last executing test programs:

15m27.915963077s ago: executing program 0 (id=1709):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
accept$alg(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002940)=""/102392, 0x18ff8)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x8, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f00000004c0)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "7c80690ea8c8123e", "f92dafad9e3b473a1eaac151fe41ea97", "ee367a98", "74aff2072572aca8"}, 0x28)
writev(r2, &(0x7f0000001780)=[{&(0x7f00000006c0)="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", 0xec6}], 0x1)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0xf3a, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000300)={'netdevsim0\x00', &(0x7f0000000580)=@ethtool_coalesce={0xe, 0x100, 0x7ff, 0x4, 0x6, 0x200, 0x0, 0x2, 0xecb, 0x9, 0x2, 0x2, 0x837, 0x6, 0x0, 0x8, 0x80000000, 0x8, 0x8000, 0x2, 0x2, 0x353, 0x3}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

15m25.288051091s ago: executing program 0 (id=1713):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xa8}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, 0x0, 0x20040084)
io_uring_setup(0x35ba, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x21, 0x0)
socket$igmp(0x2, 0x3, 0x2)
syz_open_dev$vcsn(0x0, 0x5, 0x80)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
accept4$bt_l2cap(r3, 0x0, 0x0, 0x800)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002040), 0x8889, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
readlink(&(0x7f0000002000)='./file0/file3\x00', &(0x7f0000002300)=""/151, 0x97)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, &(0x7f0000000000)=0x97b, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))

15m23.08471605s ago: executing program 0 (id=1716):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x400246}, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x10, 0x0, &(0x7f0000000140)=[@request_death={0x400c630e, 0x1}], 0x0, 0x0, 0x0})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/time_for_children\x00')
ioctl$NS_GET_USERNS(r1, 0xb701, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000000300)=""/102392, 0x18ff8)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@rand_addr=' \x01\x00', 0x2, 0x32}, 0xa, @in6=@private1, 0x0, 0x4}]}]}, 0xfc}}, 0x0)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r4, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf1c)
write$binfmt_misc(r0, &(0x7f0000000000), 0x6)

15m15.247310449s ago: executing program 0 (id=1737):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4c00000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e00010069703665727370616e000000100002800400120006001800177b000008000a00", @ANYRES32=r2], 0x4c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xc4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00'})
sendto$packet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGKBDIACR(r4, 0x4bfa, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000080}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x880)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000008c0)=[{{&(0x7f0000000000)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x4800)

15m13.01426851s ago: executing program 0 (id=1745):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
accept$alg(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002940)=""/102392, 0x18ff8)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x8, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f00000004c0)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "7c80690ea8c8123e", "f92dafad9e3b473a1eaac151fe41ea97", "ee367a98", "74aff2072572aca8"}, 0x28)
writev(r2, &(0x7f0000001780)=[{&(0x7f00000006c0)="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", 0xec6}], 0x1)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000300)={'netdevsim0\x00', &(0x7f0000000580)=@ethtool_coalesce={0xe, 0x100, 0x7ff, 0x4, 0x6, 0x200, 0x0, 0x2, 0xecb, 0x9, 0x2, 0x2, 0x837, 0x6, 0x0, 0x8, 0x80000000, 0x8, 0x8000, 0x2, 0x2, 0x353, 0x3}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

15m11.102798102s ago: executing program 0 (id=1748):
pipe2$watch_queue(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, &(0x7f0000000140)={0x1, 0x0, [{0x9, 0x2, 0x0, [0xb37, 0x3b2e, 0x7, 0x1, 0x9, 0x7bc3, 0x8f2e, 0x2e]}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
mknod$loop(&(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x4, 0x0, @mcast2}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r5, 0x29, 0xd4, &(0x7f0000000180)=0x5, 0x4)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000000)={0xfffffffd, 0x1, 0x40000001, 0x0, 0x6, 0x2})

14m55.554844913s ago: executing program 32 (id=1748):
pipe2$watch_queue(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, &(0x7f0000000140)={0x1, 0x0, [{0x9, 0x2, 0x0, [0xb37, 0x3b2e, 0x7, 0x1, 0x9, 0x7bc3, 0x8f2e, 0x2e]}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
mknod$loop(&(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x4, 0x0, @mcast2}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r5, 0x29, 0xd4, &(0x7f0000000180)=0x5, 0x4)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000000)={0xfffffffd, 0x1, 0x40000001, 0x0, 0x6, 0x2})

12m46.395744464s ago: executing program 2 (id=1960):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r6, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r8 = accept(r5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r8, 0x0, 0x1)
recvmsg(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x54}, 0x122)
connect$packet(r1, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0x1}, 0x14)
shutdown(r1, 0x1)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000180)={0x28, 0x2, 0x0, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x100000000})
ioctl$IOMMU_HWPT_ALLOC$NONE(r0, 0x3b89, &(0x7f0000000000)={0x28, 0x2, r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

12m42.008152652s ago: executing program 2 (id=1965):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$fuse(0x0, 0x0, 0x0, 0x280449c, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000008c0), 0x40400)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000003c0)={0x401, 0x9, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x0, 0x0, 0x800001ff, 0x0, 0xffdffffc}, 0xeb2a})
r6 = creat(0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000200)=<r8=>0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
timer_gettime(r8, &(0x7f0000000040))
copy_file_range(r7, &(0x7f0000000080), r6, 0x0, 0xfffffffffffffff8, 0x0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000100), &(0x7f0000000140)={'U-', 0x8000000000000000}, 0x16, 0x1)

12m40.609769384s ago: executing program 2 (id=1966):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x8, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "7c80690ea8c8123e", "f92dafad9e3b473a1eaac151fe41ea97", "ee367a98", "74aff2072572aca8"}, 0x28)
writev(r0, &(0x7f0000001780)=[{&(0x7f00000006c0)="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", 0x1da}], 0x1)

12m30.212512613s ago: executing program 2 (id=1984):
pipe2$watch_queue(0x0, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(0xffffffffffffffff, 0x5761, &(0x7f0000000140)={0x1, 0x0, [{0x9, 0x2, 0x0, [0xb37, 0x3b2e, 0x7, 0x1, 0x9, 0x7bc3, 0x8f2e, 0x2e]}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
mknod$loop(&(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x4, 0x0, @mcast2}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r5, 0x29, 0xd4, &(0x7f0000000180)=0x5, 0x4)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000000)={0xfffffffd, 0x1, 0x40000001, 0x0, 0x6, 0x2})

12m25.086830484s ago: executing program 2 (id=1989):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f0000000080)={{}, {0x91f, 0x462}, 0xd, 0xffffffff})
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xcfc34000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, 0x0)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000009, 0x8012, r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRESHEX=0x0], 0x0, 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f00000001c0)=""/4, &(0x7f0000000300)=0x4)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r6, 0xc0384707, &(0x7f0000000040)={0x1, 0x2, 0x0, 0x800000, 0x4, "3eccd8f9d20000000000001000000200000500"})
close_range(r1, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x2004c000)
getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000280))
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PTP_EXTTS_REQUEST2(r0, 0x40603d10, &(0x7f0000000040))

12m23.852118277s ago: executing program 2 (id=1992):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
recvmsg$kcm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000000300)=""/236, 0xec}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/13, 0xd}, {&(0x7f0000000400)=""/108, 0x6c}, {&(0x7f0000001580)=""/193, 0xc1}], 0x5}, 0x0)
ptrace$ARCH_SHSTK_ENABLE(0x1e, 0x0, 0x0, 0x5001)
socket$kcm(0x10, 0x2, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x2)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
lseek(r2, 0x10000000005, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r3, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000180)='O', 0x1, 0x20000800, &(0x7f0000000280)={0xa, 0x4e03, 0x5, @private2, 0x9}, 0x1c)
shutdown(r3, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000240), &(0x7f0000000140)=0x8)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c920"], 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)

12m7.76760871s ago: executing program 33 (id=1992):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
recvmsg$kcm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000000300)=""/236, 0xec}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/13, 0xd}, {&(0x7f0000000400)=""/108, 0x6c}, {&(0x7f0000001580)=""/193, 0xc1}], 0x5}, 0x0)
ptrace$ARCH_SHSTK_ENABLE(0x1e, 0x0, 0x0, 0x5001)
socket$kcm(0x10, 0x2, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x2)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
lseek(r2, 0x10000000005, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r3, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000180)='O', 0x1, 0x20000800, &(0x7f0000000280)={0xa, 0x4e03, 0x5, @private2, 0x9}, 0x1c)
shutdown(r3, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000240), &(0x7f0000000140)=0x8)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c920"], 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)

19.635697808s ago: executing program 5 (id=3066):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(0xffffffffffffffff, 0xc080661a, &(0x7f0000000340)={@desc={0x1, 0x0, @desc3}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0x3f0, r4, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x3a4, 0x8, 0x0, 0x1, [{0x6c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x20, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "eff93d58460ea431f2cb4a6894ddb2834088d7445bf5afdd0619ce173f1db717"}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x2e8, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x9, 0x7, @empty, 0x3}}, @WGPEER_A_ALLOWEDIPS={0x2a0, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x4}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0xa0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x2c}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x2}}]}]}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x3f0}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
socket(0x400000000010, 0x3, 0x0)
creat(&(0x7f0000000440)='./file0\x00', 0x0)
syz_clone(0x1010000, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
sendfile(r5, r5, 0x0, 0x40008)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd', @ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c6d61785f72030000003078303030303030312c00"])
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x1c, r7, 0x1, 0x100, 0x40000, {{}, {0x0, 0x6}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

15.896237118s ago: executing program 4 (id=3076):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

14.32628313s ago: executing program 5 (id=3078):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
syz_open_dev$tty1(0xc, 0x4, 0x1)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
eventfd2(0x0, 0x0)
r4 = creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r5 = fanotify_init(0xf00, 0x0)
fanotify_mark(r5, 0x541, 0x40001019, r4, 0x0)
fanotify_mark(r5, 0x105, 0x9975, r4, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crc32c-generic)\x00'}, 0x58)
r7 = accept4(r6, 0x0, 0x0, 0x800)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_GET(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x14, r8, 0x200, 0x70bd2b, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000040}, 0x4008000)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r9, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r9, &(0x7f0000000340)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x1c)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000140)={&(0x7f00004c5000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f00000006c0)=""/4088, 0xff8, 0x1, 0x0}, &(0x7f0000000000)=0x40)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)

12.284658189s ago: executing program 3 (id=3079):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
connect$unix(r2, &(0x7f00000001c0)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

12.221374573s ago: executing program 5 (id=3081):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

11.832277346s ago: executing program 3 (id=3083):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x8, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000004c0)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "7c80690ea8c8123e", "f92dafad9e3b473a1eaac151fe41ea97", "ee367a98", "74aff2072572aca8"}, 0x28)
writev(r1, &(0x7f0000001780)=[{&(0x7f00000006c0)="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", 0xec6}], 0x1)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0xf3a, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000300)={'netdevsim0\x00', &(0x7f0000000580)=@ethtool_coalesce={0xe, 0x100, 0x7ff, 0x4, 0x6, 0x200, 0x0, 0x2, 0xecb, 0x9, 0x2, 0x2, 0x837, 0x6, 0x0, 0x8, 0x80000000, 0x8, 0x8000, 0x2, 0x2, 0x353, 0x3}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

11.294404218s ago: executing program 3 (id=3084):
rt_sigprocmask(0x2, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
r0 = gettid()
r1 = getpid()
rt_tgsigqueueinfo(r1, r0, 0x11, &(0x7f0000000000)={0xffffffff, 0xffffffff, 0x201})
syz_open_dev$usbfs(&(0x7f00000000c0), 0x5, 0x48900)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000500)='./file2\x00', 0x80408a, &(0x7f0000000540)=ANY=[], 0x11, 0x6c1, &(0x7f000000abc0)="$eJzs3c9vHGcZB/DvrNc/NpVct03TgCrVNFJBRCRxrBTCJQEhFKQKVUGCs9U4jRUnDY6L0h6IC0hInDjwB7SHcIETCCEhIUUqZ7hVcLI4VULqpae0Qgza2dn12t21N3FiO/D5WLPzvPPOvvPMs/NjdyVrA/zfunA8zbtp5cLxV2612+t35pfX78xf68SN5SSTSRpJszNLcT0p3k/OpzPlc+2F9XDFsO38aunsxQ8+Xv+w02pmY7z2Q2t4gs1R9mKtnjKbZKye78Km8V57sPEmN8KiV5l2wY51Cwf7bTxJuckPj2z0DFKO9TWGnu/A46Po3Df7dM7/meRQkqnuDW2t09nY+wx3NMK16Be9aO3R5gIAAAAHwpP3bie3Mr3feQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDjpP79/6KeGt14NkX39/8n+n5jf2Kf0x1u+8ymusHdxl4kAwAAAAAAAACP1gv38puLZTndbZdFGt8fqxuHq8cn8mZuZjErOZFbWchqVrOSuSQzfQNN3FpYXV2Zy4udZ35aluWQZ54e+MzTIybc2v0+AwAAAAAAAMD/kHP1/Ce5kOl9zgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYpkrHOrJoOd+OZNJpJppJMtNdbS/7WjR9nd/c7AQAAAHhY/vHvsjKg68l7uZdbme62y6L6zH+k+tw/lTdzPatZymqWs5hL1XcBnU/9jfU788vrd+avtafPjvteayP+/fSOGVYjpvPdw+AtH63WaOVylqolJ/Ja3shyLqVRPbPtaDefwXm981F77HMdZZnJUWp3qZ639/yX9fxgmKkqMt6ryKl2bkWnjk9tX4lvfLSrLc2l0fvm5/B91Pzctlsp/tM9Qg91lyRPfGfnmo/f187sytZKnO47+o5sX4nki3/47Q+uLF+/eqVYO35wDqNBXhi8ePKfG9eQmfqMTfVl4GLm+yrx3MiVuHzzgFdiqOamViPP9uIL+Xa+l+OZzatZyVJ+lIWsZjGz+VYVLdTHc/txZvtKnd/UenWnnCbq12VsS05feLIz3y6nF6vnTmcp380buZTFvFz9nc5cvpozOZOzfa/wsyOc9Y0BZ/0fhyd/7Et10L5z/LyeHwztuj7VV9f+a+5M1de/pJGyvrM8/dCujT3Nz9dB+5X4ad85uP96lZhK7y7Rze6ZbgXGB1biveqycnP5+tWVKws3toxbrA3e3kvZvPsH50LSPl6e7l0jNh8d7b5nBvbNVX2He32NrX2/bvX6djpTJ+r3cJ8d6XTV99zAvvmq72hfX/v91lSSxXxalmXn/VbXM3tcVQBGdujLhyZa/2r9tfVu62etK61Xpr45+bXJ5ycy/pfxrzdPjb3UeL74Xd7Nj7PzJ3QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBHN996++rC8vLiypagLMvbQ7oeSZBmsmnJn//Ut071W2NJRh+wvfb5RlItaaYO7i+x2w+2O+88aBH+Xr8me1LwhxJMDT1+tgaflGV5MHIeJShre771RvZ937vBvl6WgD1wcvXajZM333r7K0vXFl5ffH3x+tkzZ86eOnvm5fmTl5eWp/Y7PeARqu711fuc/c4EAAAAAAAAAAAAGNVo/5xT9JY0k9z3//YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7MKF42neTZG5UydOtdvrd+aX21M33ljzkySNJMVsUryfnE9nykzfcMWw7awlFz/4eP3DTqtZT9X6jd3vxVo9ZTbJWD0fYGrQwvL2sPGKapwbw8cbUdGrTLtgx7qFg/323wAAAP//yAscyg==")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000200), &(0x7f0000000080)=ANY=[], 0x700, 0x0)
r3 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
ioctl$VIDIOC_QUERYMENU(r3, 0xc008561c, &(0x7f00000003c0)={0x980901, 0x0, @name="a13c67a9121fb71a1d3e142fe2fb8f9ba5ee159b867aa7d60668087c38d76487"})
unlink(&(0x7f0000000b40)='./file1\x00')
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100001f00010000000000000000000301008014007e00fc010000000000000000000000000000140001"], 0x114}], 0x1}, 0x0)
rt_tgsigqueueinfo(r1, r0, 0xe, &(0x7f0000001000)={0x21, 0x8, 0xb})

