab7280a7b40a11bb07a8dc94a719a0c28cd97f1334a4a6f8128f274dc768ea7cf88cbc356781d47d8cd049f92b8a50c45743f53324ac680a8962021b277117627a345a95b3d22394791fa371f215b65b11dbf13a5559ee4db2fcc7ff16e20dc2029d225c0dc19a4783bac2442164e0e2c71cc6ebfd294c3153e10ae51812cd32b812eb6df3608893fe6dea035b22aa24f83b5b43079196a6d37d65370981c661a571bf62ddc0f6fc3162b6727f83562883649871bca22d6add9c9deb991c81b41bb95db2c57966499f77458b57bcfa1b851a9f82339ab55ac38b9a298dec33aa6da46d9d376ffafd78ebe68bcc9c860c00b5ed6e1fa5669356afbe49821f3905f4350bba19278030e39b6430fb3ab9adb46c0381dae9f5a8c78c79990c63808eadaa29f1e7a0064425b3a56d511c3bb38b14d1e2b921da06cb89347a6a28f944194eb26fa73022a45c84352747fac3587e795c4cedc923be6e51b4f7d4f8fc82a572987bc46e04a5c22754a4a743819e8c7962486ee69be7ee4c99bc9b80cf8402506e61440393c7b46a0f76fa6f774c094beb70049d3d965b52860434050282cc8481d3a051c84be9e73c68411275ca2e1b1ed918468f60d7ce719127c8748b55a0a9258c2a7d02bf27fe9b6fd9355bd6acaee158cfaf33fd807a7f8a4ddb8fb5d2fda64527b4ece25aa7491170421d4d742e157c2ca735731325d023041dc0e95dcc1dec5cd745a22f2d57c203076273a9480eb54abe591f238df7591973b395898ec1174494ba6689b1bfcf8610ab9621777c05f2b3c38db87ccb4c57af4f14c91a953ceaf2ef81e1c3ccfa1d381f4f75c61ecdbf395e19a9e85813d7d76fcbff211157fe852b664be65b1175bb895c2485cc1f6b661734ea751b0d92bf7a2a49afcaca436328b73745c446eb4426c7f784920eac0e1d2ab68636e712d2f18063e19e422832b7b5ffc3781aeb61145ebdbfd62c8f9e7b47b1e7534a4ed5786851772b9bb28e131b991392f508aa3ba71b8ca74fd95cd0e4ca0d16ad3c0bed6dc119a142e062aea1e883d5a13472d3cb10150438dcce876a4892b0cad8d2e88f0cd60cd67329d9972a86a453792ca02581cf88bf1ac6b4e23f1ac67343b7231bd15c0e871c935dd165afe5b45435f9ce340cc15ccd9f574601b33eac02317e5003bfaeecffef2caf73444867d263b00402373a3ba27d499f402b45eb33222d555a2fe0464def1dfa7edae492cd848cdbcf80fbfa4ca74db7dfe4f3bf9104693385166c6c26af8bcada58c63748464b8efc2b69eba4492fb1ebb2afed3f305e757a662cc331506ba15fddcd31ab6b506bddb0ce6866e6a10869f79871166d0686f6398444313461a39b568f96cbec62f1ca99e61137997c5fb456ae13c58dac8c167dd0abe2a1103af34008862588153959311e3f7f77be0027ecb8dba4b73e584ce4b5550027b86fa6b1d4c33fa20004ade6ef5265d301a808bbad6cc8058241cfa75cb33c1c86dce0da89a0a89f8dcfcab2b4dd375091dd4ce4393290e3eacbcbda52e811ba82b2ed4ac4afef207ef27e193cdb94356340d444674c84934d0ed11f249612e71f78cc97ee49f29696d79e68e52a04a70f40887634fd058019156a91983f8f070ed6699fb479d03d9b8aaa021c5f20ea3c4447a5a41de7975a14a8926753dd94cb1175b7accc265f7fd33c9933ebfc906a148ab8f1a5091a374f8cef07cded914ceceec5090e2ca0c92b0cc259efab48694b18b76322564617aba1956329756051b4a4789c9a58ec55a311a98b7cb9ffcbc7c12a271a581609781bf8744671372cbec49f07a33cb815fc18221045f47b6f6957f9fb2298b70a527bd982a2e079ef9abb9bb1b61703ac9dcd76f635100d0050eaf788c6ab960c4fe96bf49540e5f1796121856ea563aefbe0cf122eb69924ca459e149d81d7b08ac98af0af046ecd8dc67998e17925b8cfdd5adf3e5dc7ca5e92930b310015b26733acf001be627975f06d2a8833fe4e4e222bee65dfe64d0f8aa74cb7aa4e8d9f4959ef1b4f4c99b0898f0d7681979c5c4ce2cd09d026330b3cbba2e0ef53b5da031cdf81db1a8ae8ef6e4abe2995f606d088e953743a492cd1e2859b1295d44f41792f809f361344a3deefac68a1d414d60a800772a4113c665466dccab661cf0a3d6cbdcd24a12ba58f5cd386a982e628e960db2c133f96b65d101d11423f0c369c67427a561f0bc0e790c70ffaa9d5ec62eab93c5dd8a3f169ae7643c390c31b9e21d9d62148f490f27dad4ec0cf668107aa740cffe5186619fc2925e3bcfbdf962513566e08cb7b1962543f82db5d71b8dd56830616d54974e660e6fb678776390e1c5ae3a3aa381c33b3d18ee57c19e78a27514f40c55929a0ba6c1dca19287414ff2061993b594e573bd829410cb985348351b28c6ef4f0db9209cea66d7c7079dff1f09e00a32a049576852a5343e947e429eb5b125e236c503e42ab609868c8795a8211b2cc855b55d8ad207f515dd84f6adc7b5aea47fbd643c2b57da63d5d5e9b3eb586f413218c3c4a8a9d683e28694d37392ce3963465eebdf90fd630b74e6d79ff2e5cbf6b3dbeda6d4bcf8f8c128ae4a237c22409e60d26a64a6a4f8b60198d127d1c8e0407639867a26ca71bdbd8a1e8091fb80dd6c45839ea5ef54e1cab38beaab86dbd39e23be0d41df0db198fc5d860c5773bfa0b4ad45736f35abecf72a0d171fb2afe64939935fd6c6f1e295b338ea2c0e2df4adeddcee70e7dcb0d43c9a1e7df98451e1a18aae93ba2ca98452bded96eebd81388b30a97a93539f11e4053e88dd155b8c29e83c75baed6a7bc4e3193ae5c04aa28ec5e0033ea0546a2604b7f89ab9f4f8d91cd8c86cea75fa8929b5a183c06a4664c6ad84079279c038c04e9f7be7d6ee01f016073472e85cf49f24197f310dff2248dba48c00483d720289b2d545dfae4c3c997bf832b89b7a6d010e15a7ed2922aafc5fe0f2b499d284615b1d07187e23b7c55eb57fe052bc978d2826bcfbdc46872dfd964e8007acc8d987b8c947f463f62d4bfd17b2febcf7407c98bce7c2148167185325570aed09948553e4bf5b520c0ba21ac961ba816923b20726dc1f456b5d31f45453f714fc4811f6e31a019445ed6928389caf25c2fbbe408bd29db15f7410e4ff939a111a7f73bc22b5aefe624c374ffb93f08f48ac7ceedb8511f4914bdd67709b94a67874ec7622d928fa406458b5b3c558668b9741f4417bd19a6b942a085ee08f9e3eceab254142fe67206f00cc4cada297281f5c589c84c144d9c71d953391e24cfec1d452c6a960a466776012ce9efdeea7e4c087e93a0a6455c326038deae9b6a72566c37322cf3117b0c9d4e7a07c5f8128d118714343d5fe1bab349f33cbbb1be8cf30ea7194762d1b00843b12039a7af24cce07a51795615928b0e3ef42f192b33730649a9e96d17a5fd98bc3912e593bd513c4c729bff8b104581c6232d2632204027d5062997c35ceefa1ee6277a6f7d8ef5328ada04a35425ae2fc2889d149d781debf909b033e81d28debe1202d61e3336ce762f471d181d33cf2be0da6586f1cc514beb5447812cf4a164edd9094831a7ac0c705e8c14c35668801e284f990c656232d6c490f5e56a1e3434d7bc5bd68a679ce3f009af2545b6e81b7c5a0ec61b418aea9815f820b0faf56d56639a794ad6938268479b6107738c4f296907f8a7cd203173d1e2000798874137c48a9272dc99795de9bc86c5eb7e94cae1094c8ff6f4533ec05402e1cfc385adf3558004ee9a3dd51c19710cc689406242dd792adb5e1542edd516b798f59b002a0d8df1d9dcd3993216b529e25a6258fb448dc3c32ead185476684486f2eda6f8b58b0fe49a6e9b769cc0d7fa99b3b513ea09227578c93dd96225a0de1a91fca4de2846990d411f21b91a72998c8fab4a2c5d7e2c8396f0013ec5b44e7742721585f85f8e46a1a02866c7723312b4b25a28b66248c650ce351e984c205bdc4ee333a2ca8e3e48ce059f44dea4bf45dbcff81d02e5568208b37eafde84bedca64329fc7f6c61d4ff56eb702969455cf5a42bfca7dd663888aed2f69e5cfaf4099e894b0f65e7c7ebb67168ef10926a2d2276dea6a2c20b7f4df68151a015f016bfa79314db0b42efb099a73b00f39272ca3981eb9af9e0a54c1e465bfca573bfae4a5b0ccb81a471744e0ef566345f0d569644c01dcced4fa5d0652f31a75274e60dcca1f7008d8ed207c05c8041a3ac33ecc333282cfc3f4c7fdf71f7334063dae0ca8374eecedfcf657163950d34bd3017e572ef837a59c51f52d6acab7222699c69a9f0c883210147c08bd77c9d749255acce65b7dd64fc1661e6595b8d232fe91ee8ec22caf4235acdc70fa9f8f0eb5b518dc497ee7cb622c7239db7c21cfa022eec78159e9f20d1b17e0a6598422c35f54dca57b61c8182e0118e571e663dd5d2a9b34dc5c49d71285f1e7b2244a2abefae423cac57e19bdc862344692789f901464385b3152e723c3739bb914a2586c2d59fc5a357e8d149a2316e49f60d4483587e1d622740ad25bae74ccfddc7a6f2292cfcf575537555a77ca76b2498e8092059972ad70c2c9550adc672347e339cc2954b3f4de3d5e9901f06ef9701b3f0b2cd66021959be8ca6fb38968340530ba5e28931bcb4e61d0959300d5ecabe09bf4ec31cad6f7b4834310e046d67f65f2dd79de0d898698b477dc52395291d659168d4535401bcee5b7f0c11a00d380b9461b65fa45648faabe1a1a69cce14a2ea9a06b70f35d09561b02d630c4857805b6f0f059fdee58500f54cd7aec7249484946cf8df8348f413234309788ff4381a6f041cfae335be49bafac9067845767ded8b0ab2f726798146691f381fa6fbe79dc58e6794dd51c1f61661d57321052e3774c4f94358fab3e78e63ee2109ec61bfb6a611f9364c82b4dc566d6713b65811f4e8abe7bc646539e7d58e9b778fabe2651677ce8d7d36659edc31db124777ced73bf0e78b11ea83b279bad0839f8babae0b4e37a019884b6ef845cd9c60d62786faa60ac2dc833db93e64f50e7e268b3c12c27ed4aa79dc8383ea7b3397572e652bb3e059c50c8921715682ed508dbe6414a0d3e02ee58fc06fec81d8bb808330952f09c8ac8fb8155ed6b4b386926e155f7c2f88a7420c2250cca8b2017023f23106e79f715d7d93c1690474f2fa3c72d1f4f6e42f4d6fb1673861aedd253d3af83f54b0fdcdf2b2ebb461c9d23a15db07c0d5be49173808851a3a4e9273fc3b65ae38455c5b268f588d0a696fd086ed91467c2369890a05f4a1c3f3b2a0ae847b448222956afdd720f91956c2f994bd4cc946c44388a9a20e5e879dbed231967b44ea0ac4b7f1f7e901b79de7e73d712f23c1312d4259cda886ff54db1da90dd64bfb5d5a00d41b4bbfebc0c68dd31cfc4e1b6069582ba9ddd64cfe2fd8beb6141eee1325583f4eb8011d17f62da36db30f88c9e9e51379b9730a73a01ef3c07d6e5e5f86291e2543b03f8c7e9d09b5ed4a1626d206c0c6742995bd73d5558ac3cff877bdd8511090b7c208dfd90e03cbc97072e6ef23a129eb8769055bcf8fc7d2b1e43fae5a815174706d423edb9dde4f884f5bde6f994fbac904b46d40cceb3d916a1ff9449c15ce71bbaa028201db4493be4652a8fd3d20b29fee043c7ecc148e71378dcc147e8395fc0e22a5cb7f5e7a416b5065c7dd983e8fd4af849e6f43efc0458af1c9db2e0582845b97bffd0f223bccbbcd53cd5c23bdcc1e5c016b737bbce414d1bcbbc990ecb59ad44f1ed08147df0edd2a88b2d3a218d781bbc7e40b80c6a33f0137794edbaa123dd42de3ac6c4a8af71c809313658ec405df5d9b9a99b46d978c338af6a9fe4bcdfe0eb50e77e8d298166a114c9f62a523045bf80df2aa0fbffe2a693813e4fe12684c41a3a3f19a5cd4fb0beb5a600d3e3ab7ab23367f701094f7abd9d8f7c3bfe32f9ab3e0c9ce6fca6dd34d2bedc66f71cce81835df14f4cd70046e50962283a0491ac539ad2c1c9468bd80732ccdf5b408c2e3041bc3e569674294a5992a760d73c2f9bebfa73e334cdf3272214c5c9e0bd30f770f5e02507b3f6210c9e98a8b5f440239d77e9376e4167d98f68097fd6e36557e97f24a26e1d7c6928d520ced48e897e545ef1ac65e7fbd438c641f5094a1f217b2dde5fe24a209969bad94cd850ea84e086f454e5fbf160caddca8b91917ee71233b82e01e3731fb4dcb3635021fccc7dc0d3a401333ded1c7a859a34909126878bcede3d656d2122c35c120537758774bd5b99dd5776867eca2b527873b55c8fb30e914d61923e188037af2493f750c1b92e9ca08021e79f7ea833d518efa390ae8f4b27aad5fcbc9f77b5cbce30eea3b9fdb69f705c1e126ecac466f41918212fe3dac4b2ac65f4c3ad1c07e7835caf33f650f54efab990068b93de025a7396d192990a8bd4c74b1fde93aed93226b567ef7520a4543167e0ab676c9f1af22331b1aa84455d1279b7982724101f49bd03ff087469377b497c9d1d902d759cf721204984af37ccb65322f9eaf0ee35e6717a4c3976231dd45204c041075cfeed8fa39217d65419a67459ba5c83b52ba2cf18f4f3d41f5fd1aa9cda2a97edbb1dcadcaf609a31f946c9bf77873cb51f27755e77696a9f8ebeaaef089045ef71e1a8bd6f116235212792a76e20b33a79f53f34d69a8e97eb2a68de2d88de3d8297ab31f1d54feac1dc5c4e992f35f05e20ca2fe5ec4c74dc170edfbd755c9d5b9fafb9d05d32f19a6e03855f98713e4821c6ed238b83685266c8b75886ba1afb43a04d45dba2dc7a25dc04ce9d893057107dce39663f6e93a3b206fb62306c801804b4c68567895da3801abff908e2a5c4e4fb08366c5c9fdf5902d8a352406105fb6a857cadb3910de0dd7449cfb951877b04650777c669e17c1d03b72be85f2bc6a682002f973fbc6d0acab4813aea66d6b701d37fafe381bff420adb1dbaeaac7618702703d482502697168a406421a1f6732876c7e6acf98ceb8b1a66e204cf5d530b189f3f94987e7c7698acac008e60d936b02d2f00ee22e390f9f9a4cbdbd6d36ba1d9e5cc7eddc3e5f85aaab437b4f3335133d074c51f67339c05c87d9ff986d5b596da7af7320d4e4ead41208eb398737d3b9605489560dd34dddbe0b30583a852dc180d29e77dbec7e1aeca4724cedc5fd9a7bf8de1fd9d77d2cd1059fc8f5e43c2c2b331b67d2b9932f004a15bb4436d1859bbc6", 0x2000, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, 0x0, 0x2, {0x7, 0x29, 0x1, 0x6a542793, 0x681d, 0x0, 0x3, 0x1, 0x0, 0x0, 0x100, 0x82}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1, 0x0, 0x5}}, 0x30)

20m6.00660022s ago: executing program 2 (id=250):
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x24040084)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, 0x0, 0x4044890)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl(r1, 0x8b29, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000140)=0x1018, 0x4)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x400448ca, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180), 0x4a00, 0x0)

20m0.783923137s ago: executing program 2 (id=257):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x20)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)
read$FUSE(r2, &(0x7f0000003800)={0x2020}, 0x2020)

19m59.282500246s ago: executing program 32 (id=257):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x20)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)
read$FUSE(r2, &(0x7f0000003800)={0x2020}, 0x2020)

17m48.338193845s ago: executing program 3 (id=584):
socket$kcm(0x29, 0x5, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
io_uring_setup(0x1b78, &(0x7f0000000040)={0x0, 0xca72, 0xc000, 0x0, 0x2e8})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x2, 0x9}}, 0x20)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cdg', 0x3)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
io_uring_setup(0x9, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$kcm(0x23, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000339000/0x1000)=nil, 0x800000})
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

17m45.841542197s ago: executing program 3 (id=591):
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x6, &(0x7f0000000300)=<r2=>0x0)
r3 = eventfd2(0x0, 0x0)
io_getevents(r2, 0x1, 0x1, &(0x7f0000001340)=[{}], 0x0)
io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x3, r3}])

17m44.585164864s ago: executing program 3 (id=598):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
recvmmsg$unix(r2, 0x0, 0x0, 0x60, 0x0)

17m43.763441787s ago: executing program 3 (id=601):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x800714, &(0x7f00000000c0), 0xff, 0x4df, &(0x7f0000010a80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x3, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c67808cf338674bd9bffbcafd468e306d7b4af07ec3ad71e14dc00000000c2ab00c60e0000000000000800000901000038fabe8279c2f1d600", "f28359738e229a4c66810000000000d300e6d6020000d2000000000000000001", [0x9, 0x40000000000000]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)

17m41.588161562s ago: executing program 3 (id=611):
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
r1 = socket$kcm(0x2, 0x3, 0x106)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x160b, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}, 0x1, 0x0, 0x0, 0x850}, 0x4040080)
sendmsg$inet(r1, &(0x7f0000000040)={&(0x7f0000000380)={0x2, 0x4e21, @remote}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000600)="b9ed29d8fe490a060b483f2dd090fc6889ae6b84", 0xffeb}], 0x1}, 0x0)

17m41.07118839s ago: executing program 3 (id=615):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000000c0)={[{0x7ff, 0x6, 0x73, 0x6, 0x8, 0x8, 0x1, 0x1, 0x0, 0x4, 0xfc, 0x4, 0x6}, {0xe, 0x105, 0x48, 0xa, 0xdd, 0xa, 0x9, 0x8, 0xcf, 0x1, 0x5, 0x5, 0xef}, {0x3, 0x80, 0x2, 0x2, 0x95, 0x81, 0x2, 0x7, 0x6, 0x7f, 0x5, 0x1, 0xf76}], 0x7})

17m40.368169267s ago: executing program 33 (id=615):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000000c0)={[{0x7ff, 0x6, 0x73, 0x6, 0x8, 0x8, 0x1, 0x1, 0x0, 0x4, 0xfc, 0x4, 0x6}, {0xe, 0x105, 0x48, 0xa, 0xdd, 0xa, 0x9, 0x8, 0xcf, 0x1, 0x5, 0x5, 0xef}, {0x3, 0x80, 0x2, 0x2, 0x95, 0x81, 0x2, 0x7, 0x6, 0x7f, 0x5, 0x1, 0xf76}], 0x7})

15m21.931660663s ago: executing program 0 (id=965):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
timerfd_create(0x9, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000300)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x3f, 0x68, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010102, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x13, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x11, 0x2, @broadcast, @local, {[@rr={0x7, 0x3}, @ssrr={0x89, 0x7, 0x9d, [@multicast1]}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@private=0xa01012f}, {@initdev={0xac, 0x1e, 0x1, 0x0}}, {@private}, {@dev}, {@local}]}]}}}}}}}, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x10040)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x42, &(0x7f0000000240)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x67, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0xc2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x6, 0x1}]}}}}}}}, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0xfffe, 0x0, 0x95, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x4, 0x8, 0x0, 0x1000, {[@timestamp={0x8, 0xa, 0x8001, 0x400056}]}}}}}}}, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}}, 0xb8}}, 0x0)
socket$inet6(0xa, 0x3, 0x6)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x378b5ec3}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_QUEUE_FLAGS={0x6, 0x3, 0x1, 0x0, 0x1}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x17}]}}}]}]}], {0x14}}, 0xd8}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "804479", 0x14, 0x6, 0x0, @private2, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
close(r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x2c, 0x2c, 0x5, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0xb, 0xffff}, {0xb, 0xfff1}, {0x3, 0x7}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x6}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8007}, 0x2000400c)

