gfs/jPmT9m8Z8rf8ziP3f+mMV/nvwxi/+8+WMW/2fkj1n858sfs/iPyR+z+M+fP2bxH5s/ZvFfIH/M4r9g/pjF/5n5Yxb/Z+WPWfyfnT9m8V8of8zi/5z8MYv/wvljFv/n5o9Z/J+XP2bxXyR/zOL//Pwxi/8L8scs/uPyxyz+L8wfs/i/KH/M4v/i/DGL/6L5Yxb/xfLHLP4vyR+z+C+eP2bxXyJ/zOL/0vwxi//L8scs/i/PH7P4vyJ/zOK/ZP6Yxf+V+WMW/6Xyxyz+S+ePWfyXyR+z+C+bP2bxXy5/zOK/fP6Yxf9V+WMW/xXyxyz+K+aPWfxXyh+z+K+cP2bxf3X+mMV/lfwxi/+q+WMW/9fkj1n8X5s/ZvF/Xf6YxX98/pjFf0L+mMV/Yv6YxX+1/DGL/+r5Yxb/NfLHLP6T8scs/pPzxyz+a+aPWfzXyh+z+L8+f8zi/4b8MYv/2vljFv918scs/uvmj1n835g/ZvFfL3/M4v+m/DGL//r5Yxb/DfLHLP4b5o9Z/DfKH7P4vzl/zOK/cf6YxX+T/DGL/1vyxyz+b80fs/i/LX/M4v/2/DGL/zvyxyz+78wfs/i/K3/M4r9p/pjFf7P8MYv/5vljFv93549Z/LfIH7P4b5k/ZvF/T/6YxX+r/DGL/3vzxyz+W+ePWfzflz9m8X9//pjFf5v8MYv/tvljFv/t8scs/tvnj1n8P5A/ZvH/YP6YxX+H/DGL/4fyxyz+O+aPWfw/nD9m8f9I/pjF/6P5Yxb/nfLHLP47549Z/HfJH7P4fyx/zOK/a/6Yxf/j+WMW/93yxyz+n8gfs/jvnj9m8d8jf8ziv2f+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+H8yf8zi/6n8MYv//vljFv8D8scs/gfmj1n8P50/ZvH/TP6Yxf+z+WMW/4Pyxyz+B+ePWfw/lz9m8T8kf8zif2j+mMX/8/ljFv/D8scs/ofnj1n8v5A/ZvH/Yv6Yxf9L+WMW/y/nj1n8v5I/ZvH/av6Yxf9r+WMW/6/nj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOL/jfwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bx/2b+mMX/W/ljFv8z8scs/mfmj1n8z8ofs/ifnT9m8f92/pjF/5z8MYv/ufljFv/z8scs/t/JH7P4fzd/zOJ/fv6Yxf+C/DGL/4X5Yxb/i/LHLP4X549Z/L+XP2bx/37+mMX/B/ljFv8f5o9Z/H+UP2bx/3H+mMX/kvwxi/+l+WMW/5/kj1n8L8sfs/j/NH/M4n95/pjF/4r8MYv/lfljFv+r8scs/lfnj1n8r8kfs/hfmz9m8f9Z/pjF/+f5Yxb/X+SPWfx/mT9m8b8uf8zif33+mMX/V/ljFv9f549Z/G/IH7P4/yZ/zOJ/Y/6Yxf+m/DGL/835Yxb/3+aPWfxvyR+z+N+aP2bxvy1/zOL/u/wxi//v88cs/n/IH7P4354/ZvH/Y/6Yxf+O/DGL/535Yxb/u/LHLP53549Z/P+UP2bxvyd/zOJ/b/6Yxf/P+WMW//vyxyz+f8kfs/j/NX/M4v+3/DGL/9/zxyz+9+ePWfwfyB+z+D+YP2bxfyh/zOL/cP6YxX9K/pjF/5H8MYv/o/ljFv+p+WMS/1kH+WMW/6H8MYv/qPwxi/8s+WMW/1nzxyz+o/PHLP6z5Y9Z/GfPH7P4z5E/ZvGfM3/M4j9X/pjFf+78MYv/PPljFv9588cs/s/IH7P4z5c/ZvEfkz9m8Z8/f8ziPzZ/zOK/QP6YxX/B/DGL/zPzxyz+z8ofs/g/O3/M4r9Q/pjF/zn5Yxb/hfPHLP7PzR+z+D8vf8ziv0j+mMX/+fljFv8X5I9Z/Mflj1n8X5g/ZvF/Uf6Yxf/F+WMW/0Xzxyz+i+WPWfxfkj9m8V88f8ziv0T+mMX/pfljFv+X5Y9Z/F+eP2bxf0X+mMV/yfwxi/8r88cs/kvlj1n8l84fs/gvkz9m8V82f8ziv1z+mMV/+fwxi/+r8scs/ivkj1n8V8wfs/ivlD9m8V85f8zi/+r8MYv/KvljFv9V88cs/q/JH7P4vzZ/zOL/uvwxi//4/DGL/4T8MYv/xPwxi/9q+WMW/9Xzxyz+a+SPWfwn5Y9Z/Cfnj1n818wfs/ivlT9m8X99/pjF/w35Yxb/tfPHLP7r5I9Z/NfNH7P4vzF/zOK/Xv6Yxf9N+WMW//Xzxyz+G+SPWfw3zB+z+G+UP2bxf3P+mMV/4/wxi/8m+WMW/7fkj1n835o/ZvF/W/6Yxf/t+WMW/3fkj1n835k/ZvF/V/6YxX/T/DGL/2b5Yxb/zfPHLP7vzh+z+G+RP2bx3zJ/zOL/nvwxi/9W+WMW//fmj1n8t84fs/i/L3/M4v/+/DGL/zb5Yxb/bfPHLP7b5Y9Z/LfPH7P4fyB/zOL/wfwxi/8O+WMW/w/lj1n8d8wfs/h/OH/M4v+R/DGL/0fzxyz+O+WPWfx3zh+z+O+SP2bx/1j+mMV/1/wxi//H88cs/rvlj1n8P5E/ZvHfPX/M4r9H/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8f9k/pjF/1P5Yxb//fPHLP4H5I9Z/A/MH7P4fzp/zOL/mfwxi/9n88cs/gflj1n8D84fs/h/Ln/M4n9I/pjF/9D8MYv/5/PHLP6H5Y9Z/A/PH7P4fyF/zOL/xfwxi/+X8scs/l/OH7P4fyV/zOL/1fwxi//X8scs/l/PH7P4H5E/ZvE/Mn/M4n9U/pjF/+j8MYv/MfljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/G/ljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zi/838MYv/t/LHLP5n5I9Z/M/MH7P4n5U/ZvE/O3/M4v/t/DGL/zn5Yxb/c/PHLP7n5Y9Z/L+TP2bx/27+mMX//Pwxi/8F+WMW/wvzxyz+F+WPWfwvzh+z+H8vf8zi//38MYv/D/LHLP4/zB+z+P8of8zi/+P8MYv/JfljFv9L88cs/j/JH7P4X5Y/ZvH/af6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4v+z/DGL/8/zxyz+v8gfs/j/Mn/M4n9d/pjF//r8MYv/r/LHLP6/zh+z+N+QP2bx/03+mMX/xvwxi/9N+WMW/5vzxyz+v80fs/jfkj9m8b81f8zif1v+mMX/d/ljFv/f549Z/P+QP2bxvz1/zOL/x/wxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+P8pf8zif0/+mMX/3vwxi/+f88cs/vflj1n8/5I/ZvH/a/6Yxf9v+WMW/7/nj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/+U/DGL/yP5Yxb/R/PHLP5T88ck/qMH+WMW/6H8MYv/qPwxi/8s+WMW/1nzxyz+o/PHLP6z5Y9Z/GfPH7P4z5E/ZvGfM3/M4j9X/pjFf+78MYv/PPljFv9588cs/s/IH7P4z5c/ZvEfkz9m8Z8/f8ziPzZ/zOK/QP6YxX/B/DGL/zPzxyz+z8ofs/g/O3/M4r9Q/pjF/zn5Yxb/hfPHLP7PzR+z+D8vf8ziv0j+mMX/+fljFv8X5I9Z/Mflj1n8X5g/ZvF/Uf6Yxf/F+WMW/0Xzxyz+i+WPWfxfkj9m8V88f8ziv0T+mMX/pfljFv+X5Y9Z/F+eP2bxf0X+mMV/yfwxi/8r88cs/kvlj1n8l84fs/gvkz9m8V82f8ziv1z+mMV/+fwxi/+r8scs/ivkj1n8V8wfs/ivlD9m8V85f8zi/+r8MYv/KvljFv9V88cs/q/JH7P4vzZ/zOL/uvwxi//4/DGL/4T8MYv/xPwxi/9q+WMW/9Xzxyz+a+SPWfwn5Y9Z/Cfnj1n818wfs/ivlT9m8X99/pjF/w35Yxb/tfPHLP7r5I9Z/NfNH7P4vzF/zOK/Xv6Yxf9N+WMW//Xzxyz+G+SPWfw3zB+z+G+UP2bxf3P+mMV/4/wxi/8m+WMW/7fkj1n835o/ZvF/W/6Yxf/t+WMW/3fkj1n835k/ZvF/V/6YxX/T/DGL/2b5Yxb/zfPHLP7vzh+z+G+RP2bx3zJ/zOL/nvwxi/9W+WMW//fmj1n8t84fs/i/L3/M4v/+/DGL/zb5Yxb/bfPHLP7b5Y9Z/LfPH7P4fyB/zOL/wfwxi/8O+WMW/w/lj1n8d8wfs/h/OH/M4v+R/DGL/0fzxyz+O+WPWfx3zh+z+O+SP2bx/1j+mMV/1/wxi//H88cs/rvlj1n8P5E/ZvHfPX/M4r9H/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8f9k/pjF/1P5Yxb//fPHLP4H5I9Z/A/MH7P4fzp/zOL/mfwxi/9n88cs/gflj1n8D84fs/h/Ln/M4n9I/pjF/9D8MYv/5/PHLP6H5Y9Z/A/PH7P4fyF/zOL/xfwxi/+X8scs/l/OH7P4fyV/zOL/1fwxi//X8scs/l/PH7P4H5E/ZvE/Mn/M4n9U/pjF/+j8MYv/MfljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/G/ljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zi/838MYv/t/LHLP5n5I9Z/M/MH7P4n5U/ZvE/O3/M4v/t/DGL/zn5Yxb/c/PHLP7n5Y9Z/L+TP2bx/27+mMX//Pwxi/8F+WMW/wvzxyz+F+WPWfwvzh+z+H8vf8zi//38MYv/D/LHLP4/zB+z+P8of8zi/+P8MYv/JfljFv9L88cs/j/JH7P4X5Y/ZvH/af6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4v+z/DGL/8/zxyz+v8gfs/j/Mn/M4n9d/pjF//r8MYv/r/LHLP6/zh+z+N+QP2bx/03+mMX/xvwxi/9N+WMW/5vzxyz+v80fs/jfkj9m8b81f8zif1v+mMX/d/ljFv/f549Z/P+QP2bxvz1/zOL/x/wxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+P8pf8zif0/+mMX/3vwxi/+f88cs/vflj1n8/5I/ZvH/a/6Yxf9v+WMW/7/nj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/+U/DGL/yP5Yxb/R/PHLP5T88ck/rMN8scs/kP5Yxb/UfljFv9Z8scs/rPmj1n8R+ePWfxnyx+z+M+eP2bxnyN/zOI/Z/6YxX+u/DGL/9z5Yxb/efLHLP7z5o9Z/J+RP2bxny9/zOI/Jn/M4j9//pjFf2z+mMV/gfwxi/+C+WMW/2fmj1n8n5U/ZvF/dv6YxX+h/DGL/3Pyxyz+C+ePWfyfmz9m8X9e/pjFf5H8MYv/8/PHLP4vyB+z+I/LH7P4vzB/zOL/ovwxi/+L88cs/ovmj1n8F8sfs/i/JH/M4r94/pjFf4n8MYv/S/PHLP4vyx+z+L88f8zi/4r8MYv/kvljFv9X5o9Z/JfKH7P4L50/ZvFfJn/M4r9s/pjFf7n8MYv/8vljFv9X5Y9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjF/9X5Yxb/VfLHLP6r5o9Z/F+TP2bxf23+mMX/dfljFv/x+WMW/wn5Yxb/ifljFv/V8scs/qvnj1n818gfs/hPyh+z+E/OH7P4r5k/ZvFfK3/M4v/6/DGL/xvyxyz+a+ePWfzXyR+z+K+bP2bxf2P+mMV/vfwxi/+b8scs/uvnj1n8N8gfs/hvmD9m8d8of8zi/+b8MYv/xvljFv9N8scs/m/JH7P4vzV/zOL/tvwxi//b88cs/u/IH7P4vzN/zOL/rvwxi/+m+WMW/83yxyz+m+ePWfzfnT9m8d8if8ziv2X+mMX/PfljFv+t8scs/u/NH7P4b50/ZvF/X/6Yxf/9+WMW/23yxyz+2+aPWfy3yx+z+G+fP2bx/0D+mMX/g/ljFv8d8scs/h/KH7P475g/ZvH/cP6Yxf8j+WMW/4/mj1n8d8ofs/jvnD9m8d8lf8zi/7H8MYv/rvljFv+P549Z/HfLH7P4fyJ/zOK/e/6YxX+P/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4v/J/DGL/6fyxyz+++ePWfwPyB+z+B+YP2bx/3T+mMX/M/ljFv/P5o9Z/A/KH7P4H5w/ZvH/XP6Yxf+Q/DGL/6H5Yxb/z+ePWfwPyx+z+B+eP2bx/0L+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv+v5Y9Z/L+eP2bxPyJ/zOJ/ZP6Yxf+o/DGL/9H5Yxb/Y/LHLP7H5o9Z/I/LH7P4H58/ZvE/IX/M4n9i/pjF/6T8MYv/N/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/5v5Yxb/b+WPWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf/b+WMW/3Pyxyz+5+aPWfzPyx+z+H8nf8zi/938MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8f9e/pjF//v5Yxb/H+SPWfx/mD9m8f9R/pjF/8f5Yxb/S/LHLP6X5o9Z/H+SP2bxvyx/zOL/0/wxi//l+WMW/yvyxyz+V+aPWfyvyh+z+F+dP2bxvyZ/zOJ/bf6Yxf9n+WMW/5/nj1n8f5E/ZvH/Zf6Yxf+6/DGL//X5Yxb/X+WPWfx/nT9m8b8hf8zi/5v8MYv/jfljFv+b8scs/jfnj1n8f5s/ZvG/JX/M4n9r/pjF/7b8MYv/7/LHLP6/zx+z+P8hf8zif3v+mMX/j/ljFv878scs/nfmj1n878ofs/jfnT9m8f9T/pjF/578MYv/vfljFv8/549Z/O/LH7P4/yV/zOL/1/wxi//f8scs/n/PH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv8p+WMW/0fyxyz+j+aPWfyn5o9J/Gcf5I9Z/Ifyxyz+o/LHLP6z5I9Z/GfNH7P4j84fs/jPlj9m8Z89f8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+D8jf8ziP1/+mMV/TP6YxX/+/DGL/9j8MYv/AvljFv8F88cs/s/MH7P4Pyt/zOL/7Pwxi/9C+WMW/+fkj1n8F84fs/g/N3/M4v+8/DGL/yL5Yxb/5+ePWfxfkD9m8R+XP2bxf2H+mMX/RfljFv8X549Z/BfNH7P4L5Y/ZvF/Sf6YxX/x/DGL/xL5Yxb/l+aPWfxflj9m8X95/pjF/xX5Yxb/JfPHLP6vzB+z+C+VP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/5fPHLP6vyh+z+K+QP2bxXzF/zOK/Uv6YxX/l/DGL/6vzxyz+q+SPWfxXzR+z+L8mf8zi/9r8MYv/6/LHLP7j88cs/hPyxyz+E/PHLP6r5Y9Z/FfPH7P4r5E/ZvGflD9m8Z+cP2bxXzN/zOK/Vv6Yxf/1+WMW/zfkj1n8184fs/ivkz9m8V83f8zi/8b8MYv/evljFv835Y9Z/NfPH7P4b5A/ZvHfMH/M4r9R/pjF/835Yxb/jfPHLP6b5I9Z/N+SP2bxf2v+mMX/bfljFv+3549Z/N+RP2bxf2f+mMX/XfljFv9N88cs/pvlj1n8N88fs/i/O3/M4r9F/pjFf8v8MYv/e/LHLP5b5Y9Z/N+bP2bx3zp/zOL/vvwxi//788cs/tvkj1n8t80fs/hvlz9m8d8+f8zi/4H8MYv/B/PHLP475I9Z/D+UP2bx3zF/zOL/4fwxi/9H8scs/h/NH7P475Q/ZvHfOX/M4r9L/pjF/2P5Yxb/XfPHLP4fzx+z+O+WP2bx/0T+mMV/9/wxi/8e+WMW/z3zxyz+e+WPWfz3zh+z+O+TP2bx3zd/zOK/X/6Yxf+T+WMW/0/lj1n8988fs/gfkD9m8T8wf8zi/+n8MYv/Z/LHLP6fzR+z+B+UP2bxPzh/zOL/ufwxi/8h+WMW/0Pzxyz+n88fs/gflj9m8T88f8zi/4X8MYv/F/PHLP5fyh+z+H85f8zi/5X8MYv/V/PHLP5fyx+z+H89f8zif0T+mMX/yPwxi/9R+WMW/6Pzxyz+x+SPWfyPzR+z+B+XP2bxPz5/zOJ/Qv6Yxf/E/DGL/0n5Yxb/b+SPWfxPzh+z+J+SP2bxPzV/zOJ/Wv6Yxf/0/DGL/zfzxyz+38ofs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/+388cs/ufkj1n8z80fs/iflz9m8f9O/pjF/7v5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4v+9/DGL//fzxyz+P8gfs/j/MH/M4v+j/DGL/4/zxyz+l+SPWfwvzR+z+P8kf8zif1n+mMX/p/ljFv/L88cs/lfkj1n8r8wfs/hflT9m8b86f8zif03+mMX/2vwxi//P8scs/j/PH7P4/yJ/zOL/y/wxi/91+WMW/+vzxyz+v8ofs/j/On/M4n9D/pjF/zf5Yxb/G/PHLP435Y9Z/G/OH7P4/zZ/zOJ/S/6Yxf/W/DGL/235Yxb/3+WPWfx/nz9m8f9D/pjF//b8MYv/H/PHLP535I9Z/O/MH7P435U/ZvG/O3/M4v+n/DGL/z35Yxb/e/PHLP5/zh+z+N+XP2bx/0v+mMX/r/ljFv+/5Y9Z/P+eP2bxvz9/zOL/QP6Yxf/B/DGL/0P5Yxb/h/PHLP5T8scs/o/kj1n8H80fs/hPzR+T+M8xyB+z+A/lj1n8R+WPWfxnyR+z+M+aP2bxH50/ZvGfLX/M4j97/pjFf478MYv/nPljFv+58scs/nPnj1n858kfs/jPmz9m8X9G/pjFf778MYv/mPwxi//8+WMW/7H5Yxb/BfLHLP4L5o9Z/J+ZP2bxf1b+mMX/2fljFv+F8scs/s/JH7P4L5w/ZvF/bv6Yxf95+WMW/0Xyxyz+z88fs/i/IH/M4j8uf8zi/8L8MYv/i/LHLP4vzh+z+C+aP2bxXyx/zOL/kvwxi//i+WMW/yXyxyz+L80fs/i/LH/M4v/y/DGL/yvyxyz+S+aPWfxfmT9m8V8qf8ziv3T+mMV/mfwxi/+y+WMW/+Xyxyz+y+ePWfxflT9m8V8hf8ziv2L+mMV/pfwxi//K+WMW/1fnj1n8V8kfs/ivmj9m8X9N/pjF/7X5Yxb/1+WPWfzH549Z/Cfkj1n8J+aPWfxXyx+z+K+eP2bxXyN/zOI/KX/M4j85f8ziv2b+mMV/rfwxi//r88cs/m/IH7P4r50/ZvFfJ3/M4r9u/pjF/435Yxb/9fLHLP5vyh+z+K+fP2bx3yB/zOK/Yf6YxX+j/DGL/5vzxyz+G+ePWfw3yR+z+L8lf8zi/9b8MYv/2/LHLP5vzx+z+L8jf8zi/878MYv/u/LHLP6b5o9Z/DfLH7P4b54/ZvF/d/6YxX+L/DGL/5b5Yxb/9+SPWfy3yh+z+L83f8ziv3X+mMX/ffljFv/3549Z/LfJH7P4b5s/ZvHfLn/M4r99/pjF/wP5Yxb/D+aPWfx3yB+z+H8of8ziv2P+mMX/w/ljFv+P5I9Z/D+aP2bx3yl/zOK/c/6YxX+X/DGL/8fyxyz+u+aPWfw/nj9m8d8tf8zi/4n8MYv/7vljFv898scs/nvmj1n898ofs/jvnT9m8d8nf8ziv2/+mMV/v/wxi/8n88cs/p/KH7P4758/ZvE/IH/M4n9g/pjF/9P5Yxb/z+SPWfw/mz9m8T8of8zif3D+mMX/c/ljFv9D8scs/ofmj1n8P58/ZvE/LH/M4n94/pjF/wv5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfy/lj9m8f96/pjF/4j8MYv/kfljFv+j8scs/kfnj1n8j8kfs/gfmz9m8T8uf8zif3z+mMX/hPwxi/+J+WMW/5Pyxyz+38gfs/ifnD9m8T8lf8zif2r+mMX/tPwxi//p+WMW/2/mj1n8v5U/ZvE/I3/M4n9m/pjF/6z8MYv/2fljFv9v549Z/M/JH7P4n5s/ZvE/L3/M4v+d/DGL/3fzxyz+5+ePWfwvyB+z+F+YP2bxvyh/zOJ/cf6Yxf97+WMW/+/nj1n8f5A/ZvH/Yf6Yxf9H+WMW/x/nj1n8L8kfs/hfmj9m8f9J/pjF/7L8MYv/T/PHLP6X549Z/K/IH7P4X5k/ZvG/Kn/M4n91/pjF/5r8MYv/tfljFv+f5Y9Z/H+eP2bx/0X+mMX/l/ljFv/r8scs/tfnj1n8f5U/ZvH/df6Yxf+G/DGL/2/yxyz+N+aPWfxvyh+z+N+cP2bx/23+mMX/lvwxi/+t+WMW/9vyxyz+v8sfs/j/Pn/M4v+H/DGL/+35Yxb/P+aPWfzvyB+z+N+ZP2bxvyt/zOJ/d/6Yxf9P+WMW/3vyxyz+9+aPWfz/nD9m8b8vf8zi/5f8MYv/X/PHLP5/yx+z+P89f8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfyn5I9Z/B/JH7P4P5o/ZvGfmj8m8Z9zkD9m8R/KH7P4j8ofs/jPkj9m8Z81f8ziPzp/zOI/W/6YxX/2/DGL/xz5Yxb/OfPHLP5z5Y9Z/OfOH7P4z5M/ZvGfN3/M4v+M/DGL/3z5Yxb/MfljFv/588cs/mPzxyz+C+SPWfwXzB+z+D8zf8zi/6z8MYv/s/PHLP4L5Y9Z/J+TP2bxXzh/zOL/3Pwxi//z8scs/ovkj1n8n58/ZvF/Qf6YxX9c/pjF/4X5Yxb/F+WPWfxfnD9m8V80f8ziv1j+mMX/JfljFv/F88cs/kvkj1n8X5o/ZvF/Wf6Yxf/l+WMW/1fkj1n8l8wfs/i/Mn/M4r9U/pjFf+n8MYv/MvljFv9l88cs/svlj1n8l88fs/i/Kn/M4r9C/pjFf8X8MYv/SvljFv+V88cs/q/OH7P4r5I/ZvFfNX/M4v+a/DGL/2vzxyz+r8sfs/iPzx+z+E/IH7P4T8wfs/ivlj9m8V89f8ziv0b+mMV/Uv6YxX9y/pjFf838MYv/WvljFv/X549Z/N+QP2bxXzt/zOK/Tv6YxX/d/DGL/xvzxyz+6+WPWfzflD9m8V8/f8ziv0H+mMV/w/wxi/9G+WMW/zfnj1n8N84fs/hvkj9m8X9L/pjF/635Yxb/t+WPWfzfnj9m8X9H/pjF/535Yxb/d+WPWfw3zR+z+G+WP2bx3zx/zOL/7vwxi/8W+WMW/y3zxyz+78kfs/hvlT9m8X9v/pjFf+v8MYv/+/LHLP7vzx+z+G+TP2bx3zZ/zOK/Xf6YxX/7/DGL/wfyxyz+H8wfs/jvkD9m8f9Q/pjFf8f8MYv/h/PHLP4fyR+z+H80f8ziv1P+mMV/5/wxi/8u+WMW/4/lj1n8d80fs/h/PH/M4r9b/pjF/xP5Yxb/3fPHLP575I9Z/PfMH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/fvljFv9P5o9Z/D+VP2bx3z9/zOJ/QP6Yxf/A/DGL/6fzxyz+n8kfs/h/Nn/M4n9Q/pjF/+D8MYv/5/LHLP6H5I9Z/A/NH7P4fz5/zOJ/WP6Yxf/w/DGL/xfyxyz+X8wfs/h/KX/M4v/l/DGL/1fyxyz+X80fs/h/LX/M4v/1/DGL/xH5Yxb/I/PHLP5H5Y9Z/I/OH7P4H5M/ZvE/Nn/M4n9c/pjF//j8MYv/CfljFv8T88cs/iflj1n8v5E/ZvE/OX/M4n9K/pjF/9T8MYv/afljFv/T88cs/t/MH7P4fyt/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7fzh+z+J+TP2bxPzd/zOJ/Xv6Yxf87+WMW/+/mj1n8z88fs/hfkD9m8b8wf8zif1H+mMX/4vwxi//38scs/t/PH7P4/yB/zOL/w/wxi/+P8scs/j/OH7P4X5I/ZvG/NH/M4v+T/DGL/2X5Yxb/n+aPWfwvzx+z+F+RP2bxvzJ/zOJ/Vf6Yxf/q/DGL/zX5Yxb/a/PHLP4/yx+z+P88f8zi/4v8MYv/L/PHLP7X5Y9Z/K/PH7P4/yp/zOL/6/wxi/8N+WMW/9/kj1n8b8wfs/jflD9m8b85f8zi/9v8MYv/LfljFv9b88cs/rflj1n8f5c/ZvH/ff6Yxf8P+WMW/9vzxyz+f8wfs/jfkT9m8b8zf8zif1f+mMX/7vwxi/+f8scs/vfkj1n8780fs/j/OX/M4n9f/pjF/y/5Yxb/v+aPWfz/lj9m8f97/pjF//78MYv/A/ljFv8H88cs/g/lj1n8H84fs/hPyR+z+D+SP2bxfzR/zOI/NX9M4j/XIH/M4j+UP2bxH5U/ZvGfJX/M4j9r/pjFf3T+mMV/tvwxi//s+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6Yxf8Z+WMW//nyxyz+Y/LHLP7z549Z/Mfmj1n8F8gfs/gvmD9m8X9m/pjF/1n5Yxb/Z+ePWfwXyh+z+D8nf8ziv3D+mMX/ufljFv/n5Y9Z/BfJH7P4Pz9/zOL/gvwxi/+4/DGL/wvzxyz+L8ofs/i/OH/M4r9o/pjFf7H8MYv/S/LHLP6L549Z/JfIH7P4vzR/zOL/svwxi//L88cs/q/IH7P4L5k/ZvF/Zf6YxX+p/DGL/9L5Yxb/ZfLHLP7L5o9Z/JfLH7P4L58/ZvF/Vf6YxX+F/DGL/4r5Yxb/lfLHLP4r549Z/F+dP2bxXyV/zOK/av6Yxf81+WMW/9fmj1n8X5c/ZvEfnz9m8Z+QP2bxn5g/ZvFfLX/M4r96/pjFf438MYv/pPwxi//k/DGL/5r5Yxb/tfLHLP6vzx+z+L8hf8ziv3b+mMV/nfwxi/+6+WMW/zfmj1n818sfs/i/KX/M4r9+/pjFf4P8MYv/hvljFv+N8scs/m/OH7P4b5w/ZvHfJH/M4v+W/DGL/1vzxyz+b8sfs/i/PX/M4v+O/DGL/zvzxyz+78ofs/hvmj9m8d8sf8ziv3n+mMX/3fljFv8t8scs/lvmj1n835M/ZvHfKn/M4v/e/DGL/9b5Yxb/9+WPWfzfnz9m8d8mf8ziv23+mMV/u/wxi//2+WMW/w/kj1n8P5g/ZvHfIX/M4v+h/DGL/475Yxb/D+ePWfw/kj9m8f9o/pjFf6f8MYv/zvljFv9d8scs/h/LH7P475o/ZvH/eP6YxX+3/DGL/yfyxyz+u+ePWfz3yB+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP6fzB+z+H8qf8ziv3/+mMX/gPwxi/+B+WMW/0/nj1n8P5M/ZvH/bP6Yxf+g/DGL/8H5Yxb/z+WPWfwPyR+z+B+aP2bx/3z+mMX/sPwxi//h+WMW/y/kj1n8v5g/ZvH/Uv6Yxf/L+WMW/6/kj1n8v5o/ZvH/Wv6Yxf/r+WMW/yPyxyz+R+aPWfyPyh+z+B+dP2bxPyZ/zOJ/bP6Yxf+4/DGL//H5Yxb/E/LHLP4n5o9Z/E/KH7P4fyN/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/L+ZP2bx/1b+mMX/jPwxi/+Z+WMW/7Pyxyz+Z+ePWfy/nT9m8T8nf8zif27+mMX/vPwxi/938scs/t/NH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv/v5Y9Z/L+fP2bx/0H+mMX/h/ljFv8f5Y9Z/H+cP2bxvyR/zOJ/af6Yxf8n+WMW/8vyxyz+P80fs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfx/lj9m8f95/pjF/xf5Yxb/X+aPWfyvyx+z+F+fP2bx/1X+mMX/1/ljFv8b8scs/r/JH7P435g/ZvG/KX/M4n9z/pjF/7f5Yxb/W/LHLP635o9Z/G/LH7P4/y5/zOL/+/wxi/8f8scs/rfnj1n8/5g/ZvG/I3/M4n9n/pjF/678MYv/3fljFv8/5Y9Z/O/JH7P435s/ZvH/c/6Yxf++/DGL/1/yxyz+f80fs/j/LX/M4v/3/DGL//35Yxb/B/LHLP4P5o9Z/B/KH7P4P5w/ZvGfkj9m8X8kf8zi/2j+mMV/av6YxH/uQf6YxX8of8ziPyp/zOI/S/6YxX/W/DGL/+j8MYv/bPljFv/Z88cs/nPkj1n858wfs/jPlT9m8Z87f8ziP0/+mMV/3vwxi/8z8scs/vPlj1n8x+SPWfznzx+z+I/NH7P4L5A/ZvFfMH/M4v/M/DGL/7Pyxyz+z84fs/gvlD9m8X9O/pjFf+H8MYv/c/PHLP7Pyx+z+C+SP2bxf37+mMX/BfljFv9x+WMW/xfmj1n8X5Q/ZvF/cf6YxX/R/DGL/2L5Yxb/l+SPWfwXzx+z+C+RP2bxf2n+mMX/ZfljFv+X549Z/F+RP2bxXzJ/zOL/yvwxi/9S+WMW/6Xzxyz+y+SPWfyXzR+z+C+XP2bxXz5/zOL/qvwxi/8K+WMW/xXzxyz+K+WPWfxXzh+z+L86f8ziv0r+mMV/1fwxi/9r8scs/q/NH7P4vy5/zOI/Pn/M4j8hf8ziPzF/zOK/Wv6YxX/1/DGL/xr5Yxb/SfljFv/J+WMW/zXzxyz+a+WPWfxfnz9m8X9D/pjFf+38MYv/OvljFv9188cs/m/MH7P4r5c/ZvF/U/6YxX/9/DGL/wb5Yxb/DfPHLP4b5Y9Z/N+cP2bx3zh/zOK/Sf6Yxf8t+WMW/7fmj1n835Y/ZvF/e/6Yxf8d+WMW/3fmj1n835U/ZvHfNH/M4r9Z/pjFf/P8MYv/u/PHLP5b5I9Z/LfMH7P4vyd/zOK/Vf6Yxf+9+WMW/63zxyz+78sfs/i/P3/M4r9N/pjFf9v8MYv/dvljFv/t88cs/h/IH7P4fzB/zOK/Q/6Yxf9D+WMW/x3zxyz+H84fs/h/JH/M4v/R/DGL/075Yxb/nfPHLP675I9Z/D+WP2bx3zV/zOL/8fwxi/9u+WMW/0/kj1n8d88fs/jvkT9m8d8zf8ziv1f+mMV/7/wxi/8++WMW/33zxyz+++WPWfw/mT9m8f9U/pjFf//8MYv/AfljFv8D88cs/p/OH7P4fyZ/zOL/2fwxi/9B+WMW/4Pzxyz+n8sfs/gfkj9m8T80f8zi//n8MYv/YfljFv/D88cs/l/IH7P4fzF/zOL/pfwxi/+X88cs/l/JH7P4fzV/zOL/tfwxi//X88cs/kfkj1n8j8wfs/gflT9m8T86f8zif0z+mMX/2Pwxi/9x+WMW/+Pzxyz+J+SPWfxPzB+z+J+UP2bx/0b+mMX/5Pwxi/8p+WMW/1Pzxyz+p+WPWfxPzx+z+H8zf8zi/638MYv/GfljFv8z88cs/mflj1n8z84fs/h/O3/M4n9O/pjF/9z8MYv/efljFv/v5I9Z/L+bP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP7fyx+z+H8/f8zi/4P8MYv/D/PHLP4/yh+z+P84f8zif0n+mMX/0vwxi/9P8scs/pflj1n8f5o/ZvG/PH/M4n9F/pjF/8r8MYv/VfljFv+r88cs/tfkj1n8r80fs/j/LH/M4v/z/DGL/y/yxyz+v8wfs/hflz9m8b8+f8zi/6v8MYv/r/PHLP435I9Z/H+TP2bxvzF/zOJ/U/6Yxf/m/DGL/2/zxyz+t+SPWfxvzR+z+N+WP2bx/13+mMX/9/ljFv8/5I9Z/G/PH7P4/zF/zOJ/R/6Yxf/O/DGL/135Yxb/u/PHLP5/yh+z+N+TP2bxvzd/zOL/5/wxi/99+WMW/7/kj1n8/5o/ZvH/W/6Yxf/v+WMW//vzxyz+D+SPWfwfzB+z+D+UP2bxfzh/zOI/JX/M4v9I/pjF/9H8MYv/1Pwxif88g/wxi/9Q/pjFf1T+mMV/lvwxi/+s+WMW/9H5Yxb/2fLHLP6z549Z/OfIH7P4z5k/ZvGfK3/M4j93/pjFf578MYv/vPljFv9n5I9Z/OfLH7P4j8kfs/jPnz9m8R+bP2bxXyB/zOK/YP6Yxf+Z+WMW/2flj1n8n50/ZvFfKH/M4v+c/DGL/8L5Yxb/5+aPWfyflz9m8V8kf8zi//z8MYv/C/LHLP7j8scs/i/MH7P4vyh/zOL/4vwxi/+i+WMW/8Xyxyz+L8kfs/gvnj9m8V8if8zi/9L8MYv/y/LHLP4vzx+z+L8if8ziv2T+mMX/lfljFv+l8scs/kvnj1n8l8kfs/gvmz9m8V8uf8ziv3z+mMX/VfljFv8V8scs/ivmj1n8V8ofs/ivnD9m8X91/pjFf5X8MYv/qvljFv/X5I9Z/F+bP2bxf13+mMV/fP6YxX9C/pjFf2L+mMV/tfwxi//q+WMW/zXyxyz+k/LHLP6T88cs/mvmj1n818ofs/i/Pn/M4v+G/DGL/9r5Yxb/dfLHLP7r5o9Z/N+YP2bxXy9/zOL/pvwxi//6+WMW/w3yxyz+G+aPWfw3yh+z+L85f8ziv3H+mMV/k/wxi/9b8scs/m/NH7P4vy1/zOL/9vwxi/878scs/u/MH7P4vyt/zOK/af6YxX+z/DGL/+b5Yxb/d+ePWfy3yB+z+G+ZP2bxf0/+mMV/q/wxi/9788cs/lvnj1n835c/ZvF/f/6YxX+b/DGL/7b5Yxb/7fLHLP7b549Z/D+QP2bx/2D+mMV/h/wxi/+H8scs/jvmj1n8P5w/ZvH/SP6Yxf+j+WMW/53yxyz+O+ePWfx3yR+z+H8sf8ziv2v+mMX/4/ljFv/d8scs/p/IH7P4754/ZvHfI3/M4r9n/pjFf6/8MYv/3vljFv998scs/vvmj1n898sfs/h/Mn/M4v+p/DGL//75Yxb/A/LHLP4H5o9Z/D+dP2bx/0z+mMX/s/ljFv+D8scs/gfnj1n8P5c/ZvE/JH/M4n9o/pjF//P5Yxb/w/LHLP6H549Z/L+QP2bx/2L+mMX/S/ljFv8v549Z/L+SP2bx/2r+mMX/a/ljFv+v549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zi/438MYv/yfljFv9T8scs/qfmj1n8T8sfs/ifnj9m8f9m/pjF/1v5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvH/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7fyR+z+H83f8zif37+mMX/gvwxi/+F+WMW/4vyxyz+F+ePWfy/lz9m8f9+/pjF/wf5Yxb/H+aPWfx/lD9m8f9x/pjF/5L8MYv/pfljFv+f5I9Z/C/LH7P4/zR/zOJ/ef6Yxf+K/DGL/5X5Yxb/q/LHLP5X549Z/K/JH7P4X5s/ZvH/Wf6Yxf/n+WMW/1/kj1n8f5k/ZvG/Ln/M4n99/pjF/1f5Yxb/X+ePWfxvyB+z+P8mf8zif2P+mMX/pvwxi//N+WMW/9/mj1n8b8kfs/jfmj9m8b8tf8zi/7v8MYv/7/PHLP5/yB+z+N+eP2bx/2P+mMX/jvwxi/+d+WMW/7vyxyz+d+ePWfz/lD9m8b8nf8zif2/+mMX/z/ljFv/78scs/n/JH7P4/zV/zOL/t/wxi//f88cs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMV/Sv6Yxf+R/DGL/6P5Yxb/qfljEv95B/ljFv+h/DGL/6j8MYv/LPljFv9Z88cs/qPzxyz+s+WPWfxnzx+z+M+RP2bxnzN/zOI/V/6YxX/u/DGL/zz5Yxb/efPHLP7PyB+z+M+XP2bxH5M/ZvGfP3/M4j82f8ziv0D+mMV/wfwxi/8z88cs/s/KH7P4Pzt/zOK/UP6Yxf85+WMW/4Xzxyz+z80fs/g/L3/M4r9I/pjF//n5Yxb/F+SPWfzH5Y9Z/F+YP2bxf1H+mMX/xfljFv9F88cs/ovlj1n8X5I/ZvFfPH/M4r9E/pjF/6X5Yxb/l+WPWfxfnj9m8X9F/pjFf8n8MYv/K/PHLP5L5Y9Z/JfOH7P4L5M/ZvFfNn/M4r9c/pjFf/n8MYv/q/LHLP4r5I9Z/FfMH7P4r5Q/ZvFfOX/M4v/q/DGL/yr5Yxb/VfPHLP6vyR+z+L82f8zi/7r8MYv/+Pwxi/+E/DGL/8T8MYv/avljFv/V88cs/mvkj1n8J+WPWfwn549Z/NfMH7P4r5U/ZvF/ff6Yxf8N+WMW/7Xzxyz+6+SPWfzXzR+z+L8xf8ziv17+mMX/TfljFv/188cs/hvkj1n8N8wfs/hvlD9m8X9z/pjFf+P8MYv/JvljFv+35I9Z/N+aP2bxf1v+mMX/7fljFv935I9Z/N+ZP2bxf1f+mMV/0/wxi/9m+WMW/83zxyz+784fs/hvkT9m8d8yf8zi/578MYv/VvljFv/35o9Z/LfOH7P4vy9/zOL//vwxi/82+WMW/23zxyz+2+WPWfy3zx+z+H8gf8zi/8H8MYv/DvljFv8P5Y9Z/HfMH7P4fzh/zOL/kfwxi/9H88cs/jvlj1n8d84fs/jvkj9m8f9Y/pjFf9f8MYv/x/PHLP675Y9Z/D+RP2bx3z1/zOK/R/6YxX/P/DGL/175Yxb/vfPHLP775I9Z/PfNH7P475c/ZvH/ZP6Yxf9T+WMW//3zxyz+B+SPWfwPzB+z+H86f8zi/5n8MYv/Z/PHLP4H5Y9Z/A/OH7P4fy5/zOJ/SP6Yxf/Q/DGL/+fzxyz+h+WPWfwPzx+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1/LHLP5fzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/xv5Yxb/k/PHLP6n5I9Z/E/NH7P4n5Y/ZvE/PX/M4v/N/DGL/7fyxyz+Z+SPWfzPzB+z+J+VP2bxPzt/zOL/7fwxi/85+WMW/3Pzxyz+5+WPWfy/kz9m8f9u/pjF//z8MYv/BfljFv8L88cs/hflj1n8L84fs/h/L3/M4v/9/DGL/w/yxyz+P8wfs/j/KH/M4v/j/DGL/yX5Yxb/S/PHLP4/yR+z+F+WP2bx/2n+mMX/8vwxi/8V+WMW/yvzxyz+V+WPWfyvzh+z+F+TP2bxvzZ/zOL/s/wxi//P88cs/r/IH7P4/zJ/zOJ/Xf6Yxf/6/DGL/6/yxyz+v84fs/jfkD9m8f9N/pjF/8b8MYv/TfljFv+b88cs/r/NH7P435I/ZvG/NX/M4n9b/pjF/3f5Yxb/3+ePWfz/kD9m8b89f8zi/8f8MYv/HfljFv8788cs/nflj1n8784fs/j/KX/M4n9P/pjF/978MYv/n/PHLP735Y9Z/P+SP2bx/2v+mMX/b/ljFv+/549Z/O/PH7P4P5A/ZvF/MH/M4v9Q/pjF/+H8MYv/lPwxi/8j+WMW/0fzxyz+U/PHJP7PGOSPWfyH8scs/qPyxyz+s+SPWfxnzR+z+I/OH7P4z5Y/ZvGfPX/M4j9H/pjFf878MYv/XPljFv+588cs/vPkj1n8580fs/g/I3/M4j9f/pjFf0z+mMV//vwxi//Y/DGL/wL5Yxb/BfPHLP7PzB+z+D8rf8zi/+z8MYv/QvljFv/n5I9Z/BfOH7P4Pzd/zOL/vPwxi/8i+WMW/+fnj1n8X5A/ZvEflz9m8X9h/pjF/0X5Yxb/F+ePWfwXzR+z+C+WP2bxf0n+mMV/8fwxi/8S+WMW/5fmj1n8X5Y/ZvF/ef6Yxf8V+WMW/yXzxyz+r8wfs/gvlT9m8V86f8ziv0z+mMV/2fwxi/9y+WMW/+Xzxyz+r8ofs/ivkD9m8V8xf8ziv1L+mMV/5fwxi/+r88cs/qvkj1n8V80fs/i/Jn/M4v/a/DGL/+vyxyz+4/PHLP4T8scs/hPzxyz+q+WPWfxXzx+z+K+RP2bxn5Q/ZvGfnD9m8V8zf8ziv1b+mMX/9fljFv835I9Z/NfOH7P4r5M/ZvFfN3/M4v/G/DGL/3r5Yxb/N+WPWfzXzx+z+G+QP2bx3zB/zOK/Uf6Yxf/N+WMW/43zxyz+m+SPWfzfkj9m8X9r/pjF/235Yxb/t+ePWfzfkT9m8X9n/pjF/135Yxb/TfPHLP6b5Y9Z/DfPH7P4vzt/zOK/Rf6YxX/L/DGL/3vyxyz+W+WPWfzfmz9m8d86f8zi/778MYv/+/PHLP7b5I9Z/LfNH7P4b5c/ZvHfPn/M4v+B/DGL/wfzxyz+O+SPWfw/lD9m8d8xf8zi/+H8MYv/R/LHLP4fzR+z+O+UP2bx3zl/zOK/S/6Yxf9j+WMW/13zxyz+H88fs/jvlj9m8f9E/pjFf/f8MYv/HvljFv8988cs/nvlj1n8984fs/jvkz9m8d83f8ziv1/+mMX/k/ljFv9P5Y9Z/PfPH7P4H5A/ZvE/MH/M4v/p/DGL/2fyxyz+n80fs/gflD9m8T84f8zi/7n8MYv/IfljFv9D88cs/p/PH7P4H5Y/ZvE/PH/M4v+F/DGL/xfzxyz+X8ofs/h/OX/M4v+V/DGL/1fzxyz+X8sfs/h/PX/M4n9E/pjF/8j8MYv/UfljFv+j88cs/sfkj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/2/kj1n8T84fs/ifkj9m8T81f8zif1r+mMX/9Pwxi/8388cs/t/KH7P4n5E/ZvE/M3/M4n9W/pjF/+z8MYv/t/PHLP7n5I9Z/M/NH7P4n5c/ZvH/Tv6Yxf+7+WMW//Pzxyz+F+SPWfwvzB+z+F+UP2bxvzh/zOL/vfwxi//388cs/j/IH7P4/zB/zOL/o/wxi/+P88cs/pfkj1n8L80fs/j/JH/M4n9Z/pjF/6f5Yxb/y/PHLP5X5I9Z/K/MH7P4X5U/ZvG/On/M4n9N/pjF/9r8MYv/z/LHLP4/zx+z+P8if8zi/8v8MYv/dfljFv/r88cs/r/KH7P4/zp/zOJ/Q/6Yxf83+WMW/xvzxyz+N+WPWfxvzh+z+P82f8zif0v+mMX/1vwxi/9t+WMW/9/lj1n8f58/ZvH/Q/6Yxf/2/DGL/x/zxyz+d+SPWfzvzB+z+N+VP2bxvzt/zOL/p/wxi/89+WMW/3vzxyz+f84fs/jflz9m8f9L/pjF/6/5Yxb/v+WPWfz/nj9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+U/LHLP6P5I9Z/B/NH7P4T80fk/jPN8gfs/gP5Y9Z/Eflj1n8Z8kfs/jPmj9m8R+dP2bxny1/zOI/e/6YxX+O/DGL/5z5Yxb/ufLHLP5z549Z/OfJH7P4z5s/ZvF/Rv6YxX++/DGL/5j8MYv//PljFv+x+WMW/wXyxyz+C+aPWfyfmT9m8X9W/pjF/9n5Yxb/hfLHLP7PyR+z+C+cP2bxf27+mMX/efljFv9F8scs/s/PH7P4vyB/zOI/Ln/M4v/C/DGL/4vyxyz+L84fs/gvmj9m8V8sf8zi/5L8MYv/4vljFv8l8scs/i/NH7P4vyx/zOL/8vwxi/8r8scs/kvmj1n8X5k/ZvFfKn/M4r90/pjFf5n8MYv/svljFv/l8scs/svnj1n8X5U/ZvFfIX/M4r9i/pjFf6X8MYv/yvljFv9X549Z/FfJH7P4r5o/ZvF/Tf6Yxf+1+WMW/9flj1n8x+ePWfwn5I9Z/Cfmj1n8V8sfs/ivnj9m8V8jf8ziPyl/zOI/OX/M4r9m/pjFf638MYv/6/PHLP5vyB+z+K+dP2bxXyd/zOK/bv6Yxf+N+WMW//Xyxyz+b8ofs/ivnz9m8d8gf8ziv2H+mMV/o/wxi/+b88cs/hvnj1n8N8kfs/i/JX/M4v/W/DGL/9vyxyz+b88fs/i/I3/M4v/O/DGL/7vyxyz+m+aPWfw3yx+z+G+eP2bxf3f+mMV/i/wxi/+W+WMW//fkj1n8t8ofs/i/N3/M4r91/pjF/335Yxb/9+ePWfy3yR+z+G+bP2bx3y5/zOK/ff6Yxf8D+WMW/w/mj1n8d8gfs/h/KH/M4r9j/pjF/8P5Yxb/j+SPWfw/mj9m8d8pf8ziv3P+mMV/l/wxi//H8scs/rvmj1n8P54/ZvHfLX/M4v+J/DGL/+75Yxb/PfLHLP575o9Z/PfKH7P4750/ZvHfJ3/M4r9v/pjFf7/8sf+PPXo6FMQAgAAYGy+2bdu2bdt28hvbtm3btm3bumtgK7idaWFa/o/0H7X8H+U/avk/2n/U8n+M/6jl/1j/Ucv/cf6jlv/j/Uct/yf4j1r+T/Qftfyf5D9q+T/Zf9Tyf4r/qOX/VP9Ry/9p/qOW/9P9Ry3/Z/iPWv7P9B+1/J/lP2r5P9t/1PJ/jv+o5f9c/1HL/3n+o5b/8/1HLf8X+I9a/i/0H7X8X+Q/avm/2H/U8n+J/6jl/1L/Ucv/Zf6jlv/L/Uct/1f4j1r+r/Qftfxf5T9q+b/af9Tyf43/qOX/Wv9Ry/91/qOW/+v9Ry3/N/iPWv5v9B+1/N/kP2r5v9l/1PJ/i/+o5f9W/1HL/23+o5b/2/1HLf93+I9a/u/0H7X83+U/avm/23/U8n+P/6jl/17/Ucv/ff6jlv/7/Uct/w/4j1r+H/Qftfw/5D9q+X/Yf9Ty/4j/qOX/Uf9Ry/9j/qOW/8f9Ry3/T/iPWv6f9B+1/D/lP2r5f9p/1PL/jP+o5f9Z/1HL/3P+o5b/5/1HLf8v+I9a/l/0H7X8v+Q/avl/2X/U8v+K/6jl/1X/Ucv/a/6jlv/X/Uct/2/4j1r+3/Qftfy/5T9q+X/bf9Ty/47/qOX/Xf9Ry/97/qOW//f9Ry3/H/iPWv4/9B+1/H/kP2r5/9h/1PL/if+o5f9T/1HL/2f+o5b/z/1HLf9f+I9a/r/0H7X8f+U/avn/2n/U8v+N/6jl/1v/Ucv/d/6jlv/v/Uct/z/4j1r+f/Qftfz/5D9q+f/Zf9Ty/4v/qOX/V/9Ry/9v/qOW/9/9Ry3/f/iPWv7/9B+1/P/lP2r5/9t/1PL/j/+o5f9f/1HL/3/+o5b///1HLf+D/Ecl/wND+Y9a/of2H7X8D+M/avkf1n/U8j+c/6jlf3j/Ucv/CP6jlv8R/Uct/yP5j1r+R/YftfyP4j9q+R/Vf9TyP5r/qOV/dP9Ry/8Y/qOW/zH9Ry3/A/6jlv+x/Ect/2P7j1r+x/EftfyP6z9q+R/Pf9TyP77/qOV/Av9Ry/+E/qOW/4n8Ry3/E/uPWv4n8R+1/E/qP2r5n8x/1PI/uf+o5X8K/1HL/5T+o5b/qfxHLf9T+49a/qfxH7X8T+s/avmfzn/U8j+9/6jlfwb/Ucv/jP6jlv+Z/Ect/zP7j1r+Z/EftfzP6j9q+Z/Nf9TyP7v/qOV/Dv9Ry/+c/qOW/7n8Ry3/c/uPWv7n8R+1/M/rP2r5n89/1PI/v/+o5X8B/1HL/4L+o5b/hfxHLf8L+49a/hfxH7X8L+o/avlfzH/U8r+4/6jlfwn/Ucv/kv6jlv+l/Ect/0v7j1r+l/Eftfwv6z9q+V/Of9Tyv7z/qOV/Bf9Ry/+K/qOW/5X8Ry3/K/uPWv5X8R+1/K/qP2r5X81/1PK/uv+o5X8N/1HL/5r+o5b/tfxHLf9r+49a/tfxH7X8r+s/avlfz3/U8r++/6jlfwP/Ucv/hv6jlv+N/Ect/xv7j1r+N/Eftfxv6j9q+d/Mf9Tyv7n/qOV/C/9Ry/+W/qOW/638Ry3/W/uPWv638R+1/G/rP2r5385/1PK/vf+o5X8H/1HL/47+o5b/nfxHLf87+49a/nfxH7X87+o/avnfzX/U8r+7/6jlfw//Ucv/nv6jlv+9/Ect/3v7j1r+9/Eftfzv6z9q+d/Pf9Tyv7//qOX/AP9Ry/+B/qOW/4P8Ry3/B/uPWv4P8R+1/B/qP2r5P8x/1PJ/uP+o5f8I/9EQ9w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAg9m329g6y8KP43e3dYz9+ScjLrgMTTa5UEiE2e4h4wVhk7GtDrrxPAY4urUbG+02uw67Au7hxSRCeJBkkiVKlC1DCTOhkRgIVhDRoIuaaPABEIUoGidC0C1xsea0p6U9do3nqte1KJ/Pi55z32e/e1uT7+57gQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDfq6Fx4ZHxNcNOjR968MHDLX2vc46uvPnAb3suHHgtf7xshEuOG3rQ29vbO+e52TvKh6cURVH62XaWjydVjkvX31n/hc7+o7Cg56Ulx6f8vPHIgTWnP1LXffT+2r6ztcVN6za0tnxsXFGEi2uLztJBXU1RhMW1xX2lg/rSwZLa4pHSwey+g1OLb5cOzl+7ubW5dGJp9PcM/lc0NO4sxg8rthj2p8HQ/nfWf+vOgddRLjlwtQlFuf8rur7/VsVnA07Q/8D1w8LK/qv+DQInVF3/LywYeB3lkv9y/5/81KpXRvrsxP0PXD98XP+QzgjP/8MarXzur3j+nzHCJQf3V9V0HS/1f+ltz84sn5rw7zz/v3v9cHFl/+OGPf+XnuMXDTz/n1IU4ZIxfjvgPaWhcdeR0e7/o/c/YXrFpmZo/2e0b95f6v/xJd97onyqtsr+F41y/x+3tOLXClSnofHLvRX3/yr6Lz4ywiUH+3/7iV8/XOr/sd8/cOaQz6rp/5LK/md1tG2ZtXV713kb2prWt6xv2VQ3e/6cefV18y6YO6vvkaD/6xi/K/DeMLb7fzG5YlNTFC2D+2u6Dzxd6n/ugw/OKZ+aVGX/i0e9/89w/4cRfWhcMXFi0dnU0dFe1/914LC+/2v/Dxuh/yr+/n/WOeUfVlt+rSmKaYP7u868e0Wp/3cOPbu7fGpilf0vGbX/BYM/LxBhjPf/5orNsP4PHnqp7/l/2b0Hzyifqvbv/0tH7f9V938Yi4bGiv/h5z+s1P+u4rLITkOD//4H6eTo/7F3buiJW4dP6B/SydH/7z539Ny4dVimf0gnR/8TNj7wfNw6XKp/SCdH/8unzl8Rtw6X6R/SydH/2lfP/XPcOjTqH9LJ0f85X9rdGbcOy/UP6eTo/6H2Odvi1mGF/iGdHP3/9LSHXotbh8v1D+nk6P/YsXtujFuHK/QP6eTov3vP2T+IW4cr9Q/p5Oj/8nULQ9w6XKV/SCdH/9On/fHxuHW4Wv+QTo7+5/3p76fFrcM1+od0cvR/x+dX7Itbh2v1D+nk6H/89a+8GLcOK/UP6eTof+nZ2xbGrcN1+od0cvTf/JPm3rh1WKV/SCdH/7O+/qMNcetwvf4hnRz9H17+6J64dbhB/5BOjv731BVT4tbhRv1DOjn6/9p3Tz8Utw6f1D+kk6P/3zz15Py4dVitf0gnR//PfeD2b8Stw036h3Ry9H/vmhfPiluHJv1DOjn6f3jv81+MW4c1+od0cvT/xhtt/xe3Dmv1D+nk6H/ypFNfj1uHZv1DOjn6X3jrV9rj1qFF/5BOjv7bdnf/MG4d1ukf0snR/4ePT1sVtw7r9Q/p5Oh/5dy9749bh5v1D+nk6P99yy7cFbcOG/QP6eTo/6Kej14Utw4b9Q/p5Oi/45nPfjVuHW7RP6STo/+9M19bHLcOrfqHdHL0//LqpT+OW4c2/UM6Ofp/69HrNsWtwyb9Qzo5+n/yZ28fi1uHzfqHdHL0//8XLPpr3Dps0T+kk6P/xUveXBu3Dp/SP6STo/+N3f94OW4d2vUP6eTof+bhq5fFrcNW/UM6Ofr/znl1++PWoUP/kE6O/u+8cl993Dps0z+kk6P//QfvujtuHW7VP6STo/83fzFjetw6fFr/kE6O/u+fcujauHXo1D+kk6P/X26qfSZuHbbrH9LJ0f/f9k3dEbcOXfqHdHL0//TrPX+IW4fb9A/p5Oh/9YRfTYxbh9v1D+nk6H9q15b74tbhDv1DOjn6n39P0/lx6/AZ/UM6Ofrf+pcXvhm3Djv0D+ls3d51S1Nra0u7N954483gm5P9JxOQ2rvRn+xfCQAAAAAAAAAAAAAAcCI5/jnRyf49AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8kx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirswLEAAAAAgDB/6yB6NwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvgIAAP//TC7jfQ==")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r1 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffb)
sendfile(r0, r1, 0x0, 0x1000000201005)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x864c42, 0x0)
fallocate(r2, 0x1, 0x100000000, 0x101)
r3 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x1000000201004)
fallocate(r2, 0x20, 0xde52, 0x2)

