last executing test programs:

22m28.964321805s ago: executing program 1 (id=2282):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc058560f, &(0x7f0000000180)={0x0, 0xa})
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000009780)={0x2020}, 0x2020)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xb8)
write$FUSE_DIRENTPLUS(r1, &(0x7f0000001180)={0x10, 0xfffffff5, 0x3}, 0x10)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r3, &(0x7f0000000100)=""/159, 0xfffffe5a)

22m27.522493126s ago: executing program 1 (id=2285):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000040)={0xb, 0x1, 0x0, "f3f0b32aa4526bc424cc83055c5a8d21e6cb87d69b11022ef02d2b83dda571f8"})
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000040)={0x10001, 0x64, 0x9})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f00000000c0)={0x5, 0x7, 0x7})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000500)={0x6, 0x2, 0x2})
r7 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x2, 0x84})
r8 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r8, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r9=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r8, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r9, <r10=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000440)={r10})
ioctl$DRM_IOCTL_MODE_GETFB2(r8, 0xc06864ce, &(0x7f0000000200)={r10})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000240)={r10, 0x5, 0x1, 0x8000, 0x1, [], [0x8, 0x5, 0x8, 0x8], [0xd13b, 0x9, 0xa210, 0x7], [0xffffffffffffffff, 0x7ff, 0x6, 0xe788]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f00000001c0)={0x6, 0x8, 0xc855})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000140)={0x40, 0xc, 0x6})
dup2(r6, r5)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

22m26.012964783s ago: executing program 1 (id=2293):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
read$FUSE(r1, 0x0, 0x0) (async)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2) (async)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0) (async)
r5 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x40000103}]})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x2, 0x0, &(0x7f0000000500)=""/86, &(0x7f0000000580)=""/250, &(0x7f0000000680)=""/4096, 0xd000}) (async)
preadv2(0xffffffffffffffff, &(0x7f0000000480)=[{&(0x7f00000001c0)=""/64, 0x40}, {&(0x7f0000000200)=""/78, 0x4e}, {&(0x7f0000000280)}, {&(0x7f00000003c0)=""/165, 0xa5}, {&(0x7f00000002c0)=""/15, 0xf}], 0x5, 0xfb4, 0x9, 0x7) (async)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