15m20.433000463s ago: executing program 0 (id=967):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x40d, 0x70bd2d, 0x1ffffffc, {0x0, 0x0, 0x0, r2, 0x60046}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x2}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="30000000100001085f0000000000003a33a9e4fc", @ANYRES32=0x0, @ANYBLOB="00000000e300020008000a00", @ANYRES32=r2, @ANYBLOB="08001b"], 0x30}}, 0x0)

15m19.782728677s ago: executing program 0 (id=971):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x600000b, 0x12, 0xffffffffffffffff, 0x1000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000004340)=@vmx={0x0, 0x0, 0x2080, {0xffffffff}, {"000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ddb0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", "00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200"}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0xfffffffffffffdb1, &(0x7f0000000280)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'vlan0\x00'})
sendmsg$nl_route_sched(r4, 0x0, 0x8000)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x48)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$ptmx(0xffffff9c, 0x0, 0xa578b166ab60d784, 0x0)

15m16.443462524s ago: executing program 0 (id=974):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=ANY=[@ANYBLOB="200000000514210626bd70000000000008"], 0x20}}, 0x0)

15m15.078757047s ago: executing program 4 (id=978):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020000000000000800000524050000082407000000009e0c240700000000a3e82f07070d2407010604000000000000e90924030000000001"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0003040000080000008f000000579938a2be315f5d246eba68c42a926d6557537e256d0400fe1f86d89bde4953be2b786aadf8d00b422942647bd312"], 0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vimc0(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$XFS_IOC_GETBMAPX(r3, 0xc0205838, &(0x7f0000000140)={0x5, 0x1, 0x3, 0x1, 0x6a, 0x8, 0x6})
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000100)={@local})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r4, 0x7b2, &(0x7f0000001680)={&(0x7f0000000680)=[0x100000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6d2, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x3dde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x8, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0xc5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0xffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xfffffffe, 0x8000000, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0xa07, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x100003, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xb7, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x934a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4], 0x1, 0x400})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r4, 0x7b1, &(0x7f0000000080)={&(0x7f00000016c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x282, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0xfcb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x573, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x8e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x72c, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffdfffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x92, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x1, 0x400})

15m14.420549622s ago: executing program 0 (id=981):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
write$bt_hci(0xffffffffffffffff, 0x0, 0x25)
bind$can_j1939(r1, &(0x7f0000000340)={0x1d, r2, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmmsg(r1, &(0x7f000000a540)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000540)}, {0x0}], 0x2, &(0x7f000000aec0)}}, {{0x0, 0x0, &(0x7f0000000ec0)}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[{0x10, 0x10a, 0xfffffff9}], 0x10}}], 0x3, 0x41)
setsockopt$SO_J1939_FILTER(r1, 0x6b, 0x1, &(0x7f0000000400)=[{0x2, 0x2, {0x0, 0xff}, {0x1, 0xff}, 0xfe}, {0x0, 0x2, {0x1, 0x0, 0x4}, {}, 0xfd, 0x1}, {0x3, 0x3, {0x1}, {0x1, 0x1, 0x2}, 0xfd}, {0x0, 0x2, {0x1}, {0x0, 0xf0, 0x3}, 0xfe, 0x1}, {0x3, 0x0, {0x0, 0xff, 0x4}, {0x0, 0xff, 0x1}, 0xfe, 0xfd}], 0xa0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newtfilter={0x24, 0x11, 0x1, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x74, r2, {0xb, 0xfff2}, {0xfff1, 0x9}, {0x2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x20000050)

15m14.025522678s ago: executing program 0 (id=984):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000006a82, 0x0)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0)
r2 = gettid()
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
syz_io_uring_setup(0x400f00, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000040)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_io_uring_setup(0x7dce, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f00000000c0)={0x4000, 0x20001fe00})

15m9.454658729s ago: executing program 4 (id=988):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = eventfd2(0x4001, 0x800)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc020)
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000000)={r3, 0xb, 0x2, r3})
socket(0x22, 0x2, 0x24)
close_range(r0, 0xffffffffffffffff, 0x0)

15m8.799027243s ago: executing program 4 (id=989):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a20000000000a01020000000000000000020000090900010073797a300000000074000000160a030000000000000000000200000a4000038008000140000000002c00038014000100776c616e3000000000000000000000001400010070696d3672656731000000000000000008000240000000020900020073797a31000000000900010073797a30000000000800074000000001"], 0xbc}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)

15m8.307513677s ago: executing program 4 (id=990):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=ANY=[@ANYBLOB="200000000514210626bd7000000000000800"], 0x20}}, 0x0)

15m3.568260509s ago: executing program 4 (id=997):
fsopen(&(0x7f00000002c0)='bfs\x00', 0x0)

15m3.279387078s ago: executing program 4 (id=998):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xa4242, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000080)=0x2, 0xd)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, 0x0, 0x40800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x20000004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x13, r0, 0x0)
mprotect(&(0x7f0000185000/0x4000)=nil, 0x4000, 0x3000006)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000100)={0x2, 0x7, 0x6})
r4 = syz_open_dev$cec(0x0, 0x0, 0x2)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000080)={"5381d6dc", 0x2, 0x6, 0x1, 0x400, 0x7, "9ad7f18bee5970ebb85649ef55e24c", "1012e304", "6ef1fee9", "a88bb21f", ["5c294bd54bdbcc454ec4fe2a", "1e823e1929dad85f7c58b964", "0cefddcd3a6e078d00c07b4e", "faf2b69f1b22666ad990e013"]})
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd86)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

14m58.056570934s ago: executing program 34 (id=984):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000006a82, 0x0)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0)
r2 = gettid()
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
syz_io_uring_setup(0x400f00, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000040)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_io_uring_setup(0x7dce, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f00000000c0)={0x4000, 0x20001fe00})

14m48.076046702s ago: executing program 35 (id=998):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xa4242, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000080)=0x2, 0xd)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, 0x0, 0x40800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x20000004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x13, r0, 0x0)
mprotect(&(0x7f0000185000/0x4000)=nil, 0x4000, 0x3000006)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000100)={0x2, 0x7, 0x6})
r4 = syz_open_dev$cec(0x0, 0x0, 0x2)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000080)={"5381d6dc", 0x2, 0x6, 0x1, 0x400, 0x7, "9ad7f18bee5970ebb85649ef55e24c", "1012e304", "6ef1fee9", "a88bb21f", ["5c294bd54bdbcc454ec4fe2a", "1e823e1929dad85f7c58b964", "0cefddcd3a6e078d00c07b4e", "faf2b69f1b22666ad990e013"]})
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd86)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1m30.879259701s ago: executing program 1 (id=2754):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1010400, &(0x7f0000000000), 0x25, 0x4c0, &(0x7f0000000ec0)="$eJzs3U9vVF0ZAPDn3nZo31JoURL/RAURRUOYaQdoCCvcaAwhMRJXLqC2Q9N0ptN0pkgri/IdTCRxpR/BhYkLE1bu3enODS5MUImGmrgYc2empZROW6XMfdP5/ZKTe889w32ew3DPGQ50TgAD62JEbEbEqYh4GBET3etJt8SdTsle9+b107mt10/nkmi17v89abdn12LXr8mc7t5zNCJ+8N2IHyfvx22sbyzNVquV1W691KytlBrrG9cWa7MLlYXKcrk8Mz0zdev6zfKx9fVC7devvrN494e/++2XX/5h81s/zdIa77bt7sdx6nS9sBMnMxwRdz9GsBwMdftzKu9E+L+kEfGZiLiUPf+tvLMBAPqh1ZqI1sTuOgBw0qXtNbAkLXbXAsYjTYvFzhre+RhLq/VG8+qj+tryfGetbDIK6aPFamWqu1Y4GYUkq0+3z9/Wy3vq1yPiXET8bOSTdr04V6/O5/nBBwAG2Ok98/+/RjrzPwBwwo3mnQAA0HfmfwAYPOZ/ABg85n8AGDy75v87eeYBAPSPv/8DwOAx/wPAQPn+vXtZaW11v/96/vH62lL98bX5SmOpWFubK87VV1eKC/X6Qvs7e2qH3a9ar69M34i1J6VmpdEsNdY3HtTqa8vNB+3v9X5QKfSlVwDAQc5dePGnJCI2b3/SLrFrLwdzNZxsad4JALkZyjsBIDfDeScA5KZwNu8MgLzts0XvO3r+F6Hnx58L0B9XvmD9HwaV9X8YXNb/YXBZ/4fB1Wol9vwHgAFjjR/w7/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwvxtvlyQtdvcCH480LRYjzkTEZBSSR4vVylREnI2IP44URrL6dN5JAwAfKP1r0t3/68rE5fG9raeSf4+0jxHxk1/c//mT2WZzdTq7/o+d683n3evlPPIHAA6zPU9vz+Pb3rx+OrddDrzByPHm8+rbnc1Fs7hb3dJpGY7h9nE0ChEx9s+kW+/IPq8MHUP8zWcR8fn9+p+010Ymuzuf7o2fxT7T1/jpO/HTdlvnmP1efPYYcoFB8yIbf+7s9/ylcbF93P/5H22PUB9ue/zbem/8S3fGv6Ee49/Fo8a48fvv9Wx7FvHF4f3iJzvxkx7xLx8x/p+/9JVLvdpav4y4EvvH3x2r1KytlBrrG9cWa7MLlYXKcrk8Mz0zdev6zXKpvUZd2l6pft/fbl89e1D/x3rEHz2k/18/Yv9/9Z+HP/rqAfG/+bX93//zB8TP5sRvHDH+7Nhvem7fncWf79H/w97/q0eM//IvG/NHfCkA0AeN9Y2l2Wq1suqkbyfZZ7dPQRpOcjvJ/gQcx30+9xFTzXtkAj62tw993pkAAAAAAAAAAAAAAAC99OMHnvLuIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACfXfwMAAP//wVzW/Q==")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
truncate(&(0x7f0000000940)='./file1\x00', 0x2fffffd)

1m28.347284581s ago: executing program 1 (id=2766):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, &(0x7f0000000040), &(0x7f0000000080)=r4}, 0x20)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r6=>0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x0, 0xfff, 0x7fff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000940)=@newqdisc={0x138, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {0x3}, {}, {0x2, 0x1}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x108, 0x2, [@TCA_GRED_STAB={0x104, 0x2, "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"}]}}]}, 0x138}, 0x1, 0x0, 0x0, 0x480d8}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x4e, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa30e, 0x1, 0xfffffffa}}}}]}, 0x44}}, 0x0)