23:58:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:28 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x0)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r4, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2341.938978][T27722] loop5: detected capacity change from 0 to 32768
23:58:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x0)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r4, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2342.015291][T27722] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 2342.149913][T27722] XFS (loop5): Ending clean mount
[ 2342.177919][T27722] XFS (loop5): Quotacheck needed: Please wait.
[ 2342.224512][T27722] XFS (loop5): Quotacheck: Done.
[ 2342.477864][   T27] audit: type=1804 audit(1694390309.194:2954): pid=27764 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir372208966/syzkaller.KykCYr/2550/file0/bus" dev="loop5" ino=9290 res=1 errno=0
[ 2342.694017][   T27] audit: type=1804 audit(1694390309.414:2955): pid=27771 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2388443488/syzkaller.BEg4eY/2800/bus" dev="sda1" ino=1960 res=1 errno=0
[ 2342.813427][ T5058] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
23:58:29 executing program 0:
syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000009640)='./file0\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB="70716e6f656e666f7263652c00752bb6a96d3c1f298d2453c6242f1c605a545bfe19a1c412963c57a71f13338668f4a4d16eb1c9669c019035768922c3f5d62044c9d4c6b6bb86653394c15a6f922f669da8636143f443d359146a9c338dd73e34ecf2b4b3f7b29127"], 0x4, 0x95d1, &(0x7f00000096c0)="$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")
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x145142, 0x80)
ftruncate(r0, 0x2007ffb)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x864c42, 0x0)
fallocate(r1, 0x1, 0x100000000, 0x101)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x1000000201004)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0)