10.06401177s ago: executing program 1 (id=3087):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
setrlimit(0x9, &(0x7f0000000100)={0x6, 0x3})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_io_uring_setup(0x7c77, &(0x7f0000000300)={0x0, 0x0, 0x2}, 0x0, &(0x7f00000000c0))
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$SMC_PNETID_GET(r4, 0x0, 0x0)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000900)=ANY=[@ANYBLOB="8c0000001000370400"/20, @ANYRES32=r5, @ANYBLOB="00000000000000006c0012800e00010069703665727370616e000000580002801400060020010000000000000000000000000002050016000100000014000700fc020000000000000000000000000000040012"], 0x8c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24}, 0x24}, 0x1, 0x0, 0x0, 0xc}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@deltclass={0x24, 0x29, 0x800, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xd, 0xfff3}, {0xb, 0xfff1}, {0x6, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x8}}}, 0x24}}, 0x4000)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setresgid(0xee00, 0x0, 0xee00)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
setregid(0xffffffffffffffff, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r7}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
chmod(&(0x7f0000000180)='./file0\x00', 0x140)

7.595716774s ago: executing program 1 (id=3088):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x4, 0x8, 0x8}, 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r3, r4, 0x5}, 0x10)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x8, &(0x7f00000001c0)=0x7, 0x4)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001680)={r3, &(0x7f0000001580), &(0x7f0000001640)=@udp6=r5, 0x2}, 0x20)
socket(0x1d, 0x2, 0x6)
r6 = socket$inet6(0xa, 0x3, 0x5)
r7 = dup3(0xffffffffffffffff, r6, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r9=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r9, 0xffffffffffffffff, 0x0, 0x4002}, 0x50)
setsockopt$inet6_IPV6_PKTINFO(r6, 0x29, 0x32, &(0x7f0000000080)={@remote, r9}, 0x14)
prctl$PR_GET_IO_FLUSHER(0x42)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2, 0x9}, 0x20)
setitimer(0x2, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)
getitimer(0x2, &(0x7f0000000100))
sendmmsg$inet6(r7, &(0x7f0000001580)=[{{&(0x7f0000000180)={0xa, 0x4e22, 0xfff, @mcast2, 0x5}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0)
syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x48c8, &(0x7f0000004680)=ANY=[@ANYBLOB="61636c2c6e6f696e74722c6174696d655f7175616e74756d3d30303030303030303030303030303030303030372c6c6f63616c666c6f636b732c6c6f63616c616c6c6f633d30303030303030303030303030303030303030332c6c6f63616c666c6f636b732c696e74722c6865617274626561743d6e6f6e652c0024855616ead4c7dc9e9da093713b0e6a6e67e1af8e4f5d7cbff1185218b41bcefa2f4f3bb8212051258a0a6168526c8eef9d759bbb36a4b49ff8042320899ca9b6e9fa68a0abe364e0e2d46408f18da37d557aa1ebb8aa29451a584f1980dc3f7bd97f6a0446b8957872e51c2adf98e1acff806babdc9d58bc06d6d0b19476862cebe64cafbc00aaa5a069852602786f40bf6a1bf7594e171d16ced9409b168ef591c2f5b676a2eb18e8a3b91275fd4467aea2037bd9790e240137bc7c80cc99e9dd"], 0x1, 0x4448, &(0x7f00000047c0)="$eJzs3c9vFNcdAPA3Y1NsCtSmHKhUqSsVqVVbWTantkaqMQZjg0tFA4pyWdb2Ak7WXmSvoxw4ODeknCLlEOWAEik3n5APuZI/IZccyRkpOeQSKRKKo92dNTuzu7GDdu2YfD4Hj+f99n5n3r5BGl6cqNxbWsstreUKK7nywp21c7m3y6X15WKI90nb/o/sX//UDO32gffiOjnoa+/X7PrFy/+/dS6Ezxe/fLa9vb0dqvpDW2NNv3/37YOF5mNDnKlTbbd9a93yRgjhdMu4qvpCCK9/FkIUQriQpE0mx8EQwolQz7v14L3buS6N5vHT4vn887mHW+NnZzcfbXX+26MQPir94R93l7/+c9/4V3/rUvcAAAAAAAAAAAAAAAAAABxy0zeu3/zf6Fh4EoX+zaj1fd3p5Njp/djtrvlT7/9YAAAAAAAAAAAAAAAAAAAA+IV68f5/LjrV5v3/qeQ40aH+9n96P0Z6Z+a/16cujY4l+79HLfn/TJK+udAXhtvs+76z3/pv6uUuZOq33/+9tZ+X1Rhfo9+hEMUjqfM4HhmJwyfJxu9nomNxqbxW+fud8vrKYteGcWil41/fvT8VnWRD/13jn5jMtN/7/f9/33I1Vc9vd+8Se6Wl49/Xsdyn70Z7iv/FTL39iD8vLx3//lraYHOBifoEUI3/+/27x38q036v4n8yhJCLqmPNpWaA6hqmmt5pvUJaOv5HammpqTP5IDvd/99n4n8p0/5Bzf8b2S8i2krHv76IG0iVeHH/D8e73/+XM+0fRPyr49/4ie//U70d0KGSjv/RemJ/qkjtk9zr/D+dab9X8b8ZJ+M8GaWugM2ont7p/6sjLR3/gZb8F89/8Z7Wf1cy9ffr+a/Rb+P5rzH9/zWqPv91rbtXTjr+gx3L7fX+n8nU6/X8P1Fb//Gy0vE/VktLr52Haj/3Gv/ZTPu9in9tVTLQiH8yCQyG8MPRevrH1n97ko7/b+uJcXOJjdrP2vov2n39fzXT/kGs/6rj34h72+urIh3/4x3LVeP/xR6+/69l6jXFv3Vx0SWjHZcTnf89i7p0/E90LFe7/wd2j/9cpl6v7/+/9LJxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgENgMjkOhWgofR7HIyMhXEzOz4Rj0XxhMT9fKi+8tRbCVJKeC6eiu6XyfKGUX1opLxbzhVKpvBDCpST/dBiI1krlSn65cP/yTluD0b1iYbUyXyxUQgjTSfofw4lGW/NLleXC/RDClZ2838Xl1fv3Civ5xaXVf4+Ojo6GmZ0xDEfFdyrFlUq993puCLM7dYeipsHVsq/ujOV49GZ5fXWlUKqlX2uqUyovFEpNdeaSvA/CcFRZXV9ZKFSK+VL5bqO/gzSRHKdmbrx249pYS/7tqH6c3N9hAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAzPRn/14chhP76WRxCmGj8ErUr//hp8Xz++dzDrfGzs5uPtp51KgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP7IDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFXTpGaSCIwgD8ZizUzmNYLbud7YoiWrgieAI9hofRo3gJ75AiRdoUIZDMQtjswjZJ9X3Ng/mZeQ/mAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8zy9dx9vdROR4mpzGfH39b84zF9K/bkfv39xhhk5nefX7uGxbsq/p6P8rhwt27xL16vvzxipvd/Bngz3aa/vcz0519S+Tc3X972JlKuIaEt+m3KuqnlvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABs2YEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAsAAAAACPO3jqJvAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//6rNHyo=")

7.281996213s ago: executing program 4 (id=3089):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

5.747120763s ago: executing program 1 (id=3090):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0xbece, 0x400800)
ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0286405, &(0x7f00000001c0)={0x2, 0x0, {r1}, {}, 0x4, 0xf})
lseek(r0, 0x60000, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = memfd_create(&(0x7f0000000300)='\xb1Y\xf8$\x00\x00\x00\x00\x00\xb8\xc9\x84*\xc0\xfeR\x01\x95', 0x5)
fallocate(r6, 0x0, 0x800657, 0x40000b7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r9 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, r10, {0x0, 0x4}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x0, 0xb, 0x2}}}}]}, 0x40}}, 0x0)

5.746827273s ago: executing program 3 (id=3091):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

5.741327994s ago: executing program 5 (id=3092):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

4.541178794s ago: executing program 4 (id=3093):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x8, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000004c0)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "7c80690ea8c8123e", "f92dafad9e3b473a1eaac151fe41ea97", "ee367a98", "74aff2072572aca8"}, 0x28)
writev(r1, &(0x7f0000001780)=[{&(0x7f00000006c0)="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", 0xec6}], 0x1)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0xf3a, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000300)={'netdevsim0\x00', &(0x7f0000000580)=@ethtool_coalesce={0xe, 0x100, 0x7ff, 0x4, 0x6, 0x200, 0x0, 0x2, 0xecb, 0x9, 0x2, 0x2, 0x837, 0x6, 0x0, 0x8, 0x80000000, 0x8, 0x8000, 0x2, 0x2, 0x353, 0x3}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

4.477438808s ago: executing program 1 (id=3094):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4c00000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e00010069703665727370616e000000100002800400120006001800177b000008000a00", @ANYRES32=r3], 0x4c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xc4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00'})
sendto$packet(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGKBDIACR(r5, 0x4bfa, 0x0)
r6 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r6)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000080}, 0x10)
sendmsg$nl_route_sched(r6, 0x0, 0x880)
sendmmsg$inet(r0, &(0x7f0000002d40), 0x0, 0x4000800)

4.160073056s ago: executing program 5 (id=3095):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000280)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETKEYCODE(r2, 0x4b4d, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r6 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000200), 0x220400, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(r6, 0x4068aea3, &(0x7f00000003c0)={0x74, 0x0, 0x76})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000010000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
write(r5, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)
r7 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r7, 0x1, 0x11, 0x0, &(0x7f0000cab000))
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f00000000c0)={[{@uid}, {@dir_umask={'dir_umask', 0x3d, 0x7}}, {@gid}, {@uid}, {@codepage={'codepage', 0x3d, 'cp950'}}, {}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@dir_umask={'dir_umask', 0x3d, 0x7}}]}, 0x4, 0x33f, &(0x7f0000000880)="$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")
sched_setparam(r1, &(0x7f0000000180)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, r1, &(0x7f0000000140), 0x4001)
fchdir(0xffffffffffffffff)
sendmmsg$unix(r8, &(0x7f0000000c40)=[{{&(0x7f0000000080)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0}}], 0x1, 0x0)

4.157194527s ago: executing program 3 (id=3096):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000400)={0xf0f020})
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000005dc0)={0x0, 0x0, &(0x7f0000005d80)={&(0x7f0000000000)={0x28, 0x3, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x44814)
r1 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000000200)={0x2020, 0x0, <r4=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r3, &(0x7f0000002300)={0x50, 0x0, r4, {0x7, 0x9, 0x0, 0x31008003, 0xfffe}}, 0x50)
read$FUSE(r3, &(0x7f0000004580)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r3, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r5}, 0x10)
r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r6, r3, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x6, 0x11, r7, 0x0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r9, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0xc0844123, &(0x7f0000000180)=0x4)
sendfile(r8, r2, &(0x7f00000000c0)=0x58, 0x5)

4.117565149s ago: executing program 4 (id=3097):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

2.377993861s ago: executing program 1 (id=3098):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="4c00000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e00010069703665727370616e000000100002800400120006001800177b000008000a00", @ANYRES32=r2], 0x4c}, 0x1, 0x0, 0x0, 0x40001}, 0x4000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0xc4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendto$packet(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGKBDIACR(r4, 0x4bfa, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000080}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x880)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000008c0)=[{{&(0x7f0000000000)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x4800)

2.182460442s ago: executing program 5 (id=3099):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000022c0)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(ghash-generic)\x00'}, 0x58)
close(0x3)
r1 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r1, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x8, @loopback}, @in6={0xa, 0x0, 0x0, @private0}], 0x2c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0xfa9, @mcast2, 0x9}], 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0xf)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
truncate(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x7ff)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000380)={0xf0f004, 0x2})
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
fcntl$addseals(r4, 0x409, 0x9)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r8, 0x0, 0x0)