1m27.819362926s ago: executing program 1 (id=2769):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="92756f43b31ffe542788ef586b7c5a344424e3acac2590be6bbe37adface4a8f2e534ffe76a83a93f0b3680a72fddfde83f96d01982384e8d689219cb9669b14dbaa1b799f82ea1fc926126a4163618e16d4f94143a4e0f27c44fcef3920a0b3805ed4e78098d8689cc7791bd86648070718d238664332948d87866c8d2590fc0f017f9853abd9ed60b99f1aa6ae2dbd24ab6dbcebdb055246815ace147cc50fa3b2861148fcda374d5b203e51d72c45e4dde3e9ee9a47ffe458baf7bb49035135a8194aa1f0a83fa2abed56398f90daff679634619453f533f22583a6e0a4dc09e9de46684d5e0136e229510f3702cf3a4cd0065d3e5d3c419e38a80b070ca55010e082a9c510fd18cc0b26bb5e8e459e747befbc5c6b60ace80bf41417b7b78cf57e5b3984f0cdddc615c5e0000454d3f4a196fb6d18aa629cf0b0245f95ba958d86dc175616f8cd3ac473057dc3a5ff7107973326350107f4468e7ecd48d689b82c12d22ae5f1858302a1b4cfde8fd347a99ddcde40d1c49d9b5099fbccf09e782212be4b2ce36a2bc3c9ee794abffe72a5501e6c4f3f7f68b74761ffd6620609224a3bf11f655dadb5c8a5813b02fb46830e9ac6825f5d0e89910352eb3a58c0dd82d094f94dd2c85666f684a8f437bbd0e66b9f4d366117b67a054d212c4fbc287848cb0578391335d5d616b14d99a2e3df8e8a152d5de99bcefcaab5bb5cc71f3ddd66b379c104648e190e0b28a180d3aecc5423575d4ba7dbf31215c717da7b87dd454b6efcd36c91aaa631127f5bd88723d221752f102bc0c7ac6c5c7a1ad6747af40d01b6d39eab7b0e1292b44683c586386ad00acf60fb8f9bac551a6eb5bab7317b5d89f64db10bd9018dfa6d65d93862e851afbc30fd70fe5f0de322462045177231852ca80e4e78da4fea0c79ba354333026c8bc77d308a8d256a19ec45d2088c196691d3f9aac28ded36004a65ee1ce49ba9599ceee84534bb61d02d04a6732f1e27d72962f74b59f3522bf844c5022986d55934e48b8681b7f5b7532391448caeef00315d28320a46d8bd7813544e1e4bf994e14a519c2654ff20b42bdb69c262897e28eca528f0999840b00ed8256597d27cfc20d71d5f40d0bbca759f7594c6034aa1e16a84ed152fad0fdc1c303a7f61225712714f823afc5ea241d482d3585759623af8c97ca6a84a2033b3d7314ea0ef7ba9b288b362a294c92c8b9736829c16f61c5a1ee04aca965d71162292274595ea62c9c2918e8279c99f5d2830c617c58211fd7452330184b9428d5ec1d5cd75ddcc6de3326fdc70e891104b3b013c30ffccfaf3308d9671b01f6b080a930dac2052c6f39817a662121d90d40d6a1facfb50bec7d408030b6d0ae3e744f3bcc327c35dc43cf86b743db78ff2e593b19923235ed6467f299b08718fe1840c16a748935dff941150fb08b30573b37bf9af5c86cc8d9e229a832e4ef25ec91f71120f2b3e9062485976c280a2d172386029e2f2a4801197fca0a13514edacf5ddbac5a62e8bb13dd1572657a821a8739297f72e29239d1cdddf3e30cbe9af3141f2275ee4ae85d86ec888fe9a6751f252057e95b8beb055e276439581afee93cd44f1e92f70e5f725451d3ab662918ffbb1269509fbd511e95a00ec717f9d60d643864abd6ad1cc4dd7f933379a6078a86c2158db8076e7b660366fca7b1c46d09d2c8e67a6494bfb4c2c6750e76593895b5e2b2bc78093840c3c4a807826bc2750a96b4e1dd5b82b492bb2215518c92064d1763c37132604e52e73fac3f4511f791753aeecfbb19816e0da7a1bfbea9eeaa0f256eaedcb119a61f7d0ea0f5cd4969d45cb014800f2c888d5c2217cf0f69a7507779883b57352bb8883cc584891950d6e792537074f4fc4337aa19b9bf60e18edd939d289fb4a6b7aa6c66da20774e249ca4f779d3c910b1a9a8e4c38af6adecc87d5481d181fd66023ffff246f4e2556b218fe8110acebe20b1675f1de6f265b6d1d8514a53522396bf0e2f2b153c498e48b36d16f8b9bd56f45d7f5b9397d7f1339117a176d0bad0b68e800682416d3e18fe2197c7f8dc20600feb95cc6ba86ad47f113e159bd4389e30eab2874bd27eebc56020c4dab9973b13f3e82aa62a7e0a151d73de48cb811e32be63ffd303f5a6ea6f097ed763fbf36c430821e451146de79922348354ce285af0997bf3c66e6ef02942e24b8f1ccdd542f09cfe65c0da0094c0b5fd26bbc061538b41e5ed2cbb390ee29b10a4b7a696009e1b5b86c44c0a561a257c15415feaeb1433ea275ed6e4b228503fe71ee5942665164faaed6697112206be0fe7863aebd4bbe951d5dea1da294dba0793196385f4d5141c9d6c4b0fa22b2e200cfb70b52aca31655e71e5a576ccb8ccb5b1364748aa981edbb81a813b1aebc67be1f7619e7e197622d981280429f6ca5145c5b3b05e6bace9191e5c58fbf140f71f594cbfd4db0e9f6923f1758ff9464a61a720a5d4f09c622c3ce3f5d0d3a1d191111168108f41f12b16e9eaf3617c353715cd35260560cbfd0555d51ce5c40bbdb7c95ceaeadadb8902974de50b0863348183864f5ea682e678286a06a6f396af29a7c7fb33a3579e25835963612f3c0d4cf369d85959a0adeda94d35824050e6fba7f83f90867583f713d7783323c7010e94c9be331f860db395dbde6face5bfdb616fcefa9c6b01f6963daa840a31ff554a458c0c50cb5e09f91f54f63234589decaf45bbfbaef0dcbff4ae6e65ca26a530261c491ef8eb9a855a1d7463391c9b66be96cf24c3c321ee5a5bdc857f60b582683c6ae1e3775b62a9f19ff8fa51380ca8a2a3c6de79012f5727ba12025e7e6723a23a81e067ca6e54c7b38ff64880d235d21e7ee5258953dcbf9e2a962f006ca4ffe870859242c850cbae4222b3b72c4f86934379ba2ead1dcde906241b994d95c88355af5a9a30ace9c933a6942f341ad221dd825846a8fd44c03e2eaa9311c26e15a1bd7cbba961a22ef23d7ebba0e34cec5ef09b1ce72814a97e33bd29f3d9ec80a4f45d1d29486accf15c11f1a800bd84918e7626f678275d7c7acb02cc0e6e34bb766ba6b75c3ad14fca9352e09c3b69390c045cfc842ff9ade8ca693c07fadc7047a946e6e570c3afc5b501c964103397f5ddadc2d59a048348dd42f07cfe31bc9b5ae453f5086bb41bba4c8a3e518e30b0855184b053f923025dd72ce1bcbf41231978b34a8547c71d7313992165078903c61d312b0d9469413c9fd97ccdf0ea270fb6c47ec8861a1c8d909eeace761b5a06ba46e25785ff87f867777abb237c6c980687991f1ed0157d58492260c712cec34c1fc0962103955db4d5090b6e8409cf3c3c79d0e691cf4fbc0b2251a016dcd456969cd32e5429533bf0d6f8bda84c05f0e2040de8b53bfb8676eec4b76c3df6f46b1e43732035dda577e75f640777f6ae90fd2f1af42ba462dac732019c599bfef01acd6a0d4d1796bcb8f58519d6f9ad9a3206704a94d472516b988141f44ecd2e6f28a49aa0c449db87972fc995a97379914546ea43143ea2cf779a9cbe81f111fe89129db3610492164ab2598eca7e60d9a6963d8ba03a86729db86e420fd96d61b8fb11edc2b339b57a740074ae5b775eaf60cd85dc934e604bf2b4bd58ee01205b4df57ac20ff8db45a05982b579643882407050c005102a2e71f1e56dc76dbf5331112e83e48bfb5cf2a78a893190d78426175c162ffaa7278a43b9932318fc17fb8cb0dfac610b1ad235b91f9cb7623b155117e07f7b876a3c37627aa31eafed141cc0c5491c4f621a66b6d837a144d78719c46511c04a093cf65fce9fabe5bd6d499eceb63538ece3cf19053550a239bf978c08c879f9954485a4e3e0d5bedb84b407ced85c4dfc4d75af116815992c29f0bc927c4a990c38ae4fcc9feb90fec1b1b555e04d010423010855394d5ccfc8ed21164190cd8f83be5debb70290c3547f07e4dc42814f1e001798e6ceee2558b0c6ff8c1759f90269ee226131116332b99ac8dd104c92088e1f91ace3198c0f59bfb75c4e4a697660eed43a29c831a552de37fce6dce96fa51b6e2111f3071a4e94422d15e102e5f67da7ca6cae6bed7743ebffacb8a811a143605791d17232181a517e872f71262c3c73668f0ef83aad498f67fa26bae698cf78f24c2dbecd399a190e6b8d0684e929f2e8083765eb2c67793a1adbb89d36b58bfb197cdc5f3c894ac9d886e8f3b0936fabd233c09de8fab8099f72a74d908ba5c5e4d39790b0bf9e45b710f5587b7c937c76690c5c5fce621a53a9fd03b0a4ee6d8d1abbe2ed561820a77f12a08cad0755540ab6dd1604b7c30a8652995ab80b85e919011de9438a4637eb0291124ed4b745e782cff98510cb03be79c2a81351abf276584d75cdd96b9c97e73eb71000b3ab7c3c19c2cab4497298fcb3052b5d4503d05e7f310318be6f848547b1a4f4db82caee190801478be28065036aa4d91f290c1f396343e73a5fe8bb5ccf0a317177ed1f77acda1a4a49dccfcab8d1b5d79f015f788b6d5e9f8228a8bcdc0696e6b19f5edffbcd7e9509c87fbe1f726b93bf8c6d8d37428763e142560c46c9e894f7317859000c25abc4f3691ebcd020171e0d4911b5d97a238109aedeb00b2eb475c1e7b45175f8aa85193b5c0f43b434c15de01610c4d022646cd6e3637f349a434a77f571ac1c5d698452d1b991e267f78dca5e592ecd31ccafcad84e4e98d134b4adc525b81bd6843428883023a6ea407201738c8bf16b541ff7280274a34d4cf14819f2dbae167ca0cae8471c495e006b45194ad91c4516f21cbb10e0d26fd5d734cd7725df5b3fbe92955f4a9bb3b9b813aeeff79d6ed5db92def19d060a208c3ec8c42c110786f1e1496c50a7249b03fc792764366894a35320b99d0bef9fd0b6a246c36a357c6b985dc83a37a8d9b8b9ad643dea94860cbe763bb73cc8422b69d4d12332242c8954075fb7117a6679638073617abcdb4619855b2036af160647f66b3531645a3bf047ae290d6ae2249f114e7a8464278bae1486022bcc7c37390c8d9a0efb0e1cfa0da8ef7a5e072f99a47ecc75e4e442880375193db49bb82ba34901286ca473ed5b63e4048db4dc455e74b3fdd2e7898ca3f4c3a02d435cde6141eea645055123a7dcf0d22057f8d425701afc55859f5147954e719d58c7486b1e02ac16cb799b77632c66bb78e6e52e11017c1736424fa4d433f1e19b4c881d23f0b2a12d5fae3ae24339088088d9b496ad97bd9f6e20a8597d1452a0c72dcf43dbbda8f18166585c06d21fbffe5fe7b55f71c9b9f1b34a02bd05ca63c7c1b1bebbb9dd24fb10291b04c665d45154dd28b85d821ce7e613119128996785e1006a8dabc4899b10d2671107d5a0658ed363b9d4b39d02f8cc5e350fbf0a31048adecd1f9e2ca749bd86f195eb48e9b4605f050de03d642940d79184618f7f88a9a0a4683ad84d6134e395305bc1d4d9d17cc334b97653529d6682a87a5fac80a6d46d6e72fc22e58be7b8f8617b3372ef2622110ab1ec448717118b257acffe55d18c7855e9e8710ad977a6792b2315a189eb4468c68641e9b60c0dab7016ac1ad63cd8004b6eca8fc88b1e4263acc00499255c16b11487a0af858075f9c892dc8044c4146e5a5677c4a2cb24bde5e078985020d4ab1e4c87492e76b7e6f4bbd71d84bab1885c9702849e70cf728776b1a94c2a8fb8c7ca01b6111ef6f2032a290949bfe473fe215273b8b5b3ad540f187490f63077dccbca6f62f0a7a66717c596cdef412f2560b10685ede967b3ee68b8c951959aeb1d7564c3b9d806b2ce858381393a79916b78f7e90beadae30ffc0b2b614380f1c2cc551a44565209db3516be379ef566ab00c673fd8aaeeecdcf1168c1960e9a477b9e13757498a44ff089351d1f27abf9fd76816f924504647d1247715ca861ebe624172c322146d66eb2b247f8ecb3e1b5ddca89b287c57510cec40fcf89d802cf4368a861af320e01e34f7a6177d4bc549181b5e87ecdfe02f78c9a59a3bf91ebb6364023ec06410e7b4476ec4e3685bfa3bfe9ef9ecc12dcd899abe0f3c7f16b4686801c0c0a949aa26bed57df56f2bc54ef19af7fcbc7b0d691075f42a4a67acf980b568acb2342f42249f7c1ee3527c13182b096064ecd250887a942d26f637e1c4041b139659d2462a68680bb04387a3b399e396b9fe74de10356125fa47d0a20827370cbf36a79b6fffade91c439dd6cfff4bbe0dd3efefb61c491ee32f935d62307cba369ac8c20f6fe3d4857ce6d240ece5e4d149f0587155a8350fcc18efae2ff11cdbe15218a82499a1996df8b5462ee170b284321e76bbe5c3f4158387644d95f087c598e3d46fbe27f63fa784bda239512113424045a2c5dbc6bc3662ca730a86d13cf8f6fe2743224ca7b535caf6b4701a7dae9cfad3d7290104bbba15b6a064ae6e909a099f75fbe47c9e654d8e3b8dc0f3dbffe829e6c56f7a241e565136812a857f59ab565a9991c6b1d8abcc94c6b33bba314f6e5060e657e4647f969a551dd6c51dfca0ff5d9e4f401fedbc2c927eb1ed95ef25f4e5accba4999322ba1539499310dd5875433a22835cfd42fd77fd4680b7fe767d7aa5c33acde04a65bd3a663fcde4c80e9f2af498f13bf9abbaa1c1265edc691e94abdcc92270c05811cd2a8104eb18efbfec9e4ba9ae5cde211b9b93082ce034b6cd5fbe9cfbac4f7e2404ef159766124f73017cc3600f3c81cd78db25fc3459629eaf20dfdb062c7e502aa69412381d847a9d254d5befc451cda3606f0bc8ae62e0aee928f9ed0b21d705a8d31b899e16445ee064563d32f7b6bb5ad197023cf528d9b329ec67815c6ddf27d2a6ffa7328bb993407cde3d166159fd49fe469254b84c2916daea8df9d69bef019f1351b9bce193e30278835b82ea5f60dc0bdd7f7452b7a820ae7cd6dc29d7ac6a6c1b6411711a96338b1e769146b2a385d282bfaae61b041166efafab2d89a4567b9460cc22d752f8e9aacaaa0db7c84879f5359662d55df6570d4214740851c74574ced733807cbb54571110410892394c3dea07bd4154d0e5689d57c3360207dac951f96a358e9c466a5c5113f3a632e184f57f075edef4dcc9721b963beb95df09dedf848260cbc1ebfdc7408218eaba6d2c51928cd37c4c0c9f321fbb0994a56947cfd9643056db5dbea60a241f8f004c932bc8e645b2ec2eb9bc4e9e2f4156293234d05e70cb26b8a370b0206c756bda6defc11c5eb386640f535a4ffb714168defc6d82f40d8f5ba8768537ead5773c53bd779ca899a2dd31c9138569ff5107c2fb12b804375c3b3dc9b828bfd550328adf358f71e86a0c49fb119f5ef9e06c13855cbfc7d1a62ca2ea655ed912a6dc7bb8b18656e8923fc7a1702ab36947d79384d681c31923e98cf40209f776bc2b219a7ccd139e756a905aa351e6eaae90770c8a193f96cd5c66e4d77a357985556e14333716d80204a5c390e0d76f4081afe917f99ad8a0976b3342f51854b374b4baa9a7f22124d2b82749446e30d9795acb9c3c3a305a6d273ac528e8e9c95c37a78e765fdda55982c2961fbc85a14fc095a78b4654ee6dfc3298749a639ab9c8e155af3a77f8a409ce174532a492ef550a140f774d77d732b3b4ca5bc41fa4488ce5957ce219b032ae1f585273748d81b19edcf3e6cb9a93ec24e41c6b3c472f9baf3ca46cb8b9a91df18acebe7d83bd4473750c4f26806da2f95b9ea48b342460af729ab15e9f033eda67feec645f985d4b9489cf6ceec1b100d007bf46c74be53c7ea17296f9c5b5cbae736491213c93b513009ebdecfcd60d46d7b86c6e3b5e288f2ba5867c07936e7bd1b00de52191eb8630ff82ccafb27a59295164751811bf74eff1e5e2abdf3c93bc5dc9814be83b2562477935e2fa30db7ebb6ec380170cf10c1f98f8c5eb71c730c2b31b55a1dd1c12a64802ab95b63c529e0a96cec8f38680221d6089926d8309796c79994d63b67bfb62f66b4a502f30ed12be41e896e88bc45a160a526fbd5f002e677322f116ec5740d7563cd23ee853c008b84998e38fdf158556e28a532573956e7c00f91f08ca245c295a3d5e003a99ea727f61d12893b435d4c8f2f5cce00c6a3091e2a47f290c07168975c53d7529b71d10faf42d2bac9db8d53669cf59c709c25e9e40b5feaed4c37dde8b84c4961c00712326fb6aaa06e80d766b40b72480f3971def61d1d129676df2478e778d899ed317426ec33e496d1fdd2ec27128f8faee92828e13da72d6aee8330a7988ea1cc8b64ec4d8b20990864c16c52c4be6d00b304b87d97bffdd9c66a740b517223089d9f3f414abedc53c768dab9220b980e6c18d5f20ba8994cc8886d7bdee213442f456d79fce1b1eb48fbf600a666c8ade24d118e6328251cf7b57a6285c650e019850f392b1c29aec5c8fc489a3819d60d5de377d4c11b8ee5625b7c02c5d50d2af3397006f2e2a41a06f039229eef5878ed91f9f6be7e988924dbaeb8455f616275e8698d93fb536e2c839b203aa69bceceddbf9c53f8addba53d50ca0f7a4729a42ac6eb757f1b408ad4a0147546173e62f7621eb18a9e1681510cceb48e0a30ab7a1bf71d56742d5f034f2d725e7ea68a011dbb100fa6eefe4ee093873de366d34f4240ca027a25c5b979c9ac47dd1dcb6ed82c4aee09dcc23cf329a8644f89b5cf00e5683934b1837574e9b39b31b1009f276e15aa040959fdf100838ca3f5ab17e45036668d06044e3a13f3a0a6f68579e50d5b0164f900d7bcfcde78396cf30f0b1dff76dc397ab1a5a44b207eb1eaaf73b945c575029ae2dce20724991e6550155ded6a42672609f2439c5aab4882b2ffaf7da787b71d05d15516bd68c6f1a9d79b675395845f24ee853f877e72c14b6c6702f7b8775ca1bfabbbcf4019f7bccf07f1c211531dfc66a7a1df79e92a20dd1cbe1b22e1209e7e3ecb9d3c2450fc22a57bfe09bd735f61c361cdac2488ae0adc7885edc0712655daaf535e1de96ccbe7869d531d8bf3db512fbd17c772332a3f8cf1e052ee0202eb99a36a0f8d7219888acbb57090cdaf3b28e1e62e8fc2ec237bdf18592a7afe4d8390dcb5e7fcc31bf4f797e6f5710070902265cc2e8c459b7da1451046abd6c8c5b02c0be2d2f505a65376266563ac7b59ef3b4e2570a6cb0bd94d46ad861317c743ce1de12bfa2295a98cdded4414d87a1580b1e4675bbdf73a22cac4a1d8d456d089e0b60cbfd16158f073bd1dac481db49fa5d8801d0fb0844b4afec1bab4e61fa0f381fa667880a1cd8163953be7b591cc9dfd7f91902370b783ae8a0f3c7cbefa7d229a37c00f523529e159b11d2e240629b64af2d11404773e991207a722c320221ce23baed7cbe40a440c5680814b122cfba9092fe03478f85adcbdeacb76d6cbf2491eafae98327b278e267821a0e1cd06ef90cb0328e246c19d8c63b9332291a89bc9f989effc675c79a870ac024756c6f5a7e32babd69625d61487ae7399490b70dd0fade7d70ad9b0757300a2dde77abaff4f63a0303853589d44efa968e10d36561f04408ad0cc227fc6b2f904cead189a0fcca9b2e6cbde5498652e0b3bc9d8b7921474403718feb5cc750dc70f5a9b1a0ae2c642015b6a1a8ab0572182b4e39e0c869cbdc60c9465f5d564d18ba2f5b3bc3e05a458744077430c5ea031ee02dd8f0a65d7dd8d90dd9b8717f77d202239a5778719423fb2aec7ca86eb07c39de65a34b988d65377a7473e9145f16d79593e96903330bbf3a8024fc15519d9baa0fae2018786f4b1846fca355ff0fccf65cccad1896309a5ccf2056dd542c929850cc91cd655962360fe316557ab3fb378328f77a07d9da24447d3fa2020b382ed2e808ec9529a01273434c64b0b7c35a06a019e4ab51cdc9c0f266ab25b6984338a0ba910d1060283b636c5d7e8a3f969c1ee1c99b54bba7ff3679fbeecbb70349f076480a867cc4ee4cacaea39c80f642533599486d2ffb77b8c9109a9d25fa0b06e58eca764f7d56469eb9547036bbea9d5c3d35b4c1fbc3d39a372c2b7ad184965cad3819c8928f1588d00949949c0c4c93d30ac7f6665247c0108bd89dff3aafe780ac66febfacc8c6a3cc387d09da6de700487a80e2c8d56df94d7ebd3e1d9e06411a6c5f7eb6da41c6f52997b5ad47ba985261103fdf12eb4a2828b248f652ef00b6abccab2eb161b878b9dbc0aa911405b6f67adda83c16187748d7b524ffe6381f489f432d592e6171bd9ccb2cd52f977143f57fbf2ab0b823d449ae55f02440972334344cda01837b93afa4f46a2fdefe27e92764cf9596780846de2e3b1ea83e62ee43b1c05aee675e25363504addfaa68e7c53ed685413f5ba951f120d0a646e474872c81e5a887464c19f8460ae814ffff24cb51dd2dca28d597ab2ea60949f8dbbe67f263e722fdb51bce4e328a19f5ff1218e1f63b8da6d40dbd5490964499b2522ea323310634893ead661407966207a66ab13adfcf1a725ed14339c46011c0e0401f2386b47cd9f902fdf84bc85e74d3ae7cc544e4d65670a554a537712c6ee9f75191631d2a4c4da06fc38423b1d5b828d7201235b2974164f52aa16bee70ee509250752f4fdd6b9f8d021943df8320682a6f80ff0d67ab7a4ceea807bd5b3b7b6380b0c7f0caa67b0208ba71317f0355a3b755af0e2c007186389438615df80b7b25104a733fc90625b62682198733c0f1625dfaa08cf81e3df043094b7b5a098b3b36f803b5b0f10a057bf814ae3579932c0a5f208985bab3d817f975283b8838ae5cb709be72b58df7425e059fdbf4e0ee51b3da01fe0b44963c1196baee5ec5909ad80d9d1660f3edd90374952a0bf8b3bece2c2f944593f4de7de5e05ded096b8f4f05d65dfc2e806f78220d84b3db564fb12f4e5e8f5eab316591f004e9374cce8e787263bc3827affe6793c130b8621d3bbb2a86fd87f070ea21718281ee7aec4bb3bb71af4bf5721cecd139c4be8c9df4ec8dfb09a5cf1d86a25d39faa9f064a997c214f334e4410917fc3b4d67ada8d87a38c0f86b02bf653dddaeb5b75b300f8bcfd792858bef8ab23e063421939c59212964c9ed5dd56e215db58cef53d31a966bb8ce4ed56287fecb3a85ba435e0b41b20ba1164b9c9f2c49fa0f7b17a89e0ec47eefe992d63ee29c8c0a1ece2664fee8edadd43636a54c48519b4fcf55b0d9103602b92441a5f85cf8c5e406d0f5815f8f37309934bd78fbc2acf0a03b051b4528db4f7c09de7d0aabafca3736b8259c818ca338ca6754e0747717c2794d664a1cacc1e9c52764a308e6df73d975638630b74cce6c49b1bac16454e96852c4f9d8ed118e86d2f1c8dc33bccd4a07be128db5e80f5684ddcc1158e744411acde590f902f0987cfb750bb5bfeed53bff076868986b566d7701f48ddfcacbd325c8d930bcef26713bf60585d5c991e2a6cc33ccbc27f7ddfba18f998497c2eb378cc8f2cc07a1b4f141c5e0fb6f52e18242e505bcf6dd20e33a469d056a0b4fd5e72d0da9d0bcce1e2f9e9dc7d1c7b6cb0f3604287eca", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x0, 0xb, 0xfffc, 0x0, 0x1, 0x0, 0xffffffff, 0x120, 0x2000, 0xa8, r2, r3, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x50)
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x1086cce0, 0x40, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
ioctl$BLKPG(r4, 0x40084d06, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0})

1m27.647761018s ago: executing program 1 (id=2771):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000440)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000580)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000500)='./file0\x00', 0x0, 0x1005848, 0x0)

1m26.207598515s ago: executing program 1 (id=2773):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x3, 0x7fff, 0x13, "b0bf2ebb48c849ac0000000003000018bfff40"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000140)=0x12)

1m25.635457653s ago: executing program 1 (id=2776):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x39a, &(0x7f00000002c0)="$eJzs3UFoW2UcAPB/+pKm1c32IIiC8PQm6NimIHqxZXQwzGVKmHoQg9t0NFVYMbgdltWLeBR21JM3D3rwsJsXUZHdPHh1gkzFg+42cOzJy3tpXprWDUc6h7/fIfz7ff//976XfG1e0+Tra0uxerwRJ69evRJzc7WoLx1aimu1WIwkhs7HpNlt2gCAu8O1LIs/s0LEl7dSUpv+rACAaRo8/7+xt9Ly3jej+OuJ/Kx49m/sxtwAgOkof/+fr7YlW3LmJqrmpz0tAGCK8uf/qFcaHp1Iqfypvz5xbQAA3H1efPmV55dbES+k6VzE2vu9dq8dz476l0/GqejGidgfC3E9onijQH5TG9wePtJa2Z+maT9+WYx2XtFrR6z1e+3iSmE5GdQ340AsxGJZX77bIMuy5PAXrZUD6UBEnO/3Gvkoa7VeuzF4lWF5Pk79eE+ciIORxv0T9RFHWiub1yTt/LiD4zciNkavW+Tz3xcL8f3r8XZ043jktcPLmtbKuQNpeihr7amN6vu9dnOQV5h8BQQAAAAAAAAAAAAAAAAAAAAAAG7HvmLvnb1pmi5u7p+Tjfbv2VcmlP33RkR7sF9gu6gv9wfaKPYHyppZZNkf7z7R/iCJsf2BBhv8jO2vU4+ZO3vqAAAAAAAAAAAAAAAAAAAA8J+xfmY2Ot3uidPrZ86uVoP+6fUzMxGRt7z13Wdfzcd4znw5wHjVWFAvUypd6agqS4bJWTKWUwZJfvBavWj59OLmjCs5lbMYlc+McppbusaCvY/8/NHZ1eEIDyfDqhujnCS2Pa+zyfg0xoK1+4oBhy0Xdr5/JoODN8m5nGXZTuXnXp2silpEfcep/ssgy4Nvr7z54JPrw0WQFR57fOHY5Quf/Lba6eZHznW7s6fXr2ernfLr7RfbRNAcLpuksn5q5WKrVVdCvfPUjaN7dhh5Y7ylk/zw+0sPfXipbJmpPEzbTCM7dmnU8s42OUlx0M+3ds0WQT7Nza7n8iC/jybGGX6X3PRueTpu64F74OOlzsVzP/16q1WVHxI26gAAAAAAAAAAAAAAAAAAgF1R+ax4qfywb+Ofqp45Ov2ZAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDuGf3//80gZja2tNxa8Fc/hi3HYtjVzAeM2coRF+/g2QIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8H/1dwAAAP//kp5N2g==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x6, 0x0)
unshare(0x2a020400)
r1 = open(0x0, 0x82000, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0)
flock(r2, 0x1)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000180)={0x8, {{0xa, 0x4e21, 0xa3f, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40}}}, 0x108)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
getsockopt$inet6_buf(r2, 0x29, 0xcc, &(0x7f0000000940)=""/229, 0x0)
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x2})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
connect$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x4e04, 0x728, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20002040)
timer_settime(r4, 0x1, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)

1m24.259443605s ago: executing program 36 (id=2776):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x39a, &(0x7f00000002c0)="$eJzs3UFoW2UcAPB/+pKm1c32IIiC8PQm6NimIHqxZXQwzGVKmHoQg9t0NFVYMbgdltWLeBR21JM3D3rwsJsXUZHdPHh1gkzFg+42cOzJy3tpXprWDUc6h7/fIfz7ff//976XfG1e0+Tra0uxerwRJ69evRJzc7WoLx1aimu1WIwkhs7HpNlt2gCAu8O1LIs/s0LEl7dSUpv+rACAaRo8/7+xt9Ly3jej+OuJ/Kx49m/sxtwAgOkof/+fr7YlW3LmJqrmpz0tAGCK8uf/qFcaHp1Iqfypvz5xbQAA3H1efPmV55dbES+k6VzE2vu9dq8dz476l0/GqejGidgfC3E9onijQH5TG9wePtJa2Z+maT9+WYx2XtFrR6z1e+3iSmE5GdQ340AsxGJZX77bIMuy5PAXrZUD6UBEnO/3Gvkoa7VeuzF4lWF5Pk79eE+ciIORxv0T9RFHWiub1yTt/LiD4zciNkavW+Tz3xcL8f3r8XZ043jktcPLmtbKuQNpeihr7amN6vu9dnOQV5h8BQQAAAAAAAAAAAAAAAAAAAAAAG7HvmLvnb1pmi5u7p+Tjfbv2VcmlP33RkR7sF9gu6gv9wfaKPYHyppZZNkf7z7R/iCJsf2BBhv8jO2vU4+ZO3vqAAAAAAAAAAAAAAAAAAAA8J+xfmY2Ot3uidPrZ86uVoP+6fUzMxGRt7z13Wdfzcd4znw5wHjVWFAvUypd6agqS4bJWTKWUwZJfvBavWj59OLmjCs5lbMYlc+McppbusaCvY/8/NHZ1eEIDyfDqhujnCS2Pa+zyfg0xoK1+4oBhy0Xdr5/JoODN8m5nGXZTuXnXp2silpEfcep/ssgy4Nvr7z54JPrw0WQFR57fOHY5Quf/Lba6eZHznW7s6fXr2ernfLr7RfbRNAcLpuksn5q5WKrVVdCvfPUjaN7dhh5Y7ylk/zw+0sPfXipbJmpPEzbTCM7dmnU8s42OUlx0M+3ds0WQT7Nza7n8iC/jybGGX6X3PRueTpu64F74OOlzsVzP/16q1WVHxI26gAAAAAAAAAAAAAAAAAAgF1R+ax4qfywb+Ofqp45Ov2ZAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDuGf3//80gZja2tNxa8Fc/hi3HYtjVzAeM2coRF+/g2QIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8H/1dwAAAP//kp5N2g==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x6, 0x0)
unshare(0x2a020400)
r1 = open(0x0, 0x82000, 0x0)
flock(r1, 0x2)
r2 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0)
flock(r2, 0x1)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000180)={0x8, {{0xa, 0x4e21, 0xa3f, @mcast1, 0xbfd}}, {{0xa, 0x4e20, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}, 0x40}}}, 0x108)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
getsockopt$inet6_buf(r2, 0x29, 0xcc, &(0x7f0000000940)=""/229, 0x0)
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x2})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
connect$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x4e04, 0x728, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20002040)
timer_settime(r4, 0x1, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)