23:58:29 executing program 5:
syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000009640)='./file0\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB="70716e6f656e666f7263652c00752bb6a96d3c1f298d2453c6242f1c605a545bfe19a1c412963c57a71f13338668f4a4d16eb1c9669c019035768922c3f5d62044c9d4c6b6bb86653394c15a6f922f669da8636143f443d359146a9c338dd73e34ecf2b4b3f7b29127"], 0x4, 0x95d1, &(0x7f00000096c0)="$eJzs2gm8pnPB+P/7DGOXMVRSaiqiRdYsUc0MZigkS7QjkrKUVEiyK1REtGffspUllK2VZG+hhFDJEmmxDfN/HXMmY/rw1O95/i9Pz+fzeb3Oue/7uq/rOt/7+76Wc5hNJm0wcTCYYzCtcYOZu/CGyVPGXLfu3cduPv8Jy5xx/8FPXHHR8SOPE0YeJw4Gg1Ejbw9NWzZ2cOZZowazPrb88eaec66heQeDZUdejuxnsOK0h3mvnr7e1JmaeaBDj3/bf9rXY803/COGnxx18D5HDwaDMTNsPzQYDO3+Tx9U2iYTJk963OofbsNWo0eez/g127SveS8bDOY9Z8DHx4zrDj0NH2n4Z+7+sgtGr/s0/Oz/uDaZMHmtmfyHz8VZRpatOHyOz3wOGpv5OL9zsU1XHpnCx463wWD4EveEc+U/ok0mTFp78OTX+cGxq1yy/9Rp183ZB9NuFHMOBoO5Rq6v8zzdLvXfa8LE5R67Z09/PcI+/VjenY6Lk9952qPDN+nBYLDAYDB2zen3gqqqqvrPaMLE5VaD+/8cT3X/P/30hc/p/l9VVfWf21oTJi43fK+f6f4/z1Pd/3dY+NI9p/23//ErTtvq0af3Q1RVVdW/1aS18P4/5qnu/yuuduXa3f+rqqr+c1t/ncfu//PMdP9f8Knu/287bZVFRtab/nvDIzPscmiG/5/w8AzLZ5lh+UMzLB89w35mXH+2GZY/MMPy2Yffg/XHDQZjp/97wSmPLx47bvi9keUPzrB8/OP/TmfR1WdYPmGG5ZNmWD5xZKzDyyfPsHzyDOuv+RRTXVVV9b+m9ZebtNpghn9nP7J4oenv0/3/4nNvXPLpGm9VVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVX9Z/bo3eddMBgMhgaDwajBYMpg5PmMj4OpU6dOHX59+kVXXfW0DfR/R0MX3jB5ypjr1r372M3nP2GZM+4/+PFZ+o/tP/8T1H+nYf85Tho3GGy30dM9lHoa6vx3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/cY/efd4FI8fAqMFgymDk+e7TH8896K1vH1l15Y3PuPewx7dcdPzWI88uvGHylK2fhrE/DQ0Nf9Yx161797Gbz3/CMmfcf/D/gbPnP/8T1H+nx/y3HhoMRs7vMcPn8roT1t9wicFgcNi9Z2y8wuAf7600/N4qY2cZzPLYpks89n2NRXnHu6857XH88LcF/7GP0x/b/1pTj5xlaKZBzNBrLrzl2Pducv/yMz8u/uSfY9T0J0ffdPZ9U6dOnfqEhSPN8SQbT9//9M8y83k+MvYlhse+1I7bfmCpD+28y5Jbb7vZVltuteV2yyy30vIrLLvMCiu/aqn3bL3NlktP+/4kczbuse+r/StzNs/Mc3b3hBnnbObP9mRzNu6p5+yxPU7ZZWjD6XM26785Z6s99ZyN23rkBy06fvRg08emZmgwWHT10YOdhl8sM/tgsOgaI+suNLzuqmNHDQYHPf5Bh5/N/o9jcGj34XU2mbTBxMdH9s+f8J+u009YcdHxI48TRh4nThviuMHjh+LYwZlnjRqeiydM89xzzjU072Cw7MjLkf0MVh5594jp602dqZkHOvT4t/2nfT3WfMM7GX7yvqXPu374XJxp+/8/+n+6/v+T10pD/5iooZGvkXWmeU2YvNbjP+uxaRieu1lGlq04bDLznP1P9k/jHTfrYMxTjHfSWhOXG1480/xP3wSPr3sWu+Rj046t8StO2+rR/2cUGu88TzHetSbgeOd5qvGetOsVZ03b1f/YeGe61q392Pfx/8q1bvDU17pZaAdbXr7IzNe6Nzz5EJ9wHk+fo9lnWunJrnU7Hb7s7sP7H//U17q1h8c++gnXulGDwaKrTb/WDV/4Jo0eHDT8YtnhF5NHD04YfrHcYy/mHFw0/OKV795+my2GF6w5fU6WHt7v+LFDj7lfsuIdi089ZOrU1UfGMn7sE8c6cnyMm/F+PmHstMmcvu30/Q6vOn2/tz972nuTRvY74d/Y7/Rtabz3zjftvckj+504035HP8V+p2/7T+fDEkP/uHA9yfVm0kzXm5G/cab/uCd8zTbta97LBoN5zyHfmdb9L6+ZdP7O8RTjnTBxudWGxzfT+fuPw5HO3ysmXzd8r5h3MBgsMBiMXXP62P/Nhp5svLM+9XgnwnhnfarxXnPituv8D4x3MMN4n3CcbbL+tGNlzZHjbPK/cfxO33bm69jox96ddtlf81+5jo37p+vYHrOMmmmyZ+jJfmfbAtaf9nyhx3/PveHU46fP/eiZ9vtf/c42w2cZguvYmJn+nh+15s2DIZrz3U9a9cqhQ596zkcPnvi3xfQ5n77tU8355H9lzp/31HP+r/6evMSLp70/eqbxzzjn6x343AOmz/lsM+33v5rzyU997/jnOR8/GE1zvvRD0+btqa6nTzbn07edPufDH3GVsbMO1hi+Z43M+aR/Zc4X+p85zueC9ac93/Ifi84/9ow3T5/zmef4v5rzSf/unI/7x3G+6GPvvWjUYLbZBjtttuOOOywz7fv0l8tO+87XogdumDbPT3UvfTKj6ds+1Xmx+r9iNOZfMhr6r4wWnvXJjB4/tY7Zfodn/b9ei1b/d40GfC267vhp8/ZUvxc92ZxP35bugwvOsP3Mf4euv85jv3fPM9N9cPomeB88/9y195u+y5HNHplpmNPvqw/PsHyWGZY/NMPy0TPsZ8b1Z5th+QMzLB/+CLPNsP501nHDf/OOLJ/y+Opjh395Gjey/MEZlo9/fNtFV59h+YQZlk+aYfnExw+NRSfPsHzyDOuvOfg3m/7fpLee+SJf/2r99193+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7iHr37vAtGjoFRg8GUwbTnQyOPg92H1rvrdcOPg8Fg9IqnTF3v6R7v09zQhTdMnjLmunXvPnbz+U9Y5oz7D/4/cPb853+C+u/0mP/WQ4PByPk9ZuvBYLDuhPU3XGIwGKw39ZQVRw3+8d5Cw++tOnbUYHDQ0BN2MPs/1hnafXidTSZtMHEwmGNkjXH/9EP/6Tx6woqLjh95nDDyOHHa9Wnc4PHjdezgzLNGDWZ9bPnjzT3nXEPzDgbLjrwc2c9gxWkP8149fb2pMzXzQIce/7b/tK/Hmm/4Rww/2Wmryc8fnquZtv9f0/Rr9daj/stVO//d5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8tf3KN3n3fByDEwajCYMpj2fGj3kcfB0GlnvnTkEBm987XHHfl0j/dpbujCGyZPGXPduncfu/n8Jyxzxv0H/x84e/7zP0H9d3rMf+uhwWDk/B6z9WAwWHfC+hsuMRgMjjzu2p1HDf7x3kLD7606dtRgcNDQE3Yw+z/WGdp9eJ1NJm0wcTCYY2SNcf/0Q//pPHrCiouOH3mcMPI4cdr1adzg8eN17ODMs0YNZn1s+ePNPedcQ/MOBsuOvBzZz2DFaQ/zXj19vakzNfNAhx7/tv+0r8eab/hHDD/ZZ54bThueq5m2/1/T9Gv11qP+y1U7/93l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y1/co3efd8HIMTBqMJgymPZ81Mjj0O633brbhsOPw6/nX3O/G57u8T7NDV14w+QpY65b9+5jN5//hGXOuP/g/wNnz3/+J6j/TsP+c5w0bjDYbqOneyj1NNT57y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/uIevfu8C0aejnp86ajdOy6woQtvmDxlzHXr3n3s5vOfsMwZ9x/8dA/ov9uT+O+RP2bx3zN/zOK/V/6YxX/v/DGL/z75Yxb/ffPHLP775Y9Z/D+ZP2bx/1T+mMV///wxi/8B+WMW/wPzxyz+n84fs/h/Jn/M4v/Z/DGL/0H5Yxb/g/PHLP6fyx+z+B+SP2bxPzR/zOL/+fwxi/9h+WMW/8Pzxyz+X8gfs/h/MX/M4v+l/DGL/5fzxyz+X8kfs/h/NX/M4v+1/DGL/9fzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP4n5I9Z/E/MH7P4n5Q/ZvH/Rv6Yxf/k/DGL/yn5Yxb/U/PHLP6n5Y9Z/E/PH7P4fzN/zOL/rfwxi/8Z+WMW/zPzxyz+Z+WPWfzPzh+z+H87f8zif07+mMX/3Pwxi/95+WMW/+/kj1n8v5s/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/t/LH7P4fz9/zOL/g/wxi/8P88cs/j/KH7P4/zh/zOJ/Sf6Yxf/S/DGL/0/yxyz+l+WPWfx/mj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+P8sf8zi//P8MYv/L/LHLP6/zB+z+F+XP2bxvz5/zOL/q/wxi/+v88cs/jfkj1n8f5M/ZvG/MX/M4n9T/pjF/+b8MYv/b/PHLP635I9Z/G/NH7P435Y/ZvH/Xf6Yxf/3+WMW/z/kj1n8b88fs/j/MX/M4n9H/pjF/878MYv/XfljFv+788cs/n/KH7P435M/ZvG/N3/M4v/n/DGL/335Yxb/v+SPWfz/mj9m8f9b/pjF/+/5Yxb/+/PHLP4P5I9Z/B/MH7P4P5Q/ZvF/OH/M4j8lf8zi/0j+mMX/0fwxi//U/DGJ/yyD/DGL/1D+mMV/VP6YxX+W/DGL/6z5Yxb/0fljFv/Z8scs/rPnj1n858gfs/jPmT9m8Z8rf8ziP3f+mMV/nvwxi/+8+WMW/2fkj1n858sfs/iPyR+z+M+fP2bxH5s/ZvFfIH/M4r9g/pjF/5n5Yxb/Z+WPWfyfnT9m8V8of8zi/5z8MYv/wvljFv/n5o9Z/J+XP2bxXyR/zOL//Pwxi/8L8scs/uPyxyz+L8wfs/i/KH/M4v/i/DGL/6L5Yxb/xfLHLP4vyR+z+C+eP2bxXyJ/zOL/0vwxi//L8scs/i/PH7P4vyJ/zOK/ZP6Yxf+V+WMW/6Xyxyz+S+ePWfyXyR+z+C+bP2bxXy5/zOK/fP6Yxf9V+WMW/xXyxyz+K+aPWfxXyh+z+K+cP2bxf3X+mMV/lfwxi/+q+WMW/9fkj1n8X5s/ZvF/Xf6YxX98/pjFf0L+mMV/Yv6YxX+1/DGL/+r5Yxb/NfLHLP6T8scs/pPzxyz+a+aPWfzXyh+z+L8+f8zi/4b8MYv/2vljFv918scs/uvmj1n835g/ZvFfL3/M4v+m/DGL//r5Yxb/DfLHLP4b5o9Z/DfKH7P4vzl/zOK/cf6YxX+T/DGL/1vyxyz+b80fs/i/LX/M4v/2/DGL/zvyxyz+78wfs/i/K3/M4r9p/pjFf7P8MYv/5vljFv93549Z/LfIH7P4b5k/ZvF/T/6YxX+r/DGL/3vzxyz+W+ePWfzflz9m8X9//pjFf5v8MYv/tvljFv/t8scs/tvnj1n8P5A/ZvH/YP6YxX+H/DGL/4fyxyz+O+aPWfw/nD9m8f9I/pjF/6P5Yxb/nfLHLP47549Z/HfJH7P4fyx/zOK/a/6Yxf/j+WMW/93yxyz+n8gfs/jvnj9m8d8jf8ziv2f+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+H8yf8zi/6n8MYv//vljFv8D8scs/gfmj1n8P50/ZvH/TP6Yxf+z+WMW/4Pyxyz+B+ePWfw/lz9m8T8kf8zif2j+mMX/8/ljFv/D8scs/ofnj1n8v5A/ZvH/Yv6Yxf9L+WMW/y/nj1n8v5I/ZvH/av6Yxf9r+WMW/6/nj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOL/jfwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bx/2b+mMX/W/ljFv8z8scs/mfmj1n8z8ofs/ifnT9m8f92/pjF/5z8MYv/ufljFv/z8scs/t/JH7P4fzd/zOJ/fv6Yxf+C/DGL/4X5Yxb/i/LHLP4X549Z/L+XP2bx/37+mMX/B/ljFv8f5o9Z/H+UP2bx/3H+mMX/kvwxi/+l+WMW/5/kj1n8L8sfs/j/NH/M4n95/pjF/4r8MYv/lfljFv+r8scs/lfnj1n8r8kfs/hfmz9m8f9Z/pjF/+f5Yxb/X+SPWfx/mT9m8b8uf8zif33+mMX/V/ljFv9f549Z/G/IH7P4/yZ/zOJ/Y/6Yxf+m/DGL/835Yxb/3+aPWfxvyR+z+N+aP2bxvy1/zOL/u/wxi//v88cs/n/IH7P4354/ZvH/Y/6Yxf+O/DGL/535Yxb/u/LHLP53549Z/P+UP2bxvyd/zOJ/b/6Yxf/P+WMW//vyxyz+f8kfs/j/NX/M4v+3/DGL/9/zxyz+9+ePWfwfyB+z+D+YP2bxfyh/zOL/cP6YxX9K/pjF/5H8MYv/o/ljFv+p+WMS/1kH+WMW/6H8MYv/qPwxi/8s+WMW/1nzxyz+o/PHLP6z5Y9Z/GfPH7P4z5E/ZvGfM3/M4j9X/pjFf+78MYv/PPljFv9588cs/s/IH7P4z5c/ZvEfkz9m8Z8/f8ziPzZ/zOK/QP6YxX/B/DGL/zPzxyz+z8ofs/g/O3/M4r9Q/pjF/zn5Yxb/hfPHLP7PzR+z+D8vf8ziv0j+mMX/+fljFv8X5I9Z/Mflj1n8X5g/ZvF/Uf6Yxf/F+WMW/0Xzxyz+i+WPWfxfkj9m8V88f8ziv0T+mMX/pfljFv+X5Y9Z/F+eP2bxf0X+mMV/yfwxi/8r88cs/kvlj1n8l84fs/gvkz9m8V82f8ziv1z+mMV/+fwxi/+r8scs/ivkj1n8V8wfs/ivlD9m8V85f8zi/+r8MYv/KvljFv9V88cs/q/JH7P4vzZ/zOL/uvwxi//4/DGL/4T8MYv/xPwxi/9q+WMW/9Xzxyz+a+SPWfwn5Y9Z/Cfnj1n818wfs/ivlT9m8X99/pjF/w35Yxb/tfPHLP7r5I9Z/NfNH7P4vzF/zOK/Xv6Yxf9N+WMW//Xzxyz+G+SPWfw3zB+z+G+UP2bxf3P+mMV/4/wxi/8m+WMW/7fkj1n835o/ZvF/W/6Yxf/t+WMW/3fkj1n835k/ZvF/V/6YxX/T/DGL/2b5Yxb/zfPHLP7vzh+z+G+RP2bx3zJ/zOL/nvwxi/9W+WMW//fmj1n8t84fs/i/L3/M4v/+/DGL/zb5Yxb/bfPHLP7b5Y9Z/LfPH7P4fyB/zOL/wfwxi/8O+WMW/w/lj1n8d8wfs/h/OH/M4v+R/DGL/0fzxyz+O+WPWfx3zh+z+O+SP2bx/1j+mMV/1/wxi//H88cs/rvlj1n8P5E/ZvHfPX/M4r9H/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8f9k/pjF/1P5Yxb//fPHLP4H5I9Z/A/MH7P4fzp/zOL/mfwxi/9n88cs/gflj1n8D84fs/h/Ln/M4n9I/pjF/9D8MYv/5/PHLP6H5Y9Z/A/PH7P4fyF/zOL/xfwxi/+X8scs/l/OH7P4fyV/zOL/1fwxi//X8scs/l/PH7P4H5E/ZvE/Mn/M4n9U/pjF/+j8MYv/MfljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/G/ljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zi/838MYv/t/LHLP5n5I9Z/M/MH7P4n5U/ZvE/O3/M4v/t/DGL/zn5Yxb/c/PHLP7n5Y9Z/L+TP2bx/27+mMX//Pwxi/8F+WMW/wvzxyz+F+WPWfwvzh+z+H8vf8zi//38MYv/D/LHLP4/zB+z+P8of8zi/+P8MYv/JfljFv9L88cs/j/JH7P4X5Y/ZvH/af6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4v+z/DGL/8/zxyz+v8gfs/j/Mn/M4n9d/pjF//r8MYv/r/LHLP6/zh+z+N+QP2bx/03+mMX/xvwxi/9N+WMW/5vzxyz+v80fs/jfkj9m8b81f8zif1v+mMX/d/ljFv/f549Z/P+QP2bxvz1/zOL/x/wxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+P8pf8zif0/+mMX/3vwxi/+f88cs/vflj1n8/5I/ZvH/a/6Yxf9v+WMW/7/nj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/+U/DGL/yP5Yxb/R/PHLP5T88ck/qMH+WMW/6H8MYv/qPwxi/8s+WMW/1nzxyz+o/PHLP6z5Y9Z/GfPH7P4z5E/ZvGfM3/M4j9X/pjFf+78MYv/PPljFv9588cs/s/IH7P4z5c/ZvEfkz9m8Z8/f8ziPzZ/zOK/QP6YxX/B/DGL/zPzxyz+z8ofs/g/O3/M4r9Q/pjF/zn5Yxb/hfPHLP7PzR+z+D8vf8ziv0j+mMX/+fljFv8X5I9Z/Mflj1n8X5g/ZvF/Uf6Yxf/F+WMW/0Xzxyz+i+WPWfxfkj9m8V88f8ziv0T+mMX/pfljFv+X5Y9Z/F+eP2bxf0X+mMV/yfwxi/8r88cs/kvlj1n8l84fs/gvkz9m8V82f8ziv1z+mMV/+fwxi/+r8scs/ivkj1n8V8wfs/ivlD9m8V85f8zi/+r8MYv/KvljFv9V88cs/q/JH7P4vzZ/zOL/uvwxi//4/DGL/4T8MYv/xPwxi/9q+WMW/9Xzxyz+a+SPWfwn5Y9Z/Cfnj1n818wfs/ivlT9m8X99/pjF/w35Yxb/tfPHLP7r5I9Z/NfNH7P4vzF/zOK/Xv6Yxf9N+WMW//Xzxyz+G+SPWfw3zB+z+G+UP2bxf3P+mMV/4/wxi/8m+WMW/7fkj1n835o/ZvF/W/6Yxf/t+WMW/3fkj1n835k/ZvF/V/6YxX/T/DGL/2b5Yxb/zfPHLP7vzh+z+G+RP2bx3zJ/zOL/nvwxi/9W+WMW//fmj1n8t84fs/i/L3/M4v/+/DGL/zb5Yxb/bfPHLP7b5Y9Z/LfPH7P4fyB/zOL/wfwxi/8O+WMW/w/lj1n8d8wfs/h/OH/M4v+R/DGL/0fzxyz+O+WPWfx3zh+z+O+SP2bx/1j+mMV/1/wxi//H88cs/rvlj1n8P5E/ZvHfPX/M4r9H/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8f9k/pjF/1P5Yxb//fPHLP4H5I9Z/A/MH7P4fzp/zOL/mfwxi/9n88cs/gflj1n8D84fs/h/Ln/M4n9I/pjF/9D8MYv/5/PHLP6H5Y9Z/A/PH7P4fyF/zOL/xfwxi/+X8scs/l/OH7P4fyV/zOL/1fwxi//X8scs/l/PH7P4H5E/ZvE/Mn/M4n9U/pjF/+j8MYv/MfljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/G/ljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zi/838MYv/t/LHLP5n5I9Z/M/MH7P4n5U/ZvE/O3/M4v/t/DGL/zn5Yxb/c/PHLP7n5Y9Z/L+TP2bx/27+mMX//Pwxi/8F+WMW/wvzxyz+F+WPWfwvzh+z+H8vf8zi//38MYv/D/LHLP4/zB+z+P8of8zi/+P8MYv/JfljFv9L88cs/j/JH7P4X5Y/ZvH/af6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4v+z/DGL/8/zxyz+v8gfs/j/Mn/M4n9d/pjF//r8MYv/r/LHLP6/zh+z+N+QP2bx/03+mMX/xvwxi/9N+WMW/5vzxyz+v80fs/jfkj9m8b81f8zif1v+mMX/d/ljFv/f549Z/P+QP2bxvz1/zOL/x/wxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+P8pf8zif0/+mMX/3vwxi/+f88cs/vflj1n8/5I/ZvH/a/6Yxf9v+WMW/7/nj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/+U/DGL/yP5Yxb/R/PHLP5T88ck/rMN8scs/kP5Yxb/UfljFv9Z8scs/rPmj1n8R+ePWfxnyx+z+M+eP2bxnyN/zOI/Z/6YxX+u/DGL/9z5Yxb/efLHLP7z5o9Z/J+RP2bxny9/zOI/Jn/M4j9//pjFf2z+mMV/gfwxi/+C+WMW/2fmj1n8n5U/ZvF/dv6YxX+h/DGL/3Pyxyz+C+ePWfyfmz9m8X9e/pjFf5H8MYv/8/PHLP4vyB+z+I/LH7P4vzB/zOL/ovwxi/+L88cs/ovmj1n8F8sfs/i/JH/M4r94/pjFf4n8MYv/S/PHLP4vyx+z+L88f8zi/4r8MYv/kvljFv9X5o9Z/JfKH7P4L50/ZvFfJn/M4r9s/pjFf7n8MYv/8vljFv9X5Y9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjF/9X5Yxb/VfLHLP6r5o9Z/F+TP2bxf23+mMX/dfljFv/x+WMW/wn5Yxb/ifljFv/V8scs/qvnj1n818gfs/hPyh+z+E/OH7P4r5k/ZvFfK3/M4v/6/DGL/xvyxyz+a+ePWfzXyR+z+K+bP2bxf2P+mMV/vfwxi/+b8scs/uvnj1n8N8gfs/hvmD9m8d8of8zi/+b8MYv/xvljFv9N8scs/m/JH7P4vzV/zOL/tvwxi//b88cs/u/IH7P4vzN/zOL/rvwxi/+m+WMW/83yxyz+m+ePWfzfnT9m8d8if8ziv2X+mMX/PfljFv+t8scs/u/NH7P4b50/ZvF/X/6Yxf/9+WMW/23yxyz+2+aPWfy3yx+z+G+fP2bx/0D+mMX/g/ljFv8d8scs/h/KH7P475g/ZvH/cP6Yxf8j+WMW/4/mj1n8d8ofs/jvnD9m8d8lf8zi/7H8MYv/rvljFv+P549Z/HfLH7P4fyJ/zOK/e/6YxX+P/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4v/J/DGL/6fyxyz+++ePWfwPyB+z+B+YP2bx/3T+mMX/M/ljFv/P5o9Z/A/KH7P4H5w/ZvH/XP6Yxf+Q/DGL/6H5Yxb/z+ePWfwPyx+z+B+eP2bx/0L+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv+v5Y9Z/L+eP2bxPyJ/zOJ/ZP6Yxf+o/DGL/9H5Yxb/Y/LHLP7H5o9Z/I/LH7P4H58/ZvE/IX/M4n9i/pjF/6T8MYv/N/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/5v5Yxb/b+WPWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf/b+WMW/3Pyxyz+5+aPWfzPyx+z+H8nf8zi/938MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8f9e/pjF//v5Yxb/H+SPWfx/mD9m8f9R/pjF/8f5Yxb/S/LHLP6X5o9Z/H+SP2bxvyx/zOL/0/wxi//l+WMW/yvyxyz+V+aPWfyvyh+z+F+dP2bxvyZ/zOJ/bf6Yxf9n+WMW/5/nj1n8f5E/ZvH/Zf6Yxf+6/DGL//X5Yxb/X+WPWfx/nT9m8b8hf8zi/5v8MYv/jfljFv+b8scs/jfnj1n8f5s/ZvG/JX/M4n9r/pjF/7b8MYv/7/LHLP6/zx+z+P8hf8zif3v+mMX/j/ljFv878scs/nfmj1n878ofs/jfnT9m8f9T/pjF/578MYv/vfljFv8/549Z/O/LH7P4/yV/zOL/1/wxi//f8scs/n/PH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv8p+WMW/0fyxyz+j+aPWfyn5o9J/Gcf5I9Z/Ifyxyz+o/LHLP6z5I9Z/GfNH7P4j84fs/jPlj9m8Z89f8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+D8jf8ziP1/+mMV/TP6YxX/+/DGL/9j8MYv/AvljFv8F88cs/s/MH7P4Pyt/zOL/7Pwxi/9C+WMW/+fkj1n8F84fs/g/N3/M4v+8/DGL/yL5Yxb/5+ePWfxfkD9m8R+XP2bxf2H+mMX/RfljFv8X549Z/BfNH7P4L5Y/ZvF/Sf6YxX/x/DGL/xL5Yxb/l+aPWfxflj9m8X95/pjF/xX5Yxb/JfPHLP6vzB+z+C+VP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/5fPHLP6vyh+z+K+QP2bxXzF/zOK/Uv6YxX/l/DGL/6vzxyz+q+SPWfxXzR+z+L8mf8zi/9r8MYv/6/LHLP7j88cs/hPyxyz+E/PHLP6r5Y9Z/FfPH7P4r5E/ZvGflD9m8Z+cP2bxXzN/zOK/Vv6Yxf/1+WMW/zfkj1n8184fs/ivkz9m8V83f8zi/8b8MYv/evljFv835Y9Z/NfPH7P4b5A/ZvHfMH/M4r9R/pjF/835Yxb/jfPHLP6b5I9Z/N+SP2bxf2v+mMX/bfljFv+3549Z/N+RP2bxf2f+mMX/XfljFv9N88cs/pvlj1n8N88fs/i/O3/M4r9F/pjFf8v8MYv/e/LHLP5b5Y9Z/N+bP2bx3zp/zOL/vvwxi//788cs/tvkj1n8t80fs/hvlz9m8d8+f8zi/4H8MYv/B/PHLP475I9Z/D+UP2bx3zF/zOL/4fwxi/9H8scs/h/NH7P475Q/ZvHfOX/M4r9L/pjF/2P5Yxb/XfPHLP4fzx+z+O+WP2bx/0T+mMV/9/wxi/8e+WMW/z3zxyz+e+WPWfz3zh+z+O+TP2bx3zd/zOK/X/6Yxf+T+WMW/0/lj1n8988fs/gfkD9m8T8wf8zi/+n8MYv/Z/LHLP6fzR+z+B+UP2bxPzh/zOL/ufwxi/8h+WMW/0Pzxyz+n88fs/gflj9m8T88f8zi/4X8MYv/F/PHLP5fyh+z+H85f8zi/5X8MYv/V/PHLP5fyx+z+H89f8zif0T+mMX/yPwxi/9R+WMW/6Pzxyz+x+SPWfyPzR+z+B+XP2bxPz5/zOJ/Qv6Yxf/E/DGL/0n5Yxb/b+SPWfxPzh+z+J+SP2bxPzV/zOJ/Wv6Yxf/0/DGL/zfzxyz+38ofs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/+388cs/ufkj1n8z80fs/iflz9m8f9O/pjF/7v5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4v+9/DGL//fzxyz+P8gfs/j/MH/M4v+j/DGL/4/zxyz+l+SPWfwvzR+z+P8kf8zif1n+mMX/p/ljFv/L88cs/lfkj1n8r8wfs/hflT9m8b86f8zif03+mMX/2vwxi//P8scs/j/PH7P4/yJ/zOL/y/wxi/91+WMW/+vzxyz+v8ofs/j/On/M4n9D/pjF/zf5Yxb/G/PHLP435Y9Z/G/OH7P4/zZ/zOJ/S/6Yxf/W/DGL/235Yxb/3+WPWfx/nz9m8f9D/pjF//b8MYv/H/PHLP535I9Z/O/MH7P435U/ZvG/O3/M4v+n/DGL/z35Yxb/e/PHLP5/zh+z+N+XP2bx/0v+mMX/r/ljFv+/5Y9Z/P+eP2bxvz9/zOL/QP6Yxf/B/DGL/0P5Yxb/h/PHLP5T8scs/o/kj1n8H80fs/hPzR+T+M8xyB+z+A/lj1n8R+WPWfxnyR+z+M+aP2bxH50/ZvGfLX/M4j97/pjFf478MYv/nPljFv+58scs/nPnj1n858kfs/jPmz9m8X9G/pjFf778MYv/mPwxi//8+WMW/7H5Yxb/BfLHLP4L5o9Z/J+ZP2bxf1b+mMX/2fljFv+F8scs/s/JH7P4L5w/ZvF/bv6Yxf95+WMW/0Xyxyz+z88fs/i/IH/M4j8uf8zi/8L8MYv/i/LHLP4vzh+z+C+aP2bxXyx/zOL/kvwxi//i+WMW/yXyxyz+L80fs/i/LH/M4v/y/DGL/yvyxyz+S+aPWfxfmT9m8V8qf8ziv3T+mMV/mfwxi/+y+WMW/+Xyxyz+y+ePWfxflT9m8V8hf8ziv2L+mMV/pfwxi//K+WMW/1fnj1n8V8kfs/ivmj9m8X9N/pjF/7X5Yxb/1+WPWfzH549Z/Cfkj1n8J+aPWfxXyx+z+K+eP2bxXyN/zOI/KX/M4j85f8ziv2b+mMV/rfwxi//r88cs/m/IH7P4r50/ZvFfJ3/M4r9u/pjF/435Yxb/9fLHLP5vyh+z+K+fP2bx3yB/zOK/Yf6YxX+j/DGL/5vzxyz+G+ePWfw3yR+z+L8lf8zi/9b8MYv/2/LHLP5vzx+z+L8jf8zi/878MYv/u/LHLP6b5o9Z/DfLH7P4b54/ZvF/d/6YxX+L/DGL/5b5Yxb/9+SPWfy3yh+z+L83f8ziv3X+mMX/ffljFv/3549Z/LfJH7P4b5s/ZvHfLn/M4r99/pjF/wP5Yxb/D+aPWfx3yB+z+H8of8ziv2P+mMX/w/ljFv+P5I9Z/D+aP2bx3yl/zOK/c/6YxX+X/DGL/8fyxyz+u+aPWfw/nj9m8d8tf8zi/4n8MYv/7vljFv898scs/nvmj1n898ofs/jvnT9m8d8nf8ziv2/+mMV/v/wxi/8n88cs/p/KH7P4758/ZvE/IH/M4n9g/pjF/9P5Yxb/z+SPWfw/mz9m8T8of8zif3D+mMX/c/ljFv9D8scs/ofmj1n8P58/ZvE/LH/M4n94/pjF/wv5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfy/lj9m8f96/pjF/4j8MYv/kfljFv+j8scs/kfnj1n8j8kfs/gfmz9m8T8uf8zif3z+mMX/hPwxi/+J+WMW/5Pyxyz+38gfs/ifnD9m8T8lf8zif2r+mMX/tPwxi//p+WMW/2/mj1n8v5U/ZvE/I3/M4n9m/pjF/6z8MYv/2fljFv9v549Z/M/JH7P4n5s/ZvE/L3/M4v+d/DGL/3fzxyz+5+ePWfwvyB+z+F+YP2bxvyh/zOJ/cf6Yxf97+WMW/+/nj1n8f5A/ZvH/Yf6Yxf9H+WMW/x/nj1n8L8kfs/hfmj9m8f9J/pjF/7L8MYv/T/PHLP6X549Z/K/IH7P4X5k/ZvG/Kn/M4n91/pjF/5r8MYv/tfljFv+f5Y9Z/H+eP2bx/0X+mMX/l/ljFv/r8scs/tfnj1n8f5U/ZvH/df6Yxf+G/DGL/2/yxyz+N+aPWfxvyh+z+N+cP2bx/23+mMX/lvwxi/+t+WMW/9vyxyz+v8sfs/j/Pn/M4v+H/DGL/+35Yxb/P+aPWfzvyB+z+N+ZP2bxvyt/zOJ/d/6Yxf9P+WMW/3vyxyz+9+aPWfz/nD9m8b8vf8zi/5f8MYv/X/PHLP5/yx+z+P89f8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfyn5I9Z/B/JH7P4P5o/ZvGfmj8m8Z9zkD9m8R/KH7P4j8ofs/jPkj9m8Z81f8ziPzp/zOI/W/6YxX/2/DGL/xz5Yxb/OfPHLP5z5Y9Z/OfOH7P4z5M/ZvGfN3/M4v+M/DGL/3z5Yxb/MfljFv/588cs/mPzxyz+C+SPWfwXzB+z+D8zf8zi/6z8MYv/s/PHLP4L5Y9Z/J+TP2bxXzh/zOL/3Pwxi//z8scs/ovkj1n8n58/ZvF/Qf6YxX9c/pjF/4X5Yxb/F+WPWfxfnD9m8V80f8ziv1j+mMX/JfljFv/F88cs/kvkj1n8X5o/ZvF/Wf6Yxf/l+WMW/1fkj1n8l8wfs/i/Mn/M4r9U/pjFf+n8MYv/MvljFv9l88cs/svlj1n8l88fs/i/Kn/M4r9C/pjFf8X8MYv/SvljFv+V88cs/q/OH7P4r5I/ZvFfNX/M4v+a/DGL/2vzxyz+r8sfs/iPzx+z+E/IH7P4T8wfs/ivlj9m8V89f8ziv0b+mMV/Uv6YxX9y/pjFf838MYv/WvljFv/X549Z/N+QP2bxXzt/zOK/Tv6YxX/d/DGL/xvzxyz+6+WPWfzflD9m8V8/f8ziv0H+mMV/w/wxi/9G+WMW/zfnj1n8N84fs/hvkj9m8X9L/pjF/635Yxb/t+WPWfzfnj9m8X9H/pjF/535Yxb/d+WPWfw3zR+z+G+WP2bx3zx/zOL/7vwxi/8W+WMW/y3zxyz+78kfs/hvlT9m8X9v/pjFf+v8MYv/+/LHLP7vzx+z+G+TP2bx3zZ/zOK/Xf6YxX/7/DGL/wfyxyz+H8wfs/jvkD9m8f9Q/pjFf8f8MYv/h/PHLP4fyR+z+H80f8ziv1P+mMV/5/wxi/8u+WMW/4/lj1n8d80fs/h/PH/M4r9b/pjF/xP5Yxb/3fPHLP575I9Z/PfMH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/fvljFv9P5o9Z/D+VP2bx3z9/zOJ/QP6Yxf/A/DGL/6fzxyz+n8kfs/h/Nn/M4n9Q/pjF/+D8MYv/5/LHLP6H5I9Z/A/NH7P4fz5/zOJ/WP6Yxf/w/DGL/xfyxyz+X8wfs/h/KX/M4v/l/DGL/1fyxyz+X80fs/h/LX/M4v/1/DGL/xH5Yxb/I/PHLP5H5Y9Z/I/OH7P4H5M/ZvE/Nn/M4n9c/pjF//j8MYv/CfljFv8T88cs/iflj1n8v5E/ZvE/OX/M4n9K/pjF/9T8MYv/afljFv/T88cs/t/MH7P4fyt/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7fzh+z+J+TP2bxPzd/zOJ/Xv6Yxf87+WMW/+/mj1n8z88fs/hfkD9m8b8wf8zif1H+mMX/4vwxi//38scs/t/PH7P4/yB/zOL/w/wxi/+P8scs/j/OH7P4X5I/ZvG/NH/M4v+T/DGL/2X5Yxb/n+aPWfwvzx+z+F+RP2bxvzJ/zOJ/Vf6Yxf/q/DGL/zX5Yxb/a/PHLP4/yx+z+P88f8zi/4v8MYv/L/PHLP7X5Y9Z/K/PH7P4/yp/zOL/6/wxi/8N+WMW/9/kj1n8b8wfs/jflD9m8b85f8zi/9v8MYv/LfljFv9b88cs/rflj1n8f5c/ZvH/ff6Yxf8P+WMW/9vzxyz+f8wfs/jfkT9m8b8zf8zif1f+mMX/7vwxi/+f8scs/vfkj1n8780fs/j/OX/M4n9f/pjF/y/5Yxb/v+aPWfz/lj9m8f97/pjF//78MYv/A/ljFv8H88cs/g/lj1n8H84fs/hPyR+z+D+SP2bxfzR/zOI/NX9M4j/XIH/M4j+UP2bxH5U/ZvGfJX/M4j9r/pjFf3T+mMV/tvwxi//s+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6Yxf8Z+WMW//nyxyz+Y/LHLP7z549Z/Mfmj1n8F8gfs/gvmD9m8X9m/pjF/1n5Yxb/Z+ePWfwXyh+z+D8nf8ziv3D+mMX/ufljFv/n5Y9Z/BfJH7P4Pz9/zOL/gvwxi/+4/DGL/wvzxyz+L8ofs/i/OH/M4r9o/pjFf7H8MYv/S/LHLP6L549Z/JfIH7P4vzR/zOL/svwxi//L88cs/q/IH7P4L5k/ZvF/Zf6YxX+p/DGL/9L5Yxb/ZfLHLP7L5o9Z/JfLH7P4L58/ZvF/Vf6YxX+F/DGL/4r5Yxb/lfLHLP4r549Z/F+dP2bxXyV/zOK/av6Yxf81+WMW/9fmj1n8X5c/ZvEfnz9m8Z+QP2bxn5g/ZvFfLX/M4r96/pjFf438MYv/pPwxi//k/DGL/5r5Yxb/tfLHLP6vzx+z+L8hf8ziv3b+mMV/nfwxi/+6+WMW/zfmj1n818sfs/i/KX/M4r9+/pjFf4P8MYv/hvljFv+N8scs/m/OH7P4b5w/ZvHfJH/M4v+W/DGL/1vzxyz+b8sfs/i/PX/M4v+O/DGL/zvzxyz+78ofs/hvmj9m8d8sf8ziv3n+mMX/3fljFv8t8scs/lvmj1n835M/ZvHfKn/M4v/e/DGL/9b5Yxb/9+WPWfzfnz9m8d8mf8ziv23+mMV/u/wxi//2+WMW/w/kj1n8P5g/ZvHfIX/M4v+h/DGL/475Yxb/D+ePWfw/kj9m8f9o/pjFf6f8MYv/zvljFv9d8scs/h/LH7P475o/ZvH/eP6YxX+3/DGL/yfyxyz+u+ePWfz3yB+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP6fzB+z+H8qf8ziv3/+mMX/gPwxi/+B+WMW/0/nj1n8P5M/ZvH/bP6Yxf+g/DGL/8H5Yxb/z+WPWfwPyR+z+B+aP2bx/3z+mMX/sPwxi//h+WMW/y/kj1n8v5g/ZvH/Uv6Yxf/L+WMW/6/kj1n8v5o/ZvH/Wv6Yxf/r+WMW/yPyxyz+R+aPWfyPyh+z+B+dP2bxPyZ/zOJ/bP6Yxf+4/DGL//H5Yxb/E/LHLP4n5o9Z/E/KH7P4fyN/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/L+ZP2bx/1b+mMX/jPwxi/+Z+WMW/7Pyxyz+Z+ePWfy/nT9m8T8nf8zif27+mMX/vPwxi/938scs/t/NH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv/v5Y9Z/L+fP2bx/0H+mMX/h/ljFv8f5Y9Z/H+cP2bxvyR/zOJ/af6Yxf8n+WMW/8vyxyz+P80fs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfx/lj9m8f95/pjF/xf5Yxb/X+aPWfyvyx+z+F+fP2bx/1X+mMX/1/ljFv8b8scs/r/JH7P435g/ZvG/KX/M4n9z/pjF/7f5Yxb/W/LHLP635o9Z/G/LH7P4/y5/zOL/+/wxi/8f8scs/rfnj1n8/5g/ZvG/I3/M4n9n/pjF/678MYv/3fljFv8/5Y9Z/O/JH7P435s/ZvH/c/6Yxf++/DGL/1/yxyz+f80fs/j/LX/M4v/3/DGL//35Yxb/B/LHLP4P5o9Z/B/KH7P4P5w/ZvGfkj9m8X8kf8zi/2j+mMV/av6YxH/uQf6YxX8of8ziPyp/zOI/S/6YxX/W/DGL/+j8MYv/bPljFv/Z88cs/nPkj1n858wfs/jPlT9m8Z87f8ziP0/+mMV/3vwxi/8z8scs/vPlj1n8x+SPWfznzx+z+I/NH7P4L5A/ZvFfMH/M4v/M/DGL/7Pyxyz+z84fs/gvlD9m8X9O/pjFf+H8MYv/c/PHLP7Pyx+z+C+SP2bxf37+mMX/BfljFv9x+WMW/xfmj1n8X5Q/ZvF/cf6YxX/R/DGL/2L5Yxb/l+SPWfwXzx+z+C+RP2bxf2n+mMX/ZfljFv+X549Z/F+RP2bxXzJ/zOL/yvwxi/9S+WMW/6Xzxyz+y+SPWfyXzR+z+C+XP2bxXz5/zOL/qvwxi/8K+WMW/xXzxyz+K+WPWfxXzh+z+L86f8ziv0r+mMV/1fwxi/9r8scs/q/NH7P4vy5/zOI/Pn/M4j8hf8ziPzF/zOK/Wv6YxX/1/DGL/xr5Yxb/SfljFv/J+WMW/zXzxyz+a+WPWfxfnz9m8X9D/pjFf+38MYv/OvljFv9188cs/m/MH7P4r5c/ZvF/U/6YxX/9/DGL/wb5Yxb/DfPHLP4b5Y9Z/N+cP2bx3zh/zOK/Sf6Yxf8t+WMW/7fmj1n835Y/ZvF/e/6Yxf8d+WMW/3fmj1n835U/ZvHfNH/M4r9Z/pjFf/P8MYv/u/PHLP5b5I9Z/LfMH7P4vyd/zOK/Vf6Yxf+9+WMW/63zxyz+78sfs/i/P3/M4r9N/pjFf9v8MYv/dvljFv/t88cs/h/IH7P4fzB/zOK/Q/6Yxf9D+WMW/x3zxyz+H84fs/h/JH/M4v/R/DGL/075Yxb/nfPHLP675I9Z/D+WP2bx3zV/zOL/8fwxi/9u+WMW/0/kj1n8d88fs/jvkT9m8d8zf8ziv1f+mMV/7/wxi/8++WMW/33zxyz+++WPWfw/mT9m8f9U/pjFf//8MYv/AfljFv8D88cs/p/OH7P4fyZ/zOL/2fwxi/9B+WMW/4Pzxyz+n8sfs/gfkj9m8T80f8zi//n8MYv/YfljFv/D88cs/l/IH7P4fzF/zOL/pfwxi/+X88cs/l/JH7P4fzV/zOL/tfwxi//X88cs/kfkj1n8j8wfs/gflT9m8T86f8zif0z+mMX/2Pwxi/9x+WMW/+Pzxyz+J+SPWfxPzB+z+J+UP2bx/0b+mMX/5Pwxi/8p+WMW/1Pzxyz+p+WPWfxPzx+z+H8zf8zi/638MYv/GfljFv8z88cs/mflj1n8z84fs/h/O3/M4n9O/pjF/9z8MYv/efljFv/v5I9Z/L+bP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP7fyx+z+H8/f8zi/4P8MYv/D/PHLP4/yh+z+P84f8zif0n+mMX/0vwxi/9P8scs/pflj1n8f5o/ZvG/PH/M4n9F/pjF/8r8MYv/VfljFv+r88cs/tfkj1n8r80fs/j/LH/M4v/z/DGL/y/yxyz+v8wfs/hflz9m8b8+f8zi/6v8MYv/r/PHLP435I9Z/H+TP2bxvzF/zOJ/U/6Yxf/m/DGL/2/zxyz+t+SPWfxvzR+z+N+WP2bx/13+mMX/9/ljFv8/5I9Z/G/PH7P4/zF/zOJ/R/6Yxf/O/DGL/135Yxb/u/PHLP5/yh+z+N+TP2bxvzd/zOL/5/wxi/99+WMW/7/kj1n8/5o/ZvH/W/6Yxf/v+WMW//vzxyz+D+SPWfwfzB+z+D+UP2bxfzh/zOI/JX/M4v9I/pjF/9H8MYv/1Pwxif88g/wxi/9Q/pjFf1T+mMV/lvwxi/+s+WMW/9H5Yxb/2fLHLP6z549Z/OfIH7P4z5k/ZvGfK3/M4j93/pjFf578MYv/vPljFv9n5I9Z/OfLH7P4j8kfs/jPnz9m8R+bP2bxXyB/zOK/YP6Yxf+Z+WMW/2flj1n8n50/ZvFfKH/M4v+c/DGL/8L5Yxb/5+aPWfyflz9m8V8kf8zi//z8MYv/C/LHLP7j8scs/i/MH7P4vyh/zOL/4vwxi/+i+WMW/8Xyxyz+L8kfs/gvnj9m8V8if8zi/9L8MYv/y/LHLP4vzx+z+L8if8ziv2T+mMX/lfljFv+l8scs/kvnj1n8l8kfs/gvmz9m8V8uf8ziv3z+mMX/VfljFv8V8scs/ivmj1n8V8ofs/ivnD9m8X91/pjFf5X8MYv/qvljFv/X5I9Z/F+bP2bxf13+mMV/fP6YxX9C/pjFf2L+mMV/tfwxi//q+WMW/zXyxyz+k/LHLP6T88cs/mvmj1n818ofs/i/Pn/M4v+G/DGL/9r5Yxb/dfLHLP7r5o9Z/N+YP2bxXy9/zOL/pvwxi//6+WMW/w3yxyz+G+aPWfw3yh+z+L85f8ziv3H+mMV/k/wxi/9b8scs/m/NH7P4vy1/zOL/9vwxi/878scs/u/MH7P4vyt/zOK/af6YxX+z/DGL/+b5Yxb/d+ePWfy3yB+z+G+ZP2bxf0/+mMV/q/wxi/9788cs/lvnj1n835c/ZvF/f/6YxX+b/DGL/7b5Yxb/7fLHLP7b549Z/D+QP2bx/2D+mMV/h/wxi/+H8scs/jvmj1n8P5w/ZvH/SP6Yxf+j+WMW/53yxyz+O+ePWfx3yR+z+H8sf8ziv2v+mMX/4/ljFv/d8scs/p/IH7P4754/ZvHfI3/M4r9n/pjFf6/8MYv/3vljFv998scs/vvmj1n898sfs/h/Mn/M4v+p/DGL//75Yxb/A/LHLP4H5o9Z/D+dP2bx/0z+mMX/s/ljFv+D8scs/gfnj1n8P5c/ZvE/JH/M4n9o/pjF//P5Yxb/w/LHLP6H549Z/L+QP2bx/2L+mMX/S/ljFv8v549Z/L+SP2bx/2r+mMX/a/ljFv+v549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zi/438MYv/yfljFv9T8scs/qfmj1n8T8sfs/ifnj9m8f9m/pjF/1v5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvH/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7fyR+z+H83f8zif37+mMX/gvwxi/+F+WMW/4vyxyz+F+ePWfy/lz9m8f9+/pjF/wf5Yxb/H+aPWfx/lD9m8f9x/pjF/5L8MYv/pfljFv+f5I9Z/C/LH7P4/zR/zOJ/ef6Yxf+K/DGL/5X5Yxb/q/LHLP5X549Z/K/JH7P4X5s/ZvH/Wf6Yxf/n+WMW/1/kj1n8f5k/ZvG/Ln/M4n99/pjF/1f5Yxb/X+ePWfxvyB+z+P8mf8zif2P+mMX/pvwxi//N+WMW/9/mj1n8b8kfs/jfmj9m8b8tf8zi/7v8MYv/7/PHLP5/yB+z+N+eP2bx/2P+mMX/jvwxi/+d+WMW/7vyxyz+d+ePWfz/lD9m8b8nf8zif2/+mMX/z/ljFv/78scs/n/JH7P4/zV/zOL/t/wxi//f88cs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMV/Sv6Yxf+R/DGL/6P5Yxb/qfljEv95B/ljFv+h/DGL/6j8MYv/LPljFv9Z88cs/qPzxyz+s+WPWfxnzx+z+M+RP2bxnzN/zOI/V/6YxX/u/DGL/zz5Yxb/efPHLP7PyB+z+M+XP2bxH5M/ZvGfP3/M4j82f8ziv0D+mMV/wfwxi/8z88cs/s/KH7P4Pzt/zOK/UP6Yxf85+WMW/4Xzxyz+z80fs/g/L3/M4r9I/pjF//n5Yxb/F+SPWfzH5Y9Z/F+YP2bxf1H+mMX/xfljFv9F88cs/ovlj1n8X5I/ZvFfPH/M4r9E/pjF/6X5Yxb/l+WPWfxfnj9m8X9F/pjFf8n8MYv/K/PHLP5L5Y9Z/JfOH7P4L5M/ZvFfNn/M4r9c/pjFf/n8MYv/q/LHLP4r5I9Z/FfMH7P4r5Q/ZvFfOX/M4v/q/DGL/yr5Yxb/VfPHLP6vyR+z+L82f8zi/7r8MYv/+Pwxi/+E/DGL/8T8MYv/avljFv/V88cs/mvkj1n8J+WPWfwn549Z/NfMH7P4r5U/ZvF/ff6Yxf8N+WMW/7Xzxyz+6+SPWfzXzR+z+L8xf8ziv17+mMX/TfljFv/188cs/hvkj1n8N8wfs/hvlD9m8X9z/pjFf+P8MYv/JvljFv+35I9Z/N+aP2bxf1v+mMX/7fljFv935I9Z/N+ZP2bxf1f+mMV/0/wxi/9m+WMW/83zxyz+784fs/hvkT9m8d8yf8zi/578MYv/VvljFv/35o9Z/LfOH7P4vy9/zOL//vwxi/82+WMW/23zxyz+2+WPWfy3zx+z+H8gf8zi/8H8MYv/DvljFv8P5Y9Z/HfMH7P4fzh/zOL/kfwxi/9H88cs/jvlj1n8d84fs/jvkj9m8f9Y/pjFf9f8MYv/x/PHLP675Y9Z/D+RP2bx3z1/zOK/R/6YxX/P/DGL/175Yxb/vfPHLP775I9Z/PfNH7P475c/ZvH/ZP6Yxf9T+WMW//3zxyz+B+SPWfwPzB+z+H86f8zi/5n8MYv/Z/PHLP4H5Y9Z/A/OH7P4fy5/zOJ/SP6Yxf/Q/DGL/+fzxyz+h+WPWfwPzx+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1/LHLP5fzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/xv5Yxb/k/PHLP6n5I9Z/E/NH7P4n5Y/ZvE/PX/M4v/N/DGL/7fyxyz+Z+SPWfzPzB+z+J+VP2bxPzt/zOL/7fwxi/85+WMW/3Pzxyz+5+WPWfy/kz9m8f9u/pjF//z8MYv/BfljFv8L88cs/hflj1n8L84fs/h/L3/M4v/9/DGL/w/yxyz+P8wfs/j/KH/M4v/j/DGL/yX5Yxb/S/PHLP4/yR+z+F+WP2bx/2n+mMX/8vwxi/8V+WMW/yvzxyz+V+WPWfyvzh+z+F+TP2bxvzZ/zOL/s/wxi//P88cs/r/IH7P4/zJ/zOJ/Xf6Yxf/6/DGL/6/yxyz+v84fs/jfkD9m8f9N/pjF/8b8MYv/TfljFv+b88cs/r/NH7P435I/ZvG/NX/M4n9b/pjF/3f5Yxb/3+ePWfz/kD9m8b89f8zi/8f8MYv/HfljFv8788cs/nflj1n8784fs/j/KX/M4n9P/pjF/978MYv/n/PHLP735Y9Z/P+SP2bx/2v+mMX/b/ljFv+/549Z/O/PH7P4P5A/ZvF/MH/M4v9Q/pjF/+H8MYv/lPwxi/8j+WMW/0fzxyz+U/PHJP7PGOSPWfyH8scs/qPyxyz+s+SPWfxnzR+z+I/OH7P4z5Y/ZvGfPX/M4j9H/pjFf878MYv/XPljFv+588cs/vPkj1n8580fs/g/I3/M4j9f/pjFf0z+mMV//vwxi//Y/DGL/wL5Yxb/BfPHLP7PzB+z+D8rf8zi/+z8MYv/QvljFv/n5I9Z/BfOH7P4Pzd/zOL/vPwxi/8i+WMW/+fnj1n8X5A/ZvEflz9m8X9h/pjF/0X5Yxb/F+ePWfwXzR+z+C+WP2bxf0n+mMV/8fwxi/8S+WMW/5fmj1n8X5Y/ZvF/ef6Yxf8V+WMW/yXzxyz+r8wfs/gvlT9m8V86f8ziv0z+mMV/2fwxi/9y+WMW/+Xzxyz+r8ofs/ivkD9m8V8xf8ziv1L+mMV/5fwxi/+r88cs/qvkj1n8V80fs/i/Jn/M4v/a/DGL/+vyxyz+4/PHLP4T8scs/hPzxyz+q+WPWfxXzx+z+K+RP2bxn5Q/ZvGfnD9m8V8zf8ziv1b+mMX/9fljFv835I9Z/NfOH7P4r5M/ZvFfN3/M4v/G/DGL/3r5Yxb/N+WPWfzXzx+z+G+QP2bx3zB/zOK/Uf6Yxf/N+WMW/43zxyz+m+SPWfzfkj9m8X9r/pjF/235Yxb/t+ePWfzfkT9m8X9n/pjF/135Yxb/TfPHLP6b5Y9Z/DfPH7P4vzt/zOK/Rf6YxX/L/DGL/3vyxyz+W+WPWfzfmz9m8d86f8zi/778MYv/+/PHLP7b5I9Z/LfNH7P4b5c/ZvHfPn/M4v+B/DGL/wfzxyz+O+SPWfw/lD9m8d8xf8zi/+H8MYv/R/LHLP4fzR+z+O+UP2bx3zl/zOK/S/6Yxf9j+WMW/13zxyz+H88fs/jvlj9m8f9E/pjFf/f8MYv/HvljFv8988cs/nvlj1n8984fs/jvkz9m8d83f8ziv1/+mMX/k/ljFv9P5Y9Z/PfPH7P4H5A/ZvE/MH/M4v/p/DGL/2fyxyz+n80fs/gflD9m8T84f8zi/7n8MYv/IfljFv9D88cs/p/PH7P4H5Y/ZvE/PH/M4v+F/DGL/xfzxyz+X8ofs/h/OX/M4v+V/DGL/1fzxyz+X8sfs/h/PX/M4n9E/pjF/8j8MYv/UfljFv+j88cs/sfkj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/2/kj1n8T84fs/ifkj9m8T81f8zif1r+mMX/9Pwxi/8388cs/t/KH7P4n5E/ZvE/M3/M4n9W/pjF/+z8MYv/t/PHLP7n5I9Z/M/NH7P4n5c/ZvH/Tv6Yxf+7+WMW//Pzxyz+F+SPWfwvzB+z+F+UP2bxvzh/zOL/vfwxi//388cs/j/IH7P4/zB/zOL/o/wxi/+P88cs/pfkj1n8L80fs/j/JH/M4n9Z/pjF/6f5Yxb/y/PHLP5X5I9Z/K/MH7P4X5U/ZvG/On/M4n9N/pjF/9r8MYv/z/LHLP4/zx+z+P8if8zi/8v8MYv/dfljFv/r88cs/r/KH7P4/zp/zOJ/Q/6Yxf83+WMW/xvzxyz+N+WPWfxvzh+z+P82f8zif0v+mMX/1vwxi/9t+WMW/9/lj1n8f58/ZvH/Q/6Yxf/2/DGL/x/zxyz+d+SPWfzvzB+z+N+VP2bxvzt/zOL/p/wxi/89+WMW/3vzxyz+f84fs/jflz9m8f9L/pjF/6/5Yxb/v+WPWfz/nj9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+U/LHLP6P5I9Z/B/NH7P4T80fk/jPN8gfs/gP5Y9Z/Eflj1n8Z8kfs/jPmj9m8R+dP2bxny1/zOI/e/6YxX+O/DGL/5z5Yxb/ufLHLP5z549Z/OfJH7P4z5s/ZvF/Rv6YxX++/DGL/5j8MYv//PljFv+x+WMW/wXyxyz+C+aPWfyfmT9m8X9W/pjF/9n5Yxb/hfLHLP7PyR+z+C+cP2bxf27+mMX/efljFv9F8scs/s/PH7P4vyB/zOI/Ln/M4v/C/DGL/4vyxyz+L84fs/gvmj9m8V8sf8zi/5L8MYv/4vljFv8l8scs/i/NH7P4vyx/zOL/8vwxi/8r8scs/kvmj1n8X5k/ZvFfKn/M4r90/pjFf5n8MYv/svljFv/l8scs/svnj1n8X5U/ZvFfIX/M4r9i/pjFf6X8MYv/yvljFv9X549Z/FfJH7P4r5o/ZvF/Tf6Yxf+1+WMW/9flj1n8x+ePWfwn5I9Z/Cfmj1n8V8sfs/ivnj9m8V8jf8ziPyl/zOI/OX/M4r9m/pjFf638MYv/6/PHLP5vyB+z+K+dP2bxXyd/zOK/bv6Yxf+N+WMW//Xyxyz+b8ofs/ivnz9m8d8gf8ziv2H+mMV/o/wxi/+b88cs/hvnj1n8N8kfs/i/JX/M4v/W/DGL/9vyxyz+b88fs/i/I3/M4v/O/DGL/7vyxyz+m+aPWfw3yx+z+G+eP2bxf3f+mMV/i/wxi/+W+WMW//fkj1n8t8ofs/i/N3/M4r91/pjF/335Yxb/9+ePWfy3yR+z+G+bP2bx3y5/zOK/ff6Yxf8D+WMW/w/mj1n8d8gfs/h/KH/M4r9j/pjF/8P5Yxb/j+SPWfw/mj9m8d8pf8ziv3P+mMV/l/wxi//H8scs/rvmj1n8P54/ZvHfLX/M4v+J/DGL/+75Yxb/PfLHLP575o9Z/PfKH7P4750/ZvHfJ3/M4r9v/pjFf7/8sf+PPXo6FMQAgAAYGy+2bdu2bdt28hvbtm3btm3bumtgK7idaWFa/o/0H7X8H+U/avk/2n/U8n+M/6jl/1j/Ucv/cf6jlv/j/Uct/yf4j1r+T/Qftfyf5D9q+T/Zf9Tyf4r/qOX/VP9Ry/9p/qOW/9P9Ry3/Z/iPWv7P9B+1/J/lP2r5P9t/1PJ/jv+o5f9c/1HL/3n+o5b/8/1HLf8X+I9a/i/0H7X8X+Q/avm/2H/U8n+J/6jl/1L/Ucv/Zf6jlv/L/Uct/1f4j1r+r/Qftfxf5T9q+b/af9Tyf43/qOX/Wv9Ry/91/qOW/+v9Ry3/N/iPWv5v9B+1/N/kP2r5v9l/1PJ/i/+o5f9W/1HL/23+o5b/2/1HLf93+I9a/u/0H7X83+U/avm/23/U8n+P/6jl/17/Ucv/ff6jlv/7/Uct/w/4j1r+H/Qftfw/5D9q+X/Yf9Ty/4j/qOX/Uf9Ry/9j/qOW/8f9Ry3/T/iPWv6f9B+1/D/lP2r5f9p/1PL/jP+o5f9Z/1HL/3P+o5b/5/1HLf8v+I9a/l/0H7X8v+Q/avl/2X/U8v+K/6jl/1X/Ucv/a/6jlv/X/Uct/2/4j1r+3/Qftfy/5T9q+X/bf9Ty/47/qOX/Xf9Ry/97/qOW//f9Ry3/H/iPWv4/9B+1/H/kP2r5/9h/1PL/if+o5f9T/1HL/2f+o5b/z/1HLf9f+I9a/r/0H7X8f+U/avn/2n/U8v+N/6jl/1v/Ucv/d/6jlv/v/Uct/z/4j1r+f/Qftfz/5D9q+f/Zf9Ty/4v/qOX/V/9Ry/9v/qOW/9/9Ry3/f/iPWv7/9B+1/P/lP2r5/9t/1PL/j/+o5f9f/1HL/3/+o5b///1HLf+D/Ecl/wND+Y9a/of2H7X8D+M/avkf1n/U8j+c/6jlf3j/Ucv/CP6jlv8R/Uct/yP5j1r+R/YftfyP4j9q+R/Vf9TyP5r/qOV/dP9Ry/8Y/qOW/zH9Ry3/A/6jlv+x/Ect/2P7j1r+x/EftfyP6z9q+R/Pf9TyP77/qOV/Av9Ry/+E/qOW/4n8Ry3/E/uPWv4n8R+1/E/qP2r5n8x/1PI/uf+o5X8K/1HL/5T+o5b/qfxHLf9T+49a/qfxH7X8T+s/avmfzn/U8j+9/6jlfwb/Ucv/jP6jlv+Z/Ect/zP7j1r+Z/EftfzP6j9q+Z/Nf9TyP7v/qOV/Dv9Ry/+c/qOW/7n8Ry3/c/uPWv7n8R+1/M/rP2r5n89/1PI/v/+o5X8B/1HL/4L+o5b/hfxHLf8L+49a/hfxH7X8L+o/avlfzH/U8r+4/6jlfwn/Ucv/kv6jlv+l/Ect/0v7j1r+l/Eftfwv6z9q+V/Of9Tyv7z/qOV/Bf9Ry/+K/qOW/5X8Ry3/K/uPWv5X8R+1/K/qP2r5X81/1PK/uv+o5X8N/1HL/5r+o5b/tfxHLf9r+49a/tfxH7X8r+s/avlfz3/U8r++/6jlfwP/Ucv/hv6jlv+N/Ect/xv7j1r+N/Eftfxv6j9q+d/Mf9Tyv7n/qOV/C/9Ry/+W/qOW/638Ry3/W/uPWv638R+1/G/rP2r5385/1PK/vf+o5X8H/1HL/47+o5b/nfxHLf87+49a/nfxH7X87+o/avnfzX/U8r+7/6jlfw//Ucv/nv6jlv+9/Ect/3v7j1r+9/Eftfzv6z9q+d/Pf9Tyv7//qOX/AP9Ry/+B/qOW/4P8Ry3/B/uPWv4P8R+1/B/qP2r5P8x/1PJ/uP+o5f8I/9EQ9w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAg9m329g6y8KP43e3dYz9+ScjLrgMTTa5UEiE2e4h4wVhk7GtDrrxPAY4urUbG+02uw67Au7hxSRCeJBkkiVKlC1DCTOhkRgIVhDRoIuaaPABEIUoGidC0C1xsea0p6U9do3nqte1KJ/Pi55z32e/e1uT7+57gQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDfq6Fx4ZHxNcNOjR968MHDLX2vc46uvPnAb3suHHgtf7xshEuOG3rQ29vbO+e52TvKh6cURVH62XaWjydVjkvX31n/hc7+o7Cg56Ulx6f8vPHIgTWnP1LXffT+2r6ztcVN6za0tnxsXFGEi2uLztJBXU1RhMW1xX2lg/rSwZLa4pHSwey+g1OLb5cOzl+7ubW5dGJp9PcM/lc0NO4sxg8rthj2p8HQ/nfWf+vOgddRLjlwtQlFuf8rur7/VsVnA07Q/8D1w8LK/qv+DQInVF3/LywYeB3lkv9y/5/81KpXRvrsxP0PXD98XP+QzgjP/8MarXzur3j+nzHCJQf3V9V0HS/1f+ltz84sn5rw7zz/v3v9cHFl/+OGPf+XnuMXDTz/n1IU4ZIxfjvgPaWhcdeR0e7/o/c/YXrFpmZo/2e0b95f6v/xJd97onyqtsr+F41y/x+3tOLXClSnofHLvRX3/yr6Lz4ywiUH+3/7iV8/XOr/sd8/cOaQz6rp/5LK/md1tG2ZtXV713kb2prWt6xv2VQ3e/6cefV18y6YO6vvkaD/6xi/K/DeMLb7fzG5YlNTFC2D+2u6Dzxd6n/ugw/OKZ+aVGX/i0e9/89w/4cRfWhcMXFi0dnU0dFe1/914LC+/2v/Dxuh/yr+/n/WOeUfVlt+rSmKaYP7u868e0Wp/3cOPbu7fGpilf0vGbX/BYM/LxBhjPf/5orNsP4PHnqp7/l/2b0Hzyifqvbv/0tH7f9V938Yi4bGiv/h5z+s1P+u4rLITkOD//4H6eTo/7F3buiJW4dP6B/SydH/7z539Ny4dVimf0gnR/8TNj7wfNw6XKp/SCdH/8unzl8Rtw6X6R/SydH/2lfP/XPcOjTqH9LJ0f85X9rdGbcOy/UP6eTo/6H2Odvi1mGF/iGdHP3/9LSHXotbh8v1D+nk6P/YsXtujFuHK/QP6eTov3vP2T+IW4cr9Q/p5Oj/8nULQ9w6XKV/SCdH/9On/fHxuHW4Wv+QTo7+5/3p76fFrcM1+od0cvR/x+dX7Itbh2v1D+nk6H/89a+8GLcOK/UP6eTof+nZ2xbGrcN1+od0cvTf/JPm3rh1WKV/SCdH/7O+/qMNcetwvf4hnRz9H17+6J64dbhB/5BOjv731BVT4tbhRv1DOjn6/9p3Tz8Utw6f1D+kk6P/3zz15Py4dVitf0gnR//PfeD2b8Stw036h3Ry9H/vmhfPiluHJv1DOjn6f3jv81+MW4c1+od0cvT/xhtt/xe3Dmv1D+nk6H/ypFNfj1uHZv1DOjn6X3jrV9rj1qFF/5BOjv7bdnf/MG4d1ukf0snR/4ePT1sVtw7r9Q/p5Oh/5dy9749bh5v1D+nk6P99yy7cFbcOG/QP6eTo/6Kej14Utw4b9Q/p5Oi/45nPfjVuHW7RP6STo/+9M19bHLcOrfqHdHL0//LqpT+OW4c2/UM6Ofp/69HrNsWtwyb9Qzo5+n/yZ28fi1uHzfqHdHL0//8XLPpr3Dps0T+kk6P/xUveXBu3Dp/SP6STo/+N3f94OW4d2vUP6eTof+bhq5fFrcNW/UM6Ofr/znl1++PWoUP/kE6O/u+8cl993Dps0z+kk6P//QfvujtuHW7VP6STo/83fzFjetw6fFr/kE6O/u+fcujauHXo1D+kk6P/X26qfSZuHbbrH9LJ0f/f9k3dEbcOXfqHdHL0//TrPX+IW4fb9A/p5Oh/9YRfTYxbh9v1D+nk6H9q15b74tbhDv1DOjn6n39P0/lx6/AZ/UM6Ofrf+pcXvhm3Djv0D+ls3d51S1Nra0u7N954483gm5P9JxOQ2rvRn+xfCQAAAAAAAAAAAAAAcCI5/jnRyf49AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8kx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirswLEAAAAAgDB/6yB6NwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvgIAAP//TC7jfQ==")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r1 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffb)
sendfile(r0, r1, 0x0, 0x1000000201005)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x864c42, 0x0)
fallocate(r2, 0x1, 0x100000000, 0x101)
r3 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x1000000201004)
fallocate(r2, 0x20, 0xde52, 0x2)