1.759791907s ago: executing program 4 (id=3100):
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r0, &(0x7f0000001fc0)=""/174, 0xae)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setns(0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000800)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2044d0, &(0x7f0000000580)={[{@usrjquota_path}, {@data_journal}, {@min_batch_time={'min_batch_time', 0x3d, 0x3}}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@grpquota}], [{@fsname={'fsname', 0x3d, '/%[/\x97-,\'(-'}}, {@obj_role={'obj_role', 0x3d, '^(&&^&+'}}, {@subj_role={'subj_role', 0x3d, '-\\]{$\']@'}}, {@permit_directio}, {@subj_user={'subj_user', 0x3d, '}('}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@dont_hash}, {@smackfsroot={'smackfsroot', 0x3d, '/)!'}}, {@seclabel}, {@smackfshat={'smackfshat', 0x3d, '/%[/\x97-,\'(-'}}]}, 0x3, 0x4ab, &(0x7f0000000080)="$eJzs3DtsHEUfAPD/nu34+/KyCeGREMAQEBEPO3ECSYHEQ0KiAIQERSgPx4lCLjGKjYQjixgUhQYJIiFaBKJBUFNQUSGgQqKhgB5FipCbhFSH9m7vOJ99j1wuPj9+P2m9M3t7NzO7O7szO94NYMMaSf8kEVsj4o+IGIqIXP0KI+XZtYW5iX8W5iaSKBZf+ztJvxZXF+YmKqsm2XxLOdKfznIXknh2mXSnZ8+dyhcKk2ez+NjM6bfHpmfPPXHydP7E5InJM+NHjhw6eODwU+NPdqWct6V53f3e1J5dL75x6eWJo5fe/PnbpCbTteWo2wIdGoj5mm1S7+EupLCabKsJJ/1NV+3GxqVLBiNKFXWgVP+Hou/C9upnQ/HCBz3NHHBLFYvF4njjj+eLwDqWRK9zAPRG5UJ/deGzibQPvLgfvP5dea7cAUrLfS2byp2e/mpHdaCuf9tNcxFxdP765+kUS+5DAAB03w9p++fxcrtjcfsvF3fWrLc9GxsazsZSdkTE7RGxMyLuiCite1dE3H2D6Y/UxZe2f3KXOypYm9L239PZ2FZlytKtrDLcl8W2lco/kBw/WZjcn22TfTEwmMYPLPvrSZQGgeK3jxulP1LT/kunNP1KWzDLx+X+wcXfOZafyd90wTNX3o/Y3b9c+bMBvGwMa1dE7O4wjZOPfr1n8ZK+aqh1+ZtoPs7UluIXEY+U9/981JW/Imk+Pjn2vyhM7h+rHBVL/fLrxVcbpX9T5e+CdP9vXvb4r5Z/OKkdr51e8hObWqVx8c8PG/ZpRiKeiQ6O/03J64sSfzc/M3O9GLEpeWnJ8rM1N7gr8dL8QLn8+/YuX/93xH9b4p6ISA/ieyPivoi4P9t3D0TEgxGxt0n5f3r+obealL+n+z++KZ+h2tr/lf1QPhCqR0SrQN+pH79vlHx7579DpdC+bEk75792M9jhVgMAAIA1JRcRWyPJjVbDudzoaPl/+HfG5lxhanrmseNT75w5Vn5GYDgGcpU7XUNZPLL7n8PleKn3PV6aR5zP7pcezO4bf9r3/1J8dGKqcKzXhYcNbkuD+p/6q6/XuQNuuS6MowFrVLP6/+XhFcwIsOI6v/5rOcBa16IWe2EDrGOu4rBxLVf/z/cgH8DKa3z9n9Q0gHWuWsk/aWPlmse96h/eBNYeF3nYuFrX/1du1fuvgN5p/yn+1RJIkkVL4quI5t9Kep/nDgIfrY5sNA5ErtFHgzf6goieBPKrIxutApWKOnvuVH/bb7WYLZ7PFwq/f3czqff2vAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAt/wYAAP//gN/guA==")
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prlimit64(r3, 0x5, &(0x7f0000000140)={0x6, 0x9}, &(0x7f0000000180))
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
r5 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000000)={{0x2, 0x4e21, @remote}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast1}})
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8953, &(0x7f0000000000)={{0x2, 0x4e21, @remote}, {0x0, @local}, 0x4a, {0x2, 0x3, @broadcast}, 'syz_tun\x00'})
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000440)=""/173)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_ALLOW_SUSPEND(r6, 0x5522)

93.488204ms ago: executing program 4 (id=3101):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
connect$unix(r2, &(0x7f00000001c0)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

64.492746ms ago: executing program 3 (id=3102):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

0s ago: executing program 1 (id=3103):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x8)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4802, 0x0, 0x7289, 0x1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, 0x0, 0x100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x26, 0x803, 0x2)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r5, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r5, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r5, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
shutdown(r5, 0x1)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmsg$nl_generic(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000020027000000000008000a00a8"], 0x6c}}, 0x0)

kernel console output (not intermixed with test programs):