18.175652259s ago: executing program 6 (id=2987):
write$P9_RSTATu(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYRESDEC, @ANYBLOB="5d66c477b96e16a6", @ANYRES32, @ANYRESOCT, @ANYRES64], 0x6b5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x2, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_open_dev$video4linux(0x0, 0x7fff, 0x440381)
syz_open_dev$video4linux(0x0, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$video4linux(0x0, 0x3, 0x3cf281)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
r3 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r3, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0xe07e872424dfefca)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x15, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="811028000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x94)

14.051231836s ago: executing program 6 (id=2993):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x4, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = landlock_create_ruleset(&(0x7f00000000c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r2, 0x1, &(0x7f0000000000)={0x210a, r1}, 0x0)

13.460029895s ago: executing program 6 (id=2994):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x22, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x58, 0x10, 0x403, 0x300, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x8, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0xffc}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x58}}, 0x8000)

12.567518835s ago: executing program 6 (id=2997):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
bpf$MAP_CREATE(0x0, 0x0, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$nfs(0x0, &(0x7f0000000640)='.\x00', &(0x7f0000000680), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB])
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x1e, 0x4e20, @private=0xa010102}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="020300030f000000fcffffffbcdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af030006000000000002004e22ac1414bb000000000000000002000100000000000000070c00000080030005000000000002004e22e000000200000000000000000200130002"], 0x78}, 0x1, 0x7}, 0x0)

12.50206359s ago: executing program 5 (id=2999):
close(0x3)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default]}, 0x48)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r1, &(0x7f00000004c0)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
listen(r1, 0x80)
accept$netrom(r1, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f00000008c0)=[{&(0x7f0000000040)="e6", 0x1}], 0x1)
close(0x3)

11.009728291s ago: executing program 5 (id=3001):
openat$kvm(0xffffffffffffff9c, 0x0, 0x820001, 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0xdc, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
rt_sigqueueinfo(0x0, 0x6, &(0x7f0000000080)={0x13, 0x5, 0x26})
ioprio_get$pid(0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000000c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6a16}}, './file0\x00'})
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0x40000000448301, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

10.738065359s ago: executing program 6 (id=3003):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
getdents64(0xffffffffffffffff, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000000)=0x2a)
write$sndseq(r1, &(0x7f0000000280)=[{0x3, 0x63, 0x1, 0x7, @tick=0x10001, {0x8, 0x9}, {0xd, 0xa}, @result={0x7, 0x9}}, {0xa, 0x4, 0x8, 0x85, @tick, {0x9}, {0x9, 0xf7}, @quote={{0x0, 0x7}, 0xffff}}], 0x38)

9.111673768s ago: executing program 6 (id=3007):
socket$inet_udp(0x2, 0x2, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x15)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x880)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x2004000, &(0x7f0000000180)=ANY=[@ANYRES64=0x0], 0xfe, 0x122e, &(0x7f0000001280)="$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")
syz_clone(0x1144380, 0x0, 0x0, 0x0, 0x0, 0x0)

5.908440833s ago: executing program 7 (id=3013):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000060a0b040000000000000000020000011c00048018000180080001006c6f67000c00028005000240000000000900010073797a30000000001400000011003e"], 0x64}}, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="0000000000000000400012800c0001"], 0x68}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000380)={'syzkaller1\x00', @link_local})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbb"], 0x72)

5.498409051s ago: executing program 5 (id=3014):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101e42, 0x33)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0))
symlink(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f00000035c0)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')
pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)

5.21833513s ago: executing program 7 (id=3015):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x4e24, 0x0, @mcast2}}}, 0xe3)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000a80)=ANY=[@ANYBLOB="0b000000000000000a0000000000ffffff01000000000000000000000000000130060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000001"], 0x110)

4.971474006s ago: executing program 7 (id=3016):
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89c, 0xc000, 0x2, 0x6})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xe, 0xfff0}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

4.656489478s ago: executing program 7 (id=3017):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x1340, 0x1130, 0x178, 0xc, 0x1130, 0x178, 0x1270, 0x258, 0x258, 0x1270, 0x258, 0x3, 0x0, {[{{@uncond, 0x0, 0x1100, 0x1130, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup.cpu/syz0\x00', 0x0, {0xffffffff}}}, @common=@unspec=@addrtype1={{0x28}, {0x300}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x2, 0x3, 0x9}, {0x1, 0x2, 0x2}, 0x2, 0x2}}}, {{@ipv6={@private2, @private0={0xfc, 0x0, '\x00', 0x1}, [], [0x0, 0x0, 0x0, 0xffffff00], '\x00', 'hsr0\x00', {0xff}}, 0x0, 0xd0, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0xffff, 0x0, 0x59, 0x1, 0x0, "5b5e4637e2c868d14d9be48a2a79837d5499f42d086321ddfda71d6d982957c9efbee097d2c1e45c21510a84843e700c6ab764b15794236650ed3db73c2d916d"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x13a0)

4.551479955s ago: executing program 8 (id=3018):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000e80)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080002400000000708000140000000140900010073797a30000000000900020073797a32"], 0x78}}, 0x0)

4.215508307s ago: executing program 7 (id=3019):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x3)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x20000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x0, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}, @flat=@binder={0x73622a85, 0x10b}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0)

4.190334269s ago: executing program 8 (id=3020):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x11204da, &(0x7f00000001c0)={[{@noload}, {@init_itable}, {@lazytime}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000002000000000000000700000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001b40)=@newtfilter={0x8b0, 0x2c, 0xd2b, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x884, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'vlan0\x00'}, @TCA_U32_SEL={0x24, 0x5, {0xd, 0x7, 0x1, 0x3d3f, 0x0, 0xfff, 0x3, 0x58f, [{0x0, 0x20008000, 0x4, 0x1}]}}, @TCA_U32_POLICE={0x848, 0x6, [@TCA_POLICE_RATE={0x404, 0x2, [0x1c79, 0x3, 0x2, 0x7, 0xff, 0x8, 0x1, 0x1, 0x2d0, 0x2, 0x1, 0xb, 0x6, 0x0, 0x2, 0x2, 0x9, 0x7, 0x0, 0xffffffff, 0x6, 0x1, 0x5, 0xc4, 0xa117, 0x8, 0xab, 0xfffffffa, 0x1, 0x0, 0x4, 0x1fc0000, 0x4, 0x200, 0x80, 0x1, 0x1, 0x0, 0x4, 0x7, 0x2, 0x1, 0x610, 0x2, 0xb, 0xfb, 0x4, 0xa29, 0x7f, 0x82, 0x200, 0x44, 0x2, 0x1, 0x2, 0x101, 0x10005, 0xdd, 0x5, 0x8, 0x431d3ae0, 0xc03, 0x9, 0x5, 0x9349, 0x6, 0x100, 0x5, 0x1, 0x1, 0x8, 0x401, 0x3, 0x6, 0x5, 0x6, 0x19e, 0x2, 0x2, 0xf, 0xc00000, 0x4003ff, 0x7, 0x3326ea0a, 0x8007, 0x80000001, 0x25, 0x1, 0x8, 0x8001, 0x9, 0x6, 0x54773819, 0x8, 0x8001, 0x6, 0x7f, 0x373, 0x4, 0x4, 0x80, 0xc000000, 0x7ff, 0x6138, 0x49e, 0x3ff, 0x8, 0x0, 0x3, 0x0, 0x2, 0x10000, 0x3, 0x2, 0x9, 0x1, 0x7fffffff, 0x101, 0x3, 0xc42, 0x4, 0x7, 0x401, 0x5, 0x0, 0x4, 0x80000001, 0x8000, 0x5, 0x2fb, 0x5907, 0x8, 0x81, 0x7, 0x4, 0xffff7ffc, 0xffff0001, 0x2, 0xffff, 0x8, 0x2396, 0x8000, 0xfffffffc, 0x5, 0x1, 0xfff, 0x91e0000, 0x4, 0x3, 0xfae, 0x40, 0x900, 0x6, 0x0, 0x2, 0x6, 0x6, 0xdc, 0x9, 0x7ff, 0xfffffff7, 0x4, 0x2, 0x30, 0xff, 0x3, 0x80, 0x6, 0x7, 0x9, 0x4, 0x0, 0x5, 0x4342, 0xfa52, 0x4, 0x7fff, 0x7, 0x381, 0xfffffff2, 0xfffffff6, 0x100, 0x8, 0xf73, 0x80000001, 0x1, 0x5, 0xe, 0x0, 0x3, 0xfffffc01, 0x2, 0xe, 0x4, 0x4, 0xf5f, 0x2, 0x0, 0x6, 0x1, 0x9, 0x80, 0x2, 0x0, 0x0, 0xfb, 0x3, 0x8, 0x0, 0x80000001, 0x5, 0x0, 0xb, 0x3159, 0x6, 0xfffffff7, 0xe4f7, 0x6, 0xffffffff, 0xfffffffc, 0x8, 0x9, 0x1c15, 0xa098, 0x0, 0x0, 0x6, 0xb, 0x6, 0x2, 0x80000001, 0x9, 0xfffffed0, 0x2, 0x7, 0x56, 0x2, 0x4, 0x7, 0x2009, 0xb, 0x6, 0x4, 0x1, 0x3, 0x7, 0x9, 0x7, 0xe, 0x0, 0x1, 0x9, 0x1, 0x0, 0x40, 0x8]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x1, 0x22bf0bf0, 0xffffffff, 0xffff0d7b, 0x6, 0x3, 0xc79, 0x74100000, 0x800, 0x7, 0xfffffffd, 0x76e8, 0x4, 0x0, 0x9, 0xb046, 0x7, 0x101, 0x8, 0x0, 0x6, 0x3ff, 0xfffffffe, 0x0, 0x7f, 0x3, 0x7c68080b, 0x4, 0x9, 0x3, 0x80000001, 0x0, 0xa, 0x7, 0x2, 0x4, 0x62f1, 0x2, 0x995, 0x1, 0xf, 0xb, 0x7f, 0x9, 0x7, 0x4, 0x6, 0xc39, 0x6, 0x7, 0x2, 0x5, 0x4b0f, 0x3ff, 0x3, 0x93, 0x5, 0x2, 0x0, 0x6, 0x0, 0x0, 0x7, 0x0, 0xffff, 0x9, 0xffffffff, 0x4, 0x9, 0xa2c, 0xda0b, 0x7, 0x40, 0x9, 0xefa8, 0x1, 0xe6, 0x0, 0xe, 0x2, 0x4, 0x6, 0xfffffff9, 0x40000004, 0x8, 0x4, 0x0, 0xea, 0xbed1, 0x10001, 0x8, 0x7fff, 0x3, 0x4, 0x0, 0x9, 0x5dac, 0xdb, 0x1, 0x8, 0x9, 0x2, 0x2000, 0xfc000000, 0xfffffff9, 0x3, 0x4, 0x0, 0x0, 0x4, 0xfffffffc, 0xfffffff9, 0x5, 0x3, 0xe2000, 0x6, 0x8001, 0xa, 0x6, 0x5, 0x0, 0xef83, 0x8, 0x4, 0x3ff, 0x0, 0x5, 0x10000, 0xf6, 0x7, 0x3, 0x3ff, 0x5, 0xaf7e, 0x5, 0x7ff, 0xeab9, 0x3, 0x8, 0x525, 0x9, 0x0, 0x3, 0x401, 0x9, 0x6, 0x8, 0x1, 0x8, 0x7, 0xfffffffb, 0x7, 0x80000001, 0xfffffffd, 0x4, 0x8fb3, 0x7fffffff, 0xfffffff9, 0x800, 0x2, 0x7fff, 0x5, 0x7, 0xfffffffc, 0x4, 0x3, 0x82, 0xff, 0x6, 0x3, 0x46, 0x1, 0x958, 0x3, 0x80000001, 0x7, 0x9, 0x5, 0xfffffffa, 0x0, 0x5, 0x4d4, 0x9, 0x5, 0x75968511, 0x0, 0x46cc, 0x8, 0x6, 0x40, 0x9, 0x8, 0x4, 0x7054, 0x3, 0x3, 0x1, 0x70, 0x9, 0x9, 0x9, 0x400, 0x3dc1, 0x0, 0xe6a2, 0x8, 0x6, 0x8, 0x6, 0x80000001, 0xff, 0x2, 0x6, 0x80000000, 0x0, 0xd42700, 0x40, 0x8, 0x8000, 0x9, 0x4, 0x6302, 0x1eeacb39, 0xe, 0x2, 0x5, 0xd9a, 0x9, 0x0, 0x8, 0x3, 0x2, 0x0, 0x100, 0x3ff, 0x5, 0x3ff, 0x40, 0x7ffffffe, 0xff, 0x5, 0x6, 0x1000, 0x37, 0x81, 0x7fffffff, 0x9, 0x5ca, 0x5, 0x5d6a, 0x2, 0x3, 0x6, 0x81, 0x10000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x1, 0x7f, 0x4, 0x9, {0x3, 0x1, 0x4, 0x17f, 0x0, 0x1ff}, {0x6, 0x0, 0xff, 0x7, 0x5, 0xffffffff}, 0x9, 0xe90, 0x6db5cd0}}]}]}}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x1}, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001980)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000003000000000000000040000018010000756c6c2e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000030000008500000006000000850000000f00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r6}, 0xc)

4.156839981s ago: executing program 5 (id=3021):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x4, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = landlock_create_ruleset(&(0x7f00000000c0)={0x7f6e}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r2, 0x1, &(0x7f0000000000)={0x210a, r1}, 0x0)

2.598309936s ago: executing program 7 (id=3022):
openat$kvm(0xffffffffffffff9c, 0x0, 0x820001, 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0xdc, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
rt_sigqueueinfo(0x0, 0x6, &(0x7f0000000080)={0x13, 0x5, 0x26})
ioprio_get$pid(0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000000c0)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6a16}}, './file0\x00'})
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0x40000000448301, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

2.037839734s ago: executing program 5 (id=3023):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000060a0b040000000000000000020000011c00048018000180080001006c6f67000c00028005000240000000000900010073797a30000000001400000011003e"], 0x64}}, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="0000000000000000400012800c0001"], 0x68}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000380)={'syzkaller1\x00', @link_local})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaa"], 0x72)

1.615097652s ago: executing program 8 (id=3024):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file2\x00', 0xc0ed4040, &(0x7f0000000f40)={[{@commit={'commit', 0x3d, 0x4}}, {@nobarrier}, {@barrier}, {@quota}, {@jqfmt_vfsv0}, {@journal_dev={'journal_dev', 0x3d, 0x4000800}}, {@jqfmt_vfsv1}, {@jqfmt_vfsv1}]}, 0x0, 0x47e, &(0x7f0000001b40)="$eJzs3M9vFFUcAPDvTLe/+GER8QcIWgUj8UdLyw85mBiMJh40mugB46luC0EKGKiJkEbRA8Z4MCTejUcT/wJPejHqycQr3g0JMVxAT2tmZ4Z2y25tYcsu7ueTTPe9mVne++6bt/vmvV0C6Fmj2Z8kYkNEXIqIkYioLD1hNH+4fnW++vfV+WoStdqbfyXZ0+La1flq8U/Ut8z6fEetVuQHm5R74Z2IqdnZmdNFfnzuxPvjZ86ee/bYiamjM0dnTk4ePLhv746BA5P72xJnFte1bR+d2r71lbcvvlY9fPHdX77L6ruhOF7G0U6j+avb1BPtLqzDNi5KJ5UOVoRVydqtv9guxUj0xfCNYyPx8qcdrRyw1irNPp8L52vA/1g2UAd6UflBn93/ltsdGnd0hfqcRSWP/3qx5UcqkRbn9C+5v22noYg4fP6fr7Mt1mgeAgBgsR8ORcQzzcZ/aTyw6Lx7ijWUTRFxb0Rsjoj7ImJLRNwfUT/3wYh4aJXlL10huXn8k15uyNb6VlnC8q4cini+WNtqHP+Vo7/Y1FfkNtbj70+OHJud2VO8JrujfzDLTzQ8pdGPL/3+5dJ9XxTT7KOLxn/ZlpXfGGF6eekE3fTU3NTtR5678knEtkqz+JMb64DZGHlrRGy7xTKOPfXt9lbHmsVfjoUbNZmlbMM6U+2biCfz9j8fS+IvJS3XJyeeOzC5f3woZmf2jJdXxc1+/e3CG63KX3n8ayNr/3VNr/88/uweMRmKOHP23PH6eu2ZWyjkj8+qSYtDW/4z/puv/+quiIHkrXp6oDyreBxIXs0ehsv9H07NzZ2eXHhuma8/TuTx7965EP9ULPT/zcWLkP15OCKyi3hHRDwSEY8WbfdYRDweETuXCf/nF3e91+pY6/ZfZla+jbL4p5dp/+wtL0sttP/qE33Hf/q+Vfm1FbX/vnpqd7FnJe9/K63g7bx2AAAAcLdI69+BT9KxG+k0HRvLv8O/JdallYh4+sipD05O59+V3xT9aTnTNbJoPnSimBsu85Pzjfm9xbzxV33D9fxY9dTsdKeDhx63vkX/H4yIP9u71AJ0I7/Xgt6l/0Pv0v+hd+n/0Lte6HQFgM4YaL774ztdD6AjVj/+H1qTegB3nvt/6F36P/Qu/R96Usvfxqe39ZP/uzVR6Y5qNE0Md0c1ykSkXVGN9iVe/zzvEt1SnzJRWfF/ZnGLicGmhzr9zgQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAe/wYAAP//g9vZaA==")

1.095551727s ago: executing program 8 (id=3025):
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89c, 0xc000, 0x2, 0x6})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xe, 0xfff0}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

418.233333ms ago: executing program 8 (id=3026):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
writev(r0, &(0x7f00000006c0)=[{&(0x7f0000000440)="2e9b3d0007e03dd65193dfb6c575963f8864", 0x12}, {&(0x7f0000000100)="31020002", 0x10}, {&(0x7f0000000040)="683f0057ff3d1255609a98f61eb8ac734643bd525c84df8501cbf8c39c238262ada4ad85d1a33ce06034c03b3f684c669f16af", 0x33}], 0x3)

108.484633ms ago: executing program 5 (id=3027):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x22, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x2})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000180)='wi', 0x2}], 0x1, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r2, 0x0, 0x10000008ebc, 0x100000000000000)
splice(r1, 0x0, r4, 0x0, 0x100035ab, 0x4)