23:58:29 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x0)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r4, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:30 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2344.363173][   T27] audit: type=1800 audit(1694390311.084:2956): pid=27781 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1963 res=0 errno=0
23:58:31 executing program 0:
syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000009640)='./file0\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB="70716e6f656e666f7263652c00752bb6a96d3c1f298d2453c6242f1c605a545bfe19a1c412963c57a71f13338668f4a4d16eb1c9669c019035768922c3f5d62044c9d4c6b6bb86653394c15a6f922f669da8636143f443d359146a9c338dd73e34ecf2b4b3f7b29127"], 0x4, 0x95d1, &(0x7f00000096c0)="$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")
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x145142, 0x80)
ftruncate(r0, 0x2007ffb)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x864c42, 0x0)
fallocate(r1, 0x1, 0x100000000, 0x101)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x1000000201004)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0)

[ 2344.427670][   T27] audit: type=1804 audit(1694390311.124:2957): pid=27781 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2388443488/syzkaller.BEg4eY/2801/bus" dev="sda1" ino=1962 res=1 errno=0
[ 2344.482174][T27791] loop5: detected capacity change from 0 to 32768
[ 2344.515242][T27791] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 2344.580691][T27791] XFS (loop5): Ending clean mount
[ 2344.590884][T27791] XFS (loop5): Quotacheck needed: Please wait.
[ 2344.621551][T27791] XFS (loop5): Quotacheck: Done.
[ 2344.840041][   T27] audit: type=1804 audit(1694390311.554:2958): pid=27837 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir372208966/syzkaller.KykCYr/2551/file0/bus" dev="loop5" ino=9290 res=1 errno=0
[ 2345.104378][ T1229] ieee802154 phy0 wpan0: encryption failed: -22
23:58:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000200)={0x9, <r1=>0xffffffffffffffff, 0x2})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000943000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000240)="66b8fc3a00000f23d80f21f86635800000d00f23f80f01d1646426c06d44b9baf80c66b8041bb28666efbafc0c66edbaa10066b80500000066efbaa100edbad104ec0f20d86635200000000f22d80f320f01cb"}], 0x1, 0x14, &(0x7f00000001c0)=[@dstype0={0x6, 0xb}], 0x2)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:31 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2345.213024][ T5058] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
23:58:32 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:32 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2345.744778][   T27] audit: type=1800 audit(1694390312.464:2959): pid=27833 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1981 res=0 errno=0
23:58:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:32 executing program 0:
syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000009640)='./file0\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB="70716e6f656e666f7263652c00752bb6a96d3c1f298d2453c6242f1c605a545bfe19a1c412963c57a71f13338668f4a4d16eb1c9669c019035768922c3f5d62044c9d4c6b6bb86653394c15a6f922f669da8636143f443d359146a9c338dd73e34ecf2b4b3f7b29127"], 0x4, 0x95d1, &(0x7f00000096c0)="$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")
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x145142, 0x80)
ftruncate(r0, 0x2007ffb)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x864c42, 0x0)
fallocate(r1, 0x1, 0x100000000, 0x101)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x1000000201004)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0)