a journaling mode
[ 1521.431997][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1521.436939][T15825] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2246: corrupted in-inode xattr: invalid size in ea xattr
[ 1521.466487][T15825] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2246: couldn't read orphan inode 17 (err -117)
[ 1521.505989][T15825] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1521.729529][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1522.539139][   T28] audit: type=1326 audit(1769234528.217:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15815 comm="syz.3.2235" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1522.685344][T15832] netlink: 'syz.5.2248': attribute type 1 has an invalid length.
[ 1523.051017][T15832] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1524.395666][T15853] loop5: detected capacity change from 0 to 512
[ 1524.508676][T15853] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1524.928818][T15853] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2252: corrupted in-inode xattr: invalid size in ea xattr
[ 1524.943680][T15853] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2252: couldn't read orphan inode 17 (err -117)
[ 1524.967522][T15853] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1525.194190][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1525.347146][T15859] loop4: detected capacity change from 0 to 512
[ 1525.367163][T15859] EXT4-fs: Ignoring removed nobh option
[ 1525.426145][T15859] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2255: iget: bad i_size value: 38620345925642
[ 1525.483730][T15859] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2255: couldn't read orphan inode 15 (err -117)
[ 1525.499725][T15862] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2254'.
[ 1525.541710][T15859] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1526.219715][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1526.421855][   T28] audit: type=1326 audit(1769234532.097:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15870 comm="syz.3.2249" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1527.455081][T15881] loop5: detected capacity change from 0 to 512
[ 1527.532114][T15881] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1527.611562][T15881] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2258: corrupted in-inode xattr: invalid size in ea xattr
[ 1527.645758][T15881] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2258: couldn't read orphan inode 17 (err -117)
[ 1527.697372][T15881] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1528.656996][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1528.675992][   T28] audit: type=1326 audit(1769234534.327:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15875 comm="syz.4.2257" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1528.697727][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1531.085968][   T28] audit: type=1326 audit(1769234536.747:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15895 comm="syz.3.2264" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1532.637092][T15910] loop4: detected capacity change from 0 to 512
[ 1533.251265][T15910] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1534.008494][T15915] ALSA: seq fatal error: cannot create timer (-22)
[ 1534.101866][   T28] audit: type=1326 audit(1769234539.757:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15905 comm="syz.5.2267" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1534.421449][T15910] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2268: corrupted in-inode xattr: invalid size in ea xattr
[ 1534.486040][T15910] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2268: couldn't read orphan inode 17 (err -117)
[ 1534.527457][T15910] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1534.783051][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1534.962587][T15923] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2265'.
[ 1535.744669][   T28] audit: type=1326 audit(1769234541.417:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.4.2270" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1536.833014][T15941] loop4: detected capacity change from 0 to 512
[ 1536.909530][T15941] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1537.416842][T15941] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2275: corrupted in-inode xattr: invalid size in ea xattr
[ 1537.443745][T15941] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2275: couldn't read orphan inode 17 (err -117)
[ 1537.467255][T15941] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1537.487179][T15944] ALSA: seq fatal error: cannot create timer (-22)
[ 1537.513167][   T28] audit: type=1326 audit(1769234543.187:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15933 comm="syz.1.2273" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1537.633386][T15946] netlink: 'syz.5.2271': attribute type 1 has an invalid length.
[ 1537.661682][T15946] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1537.753672][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1538.776651][   T28] audit: type=1326 audit(1769234544.447:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15936 comm="syz.3.2274" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1540.519232][T15961] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2280'.
[ 1540.802402][T15963] loop4: detected capacity change from 0 to 512
[ 1540.847936][T15963] EXT4-fs: Ignoring removed nobh option
[ 1540.911024][T15963] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2281: iget: bad i_size value: 38620345925642
[ 1541.128802][T15963] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2281: couldn't read orphan inode 15 (err -117)
[ 1541.200340][T15963] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1541.434512][T15970] loop5: detected capacity change from 0 to 512
[ 1541.443051][T15970] EXT4-fs: Ignoring removed nobh option
[ 1541.470367][T15970] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2283: iget: bad i_size value: 38620345925642
[ 1541.520805][T15970] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2283: couldn't read orphan inode 15 (err -117)
[ 1541.539937][T15970] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1542.311331][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1542.483688][   T28] audit: type=1326 audit(1769234548.157:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15973 comm="syz.1.2284" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1542.716095][T15979] netlink: 'syz.5.2285': attribute type 1 has an invalid length.
[ 1542.816029][T15979] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1544.117832][   T28] audit: type=1326 audit(1769234549.797:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15987 comm="syz.3.2279" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1545.602791][T15967] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1546.351959][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.358455][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.386309][T15992] ALSA: seq fatal error: cannot create timer (-22)
[ 1546.414122][   T28] audit: type=1326 audit(1769234552.087:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.5.2287" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1546.436048][T16000] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2290'.
[ 1547.099706][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1547.385960][T16005] loop4: detected capacity change from 0 to 512
[ 1547.446870][T16005] EXT4-fs: Ignoring removed nobh option
[ 1547.498841][T16005] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2293: iget: bad i_size value: 38620345925642
[ 1547.634028][T16005] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2293: couldn't read orphan inode 15 (err -117)
[ 1547.693629][T16005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1548.860649][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1551.162419][T16023] ALSA: seq fatal error: cannot create timer (-22)
[ 1551.175971][   T28] audit: type=1326 audit(1769234556.847:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16022 comm="syz.1.2296" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1551.707398][T16032] loop4: detected capacity change from 0 to 512
[ 1551.814156][T16032] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1551.905002][T16032] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2294: corrupted in-inode xattr: invalid size in ea xattr
[ 1551.992806][T16032] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2294: couldn't read orphan inode 17 (err -117)
[ 1552.043069][T16032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1552.323618][T16038] loop5: detected capacity change from 0 to 512
[ 1552.347261][T16038] EXT4-fs: Ignoring removed nobh option
[ 1552.492797][T16038] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2292: iget: bad i_size value: 38620345925642
[ 1552.528645][T16038] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2292: couldn't read orphan inode 15 (err -117)
[ 1552.569888][T16038] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1552.669494][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1553.163858][T16046] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2300'.
[ 1553.184937][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1553.892235][T16050] netlink: 'syz.3.2302': attribute type 1 has an invalid length.
[ 1553.903115][T16052] loop5: detected capacity change from 0 to 512
[ 1553.927011][T16052] EXT4-fs: Ignoring removed nobh option
[ 1553.965038][T16055] loop4: detected capacity change from 0 to 512
[ 1553.978155][T16052] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2301: iget: bad i_size value: 38620345925642
[ 1554.004446][T16050] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1554.006253][T16052] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2301: couldn't read orphan inode 15 (err -117)
[ 1554.017348][T16055] EXT4-fs: Ignoring removed nobh option
[ 1554.030137][T16052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1554.080066][T16055] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2303: iget: bad i_size value: 38620345925642
[ 1554.100203][T16055] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2303: couldn't read orphan inode 15 (err -117)
[ 1554.114664][T16055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1554.991325][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1555.851961][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1556.340919][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1558.017527][   T28] audit: type=1326 audit(1769234562.797:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16079 comm="syz.3.2307" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1558.073026][T16088] loop5: detected capacity change from 0 to 512
[ 1558.095478][T16088] EXT4-fs: Ignoring removed nobh option
[ 1558.105306][   T28] audit: type=1326 audit(1769234563.087:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16081 comm="syz.4.2308" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1558.166244][T16088] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2309: iget: bad i_size value: 38620345925642
[ 1558.207330][T16088] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2309: couldn't read orphan inode 15 (err -117)
[ 1558.258431][T16088] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1558.845877][T16034] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1559.119776][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1559.352692][T16098] loop5: detected capacity change from 0 to 512
[ 1559.380947][T16098] EXT4-fs: Ignoring removed nobh option
[ 1559.431944][T16098] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2313: iget: bad i_size value: 38620345925642
[ 1559.495222][T16098] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2313: couldn't read orphan inode 15 (err -117)
[ 1559.594972][T16098] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1559.796040][T16103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2310'.
[ 1560.321509][T16100] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1560.363346][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1561.058169][T16113] loop4: detected capacity change from 0 to 512
[ 1562.370485][T16113] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1562.380857][   T28] audit: type=1326 audit(1769234568.037:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16108 comm="syz.3.2311" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1562.444463][T16113] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2316: corrupted in-inode xattr: invalid size in ea xattr
[ 1562.462107][T16113] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2316: couldn't read orphan inode 17 (err -117)
[ 1562.476836][T16113] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1562.709717][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1564.475870][   T28] audit: type=1326 audit(1769234569.207:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16120 comm="syz.4.2319" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1565.766258][T16132] loop5: detected capacity change from 0 to 512
[ 1565.900091][T16132] EXT4-fs: Ignoring removed nobh option
[ 1565.972172][T16132] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2323: iget: bad i_size value: 38620345925642
[ 1566.246627][T16132] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2323: couldn't read orphan inode 15 (err -117)
[ 1566.550727][T16132] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1567.816919][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1567.874610][T16148] netlink: 'syz.4.2320': attribute type 1 has an invalid length.
[ 1568.102851][T16148] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1568.237770][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1569.366135][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1571.723119][T16182] loop5: detected capacity change from 0 to 512
[ 1571.729782][T16172] ALSA: seq fatal error: cannot create timer (-22)
[ 1571.814572][T16182] EXT4-fs: Ignoring removed nobh option
[ 1571.874750][T16179] ALSA: seq fatal error: cannot create timer (-22)
[ 1571.904554][T16189] netlink: 'syz.3.2335': attribute type 1 has an invalid length.
[ 1571.937297][   T28] audit: type=1326 audit(1769234577.577:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16162 comm="syz.1.2329" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1572.007623][T16182] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2333: iget: bad i_size value: 38620345925642
[ 1572.074583][T16182] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2333: couldn't read orphan inode 15 (err -117)
[ 1572.091962][T16182] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1572.110499][   T28] audit: type=1326 audit(1769234577.717:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16166 comm="syz.4.2330" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1572.257339][T16189] 8021q: adding VLAN 0 to HW filter on device bond10
[ 1572.900699][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1575.199431][   T28] audit: type=1326 audit(1769234580.867:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16206 comm="syz.5.2337" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1578.435309][T16233] loop4: detected capacity change from 0 to 512
[ 1578.752812][T16233] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1578.804463][T16233] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2344: corrupted in-inode xattr: invalid size in ea xattr
[ 1578.820252][T16233] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2344: couldn't read orphan inode 17 (err -117)
[ 1578.833095][T16233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1578.881045][T16237] netlink: 'syz.3.2346': attribute type 1 has an invalid length.
[ 1579.636049][T16243] ALSA: seq fatal error: cannot create timer (-22)
[ 1580.286216][T16236] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1580.302941][   T28] audit: type=1326 audit(1769234585.327:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16241 comm="syz.1.2347" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1580.361904][T16237] 8021q: adding VLAN 0 to HW filter on device bond11
[ 1580.457404][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1581.081811][T16252] loop5: detected capacity change from 0 to 512
[ 1581.115178][T16252] EXT4-fs: Ignoring removed nobh option
[ 1581.160944][T16252] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2340: iget: bad i_size value: 38620345925642
[ 1581.215980][T16252] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2340: couldn't read orphan inode 15 (err -117)
[ 1581.877256][T16247] ALSA: seq fatal error: cannot create timer (-22)
[ 1581.918100][   T28] audit: type=1326 audit(1769234587.597:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16246 comm="syz.4.2348" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1581.972449][T16252] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1584.080845][   T28] audit: type=1326 audit(1769234589.117:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16262 comm="syz.3.2353" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1585.946035][T16254] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1586.492677][T16276] loop4: detected capacity change from 0 to 512
[ 1586.526663][T16276] EXT4-fs: Ignoring removed nobh option
[ 1586.580834][T16276] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2352: iget: bad i_size value: 38620345925642
[ 1586.595490][T16276] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2352: couldn't read orphan inode 15 (err -117)
[ 1586.751835][T16276] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1587.617229][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1587.668931][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1588.916216][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1590.107158][T16297] netlink: 'syz.5.2358': attribute type 1 has an invalid length.
[ 1590.570211][T16297] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1593.808730][   T28] audit: type=1326 audit(1769234599.487:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16308 comm="syz.4.2360" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1593.859269][T16322] netlink: 'syz.3.2364': attribute type 1 has an invalid length.
[ 1593.910008][T16322] 8021q: adding VLAN 0 to HW filter on device bond12
[ 1594.075226][T16328] loop5: detected capacity change from 0 to 512
[ 1594.082488][T16328] EXT4-fs: Ignoring removed nobh option
[ 1594.142416][T16328] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2367: iget: bad i_size value: 38620345925642
[ 1594.937174][T16328] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2367: couldn't read orphan inode 15 (err -117)
[ 1594.950448][T16321] ALSA: seq fatal error: cannot create timer (-22)
[ 1594.966940][T16328] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1594.979763][   T28] audit: type=1326 audit(1769234600.647:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.1.2362" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1595.931544][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1596.230608][T16342] loop4: detected capacity change from 0 to 512
[ 1596.256997][T16342] EXT4-fs: Ignoring removed nobh option
[ 1596.291545][T16342] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2365: iget: bad i_size value: 38620345925642
[ 1596.329511][T16342] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2365: couldn't read orphan inode 15 (err -117)
[ 1596.399001][T16342] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1597.248931][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1597.494969][T16351] netlink: 'syz.4.2371': attribute type 1 has an invalid length.
[ 1597.537898][T16351] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1598.445155][T16362] loop4: detected capacity change from 0 to 512
[ 1598.504304][T16362] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1598.663999][T16362] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2374: corrupted in-inode xattr: invalid size in ea xattr
[ 1598.681265][T16362] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2374: couldn't read orphan inode 17 (err -117)
[ 1598.694881][T16362] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1598.803217][T16376] netlink: 'syz.3.2375': attribute type 1 has an invalid length.
[ 1598.958141][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1598.984941][T16376] 8021q: adding VLAN 0 to HW filter on device bond13
[ 1599.237584][T16383] loop4: detected capacity change from 0 to 512
[ 1599.251989][T16383] EXT4-fs: Ignoring removed nobh option
[ 1599.375951][T16383] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2377: iget: bad i_size value: 38620345925642
[ 1599.409105][T16382] ALSA: seq fatal error: cannot create timer (-22)
[ 1599.455184][T16383] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2377: couldn't read orphan inode 15 (err -117)
[ 1599.463591][T16385] ALSA: seq fatal error: cannot create timer (-22)
[ 1599.493742][   T28] audit: type=1326 audit(1769234605.127:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16373 comm="syz.1.2376" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1599.515514][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1599.669602][T16383] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1599.683148][   T28] audit: type=1326 audit(1769234605.157:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16353 comm="syz.5.2373" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1600.947721][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1601.333631][T16400] loop4: detected capacity change from 0 to 512
[ 1601.364732][T16400] EXT4-fs: Ignoring removed nobh option
[ 1601.704281][T16400] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2381: iget: bad i_size value: 38620345925642
[ 1602.816471][   T28] audit: type=1326 audit(1769234607.827:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16404 comm="syz.5.2383" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1602.876879][T16400] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2381: couldn't read orphan inode 15 (err -117)
[ 1603.207078][T16400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1603.681963][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1604.458097][T16418] netlink: 'syz.1.2387': attribute type 1 has an invalid length.
[ 1604.714456][T16422] loop4: detected capacity change from 0 to 512
[ 1605.062903][T16422] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1605.272179][T16422] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2386: corrupted in-inode xattr: invalid size in ea xattr