0s ago: executing program 8 (id=3028):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$nfs(0x0, &(0x7f0000000640)='.\x00', &(0x7f0000000680), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB])
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x1e, 0x4e20, @private=0xa010102}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="020300030f000000fcffffffbcdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af030006000000000002004e22ac1414bb000000000000000002000100000000000000070c00000080030005000000000002004e22e000000200000000000000000200130002"], 0x78}, 0x1, 0x7}, 0x0)

kernel console output (not intermixed with test programs):

terface 0 before use
[ 1163.656810][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1163.681687][T14591] hfsplus: b-tree write err: -5, ino 25
[ 1163.687667][T14591] hfsplus: b-tree write err: -5, ino 4
[ 1163.693774][T14591] hfsplus: b-tree write err: -5, ino 2
[ 1163.946623][T14784] binder: 14783:14784 ioctl c0306201 0 returned -14
[ 1165.745656][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1165.788375][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1166.098292][T14798] syzkaller0: entered promiscuous mode
[ 1166.104329][T14798] syzkaller0: entered allmulticast mode
[ 1166.779902][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1166.843639][ T5852] IPVS: starting estimator thread 0...
[ 1166.851531][T14813] IPVS: lblc: FWM 3 0x00000003 - no destination available
[ 1166.909929][T14816] binder: 14815:14816 ioctl c0306201 0 returned -14
[ 1166.941222][T14814] IPVS: using max 16 ests per chain, 38400 per kthread
[ 1168.495144][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1169.103524][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1169.433968][T14833] loop7: detected capacity change from 0 to 1024
[ 1169.582267][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1169.634947][T14588] hfsplus: b-tree write err: -5, ino 25
[ 1169.641073][T14588] hfsplus: b-tree write err: -5, ino 4
[ 1169.646797][T14588] hfsplus: b-tree write err: -5, ino 2
[ 1169.653129][T14588] hfsplus: b-tree write err: -5, ino 26
[ 1169.663314][T14836] syzkaller0: entered promiscuous mode
[ 1169.668869][T14836] syzkaller0: entered allmulticast mode
[ 1170.020189][ T7846] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1170.832730][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1170.953601][T14851] fuse: Unknown parameter 'use00000000000000000000'
[ 1171.000364][ T7846] usb 8-1: Using ep0 maxpacket: 32
[ 1171.008077][ T7846] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1171.020086][ T7846] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1171.028755][ T7846] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1171.042535][ T7846] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1171.054202][ T7846] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1171.065996][ T7846] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1171.079456][ T7846] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1171.088895][ T7846] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1171.100311][ T7845] usb 7-1: new full-speed USB device number 9 using dummy_hcd
[ 1171.125111][ T7846] usb 8-1: config 0 descriptor??
[ 1171.295638][ T7845] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1171.482892][ T7846] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1171.534359][ T7845] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1171.563435][ T7845] usb 7-1: Product: syz
[ 1171.567695][ T7845] usb 7-1: Manufacturer: syz
[ 1171.573161][ T7846] usb 8-1: USB disconnect, device number 9
[ 1171.580658][ T7845] usb 7-1: SerialNumber: syz
[ 1171.618793][ T7846] usblp0: removed
[ 1171.644225][ T7845] usb 7-1: config 0 descriptor??
[ 1171.945059][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1172.116303][ T7845] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1172.131590][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1172.257706][ T7846] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1172.444876][T14865] picdev_read: 77 callbacks suppressed
[ 1172.444896][T14865] kvm: pic: non byte read
[ 1172.455645][T14865] kvm: pic: non byte read
[ 1172.460376][T14865] kvm: pic: non byte read
[ 1172.464941][T14865] kvm: pic: non byte read
[ 1172.469534][T14865] kvm: pic: non byte read
[ 1172.474461][T14865] kvm: pic: non byte read
[ 1172.479116][T14865] kvm: pic: non byte read
[ 1172.490491][T14865] kvm: pic: non byte read
[ 1172.499088][T14865] kvm: pic: non byte read
[ 1172.503967][T14865] kvm: pic: non byte read
[ 1172.668920][ T7846] usb 8-1: Using ep0 maxpacket: 32
[ 1172.677732][ T7846] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1172.704667][ T7846] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1172.713621][ T7846] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1172.722810][ T7846] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1172.732684][ T7846] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1173.018227][T14875] loop7: detected capacity change from 0 to 256
[ 1173.152178][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1173.179409][ T7846] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1173.210160][ T7846] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1173.219547][ T7846] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1173.234086][ T7846] usb 8-1: config 0 descriptor??
[ 1173.242766][ T7846] usb 8-1: can't set config #0, error -71
[ 1173.261867][ T7846] usb 8-1: USB disconnect, device number 10
[ 1173.434060][T14879] syzkaller0: entered promiscuous mode
[ 1173.468617][T14879] syzkaller0: entered allmulticast mode
[ 1173.580855][T14884] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1173.770838][ T5814] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1173.823676][ T7845] dvb_usb_rtl28xxu: probe of 7-1:0.0 failed with error -71
[ 1173.840275][ T7845] usb 7-1: USB disconnect, device number 9
[ 1173.943150][T14891] loop1: detected capacity change from 0 to 64
[ 1174.003100][ T5814] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1174.383217][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1174.708029][ T5814] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1174.717717][ T5814] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1174.728515][ T5814] usb 8-1: config 0 descriptor??
[ 1174.972993][ T5814] usbhid 8-1:0.0: can't add hid device: -71
[ 1174.979325][ T5814] usbhid: probe of 8-1:0.0 failed with error -71
[ 1174.999893][ T5814] usb 8-1: USB disconnect, device number 11
[ 1175.174385][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1176.184287][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1176.383897][ T5771] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1176.757488][T14909] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1177.153278][T14919] syzkaller0: entered promiscuous mode
[ 1177.159496][T14919] syzkaller0: entered allmulticast mode
[ 1177.170776][T14915] binder_alloc: 14913: pid 14913 spamming oneway? 2 buffers allocated for a total size of 5120
[ 1177.199449][T14915] binder_alloc: 14913: pid 14913 spamming oneway? 3 buffers allocated for a total size of 5128
[ 1177.267881][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1177.303356][T14923] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2342'.
[ 1177.480153][ T7844] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1177.690203][ T7844] usb 7-1: Using ep0 maxpacket: 32
[ 1177.716511][ T7844] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1177.750213][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.773823][ T7844] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0103, bcdDevice= 0.40
[ 1177.784079][ T7844] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1177.798124][ T7844] usb 7-1: Product: syz
[ 1177.817679][ T7844] usb 7-1: Manufacturer: syz
[ 1177.824507][ T7844] usb 7-1: SerialNumber: syz
[ 1178.134450][ T7844] usb 7-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1178.142453][ T7844] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1178.228106][ T7844] usb 7-1: USB disconnect, device number 10
[ 1178.230698][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1178.323141][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1178.386787][T14934] loop7: detected capacity change from 0 to 256
[ 1178.539230][T14936] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1178.600751][T11438] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[ 1178.812686][T11438] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1178.837813][T11438] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1178.870383][T11438] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1178.886610][T14940] loop5: detected capacity change from 0 to 4096
[ 1178.908065][T14940] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[ 1178.940647][T11438] usb 2-1: config 0 descriptor??
[ 1179.107983][T14942] loop6: detected capacity change from 0 to 32768
[ 1179.116828][T14942] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 scanned by syz.6.2350 (14942)
[ 1179.161104][T14942] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1179.171633][T11438] usbhid 2-1:0.0: can't add hid device: -71
[ 1179.171754][T11438] usbhid: probe of 2-1:0.0 failed with error -71
[ 1179.181512][T11438] usb 2-1: USB disconnect, device number 11
[ 1179.184384][T14942] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[ 1179.199335][T14942] BTRFS info (device loop6): force clearing of disk cache
[ 1179.206609][T14942] BTRFS info (device loop6): enabling auto defrag
[ 1179.213192][T14942] BTRFS info (device loop6): max_inline at 0
[ 1179.219419][T14942] BTRFS info (device loop6): enabling ssd optimizations
[ 1179.226524][T14942] BTRFS info (device loop6): using spread ssd allocation scheme
[ 1179.234680][T14942] BTRFS info (device loop6): using free space tree
[ 1179.286247][   T28] audit: type=1800 audit(1775370558.963:64): pid=14940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2349" name="file1" dev="loop5" ino=33 res=0 errno=0
[ 1179.376963][T14942] BTRFS info (device loop6): rebuilding free space tree
[ 1179.381167][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1179.671992][ T9509] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1179.681088][T12188] BTRFS info (device loop6): qgroup scan completed (inconsistency flag cleared)
[ 1179.820480][T11438] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[ 1180.080816][T11438] usb 2-1: Using ep0 maxpacket: 32
[ 1180.130536][T11438] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1180.191627][T14963] loop5: detected capacity change from 0 to 40427
[ 1180.191685][T11438] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1180.228317][T14963] F2FS-fs (loop5): LFS is not compatible with checkpoint=disable
[ 1180.515740][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1180.525224][T11438] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1180.554698][T11438] usb 2-1: config 0 descriptor??
[ 1180.563481][T11438] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1180.574523][T11438] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1180.591918][T14505] I/O error, dev loop5, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1180.625741][T14969] loop5: detected capacity change from 0 to 1024
[ 1180.633619][T14969] hfsplus: unable to parse mount options
[ 1181.270416][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1181.381000][T14860] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 12 /dev/loop6 scanned by udevd (14860)
[ 1181.700920][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1181.709504][T14768] usb 2-1: USB disconnect, device number 12
[ 1181.772902][T14768] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1181.877043][T14974] syzkaller0: entered promiscuous mode
[ 1181.910209][T14974] syzkaller0: entered allmulticast mode
[ 1182.032493][T14987] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1182.851180][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1183.397613][T14991] loop1: detected capacity change from 0 to 4096
[ 1183.410283][T14991] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 1183.705818][   T28] audit: type=1800 audit(1775370563.383:65): pid=14991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2360" name="file1" dev="loop1" ino=33 res=0 errno=0
[ 1183.919533][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1184.353283][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1184.956384][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1185.113410][T15022] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2368'.
[ 1185.259076][T15024] syzkaller0: entered promiscuous mode
[ 1185.284869][T15024] syzkaller0: entered allmulticast mode
[ 1185.790602][T15029] loop6: detected capacity change from 0 to 16
[ 1185.855799][T15029] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1186.526018][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1187.126302][ T5814] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[ 1187.413213][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1187.620331][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1187.648996][ T5814] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1187.711623][ T5814] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1187.761121][ T5814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1187.779001][ T5814] usb 2-1: config 0 descriptor??
[ 1188.051343][ T5814] usbhid 2-1:0.0: can't add hid device: -71
[ 1188.057455][ T5814] usbhid: probe of 2-1:0.0 failed with error -71
[ 1188.103177][ T5814] usb 2-1: USB disconnect, device number 13
[ 1188.446044][T15058] syzkaller0: entered promiscuous mode
[ 1188.455398][T15058] syzkaller0: entered allmulticast mode
[ 1188.630215][ T5814] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[ 1188.720929][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1188.871023][ T5814] usb 2-1: Using ep0 maxpacket: 32
[ 1189.033357][ T5814] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1189.095630][T15063] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2381'.
[ 1189.115402][ T5814] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1189.249819][ T5814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1189.454687][ T5814] usb 2-1: config 0 descriptor??
[ 1189.540532][ T5814] usb 2-1: can't set config #0, error -71
[ 1189.548324][ T5814] usb 2-1: USB disconnect, device number 14
[ 1189.754024][ T7844] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1190.087940][T15078] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1190.450919][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1190.615399][T15080] syzkaller0: entered promiscuous mode
[ 1190.627415][T15080] syzkaller0: entered allmulticast mode
[ 1190.818001][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1190.971041][ T7844] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[ 1191.039228][T15096] Bluetooth: MGMT ver 1.22
[ 1191.173764][ T7844] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1191.197385][ T7844] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1191.207376][ T7844] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1191.239728][ T7844] usb 6-1: config 0 descriptor??
[ 1191.283608][T15098] netlink: 1363 bytes leftover after parsing attributes in process `syz.6.2393'.
[ 1191.468503][ T7844] usbhid 6-1:0.0: can't add hid device: -71
[ 1191.498363][ T7844] usbhid: probe of 6-1:0.0 failed with error -71
[ 1191.556673][ T7844] usb 6-1: USB disconnect, device number 7
[ 1191.576751][T15105] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2396'.
[ 1191.930500][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1192.168053][T15112] random: crng reseeded on system resumption
[ 1192.490156][ T7844] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[ 1192.720177][ T7844] usb 6-1: Using ep0 maxpacket: 32
[ 1192.736963][ T7844] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1192.749007][ T7844] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1192.758322][ T7844] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1192.951018][ T7844] usb 6-1: config 0 descriptor??
[ 1192.981648][ T7844] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1193.027967][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1193.050403][ T7844] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1193.490833][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1193.614177][T14511] usb 6-1: USB disconnect, device number 8
[ 1193.655725][T14511] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1193.720265][T15126] loop1: detected capacity change from 0 to 40427
[ 1193.742763][T15126] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1193.809277][T15126] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1194.061012][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1194.432882][T15149] loop1: detected capacity change from 0 to 1024
[ 1194.504126][T15149] EXT4-fs: Ignoring removed bh option
[ 1194.782618][T15149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1195.084832][T15149] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1195.180171][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1195.268814][T15157] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2409'.
[ 1195.788150][T13889] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1195.789142][T15160] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1196.167278][T15162] loop1: detected capacity change from 0 to 32768
[ 1196.210565][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1196.237914][T15162] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1196.287338][T15162] XFS (loop1): Ending clean mount
[ 1196.340291][T15162] XFS (loop1): Quotacheck needed: Please wait.
[ 1196.482960][T15162] XFS (loop1): Quotacheck: Done.
[ 1196.742070][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1196.961556][T13889] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1197.120112][T14511] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1197.251692][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1197.992304][T14511] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1198.129763][T14511] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1198.330637][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1198.371816][T14511] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1198.421004][T14511] usb 6-1: config 0 descriptor??
[ 1198.574008][T15191] loop6: detected capacity change from 0 to 128
[ 1198.675345][T14511] usbhid 6-1:0.0: can't add hid device: -71
[ 1198.699705][T14511] usbhid: probe of 6-1:0.0 failed with error -71
[ 1198.737157][T14511] usb 6-1: USB disconnect, device number 9
[ 1199.270169][T14511] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1199.351430][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1199.470097][T14511] usb 6-1: Using ep0 maxpacket: 32
[ 1199.507807][T14511] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1199.526204][T14511] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1199.536062][T14511] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1199.555746][T14511] usb 6-1: config 0 descriptor??
[ 1199.569456][T14511] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1199.587717][T14511] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1199.811341][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1200.097420][T14861] usb 6-1: USB disconnect, device number 10
[ 1200.195933][T15209] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(5)
[ 1200.203266][T15209] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1200.215062][T15209] vhci_hcd vhci_hcd.0: Device attached
[ 1200.231674][T14861] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1200.543764][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1200.791081][T11438] usb 47-1: new low-speed USB device number 2 using vhci_hcd
[ 1201.580676][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1201.616509][T15215] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2425'.
[ 1202.163113][T15210] vhci_hcd: connection reset by peer
[ 1202.175392][T14598] vhci_hcd: stop threads
[ 1202.190177][T14598] vhci_hcd: release socket
[ 1202.199130][T14598] vhci_hcd: disconnect device
[ 1202.399097][T15220] loop5: detected capacity change from 0 to 4096
[ 1202.452787][T15220] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[ 1202.671352][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1202.854206][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1202.999929][   T28] audit: type=1800 audit(1775370582.673:66): pid=15220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2427" name="file1" dev="loop5" ino=33 res=0 errno=0
[ 1203.750442][T15242] random: crng reseeded on system resumption
[ 1203.757086][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1203.868538][ T5814] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[ 1204.082213][ T5814] usb 8-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xF3, skipping
[ 1204.097942][ T5814] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1204.116466][ T5814] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1204.149739][ T5814] usb 8-1: config 0 descriptor??
[ 1204.399375][ T5814] ath6kl: Failed to submit usb control message: -71
[ 1204.472923][ T5814] ath6kl: unable to send the bmi data to the device: -71
[ 1204.507072][ T5814] ath6kl: Unable to send get target info: -71
[ 1204.546220][ T5814] ath6kl: Failed to init ath6kl core: -71
[ 1204.557095][ T5814] ath6kl_usb: probe of 8-1:0.0 failed with error -71
[ 1204.642117][ T5814] usb 8-1: USB disconnect, device number 13
[ 1204.741689][ T7845] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1204.783111][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1204.976784][ T7845] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1205.024145][ T7845] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1205.079518][ T7845] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1205.122577][ T7845] usb 6-1: config 0 descriptor??
[ 1205.825997][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1205.890986][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1205.969787][ T7845] usbhid 6-1:0.0: can't add hid device: -71
[ 1206.072850][ T7845] usbhid: probe of 6-1:0.0 failed with error -71
[ 1206.150528][ T7845] usb 6-1: USB disconnect, device number 11
[ 1206.383799][T15265] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2439'.
[ 1206.580121][ T7845] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1206.628610][T11438] vhci_hcd: vhci_device speed not set
[ 1206.848900][T15263] loop6: detected capacity change from 0 to 4096
[ 1206.865224][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1206.890527][T15263] ntfs3: loop6: Different NTFS sector size (4096) and media sector size (512).
[ 1206.959780][   T28] audit: type=1800 audit(1775370586.633:67): pid=15263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2440" name="file1" dev="loop6" ino=33 res=0 errno=0
[ 1207.050208][ T7845] usb 6-1: Using ep0 maxpacket: 32
[ 1207.061634][ T7845] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1207.078082][ T7845] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1207.087990][ T7845] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1207.131436][ T7845] usb 6-1: config 0 descriptor??
[ 1207.148036][ T7845] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1207.190503][ T7845] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1207.594423][T15276] geneve2: entered promiscuous mode
[ 1207.599727][T15276] geneve2: entered allmulticast mode
[ 1207.671625][T11438] usb 6-1: USB disconnect, device number 12
[ 1207.696416][T11438] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1207.913104][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1208.024773][T13891] Bluetooth: hci5: unexpected event for opcode 0x2042
[ 1208.943896][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1208.957527][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1210.500298][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1210.806511][T15303] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2451'.
[ 1211.579867][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1211.970395][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1212.050226][T13891] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[ 1212.060883][T13891] Bluetooth: hci5: Injecting HCI hardware error event
[ 1212.072693][T13891] Bluetooth: hci5: hardware error 0x00
[ 1212.649318][T15318] loop7: detected capacity change from 0 to 32768
[ 1212.665382][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1212.682442][T15318] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 12
[ 1212.855173][T15315] Bluetooth: hci0: command 0x0406 tx timeout
[ 1213.550159][T14860] BTRFS error: device /dev/loop7 already registered with a higher generation, found 8 expect 12
[ 1213.730954][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1214.130371][T13891] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1214.230089][ T5814] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1214.448710][ T5814] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1214.482001][ T5814] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1214.522876][ T5814] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1214.580899][ T5814] usb 8-1: config 0 descriptor??
[ 1214.806374][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1214.841748][ T5814] usbhid 8-1:0.0: can't add hid device: -71
[ 1214.867327][ T5814] usbhid: probe of 8-1:0.0 failed with error -71
[ 1214.886257][ T5814] usb 8-1: USB disconnect, device number 14
[ 1215.012293][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1215.370088][ T5814] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[ 1215.691182][ T5814] usb 8-1: Using ep0 maxpacket: 32
[ 1215.973211][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1217.923197][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1218.001320][ T5814] usb 8-1: unable to read config index 0 descriptor/start: -71
[ 1218.020166][ T5814] usb 8-1: can't read configurations, error -71
[ 1218.050698][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1218.950593][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1219.042206][T15362] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1219.050483][T15362] IPv6: NLM_F_CREATE should be set when creating new route
[ 1220.447191][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1222.457208][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1222.473522][T15381] team0: No ports can be present during mode change
[ 1222.495255][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1222.551195][T15381] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2472'.
[ 1223.356033][T15381] team0 (unregistering): Port device team_slave_0 removed
[ 1223.411451][T15381] team0 (unregistering): Port device team_slave_1 removed
[ 1223.593303][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1223.880167][ T7845] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1224.099308][ T7845] usb 7-1: config index 0 descriptor too short (expected 39, got 27)
[ 1224.135172][ T7845] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1224.180348][ T7845] usb 7-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1224.234119][ T7845] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1224.268460][ T7845] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1224.278406][ T7845] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1224.286878][ T7845] usb 7-1: Product: syz
[ 1224.291419][ T7845] usb 7-1: Manufacturer: syz
[ 1224.296250][ T7845] usb 7-1: SerialNumber: syz
[ 1224.315313][ T7845] usb 7-1: config 0 descriptor??
[ 1224.337445][ T7845] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1224.345712][ T7845] hub: probe of 7-1:0.0 failed with error -5
[ 1224.418410][T14511] Process accounting resumed
[ 1224.428747][ T7845] snd-usb-audio: probe of 7-1:0.0 failed with error -22
[ 1224.439668][T15394] Process accounting resumed
[ 1224.460538][ T5814] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1224.607174][T14860] udevd[14860]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1224.625599][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1224.712064][ T5814] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1224.740466][ T5771] usb 7-1: USB disconnect, device number 11