[ 2345.855147][   T27] audit: type=1804 audit(1694390312.504:2960): pid=27833 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2388443488/syzkaller.BEg4eY/2802/bus" dev="sda1" ino=1980 res=1 errno=0
23:58:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:32 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:33 executing program 5:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:33 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000300)={0x1000, 0x101000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2346.992755][   T27] audit: type=1800 audit(1694390313.704:2961): pid=27882 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1982 res=0 errno=0
23:58:33 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2347.050980][   T27] audit: type=1804 audit(1694390313.714:2962): pid=27882 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2388443488/syzkaller.BEg4eY/2803/bus" dev="sda1" ino=1979 res=1 errno=0
23:58:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000200)={0x9, <r2=>0xffffffffffffffff, 0x2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000943000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000240)="66b8fc3a00000f23d80f21f86635800000d00f23f80f01d1646426c06d44b9baf80c66b8041bb28666efbafc0c66edbaa10066b80500000066efbaa100edbad104ec0f20d86635200000000f22d80f320f01cb"}], 0x1, 0x14, &(0x7f00000001c0)=[@dstype0={0x6, 0xb}], 0x2)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r5 = dup(r1)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r2, r9, &(0x7f00001de000/0x18000)=nil, &(0x7f00000002c0)=[@text16={0x10, &(0x7f0000000040)="66b9910300000f3266b94f0300000f320f5f8609890f01c836f30f38f615baf80c66b86c32458766efbafc0c66ed66b97c0800000f32baf80c66b8783f7f8966efbafc0cb028ee0f08b8aa008ed0", 0x4e}], 0x1, 0x1, &(0x7f0000000300)=[@cr4={0x1, 0x404224}], 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

23:58:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
faccessat2(r2, &(0x7f0000000040)='./file0\x00', 0x41, 0x280)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x2000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 4:
r0 = syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000009640)='./file0\x00', 0x200800, &(0x7f0000000080)=ANY=[@ANYBLOB="70716e6f656e666f7263652c00752bb6a96d3c1f298d2453c6242f1c605a545bfe19a1c412963c57a71f13338668f4a4d16eb1c9669c019035768922c3f5d62044c9d4c6b6bb86653394c15a6f922f669da8636143f443d359146a9c338dd73e34ecf2b4b3f7b29127"], 0x4, 0x95d1, &(0x7f00000096c0)="$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")
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r1 = open(&(0x7f0000007f80)='./bus\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffb)
read$msr(0xffffffffffffffff, &(0x7f0000000600)=""/4096, 0x1000)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x864c42, 0x0)
unlinkat(r0, &(0x7f0000000040)='./bus\x00', 0x200)
fallocate(r2, 0x1, 0x100000000, 0x101)
r3 = open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x1000000201004)

23:58:34 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
faccessat2(r2, &(0x7f0000000040)='./file0\x00', 0x41, 0x280)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x2000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:34 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_EVENTS(r2, 0x84, 0x78, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684da6f8a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39d4704d42b75c"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r3, 0x0)
r4 = dup(r1)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340), 0x80, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r5, 0x0, 0x487, &(0x7f0000000380), &(0x7f00000003c0)=0x30)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000300)={0x10000, 0x1, 0x2, 0x1000, &(0x7f0000559000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000164000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r7=>r4, {0x1}}, './file0\x00'})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f0000000280)='cmdline\x00')
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r7, 0xc0189375, &(0x7f0000000440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r8, @ANYBLOB="00000000000000002e2f66696c65300078eb04a2a104941e8c83400037ad4fa9f2bc81dc0000"])
ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f00000001c0)={{}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x2, 0xa15, {0x0, 0xc, 0x913, "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", 0xf5, "e0b36775294d88e7fcdc1ea01d81e0f6239bb6d6cc33df7ab8c788d31edcb1550d8b77ed6350ae4660535549ab15ce32afd777fe1239cd347bdf1212bddc88a7a9ca5c413a97048c20bc0530836e4482bf472d7fc21961c994524613fef415e1676ee5164a1aef01f0ce877835bdf26cfe309a73de59db44920d26c09e6289a729ed53deea561f57d306642af437b0872aff00f6a9d4c0f6fb0b02f83ca9be4570f2f3851d37aa768c902b15206d2556a04b1dc743a13273802a8530cf029f1578a5fa0027785c9a9529d33bc6009be37b5147b0865d2d0158f12980cd436534d253e62ccc3710d430b26a33633052d60c4c36fc42"}, 0xa2, "ddb51347de72eed6c5726a1c3bbdb745db4b546cf6095e3d75d1baf283cd09cf235f65ad44d8686dcd40a4f0088e07cea45be55f9577bceec97ebdad7bdc2779e4aae0b4f766fe96caef04da938b76f889aeaf161eb8cacfaa9fdf72273b124560a3daadb1b9f60fcdaa041c847304bee8076c33d49e2e3a2db949fc2a3795f33286379e5e694181a9981674b5c762132cd257d1959e5829be7758bea1e195a5f5f5"}, 0xac3})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000300)={0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000fc0)={&(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0], 0x4})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r11 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x4200, 0x0)
close_range(r11, r0, 0x0)

23:58:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:35 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:35 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[ 2348.835315][   T27] audit: type=1804 audit(1694390315.544:2963): pid=27964 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3193051975/syzkaller.1kQOIW/2738/bus" dev="sda1" ino=1974 res=1 errno=0
[ 2348.946767][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2348.978428][T28022] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
23:58:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000200)={0x9, <r2=>0xffffffffffffffff, 0x2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000943000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000240)="66b8fc3a00000f23d80f21f86635800000d00f23f80f01d1646426c06d44b9baf80c66b8041bb28666efbafc0c66edbaa10066b80500000066efbaa100edbad104ec0f20d86635200000000f22d80f320f01cb"}], 0x1, 0x14, &(0x7f00000001c0)=[@dstype0={0x6, 0xb}], 0x2)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r5 = dup(r1)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r2, r9, &(0x7f00001de000/0x18000)=nil, &(0x7f00000002c0)=[@text16={0x10, &(0x7f0000000040)="66b9910300000f3266b94f0300000f320f5f8609890f01c836f30f38f615baf80c66b86c32458766efbafc0c66ed66b97c0800000f32baf80c66b8783f7f8966efbafc0cb028ee0f08b8aa008ed0", 0x4e}], 0x1, 0x1, &(0x7f0000000300)=[@cr4={0x1, 0x404224}], 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

23:58:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:35 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:35 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000200)={0x9, <r2=>0xffffffffffffffff, 0x2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000943000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000240)="66b8fc3a00000f23d80f21f86635800000d00f23f80f01d1646426c06d44b9baf80c66b8041bb28666efbafc0c66edbaa10066b80500000066efbaa100edbad104ec0f20d86635200000000f22d80f320f01cb"}], 0x1, 0x14, &(0x7f00000001c0)=[@dstype0={0x6, 0xb}], 0x2)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r5 = dup(r1)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r2, r9, &(0x7f00001de000/0x18000)=nil, &(0x7f00000002c0)=[@text16={0x10, &(0x7f0000000040)="66b9910300000f3266b94f0300000f320f5f8609890f01c836f30f38f615baf80c66b86c32458766efbafc0c66ed66b97c0800000f32baf80c66b8783f7f8966efbafc0cb028ee0f08b8aa008ed0", 0x4e}], 0x1, 0x1, &(0x7f0000000300)=[@cr4={0x1, 0x404224}], 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

23:58:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:36 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:36 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:36 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r1, 0x0)
r2 = dup(r0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r1, 0x0)
r2 = dup(r0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:37 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000200)={0x9, <r2=>0xffffffffffffffff, 0x2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000943000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000240)="66b8fc3a00000f23d80f21f86635800000d00f23f80f01d1646426c06d44b9baf80c66b8041bb28666efbafc0c66edbaa10066b80500000066efbaa100edbad104ec0f20d86635200000000f22d80f320f01cb"}], 0x1, 0x14, &(0x7f00000001c0)=[@dstype0={0x6, 0xb}], 0x2)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r5 = dup(r1)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r2, r9, &(0x7f00001de000/0x18000)=nil, &(0x7f00000002c0)=[@text16={0x10, &(0x7f0000000040)="66b9910300000f3266b94f0300000f320f5f8609890f01c836f30f38f615baf80c66b86c32458766efbafc0c66ed66b97c0800000f32baf80c66b8783f7f8966efbafc0cb028ee0f08b8aa008ed0", 0x4e}], 0x1, 0x1, &(0x7f0000000300)=[@cr4={0x1, 0x404224}], 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

23:58:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684da6f8a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39d4704d42b75c"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f00000001c0)={{}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x2, 0xa15, {0x0, 0xc, 0x913, "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", 0xf5, "e0b36775294d88e7fcdc1ea01d81e0f6239bb6d6cc33df7ab8c788d31edcb1550d8b77ed6350ae4660535549ab15ce32afd777fe1239cd347bdf1212bddc88a7a9ca5c413a97048c20bc0530836e4482bf472d7fc21961c994524613fef415e1676ee5164a1aef01f0ce877835bdf26cfe309a73de59db44920d26c09e6289a729ed53deea561f57d306642af437b0872aff00f6a9d4c0f6fb0b02f83ca9be4570f2f3851d37aa768c902b15206d2556a04b1dc743a13273802a8530cf029f1578a5fa0027785c9a9529d33bc6009be37b5147b0865d2d0158f12980cd436534d253e62ccc3710d430b26a33633052d60c4c36fc42"}, 0xa2, "ddb51347de72eed6c5726a1c3bbdb745db4b546cf6095e3d75d1baf283cd09cf235f65ad44d8686dcd40a4f0088e07cea45be55f9577bceec97ebdad7bdc2779e4aae0b4f766fe96caef04da938b76f889aeaf161eb8cacfaa9fdf72273b124560a3daadb1b9f60fcdaa041c847304bee8076c33d49e2e3a2db949fc2a3795f33286379e5e694181a9981674b5c762132cd257d1959e5829be7758bea1e195a5f5f5"}, 0xac3})
ioctl$KVM_RUN(r4, 0xae80, 0x9892210000000000)

[ 2351.011763][T11126] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:58:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r1, 0x0)
r2 = dup(r0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:38 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684aa624af2f598da598a8444e1be2bdbde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2351.379213][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2351.409693][T28090] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
23:58:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:38 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)

23:58:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000200)={0x9, <r2=>0xffffffffffffffff, 0x2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000943000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000240)="66b8fc3a00000f23d80f21f86635800000d00f23f80f01d1646426c06d44b9baf80c66b8041bb28666efbafc0c66edbaa10066b80500000066efbaa100edbad104ec0f20d86635200000000f22d80f320f01cb"}], 0x1, 0x14, &(0x7f00000001c0)=[@dstype0={0x6, 0xb}], 0x2)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r5 = dup(r1)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r2, r9, &(0x7f00001de000/0x18000)=nil, &(0x7f00000002c0)=[@text16={0x10, &(0x7f0000000040)="66b9910300000f3266b94f0300000f320f5f8609890f01c836f30f38f615baf80c66b86c32458766efbafc0c66ed66b97c0800000f32baf80c66b8783f7f8966efbafc0cb028ee0f08b8aa008ed0", 0x4e}], 0x1, 0x1, &(0x7f0000000300)=[@cr4={0x1, 0x404224}], 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

23:58:40 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:40 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)

23:58:40 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000080)={0x40, <r5=>r0, 0x1})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000001c0)="0f01cb80230048b895d70000000000000f23d80f21f835000000100f23f8c744240000000000c7442402c1ac0000c7442406000000000f011424c4a12de9163e440f1f9bd83631ab260fc7af6a95000048b820060000000000000f23d80f21f835400000400f23f866ba420066ed67f3470fc735ba000000", 0x78}], 0x1, 0x4, &(0x7f0000000240)=[@dstype0={0x6, 0xd}, @cstype3={0x5, 0x9}], 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2353.412221][T28027] Bluetooth: hci6: command 0x1003 tx timeout
[ 2353.417559][T11126] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:58:40 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r1, 0x0)
r2 = dup(r0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:40 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2353.672179][T28166] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
[ 2353.695540][T17572] Bluetooth: hci6: Frame reassembly failed (-84)
23:58:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x40049409, 0x0)

23:58:40 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)

23:58:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, 0x0, 0x0, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:40 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r1, 0x0)
r2 = dup(r0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:42 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

23:58:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 1)

23:58:42 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:42 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, 0x0, 0x0, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:42 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:42 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r1, 0x0)
r2 = dup(r0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2355.731630][T28027] Bluetooth: hci6: command 0x1003 tx timeout
[ 2355.732022][T11126] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2355.865822][T28209] FAULT_INJECTION: forcing a failure.
[ 2355.865822][T28209] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2355.908123][T28209] CPU: 0 PID: 28209 Comm: syz-executor.0 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2355.918534][T28209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2355.928627][T28209] Call Trace:
[ 2355.931930][T28209]  <TASK>
[ 2355.934981][T28209]  dump_stack_lvl+0x125/0x1b0
[ 2355.939722][T28209]  should_fail_ex+0x496/0x5b0
[ 2355.944440][T28209]  _copy_to_user+0x30/0xb0
[ 2355.948904][T28209]  simple_read_from_buffer+0xd0/0x150
[ 2355.954506][T28209]  proc_fail_nth_read+0x1b0/0x290
[ 2355.959581][T28209]  ? proc_sessionid_read+0x290/0x290
[ 2355.964928][T28209]  ? security_file_permission+0xdc/0x100
[ 2355.970718][T28209]  ? proc_sessionid_read+0x290/0x290
[ 2355.976042][T28209]  vfs_read+0x1ce/0x930
[ 2355.980281][T28209]  ? kernel_read+0x1b0/0x1b0
[ 2355.985105][T28209]  ? __fget_files+0x279/0x410
[ 2355.989841][T28209]  ksys_read+0x12f/0x250
[ 2355.994140][T28209]  ? vfs_write+0xe40/0xe40
[ 2355.998787][T28209]  ? rcu_is_watching+0x12/0xb0
[ 2356.003629][T28209]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2356.010211][T28209]  do_syscall_64+0x38/0xb0
[ 2356.014771][T28209]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2356.020857][T28209] RIP: 0033:0x7f1e9127b78c
[ 2356.025031][T28206] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
[ 2356.025460][T28209] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[ 2356.053186][T28209] RSP: 002b:00007f1e91fee0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2356.061651][T28209] RAX: ffffffffffffffda RBX: 00007f1e9139c050 RCX: 00007f1e9127b78c
[ 2356.069750][T28209] RDX: 000000000000000f RSI: 00007f1e91fee130 RDI: 0000000000000006
[ 2356.077761][T28209] RBP: 00007f1e91fee120 R08: 0000000000000000 R09: 0000000000000000
[ 2356.085946][T28209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2356.093566][T17572] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2356.094069][T28209] R13: 000000000000006e R14: 00007f1e9139c050 R15: 00007ffe57cb04a8
23:58:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2356.108860][T28209]  </TASK>
23:58:42 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:42 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, 0x0, 0x0, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:42 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:44 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)

23:58:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, 0x0}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:44 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:44 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:58:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x2, 0x0)

23:58:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2358.051734][T11126] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:58:44 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:58:45 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:58:45 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x10, 0x0)

[ 2358.314154][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:58:45 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2358.356548][T28248] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
23:58:45 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, 0x0}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:47 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:47 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4b47, 0x0)

23:58:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, 0x0}], 0x1, 0x20, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:47 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x31)

23:58:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2360.371686][T28027] Bluetooth: hci6: command 0x1003 tx timeout
[ 2360.374025][T11126] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:58:47 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
prctl$PR_GET_FP_MODE(0x2e)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:47 executing program 3:
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2360.580755][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2360.608140][T28308] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
23:58:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4b49, 0x0)

23:58:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, &(0x7f0000000200)=[@dstype3={0x7, 0x9}], 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:47 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x541b, 0x0)

23:58:47 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:47 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x5421, 0x0)

23:58:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

[ 2362.611531][T11126] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2362.611628][T28027] Bluetooth: hci6: command 0x1003 tx timeout
23:58:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x5450, 0x0)

[ 2362.898094][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:58:49 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:49 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:49 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:49 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x5451, 0x0)

23:58:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:51 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{<r6=>0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000680)={{r6, 0x1, 0x31, 0x6, 0x1000, 0x2, 0x4, 0xa96c, 0xff, 0x1, 0x0, 0x40, 0x8000, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x5452, 0x0)

23:58:51 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:58:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2364.931604][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2364.931613][   T49] Bluetooth: hci6: command 0x1003 tx timeout
23:58:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:52 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:52 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:58:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x5460, 0x0)

23:58:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x8933, 0x0)

23:58:52 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:52 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:58:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000355000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000080)="f30f09b9800000c00f3235000100000f30b9800000c00f3235001000000f309a881b000007000f0fdba70f2186c4e3d15f4500e9660fdff6b8000000000f23c00f21f835010007000f23f8660f381db505754e4c", 0x54}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:58:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xaece, 0x0)

23:58:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:52 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f00000005c0)={{0x0, 0xffffffffffffffff, 0x0, 0x0, 0x750d, 0x3ff, 0x7, 0x100, 0x377e, 0x10000, 0xffffffff, 0x3, 0x8, 0xff, 0xc2}, 0x18, [0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d88c51a0e8f3d8066c36f736292aad0fe2a7e1afcd2d727b62c9585a94a217a23ecf93f275d03086b0670407df574c2ca5444597394fbbcdf6a37ddf525bc0b2ac05fa22ecd7b7500"/168], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:53 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x400448c9, 0x0)

23:58:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:58:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:58:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)

23:58:53 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x400448dd, 0x0)

23:58:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

[ 2366.769662][T28549] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
[ 2366.781243][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
23:58:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:53 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x400454ca, 0x0)

23:58:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:58:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:54 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x40049409, 0x0)

23:58:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)

23:58:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4004ae8b, 0x0)

23:58:55 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:58:55 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2368.771531][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2368.772350][   T49] Bluetooth: hci6: command 0x1003 tx timeout
[ 2368.990501][   T49] Bluetooth: hci6: sending frame failed (-49)
[ 2369.001456][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -49
23:58:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2369.041051][   T49] Bluetooth: hci7: sending frame failed (-49)
[ 2369.051486][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -49
[ 2369.079324][T28627] Bluetooth: hci7: received HCILL_GO_TO_SLEEP_ACK in state 2
23:58:55 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4004ae99, 0x0)

23:58:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:55 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:58:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r7, 0x400455c8, 0x4)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x31)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)

23:58:56 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
dup(r4)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x40086602, 0x0)

[ 2369.529901][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:58:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2369.570621][   T37] Bluetooth: hci7: Frame reassembly failed (-84)
[ 2369.605144][T28654] Bluetooth: hci7: received HCILL_GO_TO_SLEEP_ACK in state 2
23:58:56 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x40087602, 0x0)

23:58:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c0000000071017f1c9a2060c2f178a6b03802f151710d"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:56 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
socket$inet_udp(0x2, 0x2, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x40186366, 0x0)

23:58:56 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:58 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

[ 2371.581655][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2371.583958][T11126] Bluetooth: hci7: command 0x1003 tx timeout
[ 2371.588163][   T49] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2371.600418][T11126] Bluetooth: hci6: command 0x1003 tx timeout
23:58:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x31)

23:58:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x401c5820, 0x0)

23:58:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:58 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2371.827557][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2371.905214][T28721] Bluetooth: hci7: received HCILL_GO_TO_SLEEP_ACK in state 2
[ 2371.941306][T24982] Bluetooth: hci7: Frame reassembly failed (-84)
23:58:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4020940d, 0x0)

23:58:58 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:58:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:58:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0)

[ 2373.892099][T28710] Bluetooth: hci7: command 0x1003 tx timeout
[ 2373.898139][T28027] Bluetooth: hci6: command 0x1003 tx timeout
[ 2373.898569][   T49] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2373.904379][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -110
23:59:00 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:00 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4090ae82, 0x0)

23:59:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:00 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:00 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[ 2374.135722][T28710] Bluetooth: hci6: sending frame failed (-49)
[ 2374.145448][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -49
23:59:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4138ae84, 0x0)

23:59:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2374.237529][T28710] Bluetooth: hci7: sending frame failed (-49)
[ 2374.243831][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:01 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x41a0ae8d, 0x0)

23:59:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:01 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[ 2374.698234][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x8004ae98, 0x0)

23:59:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:01 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x80086301, 0x0)

23:59:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:03 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2376.771826][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2376.771901][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2377.004850][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:03 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x80086601, 0x0)

23:59:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:04 executing program 4:
setuid(0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x80087601, 0x0)

23:59:05 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:05 executing program 4:
setuid(0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:59:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4704d42b75c00"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2379.011741][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2379.016297][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:05 executing program 4:
setuid(0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:59:05 executing program 4:
setuid(0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:59:06 executing program 4:
setuid(0xffffffffffffffff)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2379.285583][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x801c581f, 0x0)

23:59:06 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

[ 2379.633722][T28027] Bluetooth: hci7: sending frame failed (-49)
[ 2379.639993][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket(0x10, 0x803, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r3, 0x400455c8, 0x4)

23:59:08 executing program 4:
setuid(0xffffffffffffffff)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x8090ae81, 0x0)

23:59:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2381.331736][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2381.336686][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:08 executing program 4:
setuid(0xffffffffffffffff)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2381.499796][T28710] Bluetooth: hci6: sending frame failed (-49)
[ 2381.510044][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -49
23:59:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2381.591817][   T37] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x8138ae83, 0x0)

23:59:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:10 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r3, 0x400455c8, 0x4)

23:59:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x81a0ae8c, 0x0)

23:59:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2383.651529][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -110
23:59:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:10 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:10 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2383.911311][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2383.927902][ T7235] Bluetooth: hci7: Frame reassembly failed (-84)
[ 2383.940780][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xc0045878, 0x0)

23:59:10 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2385.971588][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2385.971605][T28027] Bluetooth: hci7: command 0x1003 tx timeout
[ 2385.971623][   T49] Bluetooth: hci6: command 0x1003 tx timeout
[ 2385.977818][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

23:59:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xc0045878, 0x0)

23:59:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

[ 2386.109618][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2386.268861][ T7235] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xc0189436, 0x0)

23:59:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x5a, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[ 2388.131591][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2388.131749][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xc018ae85, 0x0)

23:59:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2388.291964][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2388.293659][T28027] Bluetooth: hci7: command 0x1003 tx timeout
[ 2388.486991][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2388.557646][ T7235] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xc020660b, 0x0)

23:59:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d470"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x2)

23:59:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x3)

23:59:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2390.531833][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x4)

23:59:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2390.621456][T28355] Bluetooth: hci7: command 0x1003 tx timeout
[ 2390.621556][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2390.812006][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x5)

[ 2390.868130][T24982] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2391.005088][   T49] Bluetooth: hci8: sending frame failed (-49)
[ 2391.011344][T28027] Bluetooth: hci8: Opcode 0x1003 failed: -49
23:59:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x6)

23:59:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aae"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2392.851479][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2392.851525][T28027] Bluetooth: hci6: command 0x1003 tx timeout
23:59:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r4, 0x400455c8, 0x4)

23:59:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x7)

23:59:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2392.931612][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2392.934828][T28710] Bluetooth: hci7: command 0x1003 tx timeout
[ 2393.115351][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xe)

[ 2393.210794][ T7235] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xf)

[ 2395.091454][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2395.171521][T28355] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket(0x10, 0x803, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r3, 0x400455c8, 0x4)

23:59:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x28)

23:59:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)

23:59:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2395.251863][T28355] Bluetooth: hci7: command 0x1003 tx timeout
[ 2395.252554][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2395.445734][T17572] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2395.480889][ T7235] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2395.531633][T17572] Bluetooth: hci8: Frame reassembly failed (-84)
[ 2395.542803][T17572] Bluetooth: hci8: Frame reassembly failed (-84)
23:59:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x300)

23:59:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x500)

23:59:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x600)

23:59:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r3, 0x400455c8, 0x4)

23:59:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x700)

[ 2397.491502][   T49] Bluetooth: hci7: command 0x1003 tx timeout
[ 2397.491673][T28355] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2397.497626][   T49] Bluetooth: hci6: command 0x1003 tx timeout
[ 2397.511600][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2397.572057][T28710] Bluetooth: hci8: Opcode 0x1003 failed: -110
[ 2397.754891][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2397.827027][T17572] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xe00)

23:59:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xf00)

23:59:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

23:59:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x1f00)

[ 2399.811779][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2399.891582][T28710] Bluetooth: hci7: command 0x1003 tx timeout
[ 2399.891709][T29339] Bluetooth: hci7: Opcode 0x1003 failed: -110
23:59:26 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2400.044815][T17572] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x2800)

23:59:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x3f00)

23:59:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x219298)

23:59:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2402.051520][T11126] Bluetooth: hci6: command 0x1003 tx timeout
[ 2402.054038][T29339] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2402.131528][T29339] Bluetooth: hci7: command 0x1003 tx timeout
[ 2402.135887][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
23:59:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2402.322115][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2402.359688][   T37] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x80ffff)

23:59:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x1000000)

23:59:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x2000000)

23:59:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x10, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:31 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000001c0)={"d09d1e436655978b7467da71ebb7db5d27089de1d052341253c08b71e4e938184bbbffdd131c775913950873a2bb48e51d5f5c343a9f07cf9111b85f9305ecb0fbee896e0628d9bc331a501872939d3da2406badc42f35803fe7e73ee31d6d7bd60388dc3d25d357dec247cd12ede15e0ab59646d5751f7938a0edd44beee154dcfc6737ec2406adffcda80219a145c96930c1ee34a9b67e2b6fde76b202a8dd15be4ea026fe8b093f402925f27aa7040044ddb60999325d78dba95d1d0ff6b92d24fc2d9bf411562bb79d2af59511c81ad85c833cadd30c4788ea0071f8c8acdca80dd76e1095f26a4d417bfb8cdbf3dfaed30e2c92a111cf64dcb903d0d0b658df4d737b39c44a227eff1ded842c658d4aabdbe258b824460c6d5044fabc2317f8241e09a26708a841605a8cab6205e97aeb35ec25297b7f52f1088126d767aaba79fc964f6d2b96de59b0f1ba90a327d68d5dcbb2f8a2836021df81cbce116e24d5a2dbb7559840379dd400ef98511e74e224acb1e02ecd37f4fe3c00d3fc27e1ea90fa7984848090761932f411b72164ecd1096c38a670042177236e682ab80e6b5f788a4842131b7064b06c3c2f988a701f8ef4efd5e95ba093aadd5a7fa33dea527375f3fdd6c9004bbdd484757882eb562462a6f42088ba99baf2701fa6ad48fe602abdd75ddac5b2654da8a8ca878cba0f907feb6063d5ce9aea517d4b5c29cd92737cd8c472e2709f479c7be546eb7d8a2aff69436b547cc1e460bd436d70385aac1fe9b8af2eb9c5ac65c22754eaeceef29e2d419642934e7f7ebd5fc4ea3a2b39bac9007b1e78ec1b17311bd938189428277a93e89b35b04cd06141451af4b2623d6c095ed20d975c29f6190c05a6f510caa958cca982be3907e40d1e52f541230bf4c3d5ab97b984e5f15c841524300148169539ef0a1e1ea50da6aad3f3fae3296cc0c11d940ac1ac0b6a24bc2f8ead0a8729fa5954811de712332067ae44614bce973128b2818b3b65343984c0c893ee2b9ec49d4b399e286171e0b9d87a2a0fa6c1c88bd33a00bcd94f679b7da716a8e9473c5078b50d2abe671828b2b89a9abf2b8988c84841ef51c129133266c4d0f5b36dcf00809501ca9fe27386719b802b21e1954a11d2ac7a95a0f0ace52eb96672a3af9fb18e59426b352b58fd84e5097a82113d1f2a725e6c33d316cdcd4a892edc342148bdd16f10694db351587349f8920589b9dcb25dabec20fd4d6a87837977af1608537f40ee3d2a0f485d1872ebb926352d203ff15ef8533e1a6a9f8b46b5de2cbd91eb90acd680ac749e2ddef4eee9e0c5afc2cce433079ea5f285adcce2a09e5fd9d31b2f40c798e7e4464bbfc7ce5a441a6f06871545135f259018058c2f65b2558863461eca7e394d176fbb15ddd0404a5549c65db1c344b3d180aae340af42a32a74"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x3000000)

23:59:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x10, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2404.371596][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2404.372036][T11126] Bluetooth: hci7: command 0x1003 tx timeout
[ 2404.384234][T29339] Bluetooth: hci7: Opcode 0x1003 failed: -110
23:59:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2404.535451][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x4000000)

23:59:31 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2406.535498][ T1229] ieee802154 phy0 wpan0: encryption failed: -22
23:59:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:33 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x5000000)

23:59:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

23:59:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x10, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2406.611540][T11126] Bluetooth: hci6: command 0x1003 tx timeout
[ 2406.611710][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2406.821590][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:33 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2406.889730][T29339] Bluetooth: hci7: sending frame failed (-49)
[ 2406.899376][T11126] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x6000000)

23:59:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

[ 2407.376857][T17572] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:35 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x7000000)

23:59:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, 0xffffffffffffffff, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2408.851569][T29339] Bluetooth: hci6: command 0x1003 tx timeout
[ 2408.854653][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:35 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xe000000)

[ 2409.177963][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2409.205437][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2409.411702][T11126] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2409.416089][T29339] Bluetooth: hci7: command 0x1003 tx timeout
23:59:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xf000000)

23:59:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

[ 2409.869427][T11126] Bluetooth: hci7: sending frame failed (-49)
[ 2409.875731][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x1f000000)

23:59:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, 0xffffffffffffffff, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

23:59:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[ 2411.251652][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2411.251746][T28027] Bluetooth: hci6: command 0x1003 tx timeout
23:59:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

[ 2411.514982][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

23:59:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

23:59:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x28000000)

[ 2411.721950][   T37] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDADDIO(r2, 0x400455c8, 0x4)

23:59:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x3f000000)

23:59:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:40 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, 0xffffffffffffffff, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2413.571594][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2413.574945][T11126] Bluetooth: hci6: command 0x1003 tx timeout
23:59:40 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2413.731997][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -110
23:59:40 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x10, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x98922100)

23:59:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xffff8000)

23:59:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
dup(r1)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:41 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:59:41 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:59:41 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xffffff7f)

23:59:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2414.817392][T24982] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(0xffffffffffffffff)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:42 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

23:59:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x1000000000000)

23:59:42 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x1f00)

[ 2415.811545][T29339] Bluetooth: hci6: command 0x1003 tx timeout
[ 2415.817893][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:42 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:42 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:42 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:42 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x40000000}]}, 0x1c}}, 0x0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000226bd7000fbdbdf250b0000002400018008000700", @ANYRES32=0x0, @ANYBLOB="060001000a000000060005004e210087dfb7b40c872a0300"], 0x38}, 0x1, 0x0, 0x0, 0xc095}, 0x885)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
fcntl$addseals(r1, 0x409, 0xb)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r6, 0x400455c8, 0x4)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x31)

23:59:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(0xffffffffffffffff)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2416.365112][T29339] Bluetooth: hci6: sending frame failed (-49)
[ 2416.371932][T28710] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 2416.391434][T29799] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2
23:59:43 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x80ffff00000000)

23:59:43 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(0xffffffffffffffff)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:43 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0)

[ 2416.851523][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2416.851592][T28710] Bluetooth: hci7: command 0x1003 tx timeout
23:59:43 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:43 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:43 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:43 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:43 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2417.148772][T24982] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x100000000000000)

23:59:43 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 1)