[ 1605.361108][T16422] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2386: couldn't read orphan inode 17 (err -117)
[ 1605.374955][T16422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1605.460371][T16418] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1605.611106][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1606.605583][T16431] loop4: detected capacity change from 0 to 512
[ 1606.617510][T16431] EXT4-fs: Ignoring removed nobh option
[ 1606.705906][T16431] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2389: iget: bad i_size value: 38620345925642
[ 1606.790028][T16431] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2389: couldn't read orphan inode 15 (err -117)
[ 1606.868042][T16431] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1607.624058][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1607.656278][T16429] ALSA: seq fatal error: cannot create timer (-22)
[ 1607.716214][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.725963][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.743768][   T28] audit: type=1326 audit(1769234613.407:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.1.2390" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1607.765571][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1607.993029][T16442] ALSA: seq fatal error: cannot create timer (-22)
[ 1608.774738][   T28] audit: type=1326 audit(1769234613.687:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16441 comm="syz.4.2392" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1608.959962][   T28] audit: type=1326 audit(1769234614.517:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16432 comm="syz.3.2391" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1609.987726][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1613.637310][T16470] netlink: 'syz.1.2398': attribute type 1 has an invalid length.
[ 1613.725118][T16474] loop5: detected capacity change from 0 to 512
[ 1613.760203][T16474] EXT4-fs: Ignoring removed nobh option
[ 1613.768169][T16470] 8021q: adding VLAN 0 to HW filter on device bond10
[ 1613.815967][T16473] netlink: 'syz.3.2399': attribute type 1 has an invalid length.
[ 1613.955911][T16474] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2400: iget: bad i_size value: 38620345925642
[ 1614.011399][T16473] 8021q: adding VLAN 0 to HW filter on device bond14
[ 1614.019133][T16477] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2399'.
[ 1614.066053][T16474] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2400: couldn't read orphan inode 15 (err -117)
[ 1614.150048][T16474] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1614.917007][T16482] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1615.105173][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1615.970643][T16506] loop5: detected capacity change from 0 to 512
[ 1616.034775][T16506] EXT4-fs: Ignoring removed nobh option
[ 1616.204937][T16506] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2403: iget: bad i_size value: 38620345925642
[ 1616.326377][T16506] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2403: couldn't read orphan inode 15 (err -117)
[ 1616.411771][T16506] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1616.715990][T16500] ALSA: seq fatal error: cannot create timer (-22)
[ 1617.041843][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1617.077192][   T28] audit: type=1326 audit(1769234622.747:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16496 comm="syz.1.2404" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1618.076448][T16501] ALSA: seq fatal error: cannot create timer (-22)
[ 1618.084628][   T28] audit: type=1326 audit(1769234623.757:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16498 comm="syz.4.2393" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1618.219003][T16527] loop5: detected capacity change from 0 to 512
[ 1618.789585][T16527] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1618.811021][T16527] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2408: corrupted in-inode xattr: invalid size in ea xattr
[ 1618.833256][T16527] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2408: couldn't read orphan inode 17 (err -117)
[ 1618.854878][T16527] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1619.117388][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1619.478854][T16530] netlink: 'syz.5.2409': attribute type 1 has an invalid length.
[ 1619.709435][T16530] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1620.344584][T16533] netlink: 'syz.3.2410': attribute type 1 has an invalid length.
[ 1620.512127][T16533] 8021q: adding VLAN 0 to HW filter on device bond15
[ 1620.578554][T16538] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2410'.
[ 1620.657107][T16548] loop5: detected capacity change from 0 to 512
[ 1620.746876][T16548] EXT4-fs: Ignoring removed nobh option
[ 1620.788944][T16548] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2413: iget: bad i_size value: 38620345925642
[ 1620.806219][T16548] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2413: couldn't read orphan inode 15 (err -117)
[ 1620.823369][T16548] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1621.599288][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1624.296886][T16571] loop5: detected capacity change from 0 to 512
[ 1624.848949][T16571] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1624.908368][T16571] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2418: corrupted in-inode xattr: invalid size in ea xattr
[ 1624.923891][T16571] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2418: couldn't read orphan inode 17 (err -117)
[ 1624.938356][T16571] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1625.197689][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1625.735011][T16577] ALSA: seq fatal error: cannot create timer (-22)
[ 1626.440926][   T28] audit: type=1326 audit(1769234631.427:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16575 comm="syz.5.2420" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1626.584854][   T28] audit: type=1326 audit(1769234632.207:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16568 comm="syz.3.2419" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1626.628697][T16581] loop4: detected capacity change from 0 to 512
[ 1626.663456][T16581] EXT4-fs: Ignoring removed nobh option
[ 1626.786898][T16581] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2412: iget: bad i_size value: 38620345925642
[ 1626.968572][T16581] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2412: couldn't read orphan inode 15 (err -117)
[ 1627.006424][T16581] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1627.989858][   T28] audit: type=1326 audit(1769234633.667:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16586 comm="syz.3.2422" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1628.233749][T16594] netlink: 'syz.1.2424': attribute type 1 has an invalid length.
[ 1628.753762][T16594] 8021q: adding VLAN 0 to HW filter on device bond11
[ 1628.802966][T16599] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2424'.
[ 1628.917821][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1631.777930][T16617] netlink: 'syz.5.2421': attribute type 1 has an invalid length.
[ 1632.429062][T16623] ALSA: seq fatal error: cannot create timer (-22)
[ 1633.096668][   T28] audit: type=1326 audit(1769234638.117:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16622 comm="syz.4.2430" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1633.150556][T16617] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1633.655363][T16630] loop5: detected capacity change from 0 to 64
[ 1635.444496][   T28] audit: type=1326 audit(1769234640.517:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16619 comm="syz.1.2429" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1636.487069][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1637.382862][T16642] loop5: detected capacity change from 0 to 512
[ 1637.417659][T16642] EXT4-fs: Ignoring removed nobh option
[ 1637.553520][T16642] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2435: iget: bad i_size value: 38620345925642
[ 1637.776607][T16642] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2435: couldn't read orphan inode 15 (err -117)
[ 1638.247285][T16642] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1639.418747][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1640.000738][T16661] loop5: detected capacity change from 0 to 512
[ 1640.033389][T16661] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1640.237870][T16661] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2437: corrupted in-inode xattr: invalid size in ea xattr
[ 1640.264502][T16661] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2437: couldn't read orphan inode 17 (err -117)
[ 1640.299481][T16661] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1640.669183][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1642.407295][   T28] audit: type=1326 audit(1769234648.077:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.3.2441" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1642.429065][T16671] netlink: 'syz.5.2440': attribute type 1 has an invalid length.
[ 1642.478048][T16671] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1644.781527][T16690] loop5: detected capacity change from 0 to 512
[ 1645.383572][T16690] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1645.407482][T16690] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2444: corrupted in-inode xattr: invalid size in ea xattr
[ 1645.423654][T16690] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2444: couldn't read orphan inode 17 (err -117)
[ 1645.437384][T16690] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1645.749615][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1646.552976][T16698] loop5: detected capacity change from 0 to 512
[ 1646.577156][T16698] EXT4-fs: Ignoring removed nobh option
[ 1646.667885][T16698] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2446: iget: bad i_size value: 38620345925642
[ 1648.444962][T16698] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2446: couldn't read orphan inode 15 (err -117)
[ 1648.548703][T16698] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1649.670406][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1649.966652][T16721] netlink: 'syz.1.2452': attribute type 1 has an invalid length.
[ 1650.025104][T16721] 8021q: adding VLAN 0 to HW filter on device bond12
[ 1651.502202][T16735] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[ 1651.511043][T16735] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1651.586997][T16739] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1651.600804][T16739] batadv_slave_0: entered promiscuous mode
[ 1653.266993][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1655.733124][T16767] netlink: 'syz.1.2462': attribute type 1 has an invalid length.
[ 1657.291478][T16773] ALSA: seq fatal error: cannot create timer (-22)
[ 1658.048278][   T28] audit: type=1326 audit(1769234662.977:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16772 comm="syz.4.2464" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1658.108446][T16767] 8021q: adding VLAN 0 to HW filter on device bond13
[ 1659.127999][T16779] ALSA: seq fatal error: cannot create timer (-22)
[ 1659.468199][   T28] audit: type=1326 audit(1769234664.807:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16778 comm="syz.1.2467" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1660.313515][T16789] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2471'.
[ 1660.322521][T16789] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2471'.
[ 1662.813672][T16800] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2466'.
[ 1663.105037][T16812] ALSA: seq fatal error: cannot create timer (-22)
[ 1663.758643][   T28] audit: type=1326 audit(1769234668.797:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16811 comm="syz.4.2473" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1663.935421][T16817] netlink: 'syz.1.2475': attribute type 1 has an invalid length.
[ 1664.185193][T16817] 8021q: adding VLAN 0 to HW filter on device bond14
[ 1664.220493][T16818] loop5: detected capacity change from 0 to 32768
[ 1664.303694][T16818] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1664.500746][T16818] XFS (loop5): Ending clean mount
[ 1665.109788][T16837] overlay: ./file1 is not a directory
[ 1665.362391][   T28] audit: type=1800 audit(1769234671.037:384): pid=16836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2474" name="file1" dev="loop5" ino=4422 res=0 errno=0
[ 1667.257992][   T28] audit: type=1326 audit(1769234672.227:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16843 comm="syz.4.2476" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1667.308508][T14589] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1668.766190][   T28] audit: type=1326 audit(1769234674.437:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16854 comm="syz.3.2489" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1669.146425][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.152783][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1670.216045][T16868] netlink: 'syz.1.2485': attribute type 1 has an invalid length.
[ 1670.231250][T16869] loop5: detected capacity change from 0 to 512
[ 1670.255128][T16868] 8021q: adding VLAN 0 to HW filter on device bond15
[ 1670.287950][T16869] EXT4-fs: Ignoring removed nobh option
[ 1670.367146][T16869] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2484: iget: bad i_size value: 38620345925642
[ 1671.620767][T16869] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2484: couldn't read orphan inode 15 (err -117)
[ 1671.637482][T16869] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1672.939128][T16889] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1673.743799][T16890] ALSA: seq fatal error: cannot create timer (-22)
[ 1674.799455][T16873] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1674.816866][   T28] audit: type=1326 audit(1769234679.437:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16887 comm="syz.1.2488" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1674.955411][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1675.758289][   T28] audit: type=1326 audit(1769234681.437:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16893 comm="syz.3.2492" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1677.371840][T16908] loop5: detected capacity change from 0 to 512
[ 1677.402659][T16908] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1677.920035][T16908] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2494: corrupted in-inode xattr: invalid size in ea xattr
[ 1677.942157][T16912] loop4: detected capacity change from 0 to 512
[ 1677.954508][T16908] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2494: couldn't read orphan inode 17 (err -117)
[ 1677.968729][T16912] EXT4-fs: Ignoring removed nobh option
[ 1677.985545][T16908] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1678.066561][T16912] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2487: iget: bad i_size value: 38620345925642
[ 1678.090342][T16912] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2487: couldn't read orphan inode 15 (err -117)
[ 1678.228332][T16912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1678.267245][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1679.098647][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1680.516176][   T23] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1681.425900][   T23] usb 5-1: Using ep0 maxpacket: 32
[ 1681.435614][   T23] usb 5-1: config 0 has an invalid interface number: 136 but max is 0
[ 1681.451121][   T23] usb 5-1: config 0 has no interface number 0
[ 1681.459801][   T23] usb 5-1: config 0 interface 136 altsetting 0 bulk endpoint 0xA has invalid maxpacket 32
[ 1681.478085][   T23] usb 5-1: New USB device found, idVendor=10cf, idProduct=8063, bcdDevice=d1.d2
[ 1681.487339][   T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1681.496150][   T23] usb 5-1: Product: syz
[ 1681.500437][   T23] usb 5-1: Manufacturer: syz
[ 1681.505120][   T23] usb 5-1: SerialNumber: syz
[ 1681.789592][   T23] usb 5-1: config 0 descriptor??
[ 1681.803869][T16935] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1681.872117][   T23] comedi comedi4: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'.
[ 1682.020082][T16935] syz_tun: entered allmulticast mode
[ 1682.029101][T16934] syz_tun: left allmulticast mode
[ 1682.040112][ T5829] usb 5-1: USB disconnect, device number 3
[ 1682.739004][T16960] ALSA: seq fatal error: cannot create timer (-22)
[ 1683.356764][   T28] audit: type=1326 audit(1769234688.427:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16959 comm="syz.5.2501" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1683.490275][   T28] audit: type=1326 audit(1769234689.167:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16956 comm="syz.3.2500" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1683.885549][T16968] loop4: detected capacity change from 0 to 512
[ 1683.937246][T16968] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1683.981540][T16968] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2503: corrupted in-inode xattr: invalid size in ea xattr
[ 1683.998075][T16968] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2503: couldn't read orphan inode 17 (err -117)
[ 1684.019737][T16968] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1684.467843][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1687.881084][T16989] loop4: detected capacity change from 0 to 512
[ 1687.916706][T16989] EXT4-fs: Ignoring removed nobh option
[ 1687.952917][T16989] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2508: iget: bad i_size value: 38620345925642
[ 1687.985419][T16989] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2508: couldn't read orphan inode 15 (err -117)
[ 1688.256146][T16997] loop5: detected capacity change from 0 to 256
[ 1688.504483][T16997] FAT-fs (loop5): count of clusters too big (66845694)
[ 1688.511629][T16997] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1688.763540][T16989] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1689.056417][T16895] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1690.383773][T16996] loop5: detected capacity change from 0 to 32768
[ 1691.199804][   T28] audit: type=1326 audit(1769234696.197:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17007 comm="syz.3.2511" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1691.258558][T16996] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1691.267326][T16996] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1691.296633][T16996] syz.5.2502: attempt to access beyond end of device
[ 1691.296633][T16996] loop5: rw=12288, sector=549755814040, nr_sectors = 8 limit=32768
[ 1691.311288][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1691.320961][T16996] gfs2: fsid=syz:syz.0: can't acquire journal inode glock: -5
[ 1692.656725][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1692.964775][T17026] ALSA: seq fatal error: cannot create timer (-22)
[ 1693.002172][   T28] audit: type=1326 audit(1769234698.667:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.4.2512" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1696.771999][T17051] loop4: detected capacity change from 0 to 512
[ 1696.814209][T17051] EXT4-fs: Ignoring removed nobh option
[ 1696.840406][T17051] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2521: iget: bad i_size value: 38620345925642
[ 1696.857205][T17051] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2521: couldn't read orphan inode 15 (err -117)
[ 1696.874099][T17051] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1697.711400][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1699.833357][T17063] ALSA: seq fatal error: cannot create timer (-22)
[ 1700.491709][   T28] audit: type=1326 audit(1769234705.517:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17062 comm="syz.4.2523" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1700.515092][T17060] ALSA: seq fatal error: cannot create timer (-22)
[ 1700.743487][   T28] audit: type=1326 audit(1769234706.417:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17048 comm="syz.1.2520" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1703.894189][T17077] loop4: detected capacity change from 0 to 512
[ 1703.980458][T17077] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1704.967445][T17077] EXT4-fs error (device loop4): xattr_find_entry:337: inode #15: comm syz.4.2528: corrupted xattr entries
[ 1705.048114][T17077] EXT4-fs (loop4): 1 orphan inode deleted
[ 1705.054476][T17077] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1705.928350][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1706.117403][   T28] audit: type=1326 audit(1769234711.797:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17076 comm="syz.5.2524" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1707.175698][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1708.212500][T17110] ALSA: seq fatal error: cannot create timer (-22)
[ 1708.345525][   T28] audit: type=1326 audit(1769234714.017:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17106 comm="syz.5.2533" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1708.597638][T17112] ALSA: seq fatal error: cannot create timer (-22)
[ 1708.977497][T17119] netlink: 'syz.4.2535': attribute type 27 has an invalid length.
[ 1709.302067][   T28] audit: type=1326 audit(1769234714.977:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17108 comm="syz.1.2534" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1711.607264][T17136] loop4: detected capacity change from 0 to 512
[ 1711.614089][T17136] EXT4-fs: Ignoring removed nobh option
[ 1711.757969][T17136] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2540: iget: bad i_size value: 38620345925642
[ 1711.937657][T17136] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2540: couldn't read orphan inode 15 (err -117)
[ 1711.999220][T17136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1713.648098][   T28] audit: type=1326 audit(1769234718.957:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17128 comm="syz.3.2539" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1713.849440][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1714.365430][T17153] loop4: detected capacity change from 0 to 40427
[ 1714.467791][T17153] F2FS-fs (loop4): invalid crc value
[ 1714.475284][T17153] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1714.518342][T17153] F2FS-fs (loop4): Start checkpoint disabled!
[ 1714.587256][T17153] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 1718.006296][T11632] kworker/u4:13: attempt to access beyond end of device