[ 1224.763745][ T5814] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1224.789169][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1224.824453][ T5814] usb 6-1: config 0 descriptor??
[ 1224.901358][T15398] syzkaller1: entered promiscuous mode
[ 1224.917254][T15398] syzkaller1: entered allmulticast mode
[ 1225.060171][ T7845] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1225.068763][ T5814] usbhid 6-1:0.0: can't add hid device: -71
[ 1225.080318][ T5814] usbhid: probe of 6-1:0.0 failed with error -71
[ 1225.107288][ T5814] usb 6-1: USB disconnect, device number 13
[ 1225.277381][ T7845] usb 7-1: config index 0 descriptor too short (expected 39, got 27)
[ 1225.308772][ T7845] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1225.331085][ T7845] usb 7-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1225.348972][ T7845] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1225.360560][ T7845] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1225.371274][ T7845] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1225.380894][ T7845] usb 7-1: Product: syz
[ 1225.385131][ T7845] usb 7-1: Manufacturer: syz
[ 1225.389252][T15408] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 1225.389252][T15408] The task syz.1.2481 (15408) triggered the difference, watch for misbehavior.
[ 1225.389791][ T7845] usb 7-1: SerialNumber: syz
[ 1225.440727][ T7845] usb 7-1: config 0 descriptor??
[ 1225.461381][ T7845] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1225.467477][ T7845] hub: probe of 7-1:0.0 failed with error -5
[ 1225.490596][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1225.551445][ T7845] snd-usb-audio: probe of 7-1:0.0 failed with error -22
[ 1225.572361][T14860] udevd[14860]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1225.670206][ T5814] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1225.670524][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1225.810952][ T5843] usb 7-1: USB disconnect, device number 12
[ 1225.870404][ T5814] usb 6-1: Using ep0 maxpacket: 32
[ 1225.897184][ T5814] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1225.913908][ T5814] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1225.923437][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1225.946389][ T5814] usb 6-1: config 0 descriptor??
[ 1225.962272][ T5814] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1225.980248][ T5814] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1226.481035][ T5843] usb 6-1: USB disconnect, device number 14
[ 1226.557695][ T5843] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1226.691401][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1227.244555][T13891] Bluetooth: hci4: ACL packet for unknown connection handle 100
[ 1227.314665][T13891] Bluetooth: hci4: Malformed HCI Event: 0x22
[ 1227.470599][T15426] loop5: detected capacity change from 0 to 32768
[ 1227.481220][T15426] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 12
[ 1227.623178][T14860] I/O error, dev loop5, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1227.730938][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1228.262602][T15440] loop6: detected capacity change from 0 to 4096
[ 1228.300190][T15440] ntfs3: loop6: Different NTFS sector size (4096) and media sector size (512).
[ 1228.340108][T15447] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1228.551110][   T28] audit: type=1800 audit(1775370608.233:68): pid=15440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2492" name="file1" dev="loop6" ino=33 res=0 errno=0
[ 1228.551473][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1228.770788][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1228.980133][ T5814] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1229.249873][ T5814] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1229.271913][T13891] Bluetooth: hci0: command 0x0406 tx timeout
[ 1229.278299][ T5814] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1229.344225][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1229.440693][ T5814] usb 6-1: config 0 descriptor??
[ 1229.737009][    T9] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 1229.760978][ T5814] usbhid 6-1:0.0: can't add hid device: -71
[ 1229.773176][ T5814] usbhid: probe of 6-1:0.0 failed with error -71
[ 1229.795905][ T5814] usb 6-1: USB disconnect, device number 15
[ 1229.821128][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1229.950015][    T9] usb 7-1: Using ep0 maxpacket: 16
[ 1230.106758][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1230.128937][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1230.170131][    T9] usb 7-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[ 1230.180990][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1230.212174][    T9] usb 7-1: config 0 descriptor??
[ 1230.460560][ T5814] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1230.893077][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1231.020287][ T5814] usb 6-1: Using ep0 maxpacket: 32
[ 1231.046106][ T5814] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1231.069009][ T5814] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1231.083256][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1231.103898][ T5814] usb 6-1: config 0 descriptor??
[ 1231.149630][ T5814] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1231.165399][    T9] corsair 0003:1B1C:1B02.0007: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.6-1/input0
[ 1231.184343][ T5814] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1231.338544][    T9] corsair 0003:1B1C:1B02.0007: Read invalid backlight brightness: bf.
[ 1231.561930][    T9] usb 7-1: USB disconnect, device number 13
[ 1231.579563][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1231.636244][T14596] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1231.636787][ T5814] usb 6-1: USB disconnect, device number 16
[ 1231.645362][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1231.662920][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1231.711016][ T5814] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1231.971979][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1232.427657][T15480] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1232.747446][T15482] loop5: detected capacity change from 0 to 4096
[ 1232.767637][T15482] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[ 1232.933279][   T28] audit: type=1800 audit(1775370612.613:69): pid=15482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2505" name="file1" dev="loop5" ino=33 res=0 errno=0
[ 1233.010658][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1233.080242][    T9] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[ 1234.137674][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1234.161288][    T9] usb 2-1: Using ep0 maxpacket: 16
[ 1234.636258][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1234.676957][    T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1234.695299][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1234.714590][    T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1234.761406][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1234.770817][    T9] usb 2-1: Product: syz
[ 1234.775126][    T9] usb 2-1: Manufacturer: syz
[ 1234.779865][    T9] usb 2-1: SerialNumber: syz
[ 1235.028469][    T9] usb 2-1: 0:2 : does not exist
[ 1235.042920][    T9] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[ 1235.178159][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1235.214135][    T9] usb 2-1: USB disconnect, device number 15
[ 1235.318835][T14860] udevd[14860]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1236.150252][    T9] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[ 1236.220423][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1236.252000][T15513] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[ 1236.426675][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1236.473141][    T9] usb 8-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1236.506168][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1236.556454][    T9] usb 8-1: config 0 descriptor??
[ 1236.799643][    T9] usbhid 8-1:0.0: can't add hid device: -71
[ 1236.818753][    T9] usbhid: probe of 8-1:0.0 failed with error -71
[ 1236.868265][    T9] usb 8-1: USB disconnect, device number 17
[ 1237.251099][T14588] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1237.260309][ T5771] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1237.280368][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1237.289567][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1237.400180][    T9] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[ 1237.620377][    T9] usb 8-1: Using ep0 maxpacket: 32
[ 1237.652021][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1237.698274][    T9] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1237.744956][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1237.780907][    T9] usb 8-1: config 0 descriptor??
[ 1237.827734][    T9] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1237.871087][    T9] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1238.709906][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1238.808997][T15520] loop6: detected capacity change from 0 to 40427
[ 1238.900546][T15520] F2FS-fs (loop6): LFS is not compatible with checkpoint=disable
[ 1239.175567][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.203400][ T5771] usb 8-1: USB disconnect, device number 18
[ 1239.250674][ T5771] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[ 1239.305057][   T28] audit: type=1326 audit(1775370618.983:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1239.398036][   T28] audit: type=1326 audit(1775370619.033:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.470044][   T28] audit: type=1326 audit(1775370619.033:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.521300][   T28] audit: type=1326 audit(1775370619.033:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.580146][   T28] audit: type=1326 audit(1775370619.033:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.624290][   T28] audit: type=1326 audit(1775370619.033:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.697751][   T28] audit: type=1326 audit(1775370619.033:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.740705][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1239.749250][   T28] audit: type=1326 audit(1775370619.033:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.821207][   T28] audit: type=1326 audit(1775370619.033:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1239.901167][   T28] audit: type=1326 audit(1775370619.033:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15530 comm="syz.6.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9d84f9c4ab code=0x7ffc0000
[ 1240.198229][T15527] loop5: detected capacity change from 0 to 40427
[ 1240.230229][T15527] F2FS-fs (loop5): LFS is not compatible with checkpoint=disable
[ 1240.300049][ T5852] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 1240.460250][ T5852] usb 7-1: device descriptor read/64, error -71
[ 1240.788391][ T5852] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1241.000044][ T5852] usb 7-1: device descriptor read/64, error -71
[ 1241.031374][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1241.039586][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1241.123221][ T5852] usb usb7-port1: attempt power cycle
[ 1241.550095][ T5852] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1241.580935][ T5852] usb 7-1: device descriptor read/8, error -71
[ 1242.307044][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1242.316476][T14588] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1242.330706][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1242.370075][ T5852] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1242.380142][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1242.441164][ T5852] usb 7-1: device descriptor read/8, error -71
[ 1242.600227][ T5852] usb usb7-port1: unable to enumerate USB device
[ 1243.040298][ T5852] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[ 1243.245038][ T5852] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1243.272604][ T5852] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1243.290999][ T5852] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1243.412509][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1243.444661][ T5852] usb 2-1: config 0 descriptor??
[ 1244.079097][ T5852] usbhid 2-1:0.0: can't add hid device: -71
[ 1244.158327][ T5852] usbhid: probe of 2-1:0.0 failed with error -71
[ 1244.197867][ T5852] usb 2-1: USB disconnect, device number 16
[ 1244.259771][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1244.450494][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1244.479010][T15581] loop5: detected capacity change from 0 to 8
[ 1244.560860][T15581] SQUASHFS error: xz decompression failed, data probably corrupt
[ 1244.568800][T15581] SQUASHFS error: Failed to read block 0x108: -5
[ 1244.575361][T15581] SQUASHFS error: Unable to read metadata cache entry [106]
[ 1244.583017][T15581] SQUASHFS error: Unable to read inode 0x11f
[ 1244.652449][ T5852] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[ 1244.787960][    T9] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1245.122792][    T9] usb 7-1: Using ep0 maxpacket: 32
[ 1245.217993][    T9] usb 7-1: config 0 has an invalid interface number: 89 but max is 0
[ 1245.293967][    T9] usb 7-1: config 0 has no interface number 0
[ 1245.346440][    T9] usb 7-1: config 0 interface 89 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1245.387015][    T9] usb 7-1: config 0 interface 89 has no altsetting 0
[ 1245.494021][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1245.502957][    T9] usb 7-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[ 1245.522105][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1245.558422][    T9] usb 7-1: Product: syz
[ 1245.564030][    T9] usb 7-1: Manufacturer: syz
[ 1245.568691][    T9] usb 7-1: SerialNumber: syz
[ 1245.606265][    T9] usb 7-1: config 0 descriptor??
[ 1245.610048][ T5852] usb 2-1: Using ep0 maxpacket: 32
[ 1245.619233][ T5852] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1245.619391][    T9] em28xx 7-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[ 1245.630539][ T5852] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1245.630570][ T5852] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1245.632989][ T5852] usb 2-1: config 0 descriptor??
[ 1245.668194][ T5852] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1245.682243][ T5852] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1245.720165][    T9] em28xx 7-1:0.89: Video interface 89 found:
[ 1245.792637][ T5852] usb 2-1: USB disconnect, device number 17
[ 1245.801668][ T5852] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1246.531633][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1246.632422][    T9] em28xx 7-1:0.89: unknown em28xx chip ID (0)
[ 1247.572072][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1247.908658][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1248.050496][T15609] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2545'.
[ 1248.136737][T15611] loop7: detected capacity change from 0 to 4096
[ 1248.143697][ T1141] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1248.273439][T15611] ntfs3: loop7: Different NTFS sector size (1024) and media sector size (512).
[ 1248.686129][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1248.706373][    T9] em28xx 7-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[ 1248.725152][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1248.735554][    T9] em28xx 7-1:0.89: board has no eeprom
[ 1248.830043][    T9] em28xx 7-1:0.89: Identified as Terratec Grabby (card=67)
[ 1248.847678][    T9] em28xx 7-1:0.89: analog set to bulk mode.
[ 1248.860351][ T5843] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[ 1248.864309][T14768] em28xx 7-1:0.89: Registering V4L2 extension
[ 1248.898244][    T9] usb 7-1: USB disconnect, device number 18
[ 1248.937228][    T9] em28xx 7-1:0.89: Disconnecting em28xx
[ 1249.042921][T14768] em28xx 7-1:0.89: Config register raw data: 0xffffffed
[ 1249.062680][T14768] em28xx 7-1:0.89: AC97 chip type couldn't be determined
[ 1249.084317][T14768] em28xx 7-1:0.89: No AC97 audio processor
[ 1249.090607][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1249.106461][T14768] usb 7-1: Decoder not found
[ 1249.110328][ T5843] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1249.112073][T14768] em28xx 7-1:0.89: failed to create media graph
[ 1249.128187][T14768] em28xx 7-1:0.89: V4L2 device video103 deregistered
[ 1249.150213][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1249.171822][ T5843] usb 2-1: config 0 descriptor??
[ 1249.211626][T14768] em28xx 7-1:0.89: Registering snapshot button...
[ 1249.256992][T14768] input: em28xx snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.89/input/input14
[ 1249.336311][T14768] em28xx 7-1:0.89: Remote control support is not available for this card.
[ 1249.371089][    T9] em28xx 7-1:0.89: Closing input extension
[ 1249.402850][    T9] em28xx 7-1:0.89: Deregistering snapshot button
[ 1249.417251][ T5843] usbhid 2-1:0.0: can't add hid device: -71
[ 1249.438195][ T5843] usbhid: probe of 2-1:0.0 failed with error -71
[ 1249.465435][ T5843] usb 2-1: USB disconnect, device number 18
[ 1249.583147][    T9] em28xx 7-1:0.89: Freeing device
[ 1249.785273][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1250.050127][ T5843] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1250.270798][ T5843] usb 2-1: Using ep0 maxpacket: 32
[ 1250.289207][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1250.312706][ T5843] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1250.330571][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1250.344524][ T5843] usb 2-1: config 0 descriptor??
[ 1250.371349][ T5843] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1250.399118][ T5843] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1250.756554][T15648] input: syz1 as /devices/virtual/input/input15
[ 1250.939010][T14768] usb 2-1: USB disconnect, device number 19
[ 1251.179090][T14768] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1251.698011][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1251.720576][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1252.123324][T13891] Bluetooth: hci0: command 0x0406 tx timeout
[ 1252.585492][    T9] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1253.040140][    T9] usb 2-1: Using ep0 maxpacket: 32
[ 1253.045622][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1253.063827][    T9] usb 2-1: config 0 has an invalid interface number: 196 but max is 0
[ 1253.090344][    T9] usb 2-1: config 0 has no interface number 0
[ 1253.103985][    T9] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[ 1253.121866][    T9] usb 2-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1253.138559][    T9] usb 2-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 1253.150481][    T9] usb 2-1: config 0 interface 196 has no altsetting 0
[ 1253.165688][    T9] usb 2-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a
[ 1253.186241][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1253.197680][    T9] usb 2-1: Product: syz
[ 1253.206010][    T9] usb 2-1: Manufacturer: syz
[ 1253.214436][    T9] usb 2-1: SerialNumber: syz
[ 1253.231941][    T9] usb 2-1: config 0 descriptor??
[ 1253.771104][T15658] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1254.059591][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1254.676115][    T9] ipheth 2-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[ 1254.840904][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1254.859758][    T9] ipheth 2-1:0.196: Apple iPhone USB Ethernet device attached
[ 1254.948078][    T9] usb 2-1: USB disconnect, device number 20
[ 1255.040488][    T9] ipheth 2-1:0.196: Apple iPhone USB Ethernet now disconnected
[ 1255.108350][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1256.065037][T15692] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1256.171603][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1256.983420][T15709] loop6: detected capacity change from 0 to 40427
[ 1257.009748][T15709] F2FS-fs (loop6): build fault injection attr: rate: 684, type: 0x7ffff
[ 1257.018430][T15709] F2FS-fs (loop6): build fault injection attr: rate: 0, type: 0x35f7
[ 1257.026741][T15709] F2FS-fs (loop6): Image doesn't support compression
[ 1257.043864][T15709] F2FS-fs (loop6): invalid crc value
[ 1257.060096][T14511] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1257.081321][T15709] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1257.134236][T15709] F2FS-fs (loop6): Start checkpoint disabled!
[ 1257.156268][T15709] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[ 1257.264510][T14511] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1257.267317][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1257.298960][T14511] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1257.331209][T14511] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1257.372348][T14511] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1257.408993][T14511] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1257.442312][T14511] usb 2-1: config 0 descriptor??
[ 1257.760957][T12188] kworker/u4:15: attempt to access beyond end of device
[ 1257.760957][T12188] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1257.790364][T12188] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1257.798058][T12188] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1257.888193][T14511] plantronics 0003:047F:FFFF.0008: report_id 0 is invalid
[ 1257.900807][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1257.920078][T14511] plantronics 0003:047F:FFFF.0008: item 0 0 1 8 parsing failed
[ 1257.928555][T14511] plantronics 0003:047F:FFFF.0008: parse failed
[ 1257.970214][T14511] plantronics: probe of 0003:047F:FFFF.0008 failed with error -22
[ 1258.093047][T14861] usb 2-1: USB disconnect, device number 21
[ 1258.303454][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1259.128632][T15746] loop7: detected capacity change from 0 to 2048
[ 1259.135489][T14861] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1259.178471][T15746] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1259.453705][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1260.183646][T14861] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1260.931919][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1261.473625][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1262.157242][T14861] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1262.177067][T14861] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1262.194007][T14861] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1262.221905][T14861] usb 2-1: string descriptor 0 read error: -71
[ 1262.228370][T14861] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1262.260019][T14861] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1262.292460][T14861] usb 2-1: can't set config #1, error -71
[ 1262.310393][T14861] usb 2-1: USB disconnect, device number 22
[ 1262.580126][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1263.886549][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1264.702090][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1265.202819][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1265.630312][    T9] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1265.850250][    T9] usb 7-1: Using ep0 maxpacket: 16
[ 1265.867656][    T9] usb 7-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1265.938342][    T9] usb 7-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1265.979981][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1265.999989][    T9] usb 7-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[ 1266.022168][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1266.054187][    T9] usb 7-1: config 0 descriptor??
[ 1266.210610][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1266.501537][    T9] nzxt-smart2 0003:1E71:2009.0009: unknown main item tag 0x0
[ 1266.509207][    T9] nzxt-smart2 0003:1E71:2009.0009: unknown main item tag 0x0
[ 1266.540974][    T9] nzxt-smart2 0003:1E71:2009.0009: unknown main item tag 0x0
[ 1266.548650][    T9] nzxt-smart2 0003:1E71:2009.0009: unknown main item tag 0x0
[ 1266.570304][    T9] nzxt-smart2 0003:1E71:2009.0009: unknown main item tag 0x0
[ 1266.607149][    T9] nzxt-smart2 0003:1E71:2009.0009: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.6-1/input0
[ 1266.751019][    T9] usb 7-1: USB disconnect, device number 19
[ 1266.799244][T15793] fido_id[15793]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/7-1/report_descriptor': No such file or directory
[ 1267.255037][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1267.804712][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1268.218797][T15817] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2613'.
[ 1268.248355][T15820] netlink: 'syz.7.2614': attribute type 2 has an invalid length.
[ 1268.270360][T15817] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2613'.
[ 1268.290594][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1269.330434][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1269.490102][    C1] icmp: detected local route for 172.20.20.170 during ICMP sending, src 172.20.20.187
[ 1269.501464][    C1] icmp: detected local route for 172.20.20.170 during ICMP sending, src 172.20.20.187
[ 1270.420465][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1271.690271][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1271.710291][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1272.610102][    C1] icmp: detected local route for 172.20.20.170 during ICMP sending, src 172.20.20.187
[ 1272.771106][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1273.997623][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1274.185680][T13891] Bluetooth: hci0: command 0x0406 tx timeout
[ 1275.022179][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1275.377010][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1276.889716][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1277.963986][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1278.057971][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1279.495599][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1279.910028][ T5852] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[ 1280.160154][ T5852] usb 8-1: Using ep0 maxpacket: 8
[ 1280.173756][ T5852] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[ 1280.189702][ T5852] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1280.213601][ T5852] usb 8-1: config 0 has no interface number 0
[ 1280.231920][ T5852] usb 8-1: config 0 interface 55 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1280.261967][ T5852] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1280.290268][ T5852] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1280.310545][ T5852] usb 8-1: config 0 descriptor??
[ 1280.323929][ T5852] ldusb 8-1:0.55: Interrupt in endpoint not found
[ 1280.661442][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1281.084118][T14511] usb 8-1: USB disconnect, device number 19
[ 1281.101260][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1281.788493][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1282.540561][T14768] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1282.861735][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1282.880330][T14768] usb 2-1: Using ep0 maxpacket: 32
[ 1282.943915][T14768] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1282.997867][T14768] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1283.048926][T14768] usb 2-1: config 0 descriptor??
[ 1283.338114][T14768] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[ 1283.397499][T14768] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1283.419039][T14768] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[ 1283.440935][T14768] usb 2-1: media controller created