23:59:44 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2417.349426][T29847] FAULT_INJECTION: forcing a failure.
[ 2417.349426][T29847] name failslab, interval 1, probability 0, space 0, times 0
[ 2417.401509][T29847] CPU: 0 PID: 29847 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2417.411821][T29847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2417.421999][T29847] Call Trace:
[ 2417.425390][T29847]  <TASK>
[ 2417.428359][T29847]  dump_stack_lvl+0x125/0x1b0
[ 2417.433217][T29847]  should_fail_ex+0x496/0x5b0
[ 2417.438029][T29847]  should_failslab+0x9/0x20
[ 2417.442600][T29847]  __kmem_cache_alloc_node+0x5f/0x470
[ 2417.448020][T29847]  ? lock_acquire+0x464/0x510
[ 2417.453468][T29847]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2417.459629][T29847]  __kmalloc+0x4f/0x100
[ 2417.464798][T29847]  tomoyo_realpath_from_path+0xb9/0x710
[ 2417.470664][T29847]  ? lock_release+0x4bf/0x680
[ 2417.475403][T29847]  ? tomoyo_profile+0x47/0x60
[ 2417.480410][T29847]  tomoyo_path_number_perm+0x243/0x590
[ 2417.486038][T29847]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2417.491720][T29847]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2417.497835][T29847]  ? lock_release+0x4bf/0x680
[ 2417.502581][T29847]  ? lock_release+0x4bf/0x680
[ 2417.507311][T29847]  ? __might_fault+0xe5/0x190
[ 2417.512042][T29847]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2417.517557][T29847]  ? rcu_is_watching+0x12/0xb0
[ 2417.522366][T29847]  ? xfd_validate_state+0x5d/0x180
[ 2417.527623][T29847]  ? __fget_files+0x279/0x410
[ 2417.532521][T29847]  security_file_ioctl+0x72/0xb0
[ 2417.537601][T29847]  __x64_sys_ioctl+0xbb/0x210
[ 2417.542464][T29847]  do_syscall_64+0x38/0xb0
[ 2417.547191][T29847]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2417.553186][T29847] RIP: 0033:0x7f29ca47cae9
[ 2417.557912][T29847] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2417.578005][T29847] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2417.586634][T29847] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2417.594817][T29847] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2417.602989][T29847] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2417.611333][T29847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2417.619655][T29847] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2417.627635][T29847]  </TASK>
[ 2417.656885][T29847] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2417.677077][T29339] Bluetooth: hci7: sending frame failed (-49)
[ 2417.684048][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:45 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:45 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:45 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x200000000000000)

23:59:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 2)

23:59:45 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2419.171486][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2419.171485][T28710] Bluetooth: hci6: command 0x1003 tx timeout
23:59:46 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2419.294615][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
23:59:46 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2419.426156][ T7235] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:46 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x300000000000000)

23:59:46 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:46 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 3)

23:59:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2421.331505][T29339] Bluetooth: hci6: command 0x1003 tx timeout
[ 2421.341594][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2421.412955][T29907] FAULT_INJECTION: forcing a failure.
[ 2421.412955][T29907] name failslab, interval 1, probability 0, space 0, times 0
[ 2421.430782][T29907] CPU: 0 PID: 29907 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2421.441361][T29907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2421.451737][T29907] Call Trace:
[ 2421.455055][T29907]  <TASK>
[ 2421.458101][T29907]  dump_stack_lvl+0x125/0x1b0
[ 2421.463182][T29907]  should_fail_ex+0x496/0x5b0
[ 2421.468074][T29907]  should_failslab+0x9/0x20
[ 2421.472631][T29907]  __kmem_cache_alloc_node+0x5f/0x470
[ 2421.478429][T29907]  ? tomoyo_encode2+0x100/0x3d0
[ 2421.483695][T29907]  __kmalloc+0x4f/0x100
[ 2421.487965][T29907]  tomoyo_encode2+0x100/0x3d0
[ 2421.491984][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2421.492655][T29907]  ? rcu_is_watching+0x12/0xb0
[ 2421.503622][T29907]  tomoyo_encode+0x29/0x50
[ 2421.508089][T29907]  tomoyo_realpath_from_path+0x196/0x710
[ 2421.514032][T29907]  tomoyo_path_number_perm+0x243/0x590
[ 2421.519518][T29907]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2421.525553][T29907]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2421.531741][T29907]  ? lock_release+0x4bf/0x680
[ 2421.536884][T29907]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2421.543793][T29907]  ? bit_wait_timeout+0x160/0x160
[ 2421.549209][T29907]  ? __fget_files+0x279/0x410
[ 2421.554016][T29907]  ? __fget_files+0x279/0x410
[ 2421.558826][T29907]  security_file_ioctl+0x72/0xb0
[ 2421.563896][T29907]  __x64_sys_ioctl+0xbb/0x210
[ 2421.568705][T29907]  do_syscall_64+0x38/0xb0
[ 2421.573230][T29907]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2421.579176][T29907] RIP: 0033:0x7f29ca47cae9
[ 2421.583959][T29907] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2421.604034][T29907] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2421.612810][T29907] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2421.621049][T29907] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2421.629410][T29907] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2421.637910][T29907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2421.645889][T29907] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2421.654319][T29907]  </TASK>
23:59:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x400000000000000)

23:59:48 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

[ 2421.666318][T29907] ERROR: Out of memory at tomoyo_realpath_from_path.
23:59:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

23:59:48 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2421.847460][T29339] Bluetooth: hci7: sending frame failed (-49)
[ 2421.854026][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

23:59:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x500000000000000)

[ 2422.099691][T29339] Bluetooth: hci7: sending frame failed (-49)
[ 2422.107656][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -49
23:59:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 4)

23:59:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:50 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

23:59:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x600000000000000)

[ 2423.731552][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2423.732393][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2423.880944][T29952] FAULT_INJECTION: forcing a failure.
[ 2423.880944][T29952] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2423.911472][   T37] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2423.937840][T29952] CPU: 1 PID: 29952 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2423.948187][T29952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2423.958964][T29952] Call Trace:
[ 2423.962372][T29952]  <TASK>
[ 2423.965328][T29952]  dump_stack_lvl+0x125/0x1b0
[ 2423.970096][T29952]  should_fail_ex+0x496/0x5b0
[ 2423.974973][T29952]  __should_fail_alloc_page+0xe7/0x130
[ 2423.980640][T29952]  prepare_alloc_pages.constprop.0+0x16f/0x550
[ 2423.987112][T29952]  __alloc_pages+0x14e/0x4a0
[ 2423.991812][T29952]  ? __alloc_pages_slowpath.constprop.0+0x2360/0x2360
[ 2423.998775][T29952]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2424.004955][T29952]  ? __ldsem_down_read_nested+0xe4/0x930
[ 2424.010906][T29952]  ? __ldsem_down_read_nested+0xf4/0x930
[ 2424.016787][T29952]  ? hci_alloc_dev_priv+0x1d/0x2780
[ 2424.022217][T29952]  __kmalloc_large_node+0x87/0x1c0
[ 2424.027372][T29952]  __kmalloc.cold+0xb/0xe0
[ 2424.031964][T29952]  hci_alloc_dev_priv+0x1d/0x2780
[ 2424.037280][T29952]  hci_uart_tty_ioctl+0x376/0xc70
[ 2424.042678][T29952]  ? hci_uart_init_work+0x170/0x170
[ 2424.047908][T29952]  tty_ioctl+0x6fd/0x1580
[ 2424.052256][T29952]  ? send_break+0x3e0/0x3e0
[ 2424.056902][T29952]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2424.062932][T29952]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2424.068434][T29952]  ? bit_wait_timeout+0x160/0x160
[ 2424.073600][T29952]  ? selinux_file_ioctl+0x17d/0x270
[ 2424.079001][T29952]  ? selinux_file_ioctl+0xb5/0x270
[ 2424.084142][T29952]  ? send_break+0x3e0/0x3e0
[ 2424.088835][T29952]  __x64_sys_ioctl+0x18f/0x210
[ 2424.093704][T29952]  do_syscall_64+0x38/0xb0
[ 2424.098219][T29952]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2424.104221][T29952] RIP: 0033:0x7f29ca47cae9
[ 2424.108740][T29952] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2424.128836][T29952] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2424.137278][T29952] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2424.145536][T29952] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2424.153777][T29952] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2424.162134][T29952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2424.170548][T29952] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2424.179075][T29952]  </TASK>
23:59:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 5)

[ 2424.194111][T29952] Bluetooth: Can't allocate HCI device
[ 2424.218296][   T37] Bluetooth: hci7: Frame reassembly failed (-84)
23:59:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup(r1)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23:59:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x700000000000000)

23:59:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2424.434349][T29974] FAULT_INJECTION: forcing a failure.
[ 2424.434349][T29974] name failslab, interval 1, probability 0, space 0, times 0
[ 2424.473850][T29974] CPU: 0 PID: 29974 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2424.484499][T29974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2424.494669][T29974] Call Trace:
[ 2424.498054][T29974]  <TASK>
[ 2424.500995][T29974]  dump_stack_lvl+0x125/0x1b0
[ 2424.505710][T29974]  should_fail_ex+0x496/0x5b0
[ 2424.510406][T29974]  should_failslab+0x9/0x20
[ 2424.514926][T29974]  __kmem_cache_alloc_node+0x5f/0x470
[ 2424.520329][T29974]  kmalloc_trace+0x25/0xe0
[ 2424.524770][T29974]  h4_open+0x4f/0x180
[ 2424.528862][T29974]  hci_uart_tty_ioctl+0x7d4/0xc70
[ 2424.534086][T29974]  ? hci_uart_init_work+0x170/0x170
[ 2424.539310][T29974]  tty_ioctl+0x6fd/0x1580
[ 2424.543653][T29974]  ? send_break+0x3e0/0x3e0
[ 2424.548178][T29974]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2424.554209][T29974]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2424.559694][T29974]  ? bit_wait_timeout+0x160/0x160
[ 2424.564911][T29974]  ? selinux_file_ioctl+0x17d/0x270
[ 2424.570136][T29974]  ? selinux_file_ioctl+0xb5/0x270
[ 2424.575271][T29974]  ? send_break+0x3e0/0x3e0
[ 2424.579880][T29974]  __x64_sys_ioctl+0x18f/0x210
[ 2424.584751][T29974]  do_syscall_64+0x38/0xb0
[ 2424.589269][T29974]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2424.595351][T29974] RIP: 0033:0x7f29ca47cae9
[ 2424.599947][T29974] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2424.619921][T29974] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2424.628357][T29974] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2424.636338][T29974] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2424.644403][T29974] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2424.652466][T29974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2424.660531][T29974] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2424.668600][T29974]  </TASK>
23:59:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 6)

23:59:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xe00000000000000)

[ 2424.809773][T29985] FAULT_INJECTION: forcing a failure.
[ 2424.809773][T29985] name failslab, interval 1, probability 0, space 0, times 0
[ 2424.836467][T29985] CPU: 1 PID: 29985 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2424.846784][T29985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2424.856957][T29985] Call Trace:
[ 2424.860263][T29985]  <TASK>
[ 2424.863218][T29985]  dump_stack_lvl+0x125/0x1b0
[ 2424.868222][T29985]  should_fail_ex+0x496/0x5b0
[ 2424.873038][T29985]  should_failslab+0x9/0x20
[ 2424.877684][T29985]  __kmem_cache_alloc_node+0x5f/0x470
[ 2424.883370][T29985]  kmalloc_trace+0x25/0xe0
[ 2424.888187][T29985]  alloc_workqueue+0x16f/0x1490
[ 2424.893115][T29985]  ? rcu_is_watching+0x12/0xb0
[ 2424.898031][T29985]  ? kfree+0x108/0x140
[ 2424.902156][T29985]  ? workqueue_sysfs_register+0x400/0x400
[ 2424.908210][T29985]  hci_register_dev+0x1c0/0xbc0
[ 2424.913404][T29985]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2424.918617][T29985]  ? hci_uart_init_work+0x170/0x170
[ 2424.923865][T29985]  tty_ioctl+0x6fd/0x1580
[ 2424.928198][T29985]  ? send_break+0x3e0/0x3e0
[ 2424.932792][T29985]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2424.938789][T29985]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2424.944181][T29985]  ? bit_wait_timeout+0x160/0x160
[ 2424.949324][T29985]  ? selinux_file_ioctl+0x17d/0x270
[ 2424.954547][T29985]  ? selinux_file_ioctl+0xb5/0x270
[ 2424.959680][T29985]  ? send_break+0x3e0/0x3e0
[ 2424.964292][T29985]  __x64_sys_ioctl+0x18f/0x210
[ 2424.969331][T29985]  do_syscall_64+0x38/0xb0
[ 2424.973758][T29985]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2424.979958][T29985] RIP: 0033:0x7f29ca47cae9
[ 2424.984487][T29985] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2425.004514][T29985] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2425.013310][T29985] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2425.021407][T29985] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2425.029589][T29985] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2425.037573][T29985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2425.049027][T29985] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2425.057474][T29985]  </TASK>
[ 2425.118287][T29985] Bluetooth: Can't register HCI device
[ 2425.971489][T29339] Bluetooth: hci6: command 0x1003 tx timeout
[ 2425.981809][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -110
23:59:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 7)

23:59:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xf00000000000000)

23:59:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

23:59:52 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r1, 0x400455c8, 0x4)

[ 2426.221681][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2426.302894][T29999] FAULT_INJECTION: forcing a failure.
[ 2426.302894][T29999] name failslab, interval 1, probability 0, space 0, times 0
[ 2426.333193][T29999] CPU: 1 PID: 29999 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2426.343320][T29999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2426.353566][T29999] Call Trace:
[ 2426.356939][T29999]  <TASK>
[ 2426.359962][T29999]  dump_stack_lvl+0x125/0x1b0
[ 2426.365363][T29999]  should_fail_ex+0x496/0x5b0
[ 2426.370070][T29999]  should_failslab+0x9/0x20
[ 2426.374609][T29999]  __kmem_cache_alloc_node+0x5f/0x470
[ 2426.380106][T29999]  kmalloc_trace+0x25/0xe0
[ 2426.384753][T29999]  alloc_workqueue+0x1d4/0x1490
[ 2426.389829][T29999]  ? rcu_is_watching+0x12/0xb0
[ 2426.394618][T29999]  ? kfree+0x108/0x140
[ 2426.398798][T29999]  ? workqueue_sysfs_register+0x400/0x400
[ 2426.404831][T29999]  hci_register_dev+0x1c0/0xbc0
[ 2426.409816][T29999]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2426.414900][T29999]  ? hci_uart_init_work+0x170/0x170
[ 2426.420259][T29999]  tty_ioctl+0x6fd/0x1580
[ 2426.424626][T29999]  ? send_break+0x3e0/0x3e0
[ 2426.429149][T29999]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2426.435152][T29999]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2426.440725][T29999]  ? bit_wait_timeout+0x160/0x160
[ 2426.445778][T29999]  ? selinux_file_ioctl+0x17d/0x270
[ 2426.451004][T29999]  ? selinux_file_ioctl+0xb5/0x270
[ 2426.456230][T29999]  ? send_break+0x3e0/0x3e0
[ 2426.460748][T29999]  __x64_sys_ioctl+0x18f/0x210
[ 2426.465527][T29999]  do_syscall_64+0x38/0xb0
[ 2426.470041][T29999]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2426.476041][T29999] RIP: 0033:0x7f29ca47cae9
[ 2426.480559][T29999] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2426.500284][T29999] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2426.508720][T29999] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2426.516705][T29999] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2426.524684][T29999] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2426.532924][T29999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2426.541079][T29999] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2426.549442][T29999]  </TASK>
[ 2426.590570][T29999] Bluetooth: Can't register HCI device
[ 2426.597087][   T37] Bluetooth: hci7: Frame reassembly failed (-84)
[ 2426.621794][T29339] Bluetooth: hci6: sending frame failed (-49)
[ 2426.627977][T28027] Bluetooth: hci6: Opcode 0x1003 failed: -49
23:59:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 8)

[ 2426.712074][T30024] FAULT_INJECTION: forcing a failure.
[ 2426.712074][T30024] name failslab, interval 1, probability 0, space 0, times 0
[ 2426.735504][T30024] CPU: 0 PID: 30024 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2426.745640][T30024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2426.755829][T30024] Call Trace:
[ 2426.759207][T30024]  <TASK>
[ 2426.762150][T30024]  dump_stack_lvl+0x125/0x1b0
[ 2426.766885][T30024]  should_fail_ex+0x496/0x5b0
[ 2426.771577][T30024]  ? kasprintf+0xc8/0x100
[ 2426.775930][T30024]  ? kasprintf+0xc8/0x100
[ 2426.780360][T30024]  should_failslab+0x9/0x20
[ 2426.785143][T30024]  __kmem_cache_alloc_node+0x5f/0x470
[ 2426.790700][T30024]  ? pointer+0xbf0/0xbf0
[ 2426.794959][T30024]  ? kasprintf+0xc8/0x100
[ 2426.799302][T30024]  __kmalloc_node_track_caller+0x50/0x100
[ 2426.805280][T30024]  kvasprintf+0xbd/0x150
[ 2426.809807][T30024]  ? bust_spinlocks+0xe0/0xe0
[ 2426.814599][T30024]  ? ip6_addr_string_sa+0x820/0x820
[ 2426.819837][T30024]  ? preempt_count_add+0x72/0x140
[ 2426.824989][T30024]  kasprintf+0xc8/0x100
[ 2426.829180][T30024]  ? kvasprintf_const+0x190/0x190
[ 2426.834759][T30024]  ? free_zapped_rcu+0x290/0x290
[ 2426.839756][T30024]  ? lockdep_init_map_type+0x16d/0x7c0
[ 2426.845620][T30024]  alloc_workqueue+0x590/0x1490
[ 2426.850501][T30024]  ? rcu_is_watching+0x12/0xb0
[ 2426.855280][T30024]  ? workqueue_sysfs_register+0x400/0x400
[ 2426.861029][T30024]  hci_register_dev+0x1c0/0xbc0
[ 2426.866099][T30024]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2426.871150][T30024]  ? hci_uart_init_work+0x170/0x170
[ 2426.876370][T30024]  tty_ioctl+0x6fd/0x1580
[ 2426.880728][T30024]  ? send_break+0x3e0/0x3e0
[ 2426.885244][T30024]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2426.891594][T30024]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2426.897079][T30024]  ? bit_wait_timeout+0x160/0x160
[ 2426.902138][T30024]  ? selinux_file_ioctl+0x17d/0x270
[ 2426.907373][T30024]  ? selinux_file_ioctl+0xb5/0x270
[ 2426.912591][T30024]  ? send_break+0x3e0/0x3e0
[ 2426.917175][T30024]  __x64_sys_ioctl+0x18f/0x210
[ 2426.922138][T30024]  do_syscall_64+0x38/0xb0
[ 2426.926565][T30024]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2426.932561][T30024] RIP: 0033:0x7f29ca47cae9
[ 2426.937247][T30024] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2426.957125][T30024] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2426.965834][T30024] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2426.973919][T30024] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2426.981896][T30024] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2426.989972][T30024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2426.998211][T30024] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2427.006367][T30024]  </TASK>
23:59:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x1f00000000000000)

[ 2427.015540][T29339] Bluetooth: hci8: sending frame failed (-49)
[ 2427.022843][T28027] Bluetooth: hci8: Opcode 0x1003 failed: -49
23:59:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x100000000000000)

23:59:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 9)

23:59:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x2800000000000000)

[ 2427.374147][T30041] FAULT_INJECTION: forcing a failure.
[ 2427.374147][T30041] name failslab, interval 1, probability 0, space 0, times 0
[ 2427.408003][T30041] CPU: 0 PID: 30041 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2427.418498][T30041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2427.428668][T30041] Call Trace:
[ 2427.431983][T30041]  <TASK>
[ 2427.435021][T30041]  dump_stack_lvl+0x125/0x1b0
[ 2427.439763][T30041]  should_fail_ex+0x496/0x5b0
[ 2427.444489][T30041]  should_failslab+0x9/0x20
[ 2427.449301][T30041]  __kmem_cache_alloc_node+0x5f/0x470
[ 2427.454805][T30041]  kmalloc_trace+0x25/0xe0
[ 2427.459272][T30041]  apply_wqattrs_prepare+0x137/0xa90
[ 2427.464796][T30041]  ? preempt_count_sub+0x150/0x150
[ 2427.470149][T30041]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2427.476284][T30041]  alloc_workqueue+0xc8b/0x1490
[ 2427.481324][T30041]  ? workqueue_sysfs_register+0x400/0x400
[ 2427.487184][T30041]  hci_register_dev+0x1c0/0xbc0
[ 2427.492079][T30041]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2427.497177][T30041]  ? hci_uart_init_work+0x170/0x170
[ 2427.502430][T30041]  tty_ioctl+0x6fd/0x1580
[ 2427.506814][T30041]  ? send_break+0x3e0/0x3e0
[ 2427.511449][T30041]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2427.517471][T30041]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2427.522857][T30041]  ? bit_wait_timeout+0x160/0x160
[ 2427.528407][T30041]  ? selinux_file_ioctl+0x17d/0x270
[ 2427.533608][T30041]  ? selinux_file_ioctl+0xb5/0x270
[ 2427.538732][T30041]  ? send_break+0x3e0/0x3e0
[ 2427.543263][T30041]  __x64_sys_ioctl+0x18f/0x210
[ 2427.548133][T30041]  do_syscall_64+0x38/0xb0
[ 2427.552659][T30041]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2427.558575][T30041] RIP: 0033:0x7f29ca47cae9
[ 2427.563005][T30041] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2427.583169][T30041] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2427.591601][T30041] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2427.599577][T30041] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2427.607638][T30041] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2427.615606][T30041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
23:59:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 10)

[ 2427.623766][T30041] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2427.631940][T30041]  </TASK>
[ 2427.650663][T30041] Bluetooth: Can't register HCI device
23:59:54 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2427.726207][T30051] FAULT_INJECTION: forcing a failure.
[ 2427.726207][T30051] name failslab, interval 1, probability 0, space 0, times 0
23:59:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 1)

[ 2427.771153][T30051] CPU: 0 PID: 30051 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2427.781644][T30051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2427.791902][T30051] Call Trace:
[ 2427.795219][T30051]  <TASK>
[ 2427.798260][T30051]  dump_stack_lvl+0x125/0x1b0
[ 2427.802996][T30051]  should_fail_ex+0x496/0x5b0
[ 2427.807807][T30051]  should_failslab+0x9/0x20
[ 2427.812366][T30051]  kmem_cache_alloc_node+0x64/0x540
[ 2427.817616][T30051]  alloc_unbound_pwq+0x41e/0xd00
[ 2427.822805][T30051]  ? kasan_set_track+0x25/0x30
[ 2427.827613][T30051]  apply_wqattrs_prepare+0x3be/0xa90
[ 2427.832954][T30051]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2427.838900][T30051]  alloc_workqueue+0xc8b/0x1490
[ 2427.843819][T30051]  ? workqueue_sysfs_register+0x400/0x400
[ 2427.851418][T30051]  hci_register_dev+0x1c0/0xbc0
[ 2427.856314][T30051]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2427.856447][T30056] FAULT_INJECTION: forcing a failure.
[ 2427.856447][T30056] name failslab, interval 1, probability 0, space 0, times 0
[ 2427.861368][T30051]  ? hci_uart_init_work+0x170/0x170
[ 2427.861411][T30051]  tty_ioctl+0x6fd/0x1580
[ 2427.861443][T30051]  ? send_break+0x3e0/0x3e0
[ 2427.861471][T30051]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2427.894393][T30051]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2427.901378][T30051]  ? bit_wait_timeout+0x160/0x160
[ 2427.906447][T30051]  ? selinux_file_ioctl+0x17d/0x270
[ 2427.911728][T30051]  ? selinux_file_ioctl+0xb5/0x270
[ 2427.916972][T30051]  ? send_break+0x3e0/0x3e0
[ 2427.921594][T30051]  __x64_sys_ioctl+0x18f/0x210
[ 2427.926476][T30051]  do_syscall_64+0x38/0xb0
[ 2427.931050][T30051]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2427.936967][T30051] RIP: 0033:0x7f29ca47cae9
[ 2427.941405][T30051] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2427.961607][T30051] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2427.970239][T30051] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2427.978857][T30051] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2427.986971][T30051] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2427.994983][T30051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2428.003161][T30051] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2428.011524][T30051]  </TASK>
[ 2428.023138][T30051] Bluetooth: Can't register HCI device
[ 2428.029274][T30056] CPU: 0 PID: 30056 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2428.039476][T30056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2428.050164][T30056] Call Trace:
[ 2428.053543][T30056]  <TASK>
[ 2428.056653][T30056]  dump_stack_lvl+0x125/0x1b0
[ 2428.061367][T30056]  should_fail_ex+0x496/0x5b0
[ 2428.066209][T30056]  should_failslab+0x9/0x20
[ 2428.070740][T30056]  __kmem_cache_alloc_node+0x5f/0x470
[ 2428.076392][T30056]  ? lock_acquire+0x464/0x510
[ 2428.081173][T30056]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2428.086921][T30056]  __kmalloc+0x4f/0x100
[ 2428.091093][T30056]  tomoyo_realpath_from_path+0xb9/0x710
[ 2428.096830][T30056]  ? lock_release+0x4bf/0x680
[ 2428.101537][T30056]  ? tomoyo_profile+0x47/0x60
[ 2428.106430][T30056]  tomoyo_path_number_perm+0x243/0x590
[ 2428.111921][T30056]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2428.117577][T30056]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2428.123601][T30056]  ? lock_release+0x4bf/0x680
[ 2428.128416][T30056]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2428.133918][T30056]  ? bit_wait_timeout+0x160/0x160
[ 2428.139143][T30056]  ? __fget_files+0x279/0x410
[ 2428.143946][T30056]  ? __fget_files+0x279/0x410
[ 2428.148829][T30056]  security_file_ioctl+0x72/0xb0
[ 2428.153890][T30056]  __x64_sys_ioctl+0xbb/0x210
[ 2428.158591][T30056]  do_syscall_64+0x38/0xb0
[ 2428.163212][T30056]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2428.169141][T30056] RIP: 0033:0x7ff8ae67cae9
[ 2428.173567][T30056] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2428.193623][T30056] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2428.202134][T30056] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2428.210208][T30056] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2428.218270][T30056] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2428.226262][T30056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2428.234417][T30056] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2428.242408][T30056]  </TASK>
[ 2428.247626][T30056] ERROR: Out of memory at tomoyo_realpath_from_path.
23:59:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x3f00000000000000)

23:59:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 11)

23:59:55 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 2)

23:59:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2428.611549][T28027] Bluetooth: hci7: command 0x1003 tx timeout
[ 2428.611791][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2428.700601][T30073] FAULT_INJECTION: forcing a failure.
[ 2428.700601][T30073] name failslab, interval 1, probability 0, space 0, times 0
[ 2428.721092][T30073] CPU: 1 PID: 30073 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2428.731302][T30073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2428.741543][T30073] Call Trace:
[ 2428.744846][T30073]  <TASK>
[ 2428.747968][T30073]  dump_stack_lvl+0x125/0x1b0
[ 2428.752674][T30073]  should_fail_ex+0x496/0x5b0
[ 2428.757376][T30073]  should_failslab+0x9/0x20
[ 2428.761912][T30073]  __kmem_cache_alloc_node+0x5f/0x470
[ 2428.767311][T30073]  kmalloc_trace+0x25/0xe0
[ 2428.771751][T30073]  alloc_workqueue+0x16f/0x1490
[ 2428.776801][T30073]  ? workqueue_sysfs_register+0x400/0x400
[ 2428.782546][T30073]  hci_register_dev+0x212/0xbc0
[ 2428.787424][T30073]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2428.792516][T30073]  ? hci_uart_init_work+0x170/0x170
[ 2428.797760][T30073]  tty_ioctl+0x6fd/0x1580
[ 2428.802125][T30073]  ? send_break+0x3e0/0x3e0
[ 2428.806738][T30073]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2428.812922][T30073]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2428.818328][T30073]  ? bit_wait_timeout+0x160/0x160
[ 2428.823373][T30073]  ? selinux_file_ioctl+0x17d/0x270
[ 2428.828588][T30073]  ? selinux_file_ioctl+0xb5/0x270
[ 2428.833801][T30073]  ? send_break+0x3e0/0x3e0
[ 2428.838422][T30073]  __x64_sys_ioctl+0x18f/0x210
[ 2428.843232][T30073]  do_syscall_64+0x38/0xb0
[ 2428.847832][T30073]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2428.853828][T30073] RIP: 0033:0x7f29ca47cae9
[ 2428.858258][T30073] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2428.878200][T30073] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2428.887152][T30073] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2428.895408][T30073] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2428.903492][T30073] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2428.911465][T30073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2428.919510][T30073] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2428.927590][T30073]  </TASK>
[ 2428.950924][   T37] Bluetooth: hci8: Frame reassembly failed (-84)
[ 2428.952475][T30073] Bluetooth: Can't register HCI device
23:59:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 12)

23:59:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x9892210000000000)

[ 2429.163226][T30092] FAULT_INJECTION: forcing a failure.
[ 2429.163226][T30092] name failslab, interval 1, probability 0, space 0, times 0
[ 2429.176267][T30092] CPU: 0 PID: 30092 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2429.186662][T30092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2429.196768][T30092] Call Trace:
[ 2429.200067][T30092]  <TASK>
[ 2429.203117][T30092]  dump_stack_lvl+0x125/0x1b0
[ 2429.207856][T30092]  should_fail_ex+0x496/0x5b0
[ 2429.212574][T30092]  should_failslab+0x9/0x20
[ 2429.217133][T30092]  __kmem_cache_alloc_node+0x5f/0x470
[ 2429.222646][T30092]  kmalloc_trace+0x25/0xe0
[ 2429.227110][T30092]  alloc_workqueue+0x16f/0x1490
[ 2429.232038][T30092]  ? workqueue_sysfs_register+0x400/0x400
[ 2429.237812][T30092]  hci_register_dev+0x212/0xbc0
[ 2429.242767][T30092]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2429.247805][T30092]  ? hci_uart_init_work+0x170/0x170
[ 2429.253023][T30092]  tty_ioctl+0x6fd/0x1580
[ 2429.257389][T30092]  ? send_break+0x3e0/0x3e0
[ 2429.261994][T30092]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2429.268193][T30092]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2429.273585][T30092]  ? bit_wait_timeout+0x160/0x160
[ 2429.278645][T30092]  ? selinux_file_ioctl+0x17d/0x270
[ 2429.283988][T30092]  ? selinux_file_ioctl+0xb5/0x270
[ 2429.290605][T30092]  ? send_break+0x3e0/0x3e0
[ 2429.295225][T30092]  __x64_sys_ioctl+0x18f/0x210
[ 2429.300099][T30092]  do_syscall_64+0x38/0xb0
[ 2429.304568][T30092]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2429.310598][T30092] RIP: 0033:0x7f29ca47cae9
[ 2429.315039][T30092] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2429.335343][T30092] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2429.343756][T30092] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2429.351737][T30092] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2429.359757][T30092] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2429.367821][T30092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2429.375881][T30092] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2429.383942][T30092]  </TASK>
[ 2429.402745][T30092] Bluetooth: Can't register HCI device
23:59:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 13)

23:59:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xffffff7f00000000)

[ 2429.544047][T30104] FAULT_INJECTION: forcing a failure.
[ 2429.544047][T30104] name failslab, interval 1, probability 0, space 0, times 0
[ 2429.563525][T30104] CPU: 0 PID: 30104 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2429.573999][T30104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2429.584172][T30104] Call Trace:
[ 2429.587507][T30104]  <TASK>
[ 2429.590468][T30104]  dump_stack_lvl+0x125/0x1b0
[ 2429.595379][T30104]  should_fail_ex+0x496/0x5b0
[ 2429.600187][T30104]  should_failslab+0x9/0x20
[ 2429.604920][T30104]  __kmem_cache_alloc_node+0x5f/0x470
[ 2429.610439][T30104]  kmalloc_trace+0x25/0xe0
[ 2429.614986][T30104]  alloc_workqueue+0x1d4/0x1490
[ 2429.619868][T30104]  ? workqueue_sysfs_register+0x400/0x400
[ 2429.625620][T30104]  hci_register_dev+0x212/0xbc0
[ 2429.630487][T30104]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2429.635536][T30104]  ? hci_uart_init_work+0x170/0x170
[ 2429.640880][T30104]  tty_ioctl+0x6fd/0x1580
[ 2429.645316][T30104]  ? send_break+0x3e0/0x3e0
[ 2429.649887][T30104]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2429.656145][T30104]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2429.661539][T30104]  ? bit_wait_timeout+0x160/0x160
[ 2429.666675][T30104]  ? selinux_file_ioctl+0x17d/0x270
[ 2429.671981][T30104]  ? selinux_file_ioctl+0xb5/0x270
[ 2429.677107][T30104]  ? send_break+0x3e0/0x3e0
[ 2429.681804][T30104]  __x64_sys_ioctl+0x18f/0x210
[ 2429.687107][T30104]  do_syscall_64+0x38/0xb0
[ 2429.691542][T30104]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2429.697622][T30104] RIP: 0033:0x7f29ca47cae9
[ 2429.702046][T30104] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2429.722105][T30104] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2429.730541][T30104] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2429.738695][T30104] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2429.746673][T30104] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2429.754833][T30104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2429.763076][T30104] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2429.771494][T30104]  </TASK>
[ 2429.802432][T30104] Bluetooth: Can't register HCI device
23:59:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 14)