[ 1718.006296][T11632] loop4: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[ 1718.075979][T11632] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1718.083528][T11632] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1718.113578][T11632] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1718.756244][T17173] ALSA: seq fatal error: cannot create timer (-22)
[ 1718.829166][   T28] audit: type=1326 audit(1769234724.507:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.2550" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1719.341554][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1719.498490][T17187] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2551'.
[ 1721.031768][T17197] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1721.039290][T17197] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1721.847207][T17197] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1721.854619][T17197] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1721.956259][T17198] lo speed is unknown, defaulting to 1000
[ 1721.962063][T17198] lo speed is unknown, defaulting to 1000
[ 1721.968135][T17198] lo speed is unknown, defaulting to 1000
[ 1721.980012][T17198] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1721.996981][T17198] lo speed is unknown, defaulting to 1000
[ 1722.003387][T17198] lo speed is unknown, defaulting to 1000
[ 1722.009828][T17198] lo speed is unknown, defaulting to 1000
[ 1722.016294][T17198] lo speed is unknown, defaulting to 1000
[ 1722.405036][T17204] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2555'.
[ 1723.105838][   T28] audit: type=1326 audit(1769234728.770:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17188 comm="syz.3.2552" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1725.375837][   T28] audit: type=1326 audit(1769234731.040:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17201 comm="syz.1.2554" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1726.023166][T17217] loop4: detected capacity change from 0 to 512
[ 1726.061261][T17217] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1726.618617][T17217] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2559: corrupted in-inode xattr: invalid size in ea xattr
[ 1726.636771][T17217] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2559: couldn't read orphan inode 17 (err -117)
[ 1726.687482][T17217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1726.939504][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1727.320574][T17224] loop5: detected capacity change from 0 to 1024
[ 1727.356733][T17224] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1727.400524][T17224] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1727.604522][T17224] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1729.038490][T17240] netlink: 'syz.3.2562': attribute type 1 has an invalid length.
[ 1729.039623][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1729.071116][T17240] 8021q: adding VLAN 0 to HW filter on device bond16
[ 1729.085946][T17240] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2562'.
[ 1729.149515][T17235] ALSA: seq fatal error: cannot create timer (-22)
[ 1729.228174][   T28] audit: type=1326 audit(1769234734.910:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17221 comm="syz.4.2561" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1729.917152][T17250] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2564'.
[ 1730.649685][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.656359][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1734.736392][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1735.624087][T17276] netlink: 'syz.4.2572': attribute type 1 has an invalid length.
[ 1737.137380][T17276] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1737.218079][T17279] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2572'.
[ 1739.747803][T17292] fuse: Unknown parameter 'grou00000000000000000000'
[ 1741.265477][T17293] ALSA: seq fatal error: cannot create timer (-22)
[ 1741.456802][   T28] audit: type=1326 audit(1769234747.140:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17291 comm="syz.1.2575" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1742.305437][T17313] loop4: detected capacity change from 0 to 512
[ 1743.096428][T17313] EXT4-fs: Ignoring removed nobh option
[ 1743.143398][T17313] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2578: iget: bad i_size value: 38620345925642
[ 1743.158552][T17313] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2578: couldn't read orphan inode 15 (err -117)
[ 1743.286555][T17313] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1744.516728][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1745.005012][   T28] audit: type=1326 audit(1769234750.680:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17320 comm="syz.5.2580" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1745.868433][T17338] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2576'.
[ 1747.337157][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1751.392547][T17365] loop5: detected capacity change from 0 to 512
[ 1751.850847][T17365] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1751.928260][T17365] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2590: corrupted in-inode xattr: invalid size in ea xattr
[ 1751.943537][T17365] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2590: couldn't read orphan inode 17 (err -117)
[ 1751.966856][T17365] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1752.238380][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1753.866222][T17387] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2592'.
[ 1753.875299][T17387] nbd: must specify at least one socket
[ 1754.991332][T17397] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2593'.
[ 1755.220028][T17397] overlayfs: failed to clone lowerpath
[ 1755.227976][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1757.010774][T17410] ALSA: seq fatal error: cannot create timer (-22)
[ 1757.018590][   T28] audit: type=1326 audit(1769234762.700:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17409 comm="syz.1.2598" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1757.134097][T17418] cgroup: Bad value for 'name'
[ 1758.147906][T17419] loop4: detected capacity change from 0 to 512
[ 1758.309081][T17419] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1758.335302][T17419] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2600: corrupted in-inode xattr: invalid size in ea xattr
[ 1758.351736][T17419] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2600: couldn't read orphan inode 17 (err -117)
[ 1758.364653][T17419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1758.842903][T17427] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2602'.
[ 1759.616385][T17423] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1759.717889][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1762.412579][T17442] loop4: detected capacity change from 0 to 1024
[ 1762.421913][T17442] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1762.431540][T17442] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1762.585633][T17439] ALSA: seq fatal error: cannot create timer (-22)
[ 1762.656659][   T28] audit: type=1326 audit(1769234768.340:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17437 comm="syz.1.2601" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1763.000571][T17442] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1763.926713][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1764.928816][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1765.099457][T17460] ALSA: seq fatal error: cannot create timer (-22)
[ 1765.146343][   T28] audit: type=1326 audit(1769234770.830:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17458 comm="syz.4.2609" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1769.414657][T17487] ALSA: seq fatal error: cannot create timer (-22)
[ 1769.423948][   T28] audit: type=1326 audit(1769234775.110:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17486 comm="syz.5.2616" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1770.009011][T17495] siw: device registration error -23
[ 1772.131593][T17503] cgroup: Bad value for 'name'
[ 1772.386186][T17505] netlink: 'syz.3.2623': attribute type 1 has an invalid length.
[ 1772.446796][T17505] 8021q: adding VLAN 0 to HW filter on device bond17
[ 1772.465483][T17508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2623'.
[ 1772.540547][T17510] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2624'.
[ 1772.672269][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1778.871299][T17553] comedi comedi0: pcl711: I/O port conflict (0x6,16)
[ 1780.108096][   T28] audit: type=1326 audit(1769234785.790:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.3.2628" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1780.947144][T17560] fuse: Unknown parameter '0x0000000000000004'
[ 1782.023518][T17566] loop4: detected capacity change from 0 to 512
[ 1782.039935][T17566] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1782.233356][T17566] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2641: corrupted in-inode xattr: invalid size in ea xattr
[ 1782.249335][T17566] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2641: couldn't read orphan inode 17 (err -117)
[ 1782.320434][T17566] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1782.681327][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1782.871890][T17574] random: crng reseeded on system resumption
[ 1783.326911][T17577] loop5: detected capacity change from 0 to 512
[ 1783.716981][T17577] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1783.786172][T17577] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2638: corrupted in-inode xattr: invalid size in ea xattr
[ 1783.801946][T17577] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2638: couldn't read orphan inode 17 (err -117)
[ 1783.828821][T17577] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1784.157147][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1787.721006][   T28] audit: type=1326 audit(1769234793.400:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17602 comm="syz.3.2642" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1788.256748][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1790.874929][T17635] loop4: detected capacity change from 0 to 4096
[ 1791.463545][T17636] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1791.609130][T17634] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2650'.
[ 1792.022517][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.028964][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.846129][T17630] ALSA: seq fatal error: cannot create timer (-22)
[ 1792.888501][   T28] audit: type=1326 audit(1769234798.570:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17629 comm="syz.5.2649" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1793.088338][T17645] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2651'.
[ 1794.579902][T17643] netlink: 'syz.3.2652': attribute type 1 has an invalid length.
[ 1794.648719][T17643] 8021q: adding VLAN 0 to HW filter on device bond18
[ 1794.880666][T17650] ALSA: seq fatal error: cannot create timer (-22)
[ 1794.896087][   T28] audit: type=1326 audit(1769234800.570:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17649 comm="syz.4.2654" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1797.751598][T17679] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.2661'.
[ 1799.399809][   T28] audit: type=1326 audit(1769234805.080:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17686 comm="syz.3.2663" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1799.691575][T17698] netlink: 'syz.1.2664': attribute type 1 has an invalid length.
[ 1799.942133][T17698] 8021q: adding VLAN 0 to HW filter on device bond16
[ 1800.755379][   T28] audit: type=1326 audit(1769234806.430:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17702 comm="syz.4.2667" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1801.817901][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1805.080916][T17739] ALSA: seq fatal error: cannot create timer (-22)
[ 1805.091099][   T28] audit: type=1326 audit(1769234810.770:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17735 comm="syz.1.2674" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1805.342068][T17744] loop4: detected capacity change from 0 to 4096
[ 1805.389338][T17563] I/O error, dev loop4, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1807.159045][T17752] ALSA: seq fatal error: cannot create timer (-22)
[ 1807.167137][   T28] audit: type=1326 audit(1769234812.850:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17750 comm="syz.5.2678" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1807.260588][T17759] netlink: 'syz.4.2679': attribute type 1 has an invalid length.
[ 1807.308810][T17759] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1807.410520][T17761] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2679'.
[ 1807.518967][T17763] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2682'.
[ 1808.664404][T17777] loop5: detected capacity change from 0 to 512
[ 1808.671876][T17777] EXT4-fs: Ignoring removed nobh option
[ 1808.744251][T17777] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2681: iget: bad i_size value: 38620345925642
[ 1808.787334][T17777] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2681: couldn't read orphan inode 15 (err -117)
[ 1808.828854][T17777] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1810.813907][T17779] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[ 1811.073081][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1813.585038][ T5775] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 1813.674184][T17798] ALSA: seq fatal error: cannot create timer (-22)
[ 1813.694024][   T28] audit: type=1326 audit(1769234819.360:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17797 comm="syz.4.2688" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1813.748854][T17804] loop5: detected capacity change from 0 to 512
[ 1813.782507][T17804] EXT4-fs: Ignoring removed nobh option
[ 1815.036183][   T28] audit: type=1326 audit(1769234819.990:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17806 comm="syz.1.2689" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1815.111085][T17804] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.2695: iget: bad i_size value: 38620345925642
[ 1815.166195][T17804] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2695: couldn't read orphan inode 15 (err -117)
[ 1815.195350][T17804] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1815.944714][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1816.775560][T17822] netlink: 'syz.4.2692': attribute type 1 has an invalid length.
[ 1817.184680][T17822] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1817.193706][T17828] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2692'.
[ 1819.267069][T17848] loop4: detected capacity change from 0 to 512
[ 1819.409995][T17848] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1819.673507][T17848] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2699: corrupted in-inode xattr: invalid size in ea xattr
[ 1819.691033][T17848] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2699: couldn't read orphan inode 17 (err -117)
[ 1819.707240][T17848] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1819.860362][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1819.972590][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1820.770411][T17858] ALSA: seq fatal error: cannot create timer (-22)
[ 1820.778368][   T28] audit: type=1326 audit(1769234826.460:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17857 comm="syz.4.2701" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1822.140949][   T28] audit: type=1326 audit(1769234826.960:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.1.2700" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1822.252352][T17865] netlink: 'syz.3.2704': attribute type 1 has an invalid length.
[ 1822.338441][T17865] 8021q: adding VLAN 0 to HW filter on device bond19
[ 1822.376459][T17867] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2704'.
[ 1822.695122][T17872] netlink: 'syz.5.2706': attribute type 1 has an invalid length.
[ 1822.778382][T17872] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1823.163028][T17879] loop5: detected capacity change from 0 to 512
[ 1823.171696][T17879] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1823.195913][T17879] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2708: corrupted in-inode xattr: invalid size in ea xattr
[ 1823.217919][T17879] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2708: couldn't read orphan inode 17 (err -117)
[ 1823.236186][T17879] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1823.415996][T17881] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1823.516609][T17886] loop4: detected capacity change from 0 to 512
[ 1823.523820][T17886] EXT4-fs: Ignoring removed nobh option
[ 1823.537144][T17886] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2702: iget: bad i_size value: 38620345925642
[ 1823.582999][T17886] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2702: couldn't read orphan inode 15 (err -117)
[ 1823.612710][T17886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1824.338904][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1824.523310][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1825.308838][T17897] ALSA: seq fatal error: cannot create timer (-22)
[ 1825.317062][   T28] audit: type=1326 audit(1769234831.000:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17896 comm="syz.5.2710" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1825.424923][T17903] netlink: 'syz.3.2713': attribute type 1 has an invalid length.
[ 1825.557197][T17903] 8021q: adding VLAN 0 to HW filter on device bond20
[ 1826.059465][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1826.909401][T17921] netlink: 'syz.3.2716': attribute type 1 has an invalid length.
[ 1828.320224][T17921] 8021q: adding VLAN 0 to HW filter on device bond21
[ 1828.708422][T17927] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2716'.
[ 1831.760069][   T28] audit: type=1326 audit(1769234837.430:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17945 comm="syz.3.2722" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1834.058846][T17955] siw: device registration error -23
[ 1836.648187][T17971] binder: 17967:17971 ioctl 4018620d 0 returned -22
[ 1837.390780][T17976] random: crng reseeded on system resumption
[ 1838.179297][T17975] vivid-007: kernel_thread() failed
[ 1839.683503][T17982] loop5: detected capacity change from 0 to 131072
[ 1839.716986][T17982] F2FS-fs (loop5): invalid crc value
[ 1839.930325][T17982] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1839.974551][T17982] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[ 1841.983377][   T28] audit: type=1326 audit(1769234847.660:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18007 comm="syz.3.2734" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1844.269831][   T28] audit: type=1326 audit(1769234849.940:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.308095][   T28] audit: type=1326 audit(1769234849.940:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.334725][   T28] audit: type=1326 audit(1769234849.940:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.368611][   T28] audit: type=1326 audit(1769234849.940:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.485156][   T28] audit: type=1326 audit(1769234849.940:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.521915][T18021] loop4: detected capacity change from 0 to 512
[ 1844.529195][T18021] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1844.578798][T18021] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.2746: corrupted in-inode xattr: invalid size in ea xattr
[ 1844.629659][T18021] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2746: couldn't read orphan inode 17 (err -117)
[ 1844.681822][   T28] audit: type=1326 audit(1769234849.990:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.704682][   T28] audit: type=1326 audit(1769234849.990:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.705452][T18021] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1844.728828][   T28] audit: type=1326 audit(1769234849.990:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1844.933894][   T28] audit: type=1326 audit(1769234849.990:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18016 comm="syz.1.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 1845.859403][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1848.956696][T18042] random: crng reseeded on system resumption
[ 1852.180216][T18064] ptrace attach of "./syz-executor exec"[13271] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
[ 1852.848057][T18068] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2743'.
[ 1853.716406][T18075] loop5: detected capacity change from 0 to 512
[ 1854.261459][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1854.288232][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1854.297643][T18075] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1854.366978][T18075] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2758: corrupted in-inode xattr: invalid size in ea xattr
[ 1854.391096][T18075] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2758: couldn't read orphan inode 17 (err -117)
[ 1854.406042][T18075] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1854.665026][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1855.923199][   T28] kauditd_printk_skb: 24 callbacks suppressed
[ 1855.923214][   T28] audit: type=1326 audit(1769234860.890:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18082 comm="syz.1.2760" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1856.321061][T18096] loop5: detected capacity change from 0 to 512
[ 1856.690111][T18096] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1856.716416][T18096] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2761: corrupted in-inode xattr: invalid size in ea xattr
[ 1856.733253][T18096] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2761: couldn't read orphan inode 17 (err -117)
[ 1858.011403][   T28] audit: type=1326 audit(1769234862.960:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18092 comm="syz.4.2763" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1858.037737][T18096] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1858.164058][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1860.804170][   T28] audit: type=1326 audit(1769234866.480:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18113 comm="syz.3.2753" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1860.826357][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1861.726215][T18122] ALSA: seq fatal error: cannot create timer (-22)