[ 1283.516803][T15951] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2655'.
[ 1283.536810][T14768] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1283.564788][T14511] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[ 1283.758623][T14511] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1283.891314][T15954] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1283.904071][T15954] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1284.113270][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1284.571176][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1285.191123][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1285.259680][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1285.688532][T14768] az6027: usb out operation failed. (-71)
[ 1285.698207][T14768] az6027: usb out operation failed. (-71)
[ 1285.710938][T14768] stb0899_attach: Driver disabled by Kconfig
[ 1285.717272][T14768] az6027: no front-end attached
[ 1285.717272][T14768] 
[ 1285.985822][T14768] az6027: usb out operation failed. (-71)
[ 1285.997572][T14768] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[ 1286.039029][T14768] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input16
[ 1286.092421][T14768] dvb-usb: schedule remote query interval to 400 msecs.
[ 1286.128841][T14768] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[ 1286.171333][T14768] usb 2-1: USB disconnect, device number 23
[ 1286.258579][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1286.559103][T14768] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[ 1287.379565][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1287.524392][T15985] loop5: detected capacity change from 0 to 1024
[ 1287.532702][T15985] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1287.651164][T15987] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2667'.
[ 1287.655700][T15985] EXT4-fs: Mount option(s) incompatible with ext2
[ 1287.684062][T15987] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1287.691642][T15987] IPv6: NLM_F_CREATE should be set when creating new route
[ 1287.699831][T15987] IPv6: NLM_F_CREATE should be set when creating new route
[ 1287.707263][T15987] IPv6: NLM_F_CREATE should be set when creating new route
[ 1287.748389][T14860] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1287.770714][T15985] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2666'.
[ 1288.015014][T15997] loop6: detected capacity change from 0 to 512
[ 1288.304623][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1288.469348][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1288.672882][T16001] tipc: Started in network mode
[ 1288.730768][T16001] tipc: Node identity 4, cluster identity 4711
[ 1288.737020][T16001] tipc: Node number set to 4
[ 1289.218980][T16006] loop6: detected capacity change from 0 to 40427
[ 1289.546202][T16006] F2FS-fs (loop6): LFS is not compatible with checkpoint=disable
[ 1289.864624][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1290.138882][T16013] loop6: detected capacity change from 0 to 1024
[ 1290.158265][T16013] hfsplus: unable to parse mount options
[ 1290.919372][T16027] loop5: detected capacity change from 0 to 512
[ 1291.028593][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1291.106428][T16027] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz.5.2681: bg 0: block 4: invalid block bitmap
[ 1291.248482][T16027] EXT4-fs (loop5): Remounting filesystem read-only
[ 1291.334136][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1291.346081][T16027] EXT4-fs (loop5): 1 truncate cleaned up
[ 1291.366645][T16027] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1291.668647][T16037] loop6: detected capacity change from 0 to 512
[ 1291.686896][ T8235] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1291.750392][T16037] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1291.814208][T16037] EXT4-fs warning (device loop6): dx_probe:869: inode #2: comm syz.6.2684: Unimplemented hash flags: 0x0001
[ 1291.847334][T16037] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.2684: Corrupt directory, running e2fsck is recommended
[ 1291.970773][T16037] netlink: 'syz.6.2684': attribute type 4 has an invalid length.
[ 1292.060414][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1292.773353][T16037] EXT4-fs warning (device loop6): dx_probe:869: inode #2: comm syz.6.2684: Unimplemented hash flags: 0x0001
[ 1292.890306][T16037] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.2684: Corrupt directory, running e2fsck is recommended
[ 1292.924103][T16041] EXT4-fs warning (device loop6): dx_probe:869: inode #2: comm syz.6.2684: Unimplemented hash flags: 0x0001
[ 1292.970177][T16041] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.2684: Corrupt directory, running e2fsck is recommended
[ 1293.101533][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1293.173662][ T9509] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1293.433096][T16065] loop1: detected capacity change from 0 to 2048
[ 1293.581012][T16065] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1293.706735][T16065] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1294.174076][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1294.204145][T16074] tun0: tun_chr_ioctl cmd 2147767506
[ 1294.278161][T13889] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1294.373250][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1294.649066][T16080] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2700'.
[ 1295.382193][T16088] loop6: detected capacity change from 0 to 256
[ 1295.470289][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1295.500298][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1295.555274][T16088] FAT-fs (loop6): Directory bread(block 64) failed
[ 1295.598303][T16095] loop7: detected capacity change from 0 to 128
[ 1295.614936][T16088] FAT-fs (loop6): Directory bread(block 65) failed
[ 1295.658711][T16088] FAT-fs (loop6): Directory bread(block 66) failed
[ 1295.680165][T16088] FAT-fs (loop6): Directory bread(block 67) failed
[ 1295.705326][T16088] FAT-fs (loop6): Directory bread(block 68) failed
[ 1295.731408][T16088] FAT-fs (loop6): Directory bread(block 69) failed
[ 1295.738131][T16088] FAT-fs (loop6): Directory bread(block 70) failed
[ 1295.751798][T16088] FAT-fs (loop6): Directory bread(block 71) failed
[ 1295.758776][T16088] FAT-fs (loop6): Directory bread(block 72) failed
[ 1295.799203][T16088] FAT-fs (loop6): Directory bread(block 73) failed
[ 1295.923042][T16088] syz.6.2702: attempt to access beyond end of device
[ 1295.923042][T16088] loop6: rw=524288, sector=1160, nr_sectors = 4 limit=256
[ 1295.973944][T16088] syz.6.2702: attempt to access beyond end of device
[ 1295.973944][T16088] loop6: rw=0, sector=1160, nr_sectors = 4 limit=256
[ 1296.031215][   T28] kauditd_printk_skb: 23 callbacks suppressed
[ 1296.031234][   T28] audit: type=1800 audit(1775370675.703:103): pid=16088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2702" name="file0" dev="loop6" ino=1048625 res=0 errno=0
[ 1296.580547][T16113] loop5: detected capacity change from 0 to 40427
[ 1296.590553][T16113] F2FS-fs (loop5): LFS is not compatible with checkpoint=disable
[ 1296.609185][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1297.523006][T16125] loop5: detected capacity change from 0 to 1024
[ 1297.530856][T16125] hfsplus: unable to parse mount options
[ 1298.210517][T16121] loop1: detected capacity change from 0 to 512
[ 1298.348501][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1298.378104][T16121] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.2715: bg 0: block 4: invalid block bitmap
[ 1298.470127][T16121] EXT4-fs (loop1): Remounting filesystem read-only
[ 1298.477075][T16121] EXT4-fs (loop1): 1 truncate cleaned up
[ 1298.521416][T16121] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1298.545879][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1298.961428][T13889] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1299.482486][T16152] loop6: detected capacity change from 0 to 40427
[ 1299.500513][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1299.813097][T16162] binder: 16158:16162 ioctl c0306201 0 returned -14
[ 1301.061262][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1301.069248][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1301.100940][T16152] F2FS-fs (loop6): LFS is not compatible with checkpoint=disable
[ 1301.269810][T16156] loop1: detected capacity change from 0 to 4096
[ 1301.341934][T16156] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 1301.787272][   T28] audit: type=1800 audit(1775370681.463:104): pid=16156 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2724" name="file1" dev="loop1" ino=33 res=0 errno=0
[ 1301.995622][T16170] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2731'.
[ 1302.022513][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1302.164526][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1302.679542][T16182] loop5: detected capacity change from 0 to 512
[ 1302.691113][T16182] EXT4-fs: Ignoring removed bh option
[ 1302.700937][T16182] EXT4-fs: inline encryption not supported
[ 1302.721876][T16182] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1302.852992][T16182] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1302.900768][T16182] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.2737: bg 0: block 248: padding at end of block bitmap is not set
[ 1302.942806][T16182] Quota error (device loop5): write_blk: dquota write failed
[ 1302.960270][T16182] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1303.000203][T16182] EXT4-fs error (device loop5): ext4_acquire_dquot:6949: comm syz.5.2737: Failed to acquire dquot type 1
[ 1303.013861][T16182] EXT4-fs (loop5): 1 truncate cleaned up
[ 1303.039209][T16182] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[ 1303.133527][T16194] loop6: detected capacity change from 0 to 2048
[ 1303.196338][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1303.206508][T16194] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1303.378208][ T9509] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1304.379320][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1304.505995][ T8235] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[ 1304.537019][ T1141] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-5
[ 1304.560233][ T1141] EXT4-fs error (device loop5): ext4_release_dquot:6985: comm kworker/u4:6: Failed to release dquot type 1
[ 1304.578931][T16207] loop1: detected capacity change from 0 to 256
[ 1304.790650][T16210] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1304.827168][T16212] loop5: detected capacity change from 0 to 512
[ 1304.861182][T16212] EXT4-fs: Ignoring removed i_version option
[ 1304.925169][T16212] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[ 1304.991008][T16212] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[ 1305.074730][T16212] EXT4-fs (loop5): 1 truncate cleaned up
[ 1305.090290][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1305.102792][T16212] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1305.200163][T16212] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[ 1305.341895][ T8235] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1305.429447][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1305.545620][T16227] loop1: detected capacity change from 0 to 512
[ 1305.778245][T16227] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1305.865885][T16227] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1306.668599][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1307.239366][T16248] Quota error (device loop1): do_check_range: Getting block 3589 out of range 1-5
[ 1307.271149][T16248] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[ 1307.340614][T16248] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.2754: Failed to acquire dquot type 0
[ 1307.740166][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1307.899382][T13889] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1308.133739][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1308.768280][T16272] loop6: detected capacity change from 0 to 512
[ 1308.795045][T16272] EXT4-fs: Ignoring removed bh option
[ 1308.811480][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1308.832714][T16272] EXT4-fs: inline encryption not supported
[ 1308.885378][T16272] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1309.842792][T16272] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[ 1309.900679][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1309.911876][T16272] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.2762: bg 0: block 248: padding at end of block bitmap is not set
[ 1309.961379][T16272] Quota error (device loop6): write_blk: dquota write failed
[ 1309.969132][T16272] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1309.990579][T16272] EXT4-fs error (device loop6): ext4_acquire_dquot:6949: comm syz.6.2762: Failed to acquire dquot type 1
[ 1310.026245][T16272] EXT4-fs (loop6): 1 truncate cleaned up
[ 1310.033856][T16272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[ 1310.123877][T16272] netlink: 220 bytes leftover after parsing attributes in process `syz.6.2762'.
[ 1310.162116][T16272] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2762'.
[ 1310.295688][ T9509] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[ 1310.507885][T16282] loop6: detected capacity change from 0 to 512
[ 1310.949583][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1311.778848][ T1141] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1311.839061][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1311.979954][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1312.186533][T16292] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2778'.
[ 1312.241895][ T1141] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1312.897612][ T1141] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.021839][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1313.176465][ T1141] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1313.202816][T16303] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2781'.
[ 1313.658153][ T9307] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1313.711150][ T9307] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1313.724682][ T9307] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1313.736440][ T9307] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1313.744203][ T9307] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1313.751454][ T9307] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1314.094776][T16320] loop5: detected capacity change from 0 to 512
[ 1314.096391][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1315.101378][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1315.215136][T16328] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2788'.
[ 1315.218841][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1315.846407][ T9307] Bluetooth: hci0: command tx timeout
[ 1315.897816][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1315.907269][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1315.917069][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1315.924097][T16337] loop7: detected capacity change from 0 to 512
[ 1315.925601][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.000286][T16337] EXT4-fs: Ignoring removed bh option
[ 1316.053597][T16337] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended
[ 1316.086911][T16337] EXT4-fs (loop7): 1 truncate cleaned up
[ 1316.095409][T16337] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1316.257987][ T9562] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1316.260894][T16345] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2792'.
[ 1316.619073][T16352] x_tables: duplicate underflow at hook 3
[ 1316.769403][T16310] chnl_net:caif_netlink_parms(): no params data found
[ 1316.811712][T16355] loop7: detected capacity change from 0 to 512
[ 1316.840049][    C0] net_ratelimit: 1646 callbacks suppressed
[ 1316.840069][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.914176][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.922932][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.955804][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.964539][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.987316][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1316.996161][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1317.016202][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1317.024662][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1317.058820][T16335] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1317.902909][ T9307] Bluetooth: hci0: command tx timeout
[ 1317.982502][T16372] loop5: detected capacity change from 0 to 40427
[ 1318.066360][T16377] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2799'.
[ 1318.081091][T16372] F2FS-fs (loop5): LFS is not compatible with checkpoint=disable
[ 1318.771923][T16310] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1318.809680][T16310] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1318.942005][T16310] bridge_slave_0: entered allmulticast mode
[ 1318.960722][T16310] bridge_slave_0: entered promiscuous mode
[ 1318.967952][T16387] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2802'.
[ 1319.361943][T16310] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1319.369161][T16310] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1319.408962][T16310] bridge_slave_1: entered allmulticast mode
[ 1319.426509][T16310] bridge_slave_1: entered promiscuous mode
[ 1319.841161][T16310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1319.854004][T16405] loop6: detected capacity change from 0 to 4096
[ 1319.888699][T16405] ntfs3: loop6: Different NTFS sector size (4096) and media sector size (512).
[ 1319.988186][ T9307] Bluetooth: hci0: command tx timeout
[ 1320.020724][ T1141] hsr_slave_0: left promiscuous mode
[ 1320.033875][ T1141] hsr_slave_1: left promiscuous mode
[ 1320.055072][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1320.067438][   T28] audit: type=1800 audit(1775370699.743:105): pid=16405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2807" name="file1" dev="loop6" ino=33 res=0 errno=0
[ 1320.070129][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1320.115267][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1320.124491][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1320.146260][ T1141] bridge_slave_1: left allmulticast mode
[ 1320.159331][ T1141] bridge_slave_1: left promiscuous mode
[ 1320.173699][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1320.208691][ T1141] bridge_slave_0: left allmulticast mode
[ 1320.221401][ T1141] bridge_slave_0: left promiscuous mode
[ 1320.234151][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1320.304688][ T1141] veth1_macvtap: left promiscuous mode
[ 1320.313955][ T1141] veth0_macvtap: left promiscuous mode
[ 1320.329627][ T1141] veth1_vlan: left promiscuous mode
[ 1320.345807][ T1141] veth0_vlan: left promiscuous mode
[ 1321.307430][T16424] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2811'.
[ 1322.050342][ T9307] Bluetooth: hci0: command tx timeout
[ 1322.303550][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1322.393460][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1322.715547][ T5852] net_ratelimit: 401 callbacks suppressed
[ 1322.715571][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1322.920220][T16437] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1323.187803][T16439] loop6: detected capacity change from 0 to 4096
[ 1323.223453][T16439] ntfs3: loop6: Different NTFS sector size (4096) and media sector size (512).
[ 1323.285201][ T1141] bond0 (unregistering): Released all slaves
[ 1323.394019][   T28] audit: type=1800 audit(1775370703.073:106): pid=16439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2817" name="file1" dev="loop6" ino=33 res=0 errno=0
[ 1323.508234][T16310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1323.710730][T16310] team0: Port device team_slave_0 added
[ 1323.726826][T16310] team0: Port device team_slave_1 added
[ 1323.748516][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1323.791924][T16442] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2818'.
[ 1323.862559][T16310] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1323.875561][T16310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1323.922844][T16310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1323.938977][T16310] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1323.954779][T16310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1323.999574][T16310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1324.128927][T16446] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2819'.
[ 1324.211238][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1324.266146][T16310] hsr_slave_0: entered promiscuous mode
[ 1324.301427][T16310] hsr_slave_1: entered promiscuous mode
[ 1324.323095][T16451] loop6: detected capacity change from 0 to 128
[ 1324.339293][T16449] loop5: detected capacity change from 0 to 2048
[ 1324.397849][T16449] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[ 1324.444428][T16449] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1324.490278][   T28] audit: type=1800 audit(1775370704.163:107): pid=16454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2821" name="bus" dev="loop6" ino=1048630 res=0 errno=0
[ 1324.782639][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1325.169298][   T28] audit: type=1800 audit(1775370704.833:108): pid=16449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2822" name="file1" dev="loop5" ino=15 res=0 errno=0
[ 1325.258110][T16469] loop7: detected capacity change from 0 to 512
[ 1325.336763][T16469] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c018, mo2=0002]
[ 1325.380279][ T8235] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1325.383998][T16469] System zones: 1-20
[ 1325.418048][T16310] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1325.432811][T16469] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1325.507936][T16310] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1325.557605][T16310] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1325.590495][T16310] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1325.673976][   T28] audit: type=1800 audit(1775370705.353:109): pid=16469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2824" name="file1" dev="loop7" ino=15 res=0 errno=0
[ 1325.819813][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1325.835275][T16478] loop6: detected capacity change from 0 to 4096
[ 1325.856282][T16483] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2825'.
[ 1325.886254][T16478] ntfs3: loop6: Different NTFS sector size (4096) and media sector size (512).
[ 1325.992755][ T9562] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1326.016498][   T28] audit: type=1800 audit(1775370705.693:110): pid=16478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2826" name="file1" dev="loop6" ino=33 res=0 errno=0
[ 1326.348021][T16310] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1326.408805][T16310] 8021q: adding VLAN 0 to HW filter on device team0
[ 1326.567135][T16493] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2828'.
[ 1326.649236][T12214] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1326.656757][T12214] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1326.695992][T16496] loop7: detected capacity change from 0 to 512
[ 1326.704599][T12214] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1326.711816][T12214] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1326.876582][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1326.987954][T16310] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1327.255495][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1327.926702][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1327.984537][T16310] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1328.094790][   T28] audit: type=1326 audit(1775370707.773:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.178107][   T28] audit: type=1326 audit(1775370707.773:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.257861][   T28] audit: type=1326 audit(1775370707.773:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.346936][   T28] audit: type=1326 audit(1775370707.783:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.374819][T16535] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2838'.
[ 1328.450349][   T28] audit: type=1326 audit(1775370707.783:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.520045][   T28] audit: type=1326 audit(1775370707.783:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.589339][   T28] audit: type=1326 audit(1775370707.783:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16529 comm="syz.6.2837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1328.945341][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1329.181637][T16310] veth0_vlan: entered promiscuous mode
[ 1329.209452][T16310] veth1_vlan: entered promiscuous mode
[ 1329.418427][T16310] veth0_macvtap: entered promiscuous mode
[ 1329.460242][T16310] veth1_macvtap: entered promiscuous mode
[ 1329.537828][T16555] loop6: detected capacity change from 0 to 164
[ 1329.546478][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.590611][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.630102][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.661801][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.702840][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.753383][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.799524][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.832511][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.877732][T16563] loop6: detected capacity change from 0 to 1024
[ 1329.895764][T16310] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1329.905813][T16563] EXT4-fs: Ignoring removed orlov option
[ 1329.926011][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1329.942020][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.952591][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1329.965220][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.977933][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1330.016238][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1330.023681][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1330.037600][T16563] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1330.084082][T16310] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1330.158829][T16310] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1330.232119][T16310] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1330.290491][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1330.379216][T16310] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1330.389374][T16310] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1330.405325][T16310] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1330.428155][T16310] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1330.462642][ T9509] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1330.668816][T14588] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1330.729381][T14588] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1330.883230][T12214] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1330.895386][T12214] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1330.903413][T16580] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2846'.
[ 1331.108371][ T5852] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1332.150181][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1332.738914][T16615] loop8: detected capacity change from 0 to 512
[ 1332.836333][T16615] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1332.960263][T16615] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1333.251834][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1333.331253][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1333.845404][T16310] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1334.112861][T16635] loop8: detected capacity change from 0 to 1024