[ 2429.910059][T30117] FAULT_INJECTION: forcing a failure.
[ 2429.910059][T30117] name failslab, interval 1, probability 0, space 0, times 0
[ 2429.923102][T30117] CPU: 0 PID: 30117 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2429.933481][T30117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2429.943651][T30117] Call Trace:
[ 2429.946953][T30117]  <TASK>
[ 2429.949917][T30117]  dump_stack_lvl+0x125/0x1b0
[ 2429.954658][T30117]  should_fail_ex+0x496/0x5b0
[ 2429.959380][T30117]  ? kasprintf+0xc8/0x100
[ 2429.963843][T30117]  ? kasprintf+0xc8/0x100
[ 2429.968306][T30117]  should_failslab+0x9/0x20
[ 2429.972958][T30117]  __kmem_cache_alloc_node+0x5f/0x470
[ 2429.978465][T30117]  ? pointer+0xbf0/0xbf0
[ 2429.982946][T30117]  ? kasprintf+0xc8/0x100
[ 2429.987409][T30117]  __kmalloc_node_track_caller+0x50/0x100
[ 2429.993188][T30117]  kvasprintf+0xbd/0x150
[ 2429.997439][T30117]  ? bust_spinlocks+0xe0/0xe0
[ 2430.002240][T30117]  ? ip6_addr_string_sa+0x820/0x820
[ 2430.007462][T30117]  ? preempt_count_add+0x72/0x140
[ 2430.012584][T30117]  kasprintf+0xc8/0x100
[ 2430.016919][T30117]  ? kvasprintf_const+0x190/0x190
[ 2430.021961][T30117]  ? free_zapped_rcu+0x290/0x290
[ 2430.026919][T30117]  ? lockdep_init_map_type+0x16d/0x7c0
[ 2430.032485][T30117]  alloc_workqueue+0x590/0x1490
[ 2430.037367][T30117]  ? workqueue_sysfs_register+0x400/0x400
[ 2430.043109][T30117]  hci_register_dev+0x212/0xbc0
[ 2430.048074][T30117]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2430.053302][T30117]  ? hci_uart_init_work+0x170/0x170
[ 2430.058529][T30117]  tty_ioctl+0x6fd/0x1580
[ 2430.062960][T30117]  ? send_break+0x3e0/0x3e0
[ 2430.067474][T30117]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2430.073558][T30117]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2430.079035][T30117]  ? bit_wait_timeout+0x160/0x160
[ 2430.084079][T30117]  ? selinux_file_ioctl+0x17d/0x270
[ 2430.089378][T30117]  ? selinux_file_ioctl+0xb5/0x270
[ 2430.094505][T30117]  ? send_break+0x3e0/0x3e0
[ 2430.099020][T30117]  __x64_sys_ioctl+0x18f/0x210
[ 2430.103848][T30117]  do_syscall_64+0x38/0xb0
[ 2430.108275][T30117]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2430.114285][T30117] RIP: 0033:0x7f29ca47cae9
[ 2430.118793][T30117] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2430.139125][T30117] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2430.147758][T30117] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2430.155766][T30117] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2430.163869][T30117] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2430.172024][T30117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2430.180176][T30117] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2430.188179][T30117]  </TASK>
[ 2430.216775][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2430.223564][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2430.230171][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2430.237557][ T7235] Bluetooth: hci6: Frame reassembly failed (-84)
[ 2430.771485][T28710] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2430.771783][T11126] Bluetooth: hci7: command 0x1003 tx timeout
23:59:57 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

23:59:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xffffffff00000000)

23:59:57 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

23:59:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

23:59:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 3)

[ 2431.011479][T28027] Bluetooth: hci8: Opcode 0x1003 failed: -110
[ 2431.011627][T28710] Bluetooth: hci8: command 0x1003 tx timeout
[ 2431.119292][T30130] FAULT_INJECTION: forcing a failure.
[ 2431.119292][T30130] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2431.141823][T30130] CPU: 0 PID: 30130 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2431.152036][T30130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2431.162131][T30130] Call Trace:
[ 2431.165533][T30130]  <TASK>
[ 2431.168579][T30130]  dump_stack_lvl+0x125/0x1b0
[ 2431.173319][T30130]  should_fail_ex+0x496/0x5b0
[ 2431.178039][T30130]  __should_fail_alloc_page+0xe7/0x130
[ 2431.183647][T30130]  prepare_alloc_pages.constprop.0+0x16f/0x550
[ 2431.189947][T30130]  __alloc_pages+0x14e/0x4a0
[ 2431.194603][T30130]  ? __alloc_pages_slowpath.constprop.0+0x2360/0x2360
[ 2431.201517][T30130]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2431.207220][T30130]  ? __ldsem_down_read_nested+0xe4/0x930
[ 2431.213010][T30130]  ? __ldsem_down_read_nested+0xf4/0x930
[ 2431.218828][T30130]  ? hci_alloc_dev_priv+0x1d/0x2780
[ 2431.224104][T30130]  __kmalloc_large_node+0x87/0x1c0
[ 2431.229259][T30130]  __kmalloc.cold+0xb/0xe0
[ 2431.233719][T30130]  hci_alloc_dev_priv+0x1d/0x2780
[ 2431.238876][T30130]  hci_uart_tty_ioctl+0x376/0xc70
[ 2431.244124][T30130]  ? hci_uart_init_work+0x170/0x170
[ 2431.249347][T30130]  tty_ioctl+0x6fd/0x1580
[ 2431.253813][T30130]  ? send_break+0x3e0/0x3e0
[ 2431.258332][T30130]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2431.264331][T30130]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2431.269895][T30130]  ? bit_wait_timeout+0x160/0x160
[ 2431.274937][T30130]  ? selinux_file_ioctl+0x17d/0x270
[ 2431.280245][T30130]  ? selinux_file_ioctl+0xb5/0x270
[ 2431.285398][T30130]  ? send_break+0x3e0/0x3e0
[ 2431.289915][T30130]  __x64_sys_ioctl+0x18f/0x210
[ 2431.294702][T30130]  do_syscall_64+0x38/0xb0
[ 2431.299127][T30130]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2431.305031][T30130] RIP: 0033:0x7ff8ae67cae9
[ 2431.309552][T30130] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2431.329167][T30130] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2431.337773][T30130] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2431.345938][T30130] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2431.354365][T30130] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
23:59:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2431.362726][T30130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2431.370939][T30130] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2431.379115][T30130]  </TASK>
[ 2431.384673][T30130] Bluetooth: Can't allocate HCI device
23:59:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 4)

23:59:58 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000001c0)={0xe02, {{0xa, 0x4e24, 0xf207, @mcast2, 0xff}}}, 0x88)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
setsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000080)={r1, @multicast1, @empty}, 0xc)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
clock_gettime(0x0, &(0x7f00000035c0)={<r8=>0x0, <r9=>0x0})
recvmmsg(r7, &(0x7f0000003480)=[{{&(0x7f0000000280)=@can, 0x80, &(0x7f00000016c0)=[{&(0x7f0000000300)=""/121, 0x79}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000440)=""/81, 0x51}, {&(0x7f00000004c0)=""/129, 0x81}, {&(0x7f0000000580)=""/136, 0x88}, {&(0x7f0000000640)=""/119, 0x77}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/46, 0x2e}], 0x8, &(0x7f0000001740)=""/142, 0x8e}, 0x5}, {{&(0x7f0000001800)=@isdn, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/183, 0xb7}, {&(0x7f0000001940)=""/3, 0x3}], 0x2}, 0x40}, {{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000019c0)=""/120, 0x78}, {&(0x7f0000001a40)=""/79, 0x4f}], 0x2, &(0x7f0000001b00)=""/58, 0x3a}, 0x4}, {{&(0x7f0000001b40)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000030c0)=[{&(0x7f0000001bc0)=""/99, 0x63}, {&(0x7f0000001c40)=""/136, 0x88}, {&(0x7f0000001d00)=""/153, 0x99}, {&(0x7f0000001dc0)=""/243, 0xf3}, {&(0x7f0000001ec0)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/176, 0xb0}, {&(0x7f0000002f80)=""/221, 0xdd}, {&(0x7f0000003080)=""/6, 0x6}], 0x8, &(0x7f0000003140)=""/221, 0xdd}, 0xb9}, {{&(0x7f0000003240)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000003340)=[{&(0x7f00000032c0)=""/9, 0x9}, {&(0x7f0000003300)=""/26, 0x1a}], 0x2, &(0x7f0000003380)=""/207, 0xcf}, 0x20}], 0x5, 0x40002060, &(0x7f0000003600)={r8, r9+10000000})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

23:59:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2431.563342][T30140] FAULT_INJECTION: forcing a failure.
[ 2431.563342][T30140] name failslab, interval 1, probability 0, space 0, times 0
[ 2431.577667][T30140] CPU: 0 PID: 30140 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2431.588115][T30140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2431.598382][T30140] Call Trace:
[ 2431.601690][T30140]  <TASK>
[ 2431.604819][T30140]  dump_stack_lvl+0x125/0x1b0
[ 2431.609848][T30140]  should_fail_ex+0x496/0x5b0
[ 2431.614914][T30140]  should_failslab+0x9/0x20
[ 2431.619642][T30140]  __kmem_cache_alloc_node+0x5f/0x470
[ 2431.625070][T30140]  kmalloc_trace+0x25/0xe0
[ 2431.629632][T30140]  h4_open+0x4f/0x180
[ 2431.633757][T30140]  hci_uart_tty_ioctl+0x7d4/0xc70
[ 2431.639442][T30140]  ? hci_uart_init_work+0x170/0x170
[ 2431.644798][T30140]  tty_ioctl+0x6fd/0x1580
[ 2431.649424][T30140]  ? send_break+0x3e0/0x3e0
[ 2431.653943][T30140]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2431.660027][T30140]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2431.665418][T30140]  ? bit_wait_timeout+0x160/0x160
[ 2431.670465][T30140]  ? selinux_file_ioctl+0x17d/0x270
[ 2431.675773][T30140]  ? selinux_file_ioctl+0xb5/0x270
[ 2431.680994][T30140]  ? send_break+0x3e0/0x3e0
[ 2431.685609][T30140]  __x64_sys_ioctl+0x18f/0x210
[ 2431.690569][T30140]  do_syscall_64+0x38/0xb0
[ 2431.695004][T30140]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2431.700932][T30140] RIP: 0033:0x7ff8ae67cae9
[ 2431.705544][T30140] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2431.725445][T30140] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2431.733984][T30140] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2431.742073][T30140] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2431.750280][T30140] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2431.758362][T30140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2431.766442][T30140] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2431.774446][T30140]  </TASK>
23:59:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 5)

23:59:58 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000001c0)={0xe02, {{0xa, 0x4e24, 0xf207, @mcast2, 0xff}}}, 0x88)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
socket$inet_udp(0x2, 0x2, 0x0) (async)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
setsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000080)={r1, @multicast1, @empty}, 0xc)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2) (async)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
clock_gettime(0x0, &(0x7f00000035c0)={<r8=>0x0, <r9=>0x0})
recvmmsg(r7, &(0x7f0000003480)=[{{&(0x7f0000000280)=@can, 0x80, &(0x7f00000016c0)=[{&(0x7f0000000300)=""/121, 0x79}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000440)=""/81, 0x51}, {&(0x7f00000004c0)=""/129, 0x81}, {&(0x7f0000000580)=""/136, 0x88}, {&(0x7f0000000640)=""/119, 0x77}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/46, 0x2e}], 0x8, &(0x7f0000001740)=""/142, 0x8e}, 0x5}, {{&(0x7f0000001800)=@isdn, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/183, 0xb7}, {&(0x7f0000001940)=""/3, 0x3}], 0x2}, 0x40}, {{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000019c0)=""/120, 0x78}, {&(0x7f0000001a40)=""/79, 0x4f}], 0x2, &(0x7f0000001b00)=""/58, 0x3a}, 0x4}, {{&(0x7f0000001b40)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000030c0)=[{&(0x7f0000001bc0)=""/99, 0x63}, {&(0x7f0000001c40)=""/136, 0x88}, {&(0x7f0000001d00)=""/153, 0x99}, {&(0x7f0000001dc0)=""/243, 0xf3}, {&(0x7f0000001ec0)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/176, 0xb0}, {&(0x7f0000002f80)=""/221, 0xdd}, {&(0x7f0000003080)=""/6, 0x6}], 0x8, &(0x7f0000003140)=""/221, 0xdd}, 0xb9}, {{&(0x7f0000003240)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000003340)=[{&(0x7f00000032c0)=""/9, 0x9}, {&(0x7f0000003300)=""/26, 0x1a}], 0x2, &(0x7f0000003380)=""/207, 0xcf}, 0x20}], 0x5, 0x40002060, &(0x7f0000003600)={r8, r9+10000000})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[ 2431.864344][T30151] FAULT_INJECTION: forcing a failure.
[ 2431.864344][T30151] name failslab, interval 1, probability 0, space 0, times 0
[ 2431.878010][T30151] CPU: 1 PID: 30151 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2431.888470][T30151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2431.898557][T30151] Call Trace:
[ 2431.901953][T30151]  <TASK>
[ 2431.904995][T30151]  dump_stack_lvl+0x125/0x1b0
[ 2431.909742][T30151]  should_fail_ex+0x496/0x5b0
[ 2431.914457][T30151]  should_failslab+0x9/0x20
[ 2431.919013][T30151]  __kmem_cache_alloc_node+0x5f/0x470
[ 2431.924655][T30151]  kmalloc_trace+0x25/0xe0
[ 2431.929212][T30151]  alloc_workqueue+0x16f/0x1490
[ 2431.934206][T30151]  ? rcu_is_watching+0x12/0xb0
[ 2431.939009][T30151]  ? kfree+0x108/0x140
[ 2431.943453][T30151]  ? workqueue_sysfs_register+0x400/0x400
[ 2431.949327][T30151]  hci_register_dev+0x1c0/0xbc0
[ 2431.954289][T30151]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2431.959337][T30151]  ? hci_uart_init_work+0x170/0x170
[ 2431.964642][T30151]  tty_ioctl+0x6fd/0x1580
[ 2431.969015][T30151]  ? send_break+0x3e0/0x3e0
[ 2431.974053][T30151]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2431.980145][T30151]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2431.985543][T30151]  ? bit_wait_timeout+0x160/0x160
[ 2431.990614][T30151]  ? selinux_file_ioctl+0x17d/0x270
[ 2431.996004][T30151]  ? selinux_file_ioctl+0xb5/0x270
[ 2432.001319][T30151]  ? send_break+0x3e0/0x3e0
[ 2432.005949][T30151]  __x64_sys_ioctl+0x18f/0x210
[ 2432.010844][T30151]  do_syscall_64+0x38/0xb0
[ 2432.015379][T30151]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2432.021494][T30151] RIP: 0033:0x7ff8ae67cae9
[ 2432.026011][T30151] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2432.046523][T30151] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2432.054976][T30151] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2432.063060][T30151] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2432.071073][T30151] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2432.079238][T30151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2432.087302][T30151] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2432.095283][T30151]  </TASK>
[ 2432.117717][T30151] Bluetooth: Can't register HCI device
23:59:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 15)

[ 2432.293429][T28710] Bluetooth: hci6: command 0x1003 tx timeout
[ 2432.299545][T29339] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 2432.389336][T30164] FAULT_INJECTION: forcing a failure.
[ 2432.389336][T30164] name failslab, interval 1, probability 0, space 0, times 0
[ 2432.404445][T30164] CPU: 1 PID: 30164 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2432.414689][T30164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2432.424980][T30164] Call Trace:
[ 2432.428369][T30164]  <TASK>
[ 2432.431399][T30164]  dump_stack_lvl+0x125/0x1b0
[ 2432.436473][T30164]  should_fail_ex+0x496/0x5b0
[ 2432.441788][T30164]  should_failslab+0x9/0x20
[ 2432.446674][T30164]  __kmem_cache_alloc_node+0x5f/0x470
[ 2432.452070][T30164]  ? alloc_workqueue+0xc80/0x1490
[ 2432.457099][T30164]  ? apply_wqattrs_prepare+0xff/0xa90
[ 2432.462490][T30164]  __kmalloc+0x4f/0x100
[ 2432.466718][T30164]  apply_wqattrs_prepare+0xff/0xa90
[ 2432.471952][T30164]  ? preempt_count_sub+0x150/0x150
[ 2432.477094][T30164]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2432.483976][T30164]  alloc_workqueue+0xc8b/0x1490
[ 2432.488960][T30164]  ? workqueue_sysfs_register+0x400/0x400
[ 2432.494800][T30164]  hci_register_dev+0x212/0xbc0
[ 2432.499675][T30164]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2432.504808][T30164]  ? hci_uart_init_work+0x170/0x170
[ 2432.510223][T30164]  tty_ioctl+0x6fd/0x1580
[ 2432.514573][T30164]  ? send_break+0x3e0/0x3e0
[ 2432.519353][T30164]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2432.525439][T30164]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2432.530830][T30164]  ? bit_wait_timeout+0x160/0x160
[ 2432.535962][T30164]  ? selinux_file_ioctl+0x17d/0x270
[ 2432.541370][T30164]  ? selinux_file_ioctl+0xb5/0x270
[ 2432.546594][T30164]  ? send_break+0x3e0/0x3e0
[ 2432.551546][T30164]  __x64_sys_ioctl+0x18f/0x210
[ 2432.556681][T30164]  do_syscall_64+0x38/0xb0
[ 2432.561200][T30164]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2432.567225][T30164] RIP: 0033:0x7f29ca47cae9
[ 2432.571739][T30164] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2432.591792][T30164] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2432.600262][T30164] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2432.608240][T30164] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2432.616400][T30164] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2432.624563][T30164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2432.632889][T30164] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2432.640963][T30164]  </TASK>
[ 2432.652058][T30164] Bluetooth: Can't register HCI device
00:00:00 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

00:00:00 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

00:00:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 6)

00:00:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

00:00:00 executing program 0:
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000001c0)={0xe02, {{0xa, 0x4e24, 0xf207, @mcast2, 0xff}}}, 0x88)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x15, &(0x7f0000000000)=0x1000, 0x4)
setsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000080)={r1, @multicast1, @empty}, 0xc) (async)
setsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000080)={r1, @multicast1, @empty}, 0xc)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
clock_gettime(0x0, &(0x7f00000035c0)) (async)
clock_gettime(0x0, &(0x7f00000035c0)={<r8=>0x0, <r9=>0x0})
recvmmsg(r7, &(0x7f0000003480)=[{{&(0x7f0000000280)=@can, 0x80, &(0x7f00000016c0)=[{&(0x7f0000000300)=""/121, 0x79}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000440)=""/81, 0x51}, {&(0x7f00000004c0)=""/129, 0x81}, {&(0x7f0000000580)=""/136, 0x88}, {&(0x7f0000000640)=""/119, 0x77}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/46, 0x2e}], 0x8, &(0x7f0000001740)=""/142, 0x8e}, 0x5}, {{&(0x7f0000001800)=@isdn, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/183, 0xb7}, {&(0x7f0000001940)=""/3, 0x3}], 0x2}, 0x40}, {{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000019c0)=""/120, 0x78}, {&(0x7f0000001a40)=""/79, 0x4f}], 0x2, &(0x7f0000001b00)=""/58, 0x3a}, 0x4}, {{&(0x7f0000001b40)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000030c0)=[{&(0x7f0000001bc0)=""/99, 0x63}, {&(0x7f0000001c40)=""/136, 0x88}, {&(0x7f0000001d00)=""/153, 0x99}, {&(0x7f0000001dc0)=""/243, 0xf3}, {&(0x7f0000001ec0)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/176, 0xb0}, {&(0x7f0000002f80)=""/221, 0xdd}, {&(0x7f0000003080)=""/6, 0x6}], 0x8, &(0x7f0000003140)=""/221, 0xdd}, 0xb9}, {{&(0x7f0000003240)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000003340)=[{&(0x7f00000032c0)=""/9, 0x9}, {&(0x7f0000003300)=""/26, 0x1a}], 0x2, &(0x7f0000003380)=""/207, 0xcf}, 0x20}], 0x5, 0x40002060, &(0x7f0000003600)={r8, r9+10000000}) (async)
recvmmsg(r7, &(0x7f0000003480)=[{{&(0x7f0000000280)=@can, 0x80, &(0x7f00000016c0)=[{&(0x7f0000000300)=""/121, 0x79}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000440)=""/81, 0x51}, {&(0x7f00000004c0)=""/129, 0x81}, {&(0x7f0000000580)=""/136, 0x88}, {&(0x7f0000000640)=""/119, 0x77}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/46, 0x2e}], 0x8, &(0x7f0000001740)=""/142, 0x8e}, 0x5}, {{&(0x7f0000001800)=@isdn, 0x80, &(0x7f0000001980)=[{&(0x7f0000001880)=""/183, 0xb7}, {&(0x7f0000001940)=""/3, 0x3}], 0x2}, 0x40}, {{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000019c0)=""/120, 0x78}, {&(0x7f0000001a40)=""/79, 0x4f}], 0x2, &(0x7f0000001b00)=""/58, 0x3a}, 0x4}, {{&(0x7f0000001b40)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000030c0)=[{&(0x7f0000001bc0)=""/99, 0x63}, {&(0x7f0000001c40)=""/136, 0x88}, {&(0x7f0000001d00)=""/153, 0x99}, {&(0x7f0000001dc0)=""/243, 0xf3}, {&(0x7f0000001ec0)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/176, 0xb0}, {&(0x7f0000002f80)=""/221, 0xdd}, {&(0x7f0000003080)=""/6, 0x6}], 0x8, &(0x7f0000003140)=""/221, 0xdd}, 0xb9}, {{&(0x7f0000003240)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000003340)=[{&(0x7f00000032c0)=""/9, 0x9}, {&(0x7f0000003300)=""/26, 0x1a}], 0x2, &(0x7f0000003380)=""/207, 0xcf}, 0x20}], 0x5, 0x40002060, &(0x7f0000003600)={r8, r9+10000000})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

00:00:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 16)

[ 2433.251501][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2433.251696][T29339] Bluetooth: hci7: command 0x1003 tx timeout
[ 2433.309881][T30169] FAULT_INJECTION: forcing a failure.
[ 2433.309881][T30169] name failslab, interval 1, probability 0, space 0, times 0
[ 2433.325550][T30169] CPU: 1 PID: 30169 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2433.335673][T30169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2433.345880][T30169] Call Trace:
[ 2433.349522][T30169]  <TASK>
[ 2433.352490][T30169]  dump_stack_lvl+0x125/0x1b0
[ 2433.357243][T30169]  should_fail_ex+0x496/0x5b0
[ 2433.361961][T30169]  should_failslab+0x9/0x20
[ 2433.366605][T30169]  __kmem_cache_alloc_node+0x5f/0x470
[ 2433.372118][T30169]  kmalloc_trace+0x25/0xe0
[ 2433.376786][T30169]  apply_wqattrs_prepare+0x137/0xa90
[ 2433.382285][T30169]  ? preempt_count_sub+0x150/0x150
[ 2433.387629][T30169]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2433.393730][T30169]  alloc_workqueue+0xc8b/0x1490
[ 2433.398883][T30169]  ? workqueue_sysfs_register+0x400/0x400
[ 2433.405692][T30169]  hci_register_dev+0x212/0xbc0
[ 2433.410858][T30169]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2433.416086][T30169]  ? hci_uart_init_work+0x170/0x170
[ 2433.421306][T30169]  tty_ioctl+0x6fd/0x1580
[ 2433.425793][T30169]  ? send_break+0x3e0/0x3e0
[ 2433.430315][T30169]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2433.436403][T30169]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2433.442096][T30169]  ? bit_wait_timeout+0x160/0x160
[ 2433.447160][T30169]  ? selinux_file_ioctl+0x17d/0x270
[ 2433.452655][T30169]  ? selinux_file_ioctl+0xb5/0x270
[ 2433.457880][T30169]  ? send_break+0x3e0/0x3e0
[ 2433.462427][T30169]  __x64_sys_ioctl+0x18f/0x210
[ 2433.467212][T30169]  do_syscall_64+0x38/0xb0
[ 2433.471813][T30169]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2433.477719][T30169] RIP: 0033:0x7f29ca47cae9
[ 2433.482140][T30169] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2433.501856][T30169] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2433.510371][T30169] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2433.518585][T30169] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2433.526570][T30169] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2433.534659][T30169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2433.542810][T30169] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2433.550966][T30169]  </TASK>
[ 2433.594468][T30169] Bluetooth: Can't register HCI device
[ 2433.614357][T30176] FAULT_INJECTION: forcing a failure.
[ 2433.614357][T30176] name failslab, interval 1, probability 0, space 0, times 0
00:00:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 17)

[ 2433.650304][T17572] Bluetooth: hci7: Frame reassembly failed (-84)
[ 2433.686647][T30176] CPU: 0 PID: 30176 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2433.696866][T30176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2433.707324][T30176] Call Trace:
[ 2433.710829][T30176]  <TASK>
[ 2433.713877][T30176]  dump_stack_lvl+0x125/0x1b0
[ 2433.718948][T30176]  should_fail_ex+0x496/0x5b0
[ 2433.723814][T30176]  should_failslab+0x9/0x20
[ 2433.728594][T30176]  __kmem_cache_alloc_node+0x5f/0x470
[ 2433.734011][T30176]  kmalloc_trace+0x25/0xe0
[ 2433.738460][T30176]  alloc_workqueue+0x1d4/0x1490
[ 2433.743437][T30176]  ? rcu_is_watching+0x12/0xb0
[ 2433.748308][T30176]  ? kfree+0x108/0x140
[ 2433.752644][T30176]  ? workqueue_sysfs_register+0x400/0x400
[ 2433.758387][T30176]  hci_register_dev+0x1c0/0xbc0
[ 2433.763417][T30176]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2433.768730][T30176]  ? hci_uart_init_work+0x170/0x170
[ 2433.774050][T30176]  tty_ioctl+0x6fd/0x1580
[ 2433.778654][T30176]  ? send_break+0x3e0/0x3e0
[ 2433.783166][T30176]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2433.789168][T30176]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2433.794685][T30176]  ? bit_wait_timeout+0x160/0x160
[ 2433.799733][T30176]  ? selinux_file_ioctl+0x17d/0x270
[ 2433.804947][T30176]  ? selinux_file_ioctl+0xb5/0x270
[ 2433.810251][T30176]  ? send_break+0x3e0/0x3e0
[ 2433.814854][T30176]  __x64_sys_ioctl+0x18f/0x210
[ 2433.819637][T30176]  do_syscall_64+0x38/0xb0
[ 2433.824068][T30176]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2433.829977][T30176] RIP: 0033:0x7ff8ae67cae9
[ 2433.834433][T30176] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2433.855815][T30176] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2433.864788][T30176] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2433.873032][T30176] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2433.881096][T30176] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2433.889919][T30176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2433.898451][T30176] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2433.906458][T30176]  </TASK>
[ 2433.952530][T30185] FAULT_INJECTION: forcing a failure.
[ 2433.952530][T30185] name failslab, interval 1, probability 0, space 0, times 0
[ 2433.965549][T30185] CPU: 0 PID: 30185 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2433.975651][T30185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2433.986618][T30185] Call Trace:
[ 2433.990113][T30185]  <TASK>
[ 2433.993256][T30185]  dump_stack_lvl+0x125/0x1b0
[ 2433.998536][T30185]  should_fail_ex+0x496/0x5b0
[ 2434.003425][T30185]  should_failslab+0x9/0x20
[ 2434.008064][T30185]  kmem_cache_alloc_node+0x64/0x540
[ 2434.013297][T30185]  alloc_unbound_pwq+0x41e/0xd00
[ 2434.018357][T30185]  ? kasan_set_track+0x25/0x30
[ 2434.023250][T30185]  apply_wqattrs_prepare+0x3be/0xa90
[ 2434.028823][T30185]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2434.034958][T30185]  alloc_workqueue+0xc8b/0x1490
[ 2434.039929][T30185]  ? workqueue_sysfs_register+0x400/0x400
[ 2434.045763][T30185]  hci_register_dev+0x212/0xbc0
[ 2434.050643][T30185]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2434.055704][T30185]  ? hci_uart_init_work+0x170/0x170
[ 2434.060929][T30185]  tty_ioctl+0x6fd/0x1580
[ 2434.065424][T30185]  ? send_break+0x3e0/0x3e0
[ 2434.070466][T30185]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2434.076518][T30185]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2434.081940][T30185]  ? bit_wait_timeout+0x160/0x160
[ 2434.087162][T30185]  ? selinux_file_ioctl+0x17d/0x270
[ 2434.092557][T30185]  ? selinux_file_ioctl+0xb5/0x270
[ 2434.097781][T30185]  ? send_break+0x3e0/0x3e0
[ 2434.102301][T30185]  __x64_sys_ioctl+0x18f/0x210
[ 2434.107206][T30185]  do_syscall_64+0x38/0xb0
[ 2434.112392][T30185]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2434.118910][T30185] RIP: 0033:0x7f29ca47cae9
[ 2434.123603][T30185] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2434.144119][T30185] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2434.153943][T30185] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2434.162193][T30185] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2434.170275][T30185] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2434.178527][T30185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2434.186506][T30185] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2434.194576][T30185]  </TASK>
00:00:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

00:00:00 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

00:00:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 18)

00:00:01 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 7)

[ 2434.240561][T30176] Bluetooth: Can't register HCI device
[ 2434.241108][T30185] Bluetooth: Can't register HCI device
00:00:01 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="364d0fc79db559000066baf80cb8592a1d8eef66bafc0cb0ebee6536f30f1efb410f01745b00440fc79a93ac0000460f781066ba4300b000eec744240006010000c744240204000000ff1c24f028ad3cb17df936450f01c5", 0x58}], 0x1, 0x24, &(0x7f00000001c0), 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2434.392350][T30197] FAULT_INJECTION: forcing a failure.
[ 2434.392350][T30197] name failslab, interval 1, probability 0, space 0, times 0
[ 2434.406206][T30197] CPU: 1 PID: 30197 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2434.416335][T30197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2434.426759][T30197] Call Trace:
[ 2434.430051][T30197]  <TASK>
[ 2434.433072][T30197]  dump_stack_lvl+0x125/0x1b0
[ 2434.437865][T30197]  should_fail_ex+0x496/0x5b0
[ 2434.442571][T30197]  should_failslab+0x9/0x20
[ 2434.447096][T30197]  kmem_cache_alloc_lru+0x64/0x680
[ 2434.452309][T30197]  ? __lookup_slow+0x450/0x450
[ 2434.457489][T30197]  alloc_inode+0xb3/0x220
[ 2434.462189][T30197]  new_inode+0x22/0x260
[ 2434.466356][T30197]  ? start_creating.part.0+0x25d/0x3a0
[ 2434.471953][T30197]  debugfs_create_dir+0xe3/0x630
[ 2434.476923][T30197]  hci_register_dev+0x2a3/0xbc0
[ 2434.481794][T30197]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2434.486850][T30197]  ? hci_uart_init_work+0x170/0x170
[ 2434.492261][T30197]  tty_ioctl+0x6fd/0x1580
[ 2434.496855][T30197]  ? send_break+0x3e0/0x3e0
[ 2434.501504][T30197]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2434.508763][T30197]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2434.514279][T30197]  ? bit_wait_timeout+0x160/0x160
[ 2434.519442][T30197]  ? selinux_file_ioctl+0x17d/0x270
[ 2434.524743][T30197]  ? selinux_file_ioctl+0xb5/0x270
[ 2434.530309][T30197]  ? send_break+0x3e0/0x3e0
[ 2434.535703][T30197]  __x64_sys_ioctl+0x18f/0x210
[ 2434.540677][T30197]  do_syscall_64+0x38/0xb0
[ 2434.545374][T30197]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2434.551380][T30197] RIP: 0033:0x7f29ca47cae9
[ 2434.556061][T30197] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2434.576293][T30197] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2434.585156][T30197] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2434.593250][T30197] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2434.601731][T30197] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2434.609900][T30197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2434.618001][T30197] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2434.626179][T30197]  </TASK>
[ 2434.644043][T30197] debugfs: out of free dentries, can not create directory 'hci6'
[ 2434.661544][T28710] Bluetooth: hci6: sending frame failed (-49)
[ 2434.667708][T29339] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 2434.724837][T30202] FAULT_INJECTION: forcing a failure.
[ 2434.724837][T30202] name failslab, interval 1, probability 0, space 0, times 0
[ 2434.742184][T30202] CPU: 0 PID: 30202 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2434.752918][T30202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2434.763163][T30202] Call Trace:
[ 2434.766647][T30202]  <TASK>
[ 2434.769682][T30202]  dump_stack_lvl+0x125/0x1b0
[ 2434.774409][T30202]  should_fail_ex+0x496/0x5b0
[ 2434.779105][T30202]  should_failslab+0x9/0x20
[ 2434.783641][T30202]  __kmem_cache_alloc_node+0x5f/0x470
[ 2434.789288][T30202]  kmalloc_trace+0x25/0xe0
[ 2434.794044][T30202]  alloc_workqueue+0x1d4/0x1490
[ 2434.799131][T30202]  ? rcu_is_watching+0x12/0xb0
[ 2434.804877][T30202]  ? kfree+0x108/0x140
[ 2434.809438][T30202]  ? workqueue_sysfs_register+0x400/0x400
[ 2434.815620][T30202]  hci_register_dev+0x1c0/0xbc0
[ 2434.820677][T30202]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2434.825722][T30202]  ? hci_uart_init_work+0x170/0x170
[ 2434.830938][T30202]  tty_ioctl+0x6fd/0x1580
[ 2434.835309][T30202]  ? send_break+0x3e0/0x3e0
[ 2434.840128][T30202]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2434.846238][T30202]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2434.852103][T30202]  ? bit_wait_timeout+0x160/0x160
[ 2434.857355][T30202]  ? selinux_file_ioctl+0x17d/0x270
[ 2434.862849][T30202]  ? selinux_file_ioctl+0xb5/0x270
[ 2434.868273][T30202]  ? send_break+0x3e0/0x3e0
[ 2434.874326][T30202]  __x64_sys_ioctl+0x18f/0x210
[ 2434.879392][T30202]  do_syscall_64+0x38/0xb0
[ 2434.883971][T30202]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2434.890082][T30202] RIP: 0033:0x7ff8ae67cae9
[ 2434.894734][T30202] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2434.916105][T30202] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2434.925434][T30202] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2434.933504][T30202] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2434.942197][T30202] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2434.950554][T30202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2434.958640][T30202] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2434.966663][T30202]  </TASK>
[ 2434.978553][T30202] Bluetooth: Can't register HCI device
00:00:02 executing program 4:
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