[ 1861.804380][   T28] audit: type=1326 audit(1769234867.480:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18109 comm="syz.4.2765" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1861.826157][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1863.405305][T18133] ptrace attach of "./syz-executor exec"[14589] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
[ 1864.359583][T18136] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2762'.
[ 1864.512391][T18137] netlink: 'syz.4.2770': attribute type 1 has an invalid length.
[ 1864.647510][T18144] random: crng reseeded on system resumption
[ 1866.105868][T18137] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1866.136741][T18141] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2770'.
[ 1868.734349][T18159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2767'.
[ 1868.865601][T18159] siw: device registration error -23
[ 1869.525587][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1871.270360][   T28] audit: type=1326 audit(1769234876.240:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18175 comm="syz.4.2771" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1872.497341][T18187] overlayfs: failed to clone upperpath
[ 1874.080906][T18189] sctp: failed to load transform for md5: -2
[ 1874.815752][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1876.057813][T18217] netlink: 'syz.1.2779': attribute type 1 has an invalid length.
[ 1876.303400][T18221] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[ 1876.710493][T13402] IPVS: starting estimator thread 0...
[ 1876.760390][T18217] 8021q: adding VLAN 0 to HW filter on device bond17
[ 1876.881467][T18220] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2779'.
[ 1876.905923][T18223] IPVS: using max 19 ests per chain, 45600 per kthread
[ 1876.984220][T18230] @: renamed from vlan0 (while UP)
[ 1878.282458][T18243] loop5: detected capacity change from 0 to 512
[ 1878.399732][T18238] ALSA: seq fatal error: cannot create timer (-22)
[ 1879.047226][   T28] audit: type=1326 audit(1769234884.090:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18237 comm="syz.1.2783" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1879.079656][T18243] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1879.116205][T18243] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2784: corrupted in-inode xattr: invalid size in ea xattr
[ 1879.131599][T18243] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2784: couldn't read orphan inode 17 (err -117)
[ 1879.149599][T18243] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1879.440566][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1881.164787][T18257] loop5: detected capacity change from 0 to 64
[ 1883.552724][T18274] ALSA: seq fatal error: cannot create timer (-22)
[ 1884.204989][   T28] audit: type=1326 audit(1769234889.240:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18273 comm="syz.1.2794" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1884.345029][T18280] netlink: 'syz.5.2792': attribute type 1 has an invalid length.
[ 1884.404659][T18280] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1884.452946][T18282] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2792'.
[ 1885.750331][   T28] audit: type=1326 audit(1769234890.720:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.4.2788" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1885.955323][T18293] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2797'.
[ 1885.964865][T18293] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2797'.
[ 1887.851732][T18301] syz.5.2800: attempt to access beyond end of device
[ 1887.851732][T18301] loop5: rw=0, sector=2, nr_sectors = 2 limit=0
[ 1887.866356][T18301] MINIX-fs: unable to read superblock
[ 1888.261593][ T2953] Bluetooth: Error in BCSP hdr checksum
[ 1888.548822][T17284] Bluetooth: Error in BCSP hdr checksum
[ 1890.017484][T17792] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 1891.359191][   T28] audit: type=1326 audit(1769234897.040:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18306 comm="syz.3.2802" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1892.123260][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1893.004332][T18326] netlink: 'syz.4.2806': attribute type 1 has an invalid length.
[ 1894.314686][   T28] audit: type=1326 audit(1769234898.990:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18330 comm="syz.5.2807" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1894.339564][T18326] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1894.367311][T18328] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2806'.
[ 1895.587822][   T28] audit: type=1326 audit(1769234900.550:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18332 comm="syz.1.2808" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1898.400754][   T28] audit: type=1326 audit(1769234903.330:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18349 comm="syz.4.2812" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1899.979966][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1902.005776][   T28] audit: type=1326 audit(1769234907.680:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18375 comm="syz.3.2818" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1902.978094][T18384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2813'.
[ 1903.023156][T18384] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2813'.
[ 1904.801555][   T28] audit: type=1326 audit(1769234910.480:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18394 comm="syz.5.2821" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1905.004889][T18403] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2820'.
[ 1905.014115][T18403] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2820'.
[ 1905.184989][ T9439] RDS/tcp: send to fe80::c on cp [0]returned -104, disconnecting and reconnecting
[ 1907.226286][T18419] binder: 18411:18419 ioctl 400c620e 200000000100 returned -22
[ 1908.036719][   T28] audit: type=1400 audit(1769234912.920:471): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=18411 comm="syz.4.2825"
[ 1909.805098][   T28] audit: type=1326 audit(1769234914.770:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18423 comm="syz.4.2827" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1910.164852][T18432] ptrace attach of "./syz-executor exec"[5764] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[ 1912.863655][   T28] audit: type=1326 audit(1769234918.540:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18440 comm="syz.3.2832" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1914.569268][T18467] netlink: 'syz.1.2834': attribute type 1 has an invalid length.
[ 1914.887308][T18470] loop5: detected capacity change from 0 to 512
[ 1914.901570][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.906667][T18470] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1915.002416][T18470] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #17: comm syz.5.2835: corrupted in-inode xattr: invalid size in ea xattr
[ 1915.017463][T18470] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2835: couldn't read orphan inode 17 (err -117)
[ 1915.031095][T18470] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1915.082805][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1915.271496][T18464] nvme_fabrics: missing parameter 'transport=%s'
[ 1915.417782][T18464] nvme_fabrics: missing parameter 'nqn=%s'
[ 1916.679699][   T28] audit: type=1326 audit(1769234921.670:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18475 comm="syz.1.2837" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1918.450442][T18487] random: crng reseeded on system resumption
[ 1919.955846][T18473] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1920.073795][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1920.746745][T18494] ALSA: seq fatal error: cannot create timer (-22)
[ 1921.486588][   T28] audit: type=1326 audit(1769234926.450:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18490 comm="syz.4.2841" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1922.006174][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1923.310062][T18505] 9pnet_fd: Insufficient options for proto=fd
[ 1923.333253][T18505] siw: device registration error -23
[ 1923.376791][T18505] loop5: detected capacity change from 0 to 512
[ 1923.905877][T18505] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1923.918609][T18505] ext4 filesystem being mounted at /188/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1924.193736][T18505] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1924.221540][T18512] fuse: Bad value for 'fd'
[ 1926.726665][   T28] audit: type=1326 audit(1769234931.700:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18515 comm="syz.5.2846" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1929.766947][T18534] netlink: 'syz.5.2848': attribute type 1 has an invalid length.
[ 1929.976248][T18534] 8021q: adding VLAN 0 to HW filter on device bond10
[ 1930.546304][T18544] loop5: detected capacity change from 0 to 512
[ 1930.872598][T18544] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1930.888740][T18544] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1932.075724][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1932.147385][T18551] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[ 1933.921865][   T28] audit: type=1326 audit(1769234938.880:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18561 comm="syz.4.2856" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 1933.934001][T18563] Quota error (device loop5): write_blk: dquota write failed
[ 1933.951973][T18563] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[ 1933.961906][T18563] EXT4-fs error (device loop5): ext4_acquire_dquot:6949: comm syz.5.2852: Failed to acquire dquot type 0
[ 1934.132934][T14589] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1934.487387][T18571] loop5: detected capacity change from 0 to 32768
[ 1934.502919][T18571] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.2858 (18571)
[ 1934.524455][T18571] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1934.534666][T18571] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[ 1934.543452][T18571] BTRFS info (device loop5): using free space tree
[ 1934.734435][T18571] BTRFS info (device loop5): enabling ssd optimizations
[ 1934.741630][T18571] BTRFS info (device loop5): auto enabling async discard
[ 1934.768218][T18571] BTRFS info (device loop5): checking UUID tree
[ 1934.816751][T18571] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1935.510129][T18589] hub 1-0:1.0: USB hub found
[ 1935.515887][T18589] hub 1-0:1.0: 1 port detected
[ 1939.858930][T18626] netlink: 'syz.5.2860': attribute type 1 has an invalid length.
[ 1940.229668][T18626] loop5: detected capacity change from 0 to 128
[ 1940.752194][T18458] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1940.885334][T18629] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 1943.765908][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1944.406826][T18652] SET target dimension over the limit!
[ 1948.593475][T18670] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2874'.
[ 1948.619779][T18669] loop4: detected capacity change from 0 to 8
[ 1948.626975][T18669] squashfs: Unknown parameter ''
[ 1949.259337][T18680] ALSA: seq fatal error: cannot create timer (-22)
[ 1949.992491][   T28] audit: type=1326 audit(1769234954.950:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18678 comm="syz.1.2876" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1950.158374][T18669] loop4: detected capacity change from 0 to 2048
[ 1950.201425][T18669] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1950.263199][   T28] audit: type=1800 audit(1769234955.940:479): pid=18669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2875" name="file1" dev="loop4" ino=1346 res=0 errno=0
[ 1950.466195][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1950.659797][   T28] audit: type=1800 audit(1769234956.330:480): pid=18669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2875" name="file3" dev="loop4" ino=1347 res=0 errno=0
[ 1950.692558][T18688] ntfs3: nbd4: try to read out of volume at offset 0x0
[ 1951.195577][T18693] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2875'.
[ 1952.626343][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1954.737580][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1956.234793][T18728] kernel profiling enabled (shift: 17)
[ 1956.333816][T18732] trusted_key: encrypted_key: keylen parameter is missing
[ 1957.146263][T18740] ALSA: seq fatal error: cannot create timer (-22)
[ 1957.899806][   T28] audit: type=1326 audit(1769234962.860:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18737 comm="syz.1.2887" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1958.985754][T18746] ALSA: seq fatal error: cannot create timer (-22)
[ 1959.747054][   T28] audit: type=1326 audit(1769234964.680:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18738 comm="syz.5.2888" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca2fb9acb9 code=0x0
[ 1960.373541][T18756] loop4: detected capacity change from 0 to 8
[ 1960.433604][T18756] unable to read xattr id index table
[ 1960.829485][T18733] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1961.159119][T18756] loop4: detected capacity change from 0 to 32799
[ 1961.179894][T18756] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop4 scanned by syz.4.2891 (18756)
[ 1961.219917][T18756] BTRFS info (device loop4): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1961.230879][T18756] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[ 1961.239770][T18756] BTRFS info (device loop4): enabling auto defrag
[ 1961.246287][T18756] BTRFS info (device loop4): force clearing of disk cache
[ 1961.254077][T18756] BTRFS info (device loop4): enabling disk space caching
[ 1961.261225][T18756] BTRFS info (device loop4): max_inline at 0
[ 1961.267377][T18756] BTRFS info (device loop4): disk space caching is enabled
[ 1961.405840][T18756] BTRFS info (device loop4): enabling ssd optimizations
[ 1961.412845][T18756] BTRFS info (device loop4): auto enabling async discard
[ 1961.428209][T18756] BTRFS info (device loop4): rebuilding free space tree
[ 1961.505478][T18756] BTRFS info (device loop4): disabling free space tree
[ 1961.512571][T18756] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1961.523113][T18756] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1961.794702][   T28] audit: type=1804 audit(1769234967.470:483): pid=18756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2891" name="/newroot/262/file0/file1" dev="loop4" ino=260 res=1 errno=0
[ 1962.340318][   T28] audit: type=1326 audit(1769234968.020:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18782 comm="syz.3.2894" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1963.188770][T13271] BTRFS info (device loop4): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[ 1963.271093][T18796] netlink: 9275 bytes leftover after parsing attributes in process `syz.5.2895'.
[ 1965.583848][T18807] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2898'.
[ 1965.592820][T18807] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2898'.
[ 1967.531825][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1968.743513][T18834] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1972.332043][   T28] audit: type=1326 audit(1769234978.000:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18852 comm="syz.3.2901" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 1973.596686][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1973.605295][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1975.194917][T18882] loop4: detected capacity change from 0 to 512
[ 1975.522750][T18882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1975.582221][T18882] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1975.716242][T18889] ptrace attach of "./syz-executor exec"[14589] was attempted by "./syz-executor exec"[18889]
[ 1976.022056][T18885] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[ 1976.349392][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1976.356438][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1976.458435][T18900] Quota error (device loop4): write_blk: dquota write failed
[ 1976.466040][T18900] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[ 1976.475967][T18900] EXT4-fs error (device loop4): ext4_acquire_dquot:6949: comm syz.4.2913: Failed to acquire dquot type 0
[ 1977.055426][T18901] ALSA: seq fatal error: cannot create timer (-22)
[ 1977.798909][   T28] audit: type=1326 audit(1769234982.770:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18895 comm="syz.1.2918" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 1977.903518][T18891] befs: (nbd5): No write support. Marking filesystem read-only
[ 1977.912680][T18891] syz.5.2916: attempt to access beyond end of device
[ 1977.912680][T18891] nbd5: rw=0, sector=0, nr_sectors = 2 limit=0
[ 1977.925710][T18891] befs: (nbd5): unable to read superblock
[ 1977.984814][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1979.104980][T18916] 9pnet_fd: Insufficient options for proto=fd
[ 1979.117527][T18916] siw: device registration error -23
[ 1979.130220][T18916] loop4: detected capacity change from 0 to 512
[ 1979.320767][T18916] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1979.333371][T18916] ext4 filesystem being mounted at /268/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1979.568380][T18916] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1981.590230][T18930] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 1982.449691][T18936] loop5: detected capacity change from 0 to 8
[ 1982.459880][T18936] squashfs: Unknown parameter ''
[ 1982.590382][T18936] loop5: detected capacity change from 0 to 2048
[ 1982.603949][T18936] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1982.640068][   T28] audit: type=1800 audit(1769234988.320:487): pid=18936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2927" name="file1" dev="loop5" ino=1346 res=0 errno=0
[ 1982.669800][T18936] ntfs3: nbd5: try to read out of volume at offset 0x0
[ 1982.678698][   T28] audit: type=1800 audit(1769234988.350:488): pid=18936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2927" name="file3" dev="loop5" ino=1347 res=0 errno=0
[ 1983.592664][T18939] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2927'.
[ 1984.598432][T18956] loop5: detected capacity change from 0 to 512
[ 1984.606136][T18956] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[ 1986.705738][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1987.864830][T18976] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2935'.
[ 1987.874111][T18976] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2935'.
[ 1989.585788][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1989.609723][T18999] loop5: detected capacity change from 0 to 8
[ 1989.631536][T18999] unable to read xattr id index table
[ 1993.301620][T19018] nvme_fabrics: missing parameter 'transport=%s'
[ 1993.358780][T19018] nvme_fabrics: missing parameter 'nqn=%s'
[ 1996.294779][T19032] SET target dimension over the limit!
[ 1997.027572][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1998.355829][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 1999.362148][T19063] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2956'.
[ 1999.371248][T19063] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2956'.
[ 2000.243085][T19071] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2960'.
[ 2000.252184][T19071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2960'.
[ 2001.247806][T19088] overlayfs: failed to clone upperpath
[ 2002.876746][T19096] ALSA: seq fatal error: cannot create timer (-22)
[ 2003.604571][   T28] audit: type=1326 audit(1769235008.580:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19092 comm="syz.1.2964" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 2004.606112][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 2006.428543][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 2007.363829][T19125] trusted_key: encrypted_key: keylen parameter is missing
[ 2008.544942][   T28] audit: type=1326 audit(1769235014.220:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19132 comm="syz.3.2974" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 2011.538495][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 2012.129727][T19156] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2972'.
[ 2012.138856][T19156] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2972'.
[ 2012.411224][T19154] ptrace attach of "./syz-executor exec"[5764] was attempted by "./syz-executor exec"[19154]
[ 2013.876313][T19158] befs: (nbd1): No write support. Marking filesystem read-only
[ 2013.887176][T19158] syz.1.2981: attempt to access beyond end of device
[ 2013.887176][T19158] nbd1: rw=0, sector=0, nr_sectors = 2 limit=0
[ 2013.899995][T19158] befs: (nbd1): unable to read superblock
[ 2016.105275][T19178] ALSA: seq fatal error: cannot create timer (-22)
[ 2016.835660][   T28] audit: type=1326 audit(1769235021.810:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19176 comm="syz.4.2986" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd38399acb9 code=0x0
[ 2017.734958][T19188] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 2021.196847][T19199] ALSA: seq fatal error: cannot create timer (-22)
[ 2021.935801][   T28] audit: type=1326 audit(1769235026.910:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19197 comm="syz.1.2992" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 2022.847174][   T28] audit: type=1326 audit(1769235028.530:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19206 comm="syz.3.2996" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 2023.226945][T18980] RDS/tcp: send to fe80::c on cp [0]returned -104, disconnecting and reconnecting
[ 2025.552762][   T28] audit: type=1800 audit(1769235029.520:494): pid=19220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2999" name="bus" dev="overlay" ino=1664 res=0 errno=0
[ 2026.204692][T17792] Bluetooth: hci3: command 0x1003 tx timeout
[ 2026.214359][ T5775] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 2027.821379][T19231] hugetlbfs: Bad value 'ßø' for mount option 'size'
[ 2027.821379][T19231] 
[ 2029.851162][   T28] audit: type=1326 audit(1769235035.530:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19238 comm="syz.3.3003" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 2032.994977][ T5775] Bluetooth: Frame is too long (len 18, expected len 4)