[ 1334.180352][T16635] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1334.320063][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1334.536453][T16647] hub 9-0:1.0: USB hub found
[ 1334.541523][T16647] hub 9-0:1.0: 1 port detected
[ 1335.428746][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1336.216890][T16310] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1336.372501][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1336.521759][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1338.087741][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1339.090520][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1339.420229][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1340.131532][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1340.255522][   T28] kauditd_printk_skb: 186 callbacks suppressed
[ 1340.255536][   T28] audit: type=1326 audit(1775370719.933:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16697 comm="syz.6.2870" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x0
[ 1341.178504][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1342.228156][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1342.460084][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1342.877559][T16736] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2867'.
[ 1343.251110][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1344.936027][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1345.011711][T16744] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1345.353380][T16752] loop5: detected capacity change from 0 to 1024
[ 1345.407911][T16752] EXT4-fs: Ignoring removed bh option
[ 1345.500804][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1346.565136][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1346.704355][T16752] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1346.717193][T16752] ext4 filesystem being mounted at /544/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1346.916590][T16769] loop6: detected capacity change from 0 to 512
[ 1346.997689][T16769] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2
[ 1347.026491][T16769] EXT4-fs error (device loop6): ext4_iget_extra_inode:4732: inode #15: comm syz.6.2883: corrupted in-inode xattr: e_value size too large
[ 1347.229831][T16769] EXT4-fs error (device loop6): ext4_orphan_get:1403: comm syz.6.2883: couldn't read orphan inode 15 (err -117)
[ 1347.276405][T16769] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1347.630520][T16766] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[ 1347.630557][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1348.109527][T14586] EXT4-fs error (device loop5): ext4_map_blocks:718: inode #15: comm kworker/u4:16: lblock 0 mapped to illegal pblock 0 (length 6)
[ 1348.161519][T14586] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[ 1348.258164][T14586] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1348.258164][T14586] 
[ 1348.379018][T14586] EXT4-fs error (device loop5): ext4_map_blocks:718: inode #15: block 8: comm kworker/u4:16: lblock 8 mapped to illegal pblock 8 (length 8)
[ 1348.403785][ T9509] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1348.421702][T14586] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[ 1348.444213][T14586] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1348.444213][T14586] 
[ 1348.479100][ T8235] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1348.530375][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1348.690287][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1348.704645][T16791] loop8: detected capacity change from 0 to 128
[ 1348.822277][T16791] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1348.955283][T16791] ext4 filesystem being mounted at /9/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1348.988082][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1349.179623][T16791] EXT4-fs error (device loop8): htree_dirblock_to_tree:1112: inode #2: block 4: comm syz.8.2887: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1
[ 1349.462573][T16310] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1349.731893][T14861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1351.479263][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1351.571138][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1353.514636][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1354.539731][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1354.610454][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1355.419714][T16857] loop8: detected capacity change from 0 to 512
[ 1355.600779][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1357.221444][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1357.407678][T16857] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1357.466728][T16857] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.2904: invalid indirect mapped block 256 (level 2)
[ 1357.585393][T16857] EXT4-fs (loop8): 2 truncates cleaned up
[ 1357.623199][T16857] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1357.658661][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1357.720749][T14588] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1357.730195][ T7846] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1357.739050][T14511] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1358.080096][T16873] EXT4-fs error (device loop8): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1358.243588][T16310] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1358.311759][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1358.949064][T16906] loop8: detected capacity change from 0 to 4096
[ 1358.967234][T16906] ntfs3: loop8: Different NTFS sector size (4096) and media sector size (512).
[ 1359.189605][   T28] audit: type=1800 audit(1775370738.863:305): pid=16906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2917" name="file1" dev="loop8" ino=33 res=0 errno=0
[ 1359.362615][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1359.879667][T16921] loop5: detected capacity change from 0 to 8192
[ 1360.014561][T16921] FAT-fs (loop5): error, corrupted file size (i_pos 1044, 512)
[ 1360.035824][T16921] FAT-fs (loop5): Filesystem has been set read-only
[ 1360.486763][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1360.536594][T16935] loop8: detected capacity change from 0 to 40427
[ 1360.546305][T16935] F2FS-fs (loop8): LFS is not compatible with checkpoint=disable
[ 1360.673658][T14505] I/O error, dev loop8, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1360.986041][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1361.012366][T16935] loop8: detected capacity change from 0 to 1024
[ 1361.033298][T16935] hfsplus: unable to parse mount options
[ 1361.121182][T14860] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1361.302816][T16952] netlink: 100 bytes leftover after parsing attributes in process `syz.7.2930'.
[ 1361.496397][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1362.318056][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1362.608025][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1363.238798][T16959] loop5: detected capacity change from 0 to 4096
[ 1363.263859][T16974] loop7: detected capacity change from 0 to 1024
[ 1363.338770][T16959] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[ 1363.360782][T16974] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1363.607213][   T28] audit: type=1800 audit(1775370743.273:306): pid=16959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2933" name="file1" dev="loop5" ino=33 res=0 errno=0
[ 1363.686566][ T7845] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1363.712385][ T9562] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1364.022211][   T28] audit: type=1326 audit(1775370743.703:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.054455][ T5814] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1364.133520][   T28] audit: type=1326 audit(1775370743.703:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.242078][   T28] audit: type=1326 audit(1775370743.703:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.331395][   T28] audit: type=1326 audit(1775370743.703:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.383678][   T28] audit: type=1326 audit(1775370743.703:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.449836][   T28] audit: type=1326 audit(1775370743.703:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.547419][   T28] audit: type=1326 audit(1775370743.703:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.670188][   T28] audit: type=1326 audit(1775370743.703:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.697747][T11438] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1364.783151][   T28] audit: type=1326 audit(1775370743.723:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1364.990920][   T28] audit: type=1326 audit(1775370743.723:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1365.064149][   T28] audit: type=1326 audit(1775370743.723:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1365.097046][   T28] audit: type=1326 audit(1775370743.723:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16991 comm="syz.6.2940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9d84f9c819 code=0x7ffc0000
[ 1365.648787][T17034] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1365.658144][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1365.698267][T17029] netlink: 'syz.5.2951': attribute type 4 has an invalid length.
[ 1366.661894][T17059] loop7: detected capacity change from 0 to 256
[ 1367.186908][T17065] loop8: detected capacity change from 0 to 512
[ 1367.311810][T17065] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c018, mo2=0002]
[ 1367.424527][T17065] System zones: 1-20
[ 1367.536545][T17065] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1368.230484][T16310] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1370.564824][T17116] loop7: detected capacity change from 0 to 512
[ 1370.610933][T17118] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2969'.
[ 1370.668350][T17116] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c018, mo2=0002]
[ 1370.682114][T17121] loop6: detected capacity change from 0 to 512
[ 1370.682959][T17116] System zones: 1-20
[ 1370.943066][T17116] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1371.785752][   T28] kauditd_printk_skb: 3 callbacks suppressed
[ 1371.785770][   T28] audit: type=1800 audit(1775370751.463:322): pid=17116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2971" name="file1" dev="loop7" ino=15 res=0 errno=0
[ 1371.959929][ T9562] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1375.828063][T17179] loop7: detected capacity change from 0 to 512
[ 1376.920115][T17187] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2982'.
[ 1377.827729][T17189] loop6: detected capacity change from 0 to 8192
[ 1377.920945][   T28] audit: type=1800 audit(1775370757.583:323): pid=17189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2977" name="file1" dev="loop6" ino=1048637 res=0 errno=0
[ 1380.475135][T17231] loop8: detected capacity change from 0 to 512
[ 1380.507995][T17232] netlink: 'syz.5.2990': attribute type 12 has an invalid length.
[ 1380.857194][T14860] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1383.266599][T17259] loop7: detected capacity change from 0 to 1024
[ 1383.422914][T17259] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1383.746872][ T9562] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1384.095273][T17279] loop8: detected capacity change from 0 to 512
[ 1387.457360][T17314] binder: BINDER_SET_CONTEXT_MGR already set
[ 1387.470129][T17314] binder: 17313:17314 ioctl 4018620d 200000004a80 returned -16
[ 1387.785413][T17315] binder: 17313:17315 ioctl c0306201 0 returned -14
[ 1389.074555][T17319] loop7: detected capacity change from 0 to 512
[ 1389.210867][T14860] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1391.156514][T17327] loop5: detected capacity change from 0 to 128
[ 1391.246567][T17327] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1391.310473][T17327] ext4 filesystem being mounted at /576/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1391.474076][T17335] loop8: detected capacity change from 0 to 128
[ 1391.500767][T17335] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[ 1391.587070][T17335] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1391.604885][T17335] ext2 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1391.644476][   T28] audit: type=1800 audit(1775370771.323:324): pid=17335 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3011" name="file2" dev="loop8" ino=12 res=0 errno=0
[ 1391.755427][T16310] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1391.876878][T17339] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[ 1392.145760][ T8235] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1392.454333][T17346] binder: 17342:17346 ioctl c0306201 0 returned -14
[ 1393.667647][T17345] loop8: detected capacity change from 0 to 512
[ 1393.826938][T14860] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1394.818233][T17357] loop8: detected capacity change from 0 to 512
[ 1394.851510][T17357] EXT4-fs (loop8): external journal device major/minor numbers have changed
[ 1394.905953][T17357] EXT4-fs (loop8): failed to open journal device unknown-block(8,16384) -6
[ 1395.130674][T17306] syz.6.3007: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz6,mems_allowed=0-1
[ 1395.220076][T17306] CPU: 1 PID: 17306 Comm: syz.6.3007 Not tainted syzkaller #0
[ 1395.227644][T17306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1395.237715][T17306] Call Trace:
[ 1395.241027][T17306]  <TASK>
[ 1395.243997][T17306]  dump_stack_lvl+0x18c/0x250
[ 1395.248781][T17306]  ? show_regs_print_info+0x20/0x20
[ 1395.254005][T17306]  ? load_image+0x400/0x400
[ 1395.258732][T17306]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1395.265164][T17306]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[ 1395.271687][T17306]  warn_alloc+0x246/0x340
[ 1395.276076][T17306]  ? zone_watermark_ok_safe+0x230/0x230
[ 1395.281742][T17306]  ? _raw_spin_unlock+0x28/0x40
[ 1395.286694][T17306]  __vmalloc_node_range+0x662/0x1330
[ 1395.292026][T17306]  ? free_vm_area+0x50/0x50
[ 1395.296641][T17306]  ? _raw_spin_unlock+0x28/0x40
[ 1395.301624][T17306]  ? __kasan_kmalloc+0x8f/0xa0
[ 1395.306555][T17306]  __vmalloc_node_range+0x568/0x1330
[ 1395.311981][T17306]  ? hash_netiface_create+0x361/0xfe0
[ 1395.317491][T17306]  ? __asan_memset+0x22/0x40
[ 1395.322133][T17306]  ? free_vm_area+0x50/0x50
[ 1395.326657][T17306]  ? kvmalloc_node+0x70/0x180
[ 1395.331369][T17306]  ? rcu_is_watching+0x15/0xb0
[ 1395.336151][T17306]  ? kvmalloc_node+0x70/0x180
[ 1395.340885][T17306]  ? trace_kmalloc+0x1f/0x90
[ 1395.345524][T17306]  kvmalloc_node+0x13f/0x180
[ 1395.350145][T17306]  ? hash_netiface_create+0x361/0xfe0
[ 1395.355614][T17306]  hash_netiface_create+0x361/0xfe0
[ 1395.360834][T17306]  ? __lock_acquire+0x7d40/0x7d40
[ 1395.365919][T17306]  ? __nla_parse+0x40/0x50
[ 1395.370509][T17306]  ? hash_netport6_gc+0x560/0x560
[ 1395.375566][T17306]  ip_set_create+0xad3/0x1970
[ 1395.380324][T17306]  ? ip_set_create+0x4fe/0x1970
[ 1395.385210][T17306]  ? ip_set_protocol+0x5b0/0x5b0
[ 1395.390256][T17306]  ? trace_contention_end+0x39/0xe0
[ 1395.395503][T17306]  nfnetlink_rcv_msg+0xbf0/0x12b0
[ 1395.400599][T17306]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1395.406733][T17306]  ? nfnetlink_rcv_msg+0x22a/0x12b0
[ 1395.411993][T17306]  ? nfnetlink_unbind+0x160/0x160
[ 1395.417066][T17306]  ? __dev_queue_xmit+0x19a3/0x3660
[ 1395.422346][T17306]  ? __netlink_deliver_tap+0x5ab/0x830
[ 1395.428067][T17306]  ? netlink_deliver_tap+0x19c/0x1b0
[ 1395.433405][T17306]  ? netlink_unicast+0x72c/0x8d0
[ 1395.438551][T17306]  ? netlink_sendmsg+0x8d0/0xbf0
[ 1395.443515][T17306]  ? ____sys_sendmsg+0x5ba/0x960
[ 1395.448613][T17306]  ? ___sys_sendmsg+0x2a6/0x360
[ 1395.453488][T17306]  ? __se_sys_sendmsg+0x1c2/0x2b0
[ 1395.458548][T17306]  ? do_syscall_64+0x55/0xa0
[ 1395.463196][T17306]  netlink_rcv_skb+0x241/0x4d0
[ 1395.468114][T17306]  ? nfnetlink_unbind+0x160/0x160
[ 1395.473166][T17306]  ? netlink_ack+0x1180/0x1180
[ 1395.477967][T17306]  ? apparmor_capable+0x137/0x1a0
[ 1395.483076][T17306]  ? bpf_lsm_capable+0x9/0x10
[ 1395.487880][T17306]  ? security_capable+0x89/0xb0
[ 1395.492929][T17306]  nfnetlink_rcv+0x2c9/0x24a0
[ 1395.497668][T17306]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1395.503176][T17306]  ? lockdep_hardirqs_on+0x98/0x150
[ 1395.508473][T17306]  ? __local_bh_enable_ip+0x13a/0x1c0
[ 1395.513864][T17306]  ? _local_bh_enable+0xa0/0xa0
[ 1395.518834][T17306]  ? __dev_queue_xmit+0x265/0x3660
[ 1395.524051][T17306]  ? __dev_queue_xmit+0x265/0x3660
[ 1395.529297][T17306]  ? __dev_queue_xmit+0x1b2c/0x3660
[ 1395.534520][T17306]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[ 1395.540120][T17306]  ? __dev_queue_xmit+0x265/0x3660
[ 1395.545258][T17306]  ? ref_tracker_free+0x690/0x840
[ 1395.550324][T17306]  ? refcount_inc+0x70/0x70
[ 1395.554868][T17306]  ? __asan_memcpy+0x40/0x70
[ 1395.559507][T17306]  ? __skb_clone+0x63/0x790
[ 1395.564048][T17306]  ? __skb_clone+0x480/0x790
[ 1395.568755][T17306]  ? __netlink_deliver_tap+0x7e8/0x830
[ 1395.574259][T17306]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1395.579480][T17306]  ? __lock_acquire+0x7d40/0x7d40
[ 1395.584532][T17306]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1395.589757][T17306]  netlink_unicast+0x751/0x8d0
[ 1395.594553][T17306]  netlink_sendmsg+0x8d0/0xbf0
[ 1395.599351][T17306]  ? netlink_getsockopt+0x590/0x590
[ 1395.604570][T17306]  ? aa_sock_msg_perm+0x94/0x150
[ 1395.609533][T17306]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1395.614838][T17306]  ? security_socket_sendmsg+0x80/0xa0
[ 1395.620312][T17306]  ? netlink_getsockopt+0x590/0x590
[ 1395.625536][T17306]  ____sys_sendmsg+0x5ba/0x960
[ 1395.630325][T17306]  ? __asan_memset+0x22/0x40
[ 1395.634937][T17306]  ? __sys_sendmsg_sock+0x30/0x30
[ 1395.639978][T17306]  ? __import_iovec+0x5f2/0x850
[ 1395.644910][T17306]  ? import_iovec+0x73/0xa0
[ 1395.649501][T17306]  ___sys_sendmsg+0x2a6/0x360
[ 1395.654497][T17306]  ? __sys_sendmsg+0x2a0/0x2a0
[ 1395.659425][T17306]  ? debug_mutex_init+0x38/0x70
[ 1395.664957][T17306]  __se_sys_sendmsg+0x1c2/0x2b0
[ 1395.669868][T17306]  ? __x64_sys_sendmsg+0x80/0x80
[ 1395.674864][T17306]  ? lockdep_hardirqs_on+0x98/0x150
[ 1395.680368][T17306]  do_syscall_64+0x55/0xa0
[ 1395.684827][T17306]  ? clear_bhb_loop+0x40/0x90
[ 1395.689589][T17306]  ? clear_bhb_loop+0x40/0x90
[ 1395.694414][T17306]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1395.700342][T17306] RIP: 0033:0x7f9d84f9c819
[ 1395.704862][T17306] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1395.724596][T17306] RSP: 002b:00007f9d831f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1395.733075][T17306] RAX: ffffffffffffffda RBX: 00007f9d85215fa0 RCX: 00007f9d84f9c819
[ 1395.751409][T17306] RDX: 0000000000000880 RSI: 0000200000000040 RDI: 0000000000000004
[ 1395.759399][T17306] RBP: 00007f9d85032c91 R08: 0000000000000000 R09: 0000000000000000
[ 1395.767828][T17306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1395.775910][T17306] R13: 00007f9d85216038 R14: 00007f9d85215fa0 R15: 00007fff91156f88
[ 1395.784177][T17306]  </TASK>
[ 1395.850242][T17306] Mem-Info:
[ 1395.853559][T17306] active_anon:39170 inactive_anon:0 isolated_anon:0
[ 1395.853559][T17306]  active_file:18560 inactive_file:40512 isolated_file:0
[ 1395.853559][T17306]  unevictable:768 dirty:70 writeback:0
[ 1395.853559][T17306]  slab_reclaimable:9406 slab_unreclaimable:100365
[ 1395.853559][T17306]  mapped:37402 shmem:32703 pagetables:937
[ 1395.853559][T17306]  sec_pagetables:0 bounce:0
[ 1395.853559][T17306]  kernel_misc_reclaimable:0
[ 1395.853559][T17306]  free:1261137 free_pcp:10439 free_cma:0
[ 1395.900681][T17306] Node 0 active_anon:148680kB inactive_anon:0kB active_file:74220kB inactive_file:161824kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:149588kB dirty:280kB writeback:0kB shmem:121276kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12376kB pagetables:3748kB sec_pagetables:0kB all_unreclaimable? no
[ 1395.933896][T17306] Node 1 active_anon:0kB inactive_anon:0kB active_file:20kB inactive_file:224kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1396.028670][T17306] Node 0 DMA free:15344kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:0kB free_cma:0kB
[ 1396.148367][T17306] lowmem_reserve[]: 0 2521 2522 2522 2522
[ 1396.161993][T17306] Node 0 DMA32 free:1165940kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:127468kB inactive_anon:0kB active_file:74220kB inactive_file:161004kB unevictable:1536kB writepending:212kB present:3129332kB managed:2586956kB mlocked:0kB bounce:0kB free_pcp:17996kB local_pcp:13472kB free_cma:0kB
[ 1396.208458][T17306] lowmem_reserve[]: 0 0 0 0 0
[ 1396.228826][T17306] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:824kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1396.502025][T17306] lowmem_reserve[]: 0 0 0 0 0
[ 1396.790350][T17306] Node 1 Normal free:3895140kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:20kB inactive_file:224kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:20920kB local_pcp:14876kB free_cma:0kB
[ 1396.843225][T17306] lowmem_reserve[]: 0 0 0 0 0
[ 1423.495610][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1440.929994][ T9307] Bluetooth: hci0: command 0x0406 tx timeout
[ 1484.937420][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1501.589863][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1501.597069][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P14598/1:b..l
[ 1501.606428][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=120597, q=127 ncpus=2)
[ 1501.614359][    C1] task:kworker/u4:23   state:R  running task     stack:20232 pid:14598 ppid:2      flags:0x00004000
[ 1501.627744][    C1] Workqueue: bat_events batadv_nc_worker
[ 1501.633554][    C1] Call Trace:
[ 1501.636870][    C1]  <TASK>
[ 1501.639834][    C1]  __schedule+0x1553/0x45a0
[ 1501.644474][    C1]  ? asan.module_dtor+0x20/0x20
[ 1501.649402][    C1]  ? mark_lock+0x94/0x320
[ 1501.653789][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1501.659830][    C1]  ? preempt_schedule_irq+0xb4/0x150
[ 1501.665160][    C1]  preempt_schedule_irq+0xbf/0x150
[ 1501.670314][    C1]  ? preempt_schedule_notrace+0x110/0x110
[ 1501.676081][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1501.682110][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 1501.687956][    C1]  irqentry_exit+0x67/0x70
[ 1501.692539][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1501.698807][    C1] RIP: 0010:kasan_check_range+0x1d/0x290
[ 1501.704752][    C1] Code: ea ff ff ff c3 cc cc cc cc cc cc cc cc 66 0f 1f 00 b0 01 48 85 f6 0f 84 b4 01 00 00 55 41 57 41 56 41 55 41 54 53 4c 8d 04 37 <49> 39 f8 0f 82 13 02 00 00 49 89 f9 49 c1 e9 2f 41 81 f9 ff ff 01
[ 1501.724614][    C1] RSP: 0018:ffffc9000bf8fa08 EFLAGS: 00000202
[ 1501.730724][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff81682ab7
[ 1501.738815][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff8e8b02a8
[ 1501.746905][    C1] RBP: ffffc9000bf8fb48 R08: ffffffff8e8b02b0 R09: 0000000000000000
[ 1501.755085][    C1] R10: dffffc0000000000 R11: fffffbfff1d16056 R12: 1ffff920017f1f54
[ 1501.763087][    C1] R13: ffffffff8d1320a0 R14: 0000000000000000 R15: dffffc0000000000
[ 1501.771188][    C1]  ? lock_acquire+0xb7/0x420
[ 1501.775836][    C1]  lock_acquire+0xb7/0x420
[ 1501.780298][    C1]  ? batadv_nc_worker+0xd2/0x610
[ 1501.785364][    C1]  ? read_lock_is_recursive+0x20/0x20
[ 1501.791133][    C1]  ? batadv_nc_worker+0xd2/0x610
[ 1501.796118][    C1]  ? batadv_nc_worker+0xd2/0x610
[ 1501.801369][    C1]  batadv_nc_worker+0xef/0x610
[ 1501.806195][    C1]  ? batadv_nc_worker+0xd2/0x610
[ 1501.811230][    C1]  ? process_scheduled_works+0x96f/0x15d0
[ 1501.817170][    C1]  process_scheduled_works+0xa5d/0x15d0
[ 1501.822811][    C1]  ? worker_attach_to_pool+0x380/0x380
[ 1501.828342][    C1]  ? assign_work+0x3d2/0x5d0
[ 1501.832983][    C1]  worker_thread+0xa55/0xfc0
[ 1501.837730][    C1]  kthread+0x2fa/0x390
[ 1501.841836][    C1]  ? pr_cont_work+0x560/0x560
[ 1501.846641][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1501.851284][    C1]  ret_from_fork+0x48/0x80
[ 1501.855819][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1501.860529][    C1]  ret_from_fork_asm+0x11/0x20
[ 1501.865405][    C1]  </TASK>
[ 1501.868481][    C1] rcu: rcu_preempt kthread starved for 9071 jiffies! g120597 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1501.879731][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1501.889753][    C1] rcu: RCU grace-period kthread stack dump:
[ 1501.895778][    C1] task:rcu_preempt     state:R  running task     stack:26568 pid:17    ppid:2      flags:0x00004000
[ 1501.906791][    C1] Call Trace:
[ 1501.910206][    C1]  <TASK>
[ 1501.913283][    C1]  __schedule+0x1553/0x45a0
[ 1501.917871][    C1]  ? asan.module_dtor+0x20/0x20
[ 1501.922782][    C1]  ? enqueue_timer+0x23d/0x550
[ 1501.927628][    C1]  ? __mod_timer+0x984/0xdb0
[ 1501.932350][    C1]  schedule+0xbd/0x170
[ 1501.936469][    C1]  schedule_timeout+0x188/0x2d0
[ 1501.941362][    C1]  ? console_conditional_schedule+0x40/0x40
[ 1501.947286][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 1501.953238][    C1]  ? update_process_times+0x1b0/0x1b0
[ 1501.958677][    C1]  ? prepare_to_swait_event+0x339/0x360
[ 1501.964289][    C1]  rcu_gp_fqs_loop+0x313/0x1590
[ 1501.969280][    C1]  ? rcu_gp_init+0x1162/0x1560
[ 1501.974090][    C1]  ? rcu_gp_kthread+0x3b0/0x3b0
[ 1501.979068][    C1]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[ 1501.985343][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[ 1501.990578][    C1]  ? rcu_gp_init+0x1560/0x1560
[ 1501.995381][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1502.001326][    C1]  ? finish_swait+0xc7/0x1d0
[ 1502.006073][    C1]  rcu_gp_kthread+0x9d/0x3b0
[ 1502.011136][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1502.016600][    C1]  ? __kthread_parkme+0x7a/0x1c0
[ 1502.021598][    C1]  ? __kthread_parkme+0x162/0x1c0
[ 1502.026870][    C1]  kthread+0x2fa/0x390
[ 1502.030995][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1502.036261][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1502.040897][    C1]  ret_from_fork+0x48/0x80
[ 1502.045873][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1502.050630][    C1]  ret_from_fork_asm+0x11/0x20
[ 1502.055446][    C1]  </TASK>
[ 1502.058503][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1502.064850][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1502.071902][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1502.081992][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[ 1502.087686][    C1] Code: 6f 21 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 23 39 42 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[ 1502.107874][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[ 1502.114077][    C1] RAX: 64447cab496d6400 RBX: ffffffff8162a8c1 RCX: 64447cab496d6400
[ 1502.122079][    C1] RDX: 0000000000000001 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c89a0
[ 1502.130081][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1502.138087][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff92000030fc8
[ 1502.146095][    C1] R13: dffffc0000000000 R14: 1ffff110036c9780 R15: 0000000000000000
[ 1502.154114][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1502.163188][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1502.170460][    C1] CR2: 00007fd4da82d4ad CR3: 0000000025c3c000 CR4: 00000000003506e0
[ 1502.178503][    C1] Call Trace:
[ 1502.181910][    C1]  <TASK>
[ 1502.184873][    C1]  default_idle+0x13/0x20
[ 1502.189363][    C1]  default_idle_call+0x6c/0xa0
[ 1502.194192][    C1]  do_idle+0x221/0x590
[ 1502.198308][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1502.203826][    C1]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1502.210166][    C1]  cpu_startup_entry+0x43/0x60
[ 1502.215275][    C1]  start_secondary+0xee/0xf0
[ 1502.219927][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1502.226220][    C1]  </TASK>