00:00:02 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

00:00:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 8)

00:00:02 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 19)

00:00:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

00:00:02 executing program 0:
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
dup(r0) (async)
r1 = dup(r0)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="364d0fc79db559000066baf80cb8592a1d8eef66bafc0cb0ebee6536f30f1efb410f01745b00440fc79a93ac0000460f781066ba4300b000eec744240006010000c744240204000000ff1c24f028ad3cb17df936450f01c5", 0x58}], 0x1, 0x24, &(0x7f00000001c0), 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2) (async)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 2435.651507][T29339] Bluetooth: hci7: command 0x1003 tx timeout
[ 2435.651766][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2435.761199][T30215] FAULT_INJECTION: forcing a failure.
[ 2435.761199][T30215] name failslab, interval 1, probability 0, space 0, times 0
[ 2435.804523][T30215] CPU: 0 PID: 30215 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2435.815035][T30215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2435.825304][T30215] Call Trace:
[ 2435.828704][T30215]  <TASK>
[ 2435.831665][T30215]  dump_stack_lvl+0x125/0x1b0
[ 2435.836947][T30215]  should_fail_ex+0x496/0x5b0
[ 2435.842024][T30215]  should_failslab+0x9/0x20
[ 2435.846672][T30215]  __kmem_cache_alloc_node+0x5f/0x470
[ 2435.852116][T30215]  ? alloc_workqueue+0xc80/0x1490
[ 2435.857384][T30215]  ? apply_wqattrs_prepare+0xff/0xa90
[ 2435.862907][T30215]  __kmalloc+0x4f/0x100
[ 2435.867272][T30215]  apply_wqattrs_prepare+0xff/0xa90
[ 2435.872571][T30215]  ? preempt_count_sub+0x150/0x150
[ 2435.878054][T30215]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2435.884190][T30215]  alloc_workqueue+0xc8b/0x1490
[ 2435.889202][T30215]  ? workqueue_sysfs_register+0x400/0x400
[ 2435.895159][T30215]  hci_register_dev+0x1c0/0xbc0
[ 2435.900072][T30215]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2435.906047][T30215]  ? hci_uart_init_work+0x170/0x170
[ 2435.911480][T30215]  tty_ioctl+0x6fd/0x1580
[ 2435.915947][T30215]  ? send_break+0x3e0/0x3e0
[ 2435.920574][T30215]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2435.926671][T30215]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2435.932175][T30215]  ? bit_wait_timeout+0x160/0x160
[ 2435.937259][T30215]  ? selinux_file_ioctl+0x17d/0x270
[ 2435.942929][T30215]  ? selinux_file_ioctl+0xb5/0x270
[ 2435.948416][T30215]  ? send_break+0x3e0/0x3e0
[ 2435.953457][T30215]  __x64_sys_ioctl+0x18f/0x210
[ 2435.958249][T30215]  do_syscall_64+0x38/0xb0
[ 2435.962708][T30215]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2435.968730][T30215] RIP: 0033:0x7ff8ae67cae9
[ 2435.973422][T30215] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2435.994026][T30215] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2436.002801][T30215] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2436.011126][T30215] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2436.019398][T30215] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2436.027639][T30215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2436.036050][T30215] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2436.044306][T30215]  </TASK>
[ 2436.081965][T30223] FAULT_INJECTION: forcing a failure.
[ 2436.081965][T30223] name failslab, interval 1, probability 0, space 0, times 0
[ 2436.099740][T30223] CPU: 1 PID: 30223 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2436.109952][T30223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2436.120390][T30223] Call Trace:
[ 2436.123751][T30223]  <TASK>
[ 2436.126788][T30223]  dump_stack_lvl+0x125/0x1b0
[ 2436.131761][T30223]  should_fail_ex+0x496/0x5b0
[ 2436.136664][T30223]  should_failslab+0x9/0x20
[ 2436.141339][T30223]  kmem_cache_alloc+0x61/0x400
[ 2436.146340][T30223]  security_inode_alloc+0x38/0x180
[ 2436.151498][T30223]  inode_init_always+0xbef/0xee0
[ 2436.156660][T30223]  alloc_inode+0x7a/0x220
[ 2436.161208][T30223]  new_inode+0x22/0x260
[ 2436.165575][T30223]  ? start_creating.part.0+0x25d/0x3a0
[ 2436.171325][T30223]  debugfs_create_dir+0xe3/0x630
[ 2436.176503][T30223]  hci_register_dev+0x2a3/0xbc0
[ 2436.181486][T30223]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2436.186553][T30223]  ? hci_uart_init_work+0x170/0x170
[ 2436.191782][T30223]  tty_ioctl+0x6fd/0x1580
[ 2436.196333][T30223]  ? send_break+0x3e0/0x3e0
[ 2436.201036][T30223]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2436.207317][T30223]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2436.212812][T30223]  ? bit_wait_timeout+0x160/0x160
[ 2436.217958][T30223]  ? selinux_file_ioctl+0x17d/0x270
[ 2436.223694][T30223]  ? selinux_file_ioctl+0xb5/0x270
[ 2436.229977][T30223]  ? send_break+0x3e0/0x3e0
[ 2436.234706][T30223]  __x64_sys_ioctl+0x18f/0x210
[ 2436.239522][T30223]  do_syscall_64+0x38/0xb0
[ 2436.244055][T30223]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2436.250179][T30223] RIP: 0033:0x7f29ca47cae9
[ 2436.254783][T30223] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2436.274694][T30223] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2436.283207][T30223] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2436.291543][T30223] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2436.299806][T30223] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2436.308064][T30223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2436.316311][T30223] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2436.324304][T30223]  </TASK>
00:00:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2436.331855][T30215] Bluetooth: Can't register HCI device
[ 2436.346578][T30223] debugfs: out of free dentries, can not create directory 'hci7'
00:00:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 9)

[ 2436.416307][T30229] FAULT_INJECTION: forcing a failure.
[ 2436.416307][T30229] name failslab, interval 1, probability 0, space 0, times 0
[ 2436.429583][T30229] CPU: 0 PID: 30229 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2436.439957][T30229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2436.450351][T30229] Call Trace:
[ 2436.453757][T30229]  <TASK>
[ 2436.457244][T30229]  dump_stack_lvl+0x125/0x1b0
[ 2436.462085][T30229]  should_fail_ex+0x496/0x5b0
[ 2436.466985][T30229]  should_failslab+0x9/0x20
[ 2436.471624][T30229]  __kmem_cache_alloc_node+0x5f/0x470
[ 2436.477227][T30229]  ? alloc_workqueue+0xc80/0x1490
[ 2436.482500][T30229]  ? apply_wqattrs_prepare+0xff/0xa90
[ 2436.488182][T30229]  __kmalloc+0x4f/0x100
[ 2436.492605][T30229]  apply_wqattrs_prepare+0xff/0xa90
[ 2436.498089][T30229]  ? preempt_count_sub+0x150/0x150
[ 2436.503494][T30229]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2436.509583][T30229]  alloc_workqueue+0xc8b/0x1490
[ 2436.514542][T30229]  ? workqueue_sysfs_register+0x400/0x400
[ 2436.521517][T30229]  hci_register_dev+0x1c0/0xbc0
[ 2436.526582][T30229]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2436.531997][T30229]  ? hci_uart_init_work+0x170/0x170
[ 2436.537420][T30229]  tty_ioctl+0x6fd/0x1580
[ 2436.541862][T30229]  ? send_break+0x3e0/0x3e0
[ 2436.547189][T30229]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2436.553822][T30229]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2436.559836][T30229]  ? bit_wait_timeout+0x160/0x160
[ 2436.565270][T30229]  ? selinux_file_ioctl+0x17d/0x270
[ 2436.570748][T30229]  ? selinux_file_ioctl+0xb5/0x270
[ 2436.575960][T30229]  ? send_break+0x3e0/0x3e0
[ 2436.580654][T30229]  __x64_sys_ioctl+0x18f/0x210
[ 2436.585747][T30229]  do_syscall_64+0x38/0xb0
[ 2436.590697][T30229]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2436.597048][T30229] RIP: 0033:0x7ff8ae67cae9
[ 2436.601869][T30229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2436.622617][T30229] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2436.631378][T30229] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2436.639960][T30229] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2436.648287][T30229] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2436.656370][T30229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
00:00:03 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0) (async)
dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="364d0fc79db559000066baf80cb8592a1d8eef66bafc0cb0ebee6536f30f1efb410f01745b00440fc79a93ac0000460f781066ba4300b000eec744240006010000c744240204000000ff1c24f028ad3cb17df936450f01c5", 0x58}], 0x1, 0x24, &(0x7f00000001c0), 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000) (async)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

00:00:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2436.664577][T30229] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2436.673921][T30229]  </TASK>
[ 2436.695283][T30229] Bluetooth: Can't register HCI device
00:00:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 10)

[ 2436.817878][T30241] FAULT_INJECTION: forcing a failure.
[ 2436.817878][T30241] name failslab, interval 1, probability 0, space 0, times 0
[ 2436.856096][T30241] CPU: 1 PID: 30241 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
00:00:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2436.866660][T30241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2436.877359][T30241] Call Trace:
[ 2436.880852][T30241]  <TASK>
[ 2436.883887][T30241]  dump_stack_lvl+0x125/0x1b0
[ 2436.888878][T30241]  should_fail_ex+0x496/0x5b0
[ 2436.893697][T30241]  should_failslab+0x9/0x20
[ 2436.898652][T30241]  __kmem_cache_alloc_node+0x5f/0x470
[ 2436.904340][T30241]  kmalloc_trace+0x25/0xe0
[ 2436.908982][T30241]  apply_wqattrs_prepare+0x137/0xa90
[ 2436.914458][T30241]  ? preempt_count_sub+0x150/0x150
[ 2436.920624][T30241]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2436.926707][T30241]  alloc_workqueue+0xc8b/0x1490
[ 2436.931708][T30241]  ? workqueue_sysfs_register+0x400/0x400
[ 2436.937629][T30241]  hci_register_dev+0x1c0/0xbc0
[ 2436.942642][T30241]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2436.947821][T30241]  ? hci_uart_init_work+0x170/0x170
[ 2436.953086][T30241]  tty_ioctl+0x6fd/0x1580
[ 2436.957566][T30241]  ? send_break+0x3e0/0x3e0
[ 2436.962244][T30241]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2436.968518][T30241]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2436.974901][T30241]  ? bit_wait_timeout+0x160/0x160
[ 2436.980345][T30241]  ? selinux_file_ioctl+0x17d/0x270
[ 2436.985618][T30241]  ? selinux_file_ioctl+0xb5/0x270
[ 2436.991123][T30241]  ? send_break+0x3e0/0x3e0
[ 2436.995759][T30241]  __x64_sys_ioctl+0x18f/0x210
[ 2437.000940][T30241]  do_syscall_64+0x38/0xb0
[ 2437.005582][T30241]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2437.011624][T30241] RIP: 0033:0x7ff8ae67cae9
[ 2437.016338][T30241] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2437.037235][T30241] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2437.045864][T30241] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2437.053969][T30241] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2437.062056][T30241] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2437.070068][T30241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2437.078049][T30241] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2437.086230][T30241]  </TASK>
[ 2437.097134][T30241] Bluetooth: Can't register HCI device
00:00:05 executing program 4:
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

00:00:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = dup(0xffffffffffffffff)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0xfffffffffffffff7)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x214382, 0x2)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r5, 0x4040aea4, &(0x7f0000000040)={0x22b, 0x1, 0xffffffff, 0x0, 0x8000000})
fcntl$notify(0xffffffffffffffff, 0x402, 0x40000000)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)

00:00:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 11)

00:00:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 20)

00:00:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

00:00:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 2438.371767][T28027] Bluetooth: hci7: Opcode 0x1003 failed: -110
[ 2438.371974][T29339] Bluetooth: hci8: Opcode 0x1003 failed: -110
[ 2438.378260][T28027] Bluetooth: hci8: command 0x1003 tx timeout
[ 2438.460507][T28355] Bluetooth: hci6: sending frame failed (-49)
[ 2438.468705][T29339] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 2438.523740][T30268] FAULT_INJECTION: forcing a failure.
[ 2438.523740][T30268] name failslab, interval 1, probability 0, space 0, times 0
[ 2438.524359][T30263] FAULT_INJECTION: forcing a failure.
[ 2438.524359][T30263] name failslab, interval 1, probability 0, space 0, times 0
[ 2438.538240][T30268] CPU: 0 PID: 30268 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2438.560342][T30268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2438.570555][T30268] Call Trace:
[ 2438.573877][T30268]  <TASK>
[ 2438.577024][T30268]  dump_stack_lvl+0x125/0x1b0
[ 2438.582030][T30268]  should_fail_ex+0x496/0x5b0
[ 2438.586928][T30268]  should_failslab+0x9/0x20
[ 2438.591542][T30268]  kmem_cache_alloc+0x61/0x400
[ 2438.596361][T30268]  security_inode_alloc+0x38/0x180
[ 2438.601876][T30268]  inode_init_always+0xbef/0xee0
[ 2438.607096][T30268]  alloc_inode+0x7a/0x220
[ 2438.611543][T30268]  new_inode+0x22/0x260
[ 2438.615853][T30268]  ? start_creating.part.0+0x25d/0x3a0
[ 2438.621658][T30268]  debugfs_create_dir+0xe3/0x630
[ 2438.626823][T30268]  hci_register_dev+0x2a3/0xbc0
[ 2438.631722][T30268]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2438.636920][T30268]  ? hci_uart_init_work+0x170/0x170
[ 2438.642287][T30268]  tty_ioctl+0x6fd/0x1580
[ 2438.646915][T30268]  ? send_break+0x3e0/0x3e0
[ 2438.651538][T30268]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2438.657543][T30268]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2438.662942][T30268]  ? bit_wait_timeout+0x160/0x160
[ 2438.668106][T30268]  ? selinux_file_ioctl+0x17d/0x270
[ 2438.673682][T30268]  ? selinux_file_ioctl+0xb5/0x270
[ 2438.678839][T30268]  ? send_break+0x3e0/0x3e0
[ 2438.683478][T30268]  __x64_sys_ioctl+0x18f/0x210
[ 2438.688356][T30268]  do_syscall_64+0x38/0xb0
[ 2438.692835][T30268]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2438.698786][T30268] RIP: 0033:0x7f29ca47cae9
[ 2438.703335][T30268] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2438.723255][T30268] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2438.732340][T30268] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2438.740696][T30268] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2438.749736][T30268] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2438.757912][T30268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2438.766688][T30268] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2438.774967][T30268]  </TASK>
00:00:05 executing program 4:
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 2438.795548][T30263] CPU: 0 PID: 30263 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2438.806477][T30263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2438.816990][T30263] Call Trace:
[ 2438.820406][T30263]  <TASK>
[ 2438.823457][T30263]  dump_stack_lvl+0x125/0x1b0
[ 2438.826334][T30268] debugfs: out of free dentries, can not create directory 'hci6'
[ 2438.828181][T30263]  should_fail_ex+0x496/0x5b0
[ 2438.828218][T30263]  should_failslab+0x9/0x20
[ 2438.845994][T30263]  kmem_cache_alloc_node+0x64/0x540
[ 2438.851508][T30263]  alloc_unbound_pwq+0x41e/0xd00
[ 2438.856624][T30263]  ? kasan_set_track+0x25/0x30
[ 2438.857620][T28355] Bluetooth: hci6: sending frame failed (-49)
[ 2438.861432][T30263]  apply_wqattrs_prepare+0x3be/0xa90
[ 2438.861483][T30263]  apply_workqueue_attrs_locked+0xcb/0x150
[ 2438.861519][T30263]  alloc_workqueue+0xc8b/0x1490
[ 2438.861562][T30263]  ? workqueue_sysfs_register+0x400/0x400
[ 2438.868007][T29339] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 2438.873262][T30263]  hci_register_dev+0x1c0/0xbc0
[ 2438.873308][T30263]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2438.873345][T30263]  ? hci_uart_init_work+0x170/0x170
[ 2438.873378][T30263]  tty_ioctl+0x6fd/0x1580
[ 2438.873411][T30263]  ? send_break+0x3e0/0x3e0
[ 2438.924199][T30263]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2438.930639][T30263]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2438.936331][T30263]  ? bit_wait_timeout+0x160/0x160
[ 2438.941530][T30263]  ? selinux_file_ioctl+0x17d/0x270
[ 2438.946971][T30263]  ? selinux_file_ioctl+0xb5/0x270
[ 2438.952577][T30263]  ? send_break+0x3e0/0x3e0
[ 2438.957372][T30263]  __x64_sys_ioctl+0x18f/0x210
[ 2438.962442][T30263]  do_syscall_64+0x38/0xb0
[ 2438.967245][T30263]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2438.973614][T30263] RIP: 0033:0x7ff8ae67cae9
[ 2438.978429][T30263] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2438.999832][T30263] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2439.009466][T30263] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2439.017826][T30263] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2439.026250][T30263] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2439.034773][T30263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
00:00:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 21)

00:00:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 12)

[ 2439.043315][T30263] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2439.052378][T30263]  </TASK>
[ 2439.082694][T30263] Bluetooth: Can't register HCI device
00:00:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2439.228175][T30287] FAULT_INJECTION: forcing a failure.
[ 2439.228175][T30287] name failslab, interval 1, probability 0, space 0, times 0
[ 2439.245529][T30287] CPU: 0 PID: 30287 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2439.249487][T30284] FAULT_INJECTION: forcing a failure.
[ 2439.249487][T30284] name failslab, interval 1, probability 0, space 0, times 0
[ 2439.256674][T30287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2439.256696][T30287] Call Trace:
[ 2439.256707][T30287]  <TASK>
[ 2439.256716][T30287]  dump_stack_lvl+0x125/0x1b0
[ 2439.256766][T30287]  should_fail_ex+0x496/0x5b0
[ 2439.256794][T30287]  ? kstrdup_const+0x5f/0x70
[ 2439.256825][T30287]  ? kstrdup_const+0x5f/0x70
[ 2439.256854][T30287]  should_failslab+0x9/0x20
[ 2439.256900][T30287]  __kmem_cache_alloc_node+0x5f/0x470
[ 2439.256927][T30287]  ? kstrdup_const+0x5f/0x70
[ 2439.256956][T30287]  __kmalloc_node_track_caller+0x50/0x100
[ 2439.256994][T30287]  kstrdup+0x3c/0x70
[ 2439.257024][T30287]  kstrdup_const+0x5f/0x70
[ 2439.257056][T30287]  kvasprintf_const+0x10b/0x190
[ 2439.257094][T30287]  kobject_set_name_vargs+0x5a/0x130
[ 2439.257128][T30287]  dev_set_name+0xc8/0x100
[ 2439.353639][T30287]  ? device_initialize+0x510/0x510
[ 2439.358982][T30287]  ? up_write+0x1b3/0x510
[ 2439.363449][T30287]  ? debugfs_create_dir+0x402/0x630
[ 2439.368802][T30287]  hci_register_dev+0x2ea/0xbc0
[ 2439.374679][T30287]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2439.380193][T30287]  ? hci_uart_init_work+0x170/0x170
[ 2439.386490][T30287]  tty_ioctl+0x6fd/0x1580
[ 2439.391220][T30287]  ? send_break+0x3e0/0x3e0
[ 2439.396648][T30287]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2439.403394][T30287]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2439.409185][T30287]  ? bit_wait_timeout+0x160/0x160
[ 2439.415132][T30287]  ? selinux_file_ioctl+0x17d/0x270
[ 2439.420901][T30287]  ? selinux_file_ioctl+0xb5/0x270
[ 2439.426245][T30287]  ? send_break+0x3e0/0x3e0
[ 2439.431129][T30287]  __x64_sys_ioctl+0x18f/0x210
[ 2439.436186][T30287]  do_syscall_64+0x38/0xb0
[ 2439.440717][T30287]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2439.446825][T30287] RIP: 0033:0x7f29ca47cae9
[ 2439.451359][T30287] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2439.471530][T30287] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2439.480921][T30287] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2439.489104][T30287] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2439.497291][T30287] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2439.505673][T30287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2439.514107][T30287] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2439.522612][T30287]  </TASK>
[ 2439.526626][T30284] CPU: 1 PID: 30284 Comm: syz-executor.2 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2439.537211][T30284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2439.548082][T30284] Call Trace:
[ 2439.551481][T30284]  <TASK>
[ 2439.554434][T30284]  dump_stack_lvl+0x125/0x1b0
[ 2439.559437][T30284]  should_fail_ex+0x496/0x5b0
[ 2439.564227][T30284]  should_failslab+0x9/0x20
[ 2439.569298][T30284]  __kmem_cache_alloc_node+0x5f/0x470
[ 2439.575534][T30284]  kmalloc_trace+0x25/0xe0
[ 2439.580694][T30284]  alloc_workqueue+0x16f/0x1490
[ 2439.585826][T30284]  ? workqueue_sysfs_register+0x400/0x400
[ 2439.592130][T30284]  hci_register_dev+0x212/0xbc0
[ 2439.597651][T30284]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2439.602988][T30284]  ? hci_uart_init_work+0x170/0x170
[ 2439.608762][T30284]  tty_ioctl+0x6fd/0x1580
[ 2439.613111][T30284]  ? send_break+0x3e0/0x3e0
[ 2439.617983][T30284]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2439.624087][T30284]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2439.630029][T30284]  ? bit_wait_timeout+0x160/0x160
[ 2439.635458][T30284]  ? selinux_file_ioctl+0x17d/0x270
[ 2439.640888][T30284]  ? selinux_file_ioctl+0xb5/0x270
[ 2439.646587][T30284]  ? send_break+0x3e0/0x3e0
[ 2439.651482][T30284]  __x64_sys_ioctl+0x18f/0x210
[ 2439.656478][T30284]  do_syscall_64+0x38/0xb0
[ 2439.661084][T30284]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2439.667174][T30284] RIP: 0033:0x7ff8ae67cae9
[ 2439.671865][T30284] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2439.693151][T30284] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2439.702138][T30284] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2439.711018][T30284] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2439.719094][T30284] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2439.727953][T30284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2439.736637][T30284] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2439.745344][T30284]  </TASK>
[ 2439.753486][T30287] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[ 2439.765534][T30287] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 2439.775340][T30287] CPU: 0 PID: 30287 Comm: syz-executor.5 Not tainted 6.5.0-syzkaller-13150-g535a265d7f0d #0
[ 2439.785717][T30284] Bluetooth: Can't register HCI device
[ 2439.786384][T30287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2439.803528][T30287] RIP: 0010:strchr+0x1b/0xb0
[ 2439.808827][T30287] Code: 9a ab f7 48 8b 74 24 08 48 8b 14 24 eb 89 90 f3 0f 1e fa 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 83 ec 10 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 51 0f b6 07 89
[ 2439.830439][T30287] RSP: 0018:ffffc90014a6fa90 EFLAGS: 00010286
[ 2439.836995][T30287] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc900035d1000
[ 2439.845627][T30287] RDX: 0000000000000000 RSI: 0000000000000025 RDI: 0000000000000000
[ 2439.854219][T30287] RBP: ffffc90014a6fb20 R08: 0000000000000001 R09: 0000000000000000
[ 2439.862587][T30287] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90014a6fb20
[ 2439.871112][T30287] R13: 0000000000000cc0 R14: ffff888024557500 R15: 0000000000000001
[ 2439.879843][T30287] FS:  00007f29cb16f6c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 2439.889399][T30287] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2439.896205][T30287] CR2: 00007fef83815638 CR3: 00000000217f1000 CR4: 00000000003526f0
[ 2439.904642][T30287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2439.912809][T30287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2439.921140][T30287] Call Trace:
[ 2439.924461][T30287]  <TASK>
[ 2439.927594][T30287]  ? show_regs+0x8f/0xa0
[ 2439.933041][T30287]  ? die_addr+0x4f/0xd0
[ 2439.937950][T30287]  ? exc_general_protection+0x154/0x230
[ 2439.944253][T30287]  ? asm_exc_general_protection+0x26/0x30
[ 2439.950528][T30287]  ? strchr+0x1b/0xb0
[ 2439.954551][T30287]  ? __mutex_unlock_slowpath+0x165/0x640
[ 2439.960836][T30287]  kvasprintf_const+0x25/0x190
[ 2439.965730][T30287]  kobject_set_name_vargs+0x5a/0x130
[ 2439.971678][T30287]  kobject_add+0x12a/0x240
[ 2439.976606][T30287]  ? kset_create_and_add+0x190/0x190
[ 2439.982198][T30287]  ? do_raw_spin_unlock+0x173/0x230
[ 2439.987637][T30287]  ? kobject_put+0xbe/0x440
[ 2439.992643][T30287]  device_add+0x290/0x1ac0
[ 2439.997358][T30287]  ? device_initialize+0x510/0x510
[ 2440.002991][T30287]  ? __fw_devlink_link_to_consumers.isra.0+0x270/0x270
[ 2440.010243][T30287]  ? up_write+0x1b3/0x510
[ 2440.014953][T30287]  ? debugfs_create_dir+0x402/0x630
[ 2440.020485][T30287]  hci_register_dev+0x2f2/0xbc0
[ 2440.025474][T30287]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2440.030625][T30287]  ? hci_uart_init_work+0x170/0x170
[ 2440.036214][T30287]  tty_ioctl+0x6fd/0x1580
[ 2440.040786][T30287]  ? send_break+0x3e0/0x3e0
[ 2440.045616][T30287]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2440.052362][T30287]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2440.058228][T30287]  ? bit_wait_timeout+0x160/0x160
[ 2440.063745][T30287]  ? selinux_file_ioctl+0x17d/0x270
[ 2440.069168][T30287]  ? selinux_file_ioctl+0xb5/0x270
[ 2440.074894][T30287]  ? send_break+0x3e0/0x3e0
[ 2440.079577][T30287]  __x64_sys_ioctl+0x18f/0x210
[ 2440.084815][T30287]  do_syscall_64+0x38/0xb0
[ 2440.089344][T30287]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2440.096121][T30287] RIP: 0033:0x7f29ca47cae9
[ 2440.100987][T30287] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2440.121230][T30287] RSP: 002b:00007f29cb16f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2440.129751][T30287] RAX: ffffffffffffffda RBX: 00007f29ca59bf80 RCX: 00007f29ca47cae9
[ 2440.138308][T30287] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2440.146808][T30287] RBP: 00007f29cb16f120 R08: 0000000000000000 R09: 0000000000000000
[ 2440.155397][T30287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2440.163910][T30287] R13: 000000000000000b R14: 00007f29ca59bf80 R15: 00007fff4174d108
[ 2440.173913][T30287]  </TASK>
[ 2440.177199][T30287] Modules linked in:
00:00:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0) (fail_nth: 13)

[ 2440.188462][T30287] ---[ end trace 0000000000000000 ]---
[ 2440.205247][T30287] RIP: 0010:strchr+0x1b/0xb0
00:00:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="d5cb9d68009d09000000402f7f2ef99942dc0b8684dae1be2bdb9444ba4bb895d6ee481ca7df0cde4a73bd0000008482b3e5372aaee97c39d4"], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[ 2440.259046][T30294] FAULT_INJECTION: forcing a failure.
[ 2440.259046][T30294] name failslab, interval 1, probability 0, space 0, times 0
[ 2440.265431][T30287] Code: 9a ab f7 48 8b 74 24 08 48 8b 14 24 eb 89 90 f3 0f 1e fa 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 83 ec 10 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 51 0f b6 07 89
[ 2440.288484][T30294] CPU: 0 PID: 30294 Comm: syz-executor.2 Tainted: G      D            6.5.0-syzkaller-13150-g535a265d7f0d #0
00:00:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="2400d386f2ffff7ff2afb975090000b800000000ba000000000f300f22e466b883000f00d0c4c28d0a5005b9f1030000b80e000100ba000000000f30c4c2ed8e859ce2d0a1d1e1", 0x47}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2440.305508][T30294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 2440.316824][T30294] Call Trace:
[ 2440.320311][T30294]  <TASK>
[ 2440.323277][T30294]  dump_stack_lvl+0x125/0x1b0
[ 2440.329647][T30294]  should_fail_ex+0x496/0x5b0
[ 2440.334767][T30294]  should_failslab+0x9/0x20
[ 2440.340393][T30294]  __kmem_cache_alloc_node+0x5f/0x470
[ 2440.346417][T30294]  kmalloc_trace+0x25/0xe0
[ 2440.351158][T30294]  alloc_workqueue+0x1d4/0x1490
[ 2440.356521][T30294]  ? workqueue_sysfs_register+0x400/0x400
[ 2440.362572][T30294]  hci_register_dev+0x212/0xbc0
[ 2440.367574][T30294]  hci_uart_tty_ioctl+0x83e/0xc70
[ 2440.372866][T30294]  ? hci_uart_init_work+0x170/0x170
[ 2440.378874][T30294]  tty_ioctl+0x6fd/0x1580
[ 2440.380068][T30287] RSP: 0018:ffffc90014a6fa90 EFLAGS: 00010286
[ 2440.383446][T30294]  ? send_break+0x3e0/0x3e0
[ 2440.383484][T30294]  ? selinux_bprm_creds_for_exec+0xb30/0xb30
[ 2440.383519][T30294]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2440.383554][T30294]  ? bit_wait_timeout+0x160/0x160
[ 2440.390846][T30287] 
[ 2440.395772][T30294]  ? selinux_file_ioctl+0x17d/0x270
[ 2440.395816][T30294]  ? selinux_file_ioctl+0xb5/0x270
[ 2440.395846][T30294]  ? send_break+0x3e0/0x3e0
[ 2440.395875][T30294]  __x64_sys_ioctl+0x18f/0x210
[ 2440.395909][T30294]  do_syscall_64+0x38/0xb0
[ 2440.403276][T30287] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc900035d1000
[ 2440.408453][T30294]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2440.408493][T30294] RIP: 0033:0x7ff8ae67cae9
[ 2440.408514][T30294] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2440.408540][T30294] RSP: 002b:00007ff8af3990c8 EFLAGS: 00000246
[ 2440.420320][T30287] RDX: 0000000000000000 RSI: 0000000000000025 RDI: 0000000000000000
[ 2440.422192][T30294]  ORIG_RAX: 0000000000000010
[ 2440.422204][T30294] RAX: ffffffffffffffda RBX: 00007ff8ae79bf80 RCX: 00007ff8ae67cae9
[ 2440.422223][T30294] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000003
[ 2440.422241][T30294] RBP: 00007ff8af399120 R08: 0000000000000000 R09: 0000000000000000
[ 2440.422257][T30294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2440.422272][T30294] R13: 000000000000000b R14: 00007ff8ae79bf80 R15: 00007ffd975c3508
[ 2440.422295][T30294]  </TASK>
[ 2440.452228][T30294] Bluetooth: Can't register HCI device
[ 2440.492350][T30287] RBP: ffffc90014a6fb20 R08: 0000000000000001 R09: 0000000000000000
[ 2440.568768][T30287] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90014a6fb20
[ 2440.578875][T30287] R13: 0000000000000cc0 R14: ffff888024557500 R15: 0000000000000001
[ 2440.588619][T30287] FS:  00007f29cb16f6c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 2440.598494][T30287] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2440.606075][T30287] CR2: 00000000200ea000 CR3: 00000000217f1000 CR4: 00000000003526f0
[ 2440.615655][T30287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2440.643792][T30287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2440.653219][T30287] Kernel panic - not syncing: Fatal exception
[ 2440.659710][T30287] Kernel Offset: disabled
[ 2440.664059][T30287] Rebooting in 86400 seconds..