[ 2035.592340][T19273] overlayfs: missing 'workdir'
[ 2037.821445][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 2037.828146][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 2038.606403][   T28] audit: type=1326 audit(1769235044.280:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19278 comm="syz.3.3005" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 2039.305837][T17792] Bluetooth: Frame is too long (len 18, expected len 4)
[ 2041.337125][T18980] RDS/tcp: send to fe80::c on cp [0]returned -104, disconnecting and reconnecting
[ 2041.720679][T19302] netlink: 'syz.1.3019': attribute type 1 has an invalid length.
[ 2042.644122][T19302] 8021q: adding VLAN 0 to HW filter on device bond18
[ 2042.690392][T19305] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3019'.
[ 2042.844575][T10106] RDS/tcp: send to fe80::c on cp [0]returned -104, disconnecting and reconnecting
[ 2045.161756][   T28] audit: type=1326 audit(1769235050.840:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19312 comm="syz.3.3014" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4a98f9acb9 code=0x0
[ 2046.997147][   T59] RDS/tcp: send to fe80::c on cp [0]returned -104, disconnecting and reconnecting
[ 2047.733849][T19338] ptrace attach of "./syz-executor exec"[14589] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
[ 2048.666181][T18980] RDS/tcp: send to fe80::c on cp [0]returned -104, disconnecting and reconnecting
[ 2051.715861][   T28] audit: type=1326 audit(1769235056.580:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.747325][   T28] audit: type=1326 audit(1769235056.580:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.772867][   T28] audit: type=1326 audit(1769235056.620:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.806974][   T28] audit: type=1326 audit(1769235056.620:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.830917][   T28] audit: type=1326 audit(1769235056.620:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.854309][   T28] audit: type=1326 audit(1769235056.630:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.877409][   T28] audit: type=1326 audit(1769235056.630:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.899954][   T28] audit: type=1326 audit(1769235056.630:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.923944][   T28] audit: type=1326 audit(1769235056.640:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9fc5b9acb9 code=0x7ffc0000
[ 2051.955630][   T28] audit: type=1326 audit(1769235056.650:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19345 comm="syz.1.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9fc5b9aa22 code=0x7ffc0000
[ 2051.981050][T19351] netlink: 'syz.5.3031': attribute type 1 has an invalid length.
[ 2052.888279][T19351] 8021q: adding VLAN 0 to HW filter on device bond11
[ 2053.475978][T19366] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3034'.
[ 2054.239554][T19375] loop5: detected capacity change from 0 to 128
[ 2054.920944][T19256] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 2056.767484][T19393] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3040'.
[ 2056.777006][T19393] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3040'.
[ 2057.648173][T19394] loop4: detected capacity change from 0 to 512
[ 2057.761385][T19394] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2057.814400][T19394] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #17: comm syz.4.3036: corrupted in-inode xattr: invalid size in ea xattr
[ 2058.091465][T19394] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.3036: couldn't read orphan inode 17 (err -117)
[ 2058.446440][T19394] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 2059.859778][T19409] ALSA: seq fatal error: cannot create timer (-22)
[ 2060.595716][   T28] kauditd_printk_skb: 6 callbacks suppressed
[ 2060.595731][   T28] audit: type=1326 audit(1769235065.580:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19407 comm="syz.1.3032" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9fc5b9acb9 code=0x0
[ 2061.583931][T19420] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3043'.
[ 2061.593318][T19420] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3043'.
[ 2061.696459][T19400] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 2062.881196][T13271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2064.981808][T19443] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3045'.
[ 2064.991849][T19443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3045'.
[ 2065.083715][T19447] input: syz0 as /devices/virtual/input/input12
[ 2065.790954][T19447] batadv_slave_1: entered promiscuous mode
[ 2065.797582][T19448] batadv_slave_1: left promiscuous mode
[ 2066.111952][T19453] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 2066.608610][T19458] Invalid ELF header type: 3 != 1
[ 2072.039917][T19487] netlink: 'syz.5.3058': attribute type 1 has an invalid length.
[ 2072.213723][T19487] 8021q: adding VLAN 0 to HW filter on device bond12
[ 2072.616807][T19500] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2072.745242][T19502] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3060'.
[ 2072.754524][T19502] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3060'.
[ 2073.482968][T19504] loop5: detected capacity change from 0 to 256
[ 2074.736369][   T28] audit: type=1800 audit(1769235080.370:515): pid=19519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3064" name="bus" dev="overlay" ino=1494 res=0 errno=0
[ 2075.375992][T10703] Bluetooth: Error in BCSP hdr checksum
[ 2076.799469][T19523] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3065'.
[ 2076.808758][T19523] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3065'.
[ 2077.135724][ T5775] Bluetooth: hci3: command 0x1003 tx timeout
[ 2077.143153][T17792] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 2077.331079][T19527] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3075'.
[ 2077.340279][T19527] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3075'.
[ 2078.334762][T19536] netlink: 'syz.4.3069': attribute type 1 has an invalid length.
[ 2078.368092][T19536] 8021q: adding VLAN 0 to HW filter on device bond10
[ 2078.725395][T19546] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 2079.234809][T19553] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3073'.
[ 2079.243966][T19553] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3073'.
[ 2080.737964][   T28] audit: type=1326 audit(1769235086.390:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2080.767337][   T28] audit: type=1326 audit(1769235086.390:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2080.815700][   T28] audit: type=1326 audit(1769235086.390:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2080.865780][   T28] audit: type=1326 audit(1769235086.390:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2080.910223][   T28] audit: type=1326 audit(1769235086.390:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2080.958382][   T28] audit: type=1326 audit(1769235086.390:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2080.991334][   T28] audit: type=1326 audit(1769235086.390:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2081.021516][   T28] audit: type=1326 audit(1769235086.390:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2081.087258][   T28] audit: type=1326 audit(1769235086.390:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4a98f9acb9 code=0x7ffc0000
[ 2081.113284][   T28] audit: type=1326 audit(1769235086.390:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19545 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4a98f9aa22 code=0x7ffc0000
[ 2081.932249][T19564] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3086'.
[ 2081.941862][T19564] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3086'.
[ 2084.761154][T19579] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3079'.
[ 2084.771779][T19579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3079'.
[ 2085.208707][T19581] netlink: 'syz.1.3082': attribute type 1 has an invalid length.
[ 2085.394192][T19581] 8021q: adding VLAN 0 to HW filter on device bond19
[ 2087.011773][T19599] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3076'.
[ 2087.021006][T19599] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3076'.
[ 2089.138269][T19604] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3087'.
[ 2089.148092][T19606] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3087'.
[ 2089.256286][T19608] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3081'.
[ 2089.265465][T19608] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3081'.
[ 2090.825831][T19615] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3089'.
[ 2090.835042][T19615] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3089'.
[ 2092.361450][T19623] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3092'.
[ 2092.409937][T19623] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3092'.
[ 2092.510369][T19624] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3091'.
[ 2092.519476][T19624] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3091'.
[ 2092.568883][T19628] netlink: 'syz.1.3094': attribute type 1 has an invalid length.
[ 2092.768356][T19628] 8021q: adding VLAN 0 to HW filter on device bond20
[ 2093.472649][T19640] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3095'.
[ 2093.568128][T19642] loop5: detected capacity change from 0 to 64
[ 2094.539501][T19643] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3097'.
[ 2094.659209][T19643] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3097'.
[ 2094.950570][T19646] netlink: 'syz.1.3098': attribute type 1 has an invalid length.
[ 2095.183090][T19638] trusted_key: encrypted_key: insufficient parameters specified
[ 2095.236070][T19646] 8021q: adding VLAN 0 to HW filter on device bond21
[ 2095.293514][T19652] loop4: detected capacity change from 0 to 512
[ 2095.321793][T19652] ext4: Unknown parameter 'fsname'
[ 2095.412017][T19567] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 2096.840629][T19656] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3102'.
[ 2096.851484][T19656] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3102'.
[ 2097.180821][T19661] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3103'.
[ 2097.189988][T19661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3103'.
[ 2097.748182][    C1] ------------[ cut here ]------------
[ 2097.753724][    C1] WARNING: CPU: 1 PID: 16610 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600
[ 2097.763890][    C1] Modules linked in:
[ 2097.767817][    C1] CPU: 1 PID: 16610 Comm: kworker/1:0H Not tainted syzkaller #0
[ 2097.775480][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2097.785693][    C1] Workqueue: events_highpri snd_vmidi_output_work
[ 2097.792169][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[ 2097.798545][    C1] Code: 24 4c 89 e7 e8 5e 86 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 ce 84 f7 0f 0b e9 f6 f7 ff ff e8 4d ce 84 f7 <0f> 0b e9 48 fb ff ff e8 41 ce 84 f7 48 c7 c7 e0 4c 64 8e 4c 89 e6
[ 2097.818315][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[ 2097.824423][    C1] RAX: ffffffff8a0244d3 RBX: ffffffff8a0232d6 RCX: ffff888077020000
[ 2097.832459][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 2097.840488][    C1] RBP: 0000000000000000 R08: ffff888077020000 R09: 0000000000000003
[ 2097.848518][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff8880448a23c0
[ 2097.856553][    C1] R13: dffffc0000000000 R14: ffff8880448a28b0 R15: ffff88801ff2ec24
[ 2097.864570][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 2097.873565][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2097.880196][    C1] CR2: 0000200000001000 CR3: 0000000066ebe000 CR4: 00000000003506e0
[ 2097.888237][    C1] Call Trace:
[ 2097.891529][    C1]  <IRQ>
[ 2097.894388][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 2097.900024][    C1]  ieee80211_beacon_get_tim+0xbf/0x580
[ 2097.905509][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 2097.912365][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 2097.917962][    C1]  __iterate_interfaces+0x243/0x500
[ 2097.923183][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 2097.929476][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 2097.936733][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 2097.943010][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 2097.950094][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[ 2097.955324][    C1]  __hrtimer_run_queues+0x52a/0xc40
[ 2097.960602][    C1]  ? hw_scan_work+0xf60/0xf60
[ 2097.965335][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 2097.970506][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 2097.976628][    C1]  hrtimer_run_softirq+0x187/0x2b0
[ 2097.981766][    C1]  handle_softirqs+0x280/0x820
[ 2097.986583][    C1]  ? __irq_exit_rcu+0xd3/0x190
[ 2097.991373][    C1]  ? do_softirq+0x1a0/0x1a0
[ 2097.995919][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 2098.001144][    C1]  __irq_exit_rcu+0xd3/0x190
[ 2098.005763][    C1]  ? irq_exit_rcu+0x20/0x20
[ 2098.010307][    C1]  irq_exit_rcu+0x9/0x20
[ 2098.014576][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 2098.020264][    C1]  </IRQ>
[ 2098.023209][    C1]  <TASK>
[ 2098.026167][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2098.032177][    C1] RIP: 0010:finish_task_switch+0x26a/0x8f0
[ 2098.038030][    C1] Code: 0f 84 33 01 00 00 48 85 db 0f 85 52 01 00 00 e9 de 04 00 00 4c 8b 75 d0 4c 89 e7 e8 50 52 30 09 e8 0b 21 30 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[ 2098.057771][    C1] RSP: 0018:ffffc9000f4ff678 EFLAGS: 00000286
[ 2098.063892][    C1] RAX: e0ef4ded19693500 RBX: 0000000000000000 RCX: e0ef4ded19693500
[ 2098.071923][    C1] RDX: dffffc0000000000 RSI: ffffffff8acac900 RDI: ffffffff8b1c80e0
[ 2098.079950][    C1] RBP: ffffc9000f4ff6d0 R08: ffffffff911be60f R09: 1ffffffff2237cc1
[ 2098.087983][    C1] R10: dffffc0000000000 R11: fffffbfff2237cc2 R12: ffff888077020000
[ 2098.096012][    C1] R13: dffffc0000000000 R14: ffff888018ffbc00 R15: ffff8880b8f3cac8
[ 2098.104037][    C1]  ? finish_task_switch+0x265/0x8f0
[ 2098.109277][    C1]  __schedule+0x155b/0x45a0
[ 2098.113819][    C1]  ? __lock_acquire+0x7d40/0x7d40
[ 2098.118895][    C1]  ? asan.module_dtor+0x20/0x20
[ 2098.123763][    C1]  ? do_raw_spin_unlock+0x121/0x230
[ 2098.129024][    C1]  ? do_raw_spin_unlock+0x121/0x230
[ 2098.134256][    C1]  ? preempt_schedule+0xc0/0xd0
[ 2098.139163][    C1]  preempt_schedule_common+0x82/0xc0
[ 2098.144478][    C1]  preempt_schedule+0xc0/0xd0
[ 2098.149197][    C1]  ? schedule_preempt_disabled+0x20/0x20
[ 2098.154859][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 2098.160886][    C1]  ? lock_chain_count+0x20/0x20
[ 2098.165794][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 2098.171024][    C1]  _raw_spin_unlock_irqrestore+0x111/0x120
[ 2098.176878][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 2098.181754][    C1]  snd_rawmidi_transmit+0x9c/0xc0
[ 2098.186840][    C1]  snd_vmidi_output_work+0x1a6/0x3e0
[ 2098.192154][    C1]  ? snd_virmidi_output_drain+0x70/0x70
[ 2098.197740][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2098.202969][    C1]  ? process_scheduled_works+0x96f/0x15d0
[ 2098.208730][    C1]  ? process_scheduled_works+0x96f/0x15d0
[ 2098.214481][    C1]  process_scheduled_works+0xa5d/0x15d0
[ 2098.220092][    C1]  ? assign_work+0x430/0x430
[ 2098.224711][    C1]  ? assign_work+0x3d0/0x430
[ 2098.229347][    C1]  worker_thread+0xa55/0xfc0
[ 2098.233964][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 2098.239901][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 2098.244764][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 2098.250723][    C1]  kthread+0x2fa/0x390
[ 2098.254819][    C1]  ? pr_cont_work+0x560/0x560
[ 2098.259536][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 2098.264157][    C1]  ret_from_fork+0x48/0x80
[ 2098.268610][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 2098.273222][    C1]  ret_from_fork_asm+0x11/0x20
[ 2098.278033][    C1]  </TASK>
[ 2098.281064][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2098.288325][    C1] CPU: 1 PID: 16610 Comm: kworker/1:0H Not tainted syzkaller #0
[ 2098.295931][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 2098.305967][    C1] Workqueue: events_highpri snd_vmidi_output_work
[ 2098.312367][    C1] Call Trace:
[ 2098.315631][    C1]  <IRQ>
[ 2098.318457][    C1]  dump_stack_lvl+0x18c/0x250
[ 2098.323119][    C1]  ? show_regs_print_info+0x20/0x20
[ 2098.328299][    C1]  ? load_image+0x400/0x400
[ 2098.332789][    C1]  panic+0x2dc/0x730
[ 2098.336666][    C1]  ? bpf_jit_dump+0xd0/0xd0
[ 2098.341239][    C1]  ? ret_from_fork_asm+0x11/0x20
[ 2098.346182][    C1]  __warn+0x2e0/0x470
[ 2098.350141][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 2098.355841][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 2098.361542][    C1]  report_bug+0x2be/0x4f0
[ 2098.365855][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 2098.371556][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 2098.377254][    C1]  ? __ieee80211_beacon_get+0x1235/0x1600
[ 2098.382955][    C1]  handle_bug+0xcf/0x120
[ 2098.387195][    C1]  exc_invalid_op+0x1a/0x50
[ 2098.391678][    C1]  asm_exc_invalid_op+0x1a/0x20
[ 2098.396508][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[ 2098.402817][    C1] Code: 24 4c 89 e7 e8 5e 86 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 ce 84 f7 0f 0b e9 f6 f7 ff ff e8 4d ce 84 f7 <0f> 0b e9 48 fb ff ff e8 41 ce 84 f7 48 c7 c7 e0 4c 64 8e 4c 89 e6
[ 2098.422404][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[ 2098.428452][    C1] RAX: ffffffff8a0244d3 RBX: ffffffff8a0232d6 RCX: ffff888077020000
[ 2098.436404][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 2098.444357][    C1] RBP: 0000000000000000 R08: ffff888077020000 R09: 0000000000000003
[ 2098.452309][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff8880448a23c0
[ 2098.460265][    C1] R13: dffffc0000000000 R14: ffff8880448a28b0 R15: ffff88801ff2ec24
[ 2098.468221][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 2098.473752][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 2098.479455][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 2098.485154][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 2098.490686][    C1]  ieee80211_beacon_get_tim+0xbf/0x580
[ 2098.496130][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 2098.502878][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 2098.508410][    C1]  __iterate_interfaces+0x243/0x500
[ 2098.513589][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 2098.519812][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 2098.526992][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[ 2098.533214][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 2098.540236][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[ 2098.545422][    C1]  __hrtimer_run_queues+0x52a/0xc40
[ 2098.550605][    C1]  ? hw_scan_work+0xf60/0xf60
[ 2098.555268][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 2098.560359][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 2098.566410][    C1]  hrtimer_run_softirq+0x187/0x2b0
[ 2098.571502][    C1]  handle_softirqs+0x280/0x820
[ 2098.576255][    C1]  ? __irq_exit_rcu+0xd3/0x190
[ 2098.581001][    C1]  ? do_softirq+0x1a0/0x1a0
[ 2098.585507][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 2098.590746][    C1]  __irq_exit_rcu+0xd3/0x190
[ 2098.595334][    C1]  ? irq_exit_rcu+0x20/0x20
[ 2098.599846][    C1]  irq_exit_rcu+0x9/0x20
[ 2098.604072][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 2098.609690][    C1]  </IRQ>
[ 2098.612606][    C1]  <TASK>
[ 2098.615519][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2098.621501][    C1] RIP: 0010:finish_task_switch+0x26a/0x8f0
[ 2098.627289][    C1] Code: 0f 84 33 01 00 00 48 85 db 0f 85 52 01 00 00 e9 de 04 00 00 4c 8b 75 d0 4c 89 e7 e8 50 52 30 09 e8 0b 21 30 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[ 2098.646884][    C1] RSP: 0018:ffffc9000f4ff678 EFLAGS: 00000286
[ 2098.652934][    C1] RAX: e0ef4ded19693500 RBX: 0000000000000000 RCX: e0ef4ded19693500
[ 2098.660886][    C1] RDX: dffffc0000000000 RSI: ffffffff8acac900 RDI: ffffffff8b1c80e0
[ 2098.668837][    C1] RBP: ffffc9000f4ff6d0 R08: ffffffff911be60f R09: 1ffffffff2237cc1
[ 2098.676789][    C1] R10: dffffc0000000000 R11: fffffbfff2237cc2 R12: ffff888077020000
[ 2098.684740][    C1] R13: dffffc0000000000 R14: ffff888018ffbc00 R15: ffff8880b8f3cac8
[ 2098.692707][    C1]  ? finish_task_switch+0x265/0x8f0
[ 2098.697896][    C1]  __schedule+0x155b/0x45a0
[ 2098.702382][    C1]  ? __lock_acquire+0x7d40/0x7d40
[ 2098.707398][    C1]  ? asan.module_dtor+0x20/0x20
[ 2098.712241][    C1]  ? do_raw_spin_unlock+0x121/0x230
[ 2098.717424][    C1]  ? do_raw_spin_unlock+0x121/0x230
[ 2098.722609][    C1]  ? preempt_schedule+0xc0/0xd0
[ 2098.727442][    C1]  preempt_schedule_common+0x82/0xc0
[ 2098.732709][    C1]  preempt_schedule+0xc0/0xd0
[ 2098.737380][    C1]  ? schedule_preempt_disabled+0x20/0x20
[ 2098.742993][    C1]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 2098.748964][    C1]  ? lock_chain_count+0x20/0x20
[ 2098.753799][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 2098.758986][    C1]  _raw_spin_unlock_irqrestore+0x111/0x120
[ 2098.764774][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 2098.769609][    C1]  snd_rawmidi_transmit+0x9c/0xc0
[ 2098.774620][    C1]  snd_vmidi_output_work+0x1a6/0x3e0
[ 2098.779890][    C1]  ? snd_virmidi_output_drain+0x70/0x70
[ 2098.785417][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2098.790596][    C1]  ? process_scheduled_works+0x96f/0x15d0
[ 2098.796300][    C1]  ? process_scheduled_works+0x96f/0x15d0
[ 2098.802000][    C1]  process_scheduled_works+0xa5d/0x15d0
[ 2098.807539][    C1]  ? assign_work+0x430/0x430
[ 2098.812112][    C1]  ? assign_work+0x3d0/0x430
[ 2098.816685][    C1]  worker_thread+0xa55/0xfc0
[ 2098.821254][    C1]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 2098.827128][    C1]  ? _raw_spin_unlock+0x40/0x40
[ 2098.831955][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 2098.837837][    C1]  kthread+0x2fa/0x390
[ 2098.841890][    C1]  ? pr_cont_work+0x560/0x560
[ 2098.846550][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 2098.851119][    C1]  ret_from_fork+0x48/0x80
[ 2098.855516][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 2098.860095][    C1]  ret_from_fork_asm+0x11/0x20
[ 2098.864848][    C1]  </TASK>
[ 2098.868314][    C1] Kernel Offset: disabled
[ 2098.872694][    C1] Rebooting in 86400 seconds..