22m25.900993094s ago: executing program 1 (id=2294):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r2 = syz_open_dev$video(&(0x7f0000001840), 0x45f1, 0x0)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f0000001880))
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f0000000300)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
read$FUSE(r4, &(0x7f00000013c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_OPEN(r1, &(0x7f00000002c0)={0x20, 0x0, r6, {0x0, 0x2}}, 0x20)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000, 0x0)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r1, 0x7b2, &(0x7f0000000200)={&(0x7f00000003c0)=[0xffffff00, 0x8, 0x72, 0x0, 0x0, 0x2, 0x2, 0x2, 0x3, 0xfff, 0xffff31cb, 0x4, 0x8, 0x3, 0x8a, 0x2, 0x97, 0xf7, 0x6, 0x100, 0x4, 0x3, 0x3, 0x4, 0xc, 0x6, 0x7fff, 0x8, 0x6, 0x80000000, 0x8000, 0x3ea, 0x7, 0x3, 0x1, 0x5, 0x1, 0x0, 0x8, 0x2, 0x3, 0xf, 0x8, 0x100, 0xff, 0x8000, 0x7, 0x4, 0x93, 0x6, 0x4, 0x6, 0x4, 0x10001, 0x4b2, 0x7, 0xdfe00, 0x4, 0x9, 0x3, 0x5, 0x101, 0xf6a2, 0x10, 0x200, 0x8000, 0x8000, 0xa169, 0x9, 0x1, 0x40, 0x80000001, 0xffff, 0x10, 0x8000, 0x7, 0x0, 0x8, 0x1, 0xff, 0x6, 0x3, 0x3, 0x6, 0xfffffe01, 0x1000000, 0x3, 0xe8c5, 0x5, 0xa8d, 0x7, 0xf8d5, 0xf, 0x2, 0x5, 0x7, 0x9, 0xb671, 0x8, 0xfffffffa, 0x5, 0x8, 0xffffffff, 0xa6d, 0x10001, 0xd, 0x9, 0x9, 0x401, 0xe248, 0x47a, 0x0, 0x2, 0x6da039dc, 0x2, 0x7fff, 0x3, 0x9, 0x100, 0x4, 0x8d, 0x54f, 0x0, 0x10, 0x3, 0x8, 0x3ff, 0x7, 0x20400000, 0x10, 0xc1e4, 0x8, 0x3dad, 0x101, 0x0, 0xfffffffe, 0x7fffffff, 0xe, 0x8001, 0x0, 0xfaa, 0x84e, 0x9, 0x2, 0x7fffffff, 0x80000000, 0xfffff5dc, 0x7, 0x9, 0x8, 0x5, 0x4, 0x5, 0x3, 0x7, 0x3, 0x3, 0x2, 0x401, 0x7, 0xaea7, 0x4, 0x8, 0xd, 0xc, 0x2, 0x6, 0xf, 0x18, 0x40, 0x1, 0xffffffff, 0x0, 0xa, 0x400, 0x7571, 0x6, 0x6f90739e, 0x8, 0x2, 0x6, 0xb, 0x8, 0x4, 0x7, 0xfffffff8, 0xffffffff, 0x1, 0xfffffff9, 0x7, 0x1, 0xfffffff0, 0x7, 0x0, 0x6445, 0x2, 0x5, 0x0, 0xfffffff0, 0x1, 0x4, 0x9, 0x72, 0x80, 0x9, 0x6de, 0x1000, 0x4, 0xcc1, 0x9, 0xe, 0x3, 0x0, 0x8000, 0x1, 0x5cb, 0x0, 0x9795, 0xb, 0x0, 0xc, 0x3, 0x6, 0x3, 0x6fc, 0x10, 0x8, 0x5, 0x5, 0xfffffffa, 0x1, 0xffffff03, 0x0, 0x3, 0x2, 0x8, 0xffff0000, 0x0, 0x5, 0x1, 0x33, 0x2, 0x7, 0x7, 0x3, 0x57a, 0xbf61, 0xfffffffe, 0x1, 0xfffffffe, 0x95, 0x8000000, 0xffff, 0x1, 0x7, 0x4, 0x6, 0xf189, 0xe93, 0xfe1, 0xfffffffd, 0x3e, 0x5, 0x1000, 0x25, 0x8, 0x8, 0x4, 0x8, 0xe, 0x0, 0xfffffff8, 0x2, 0x5, 0x81, 0x0, 0x70, 0x9eb4, 0x80, 0x7, 0x9, 0x9, 0x4, 0x3, 0x0, 0x4, 0x1, 0x8, 0x3, 0x80000001, 0x9, 0x80000001, 0x3, 0x8001, 0x80000000, 0x8, 0xc, 0x0, 0x42, 0xb, 0x3, 0x10000, 0x80000000, 0x9f52, 0x3, 0x800, 0x8, 0x8, 0x5, 0x800, 0xff, 0x3, 0xfffffffb, 0x3, 0x7, 0x5, 0x5, 0x342, 0x4, 0x4, 0x1, 0x9, 0x0, 0x7, 0x7, 0x2, 0xfff, 0xbb, 0x4fc0, 0x0, 0x1000, 0x3, 0x2b7, 0x1, 0x6, 0x7, 0x1, 0x5, 0xffff735d, 0x15, 0x4, 0x7f, 0x2, 0x5, 0x7, 0x200, 0x4, 0xfff, 0x8, 0x7fffffff, 0x2, 0x800, 0x1, 0x80000000, 0x1, 0x80, 0x0, 0x2, 0x1, 0x7ff, 0x7, 0x6, 0xfffffff7, 0x70ac, 0x655, 0x81, 0x40, 0x1, 0x7fffffff, 0x4, 0xfa0, 0x51, 0x9, 0xbc, 0x4, 0x6, 0x6cf, 0xfffffff0, 0x9030, 0x9, 0x9, 0x9, 0x4, 0x800, 0x9, 0x5, 0x2, 0x5, 0x5, 0x1, 0x6, 0x0, 0x1, 0x1, 0x7, 0x0, 0x3, 0x10001, 0x10001, 0x56, 0x7, 0x0, 0x1, 0x2, 0x9, 0x2, 0x1b73, 0xa7, 0x7e, 0x9, 0x4, 0x7f, 0x5, 0x9, 0xe815, 0xbe, 0x88, 0x6, 0xf6a, 0x1, 0x7, 0x8001, 0x2, 0x5, 0x7f, 0x8, 0x9, 0x1ff, 0x8, 0x2, 0xe5e, 0x10001, 0x6, 0x10001, 0xad1, 0x900000, 0x9, 0x2, 0x7, 0x6, 0x9, 0xe, 0x6, 0x1, 0x10, 0xa7d6, 0xd, 0x6, 0x5, 0x7, 0xfffffffa, 0x1ff, 0x9, 0x4, 0x800, 0x5, 0x7, 0x8, 0x101, 0x2, 0x0, 0x9, 0x23, 0x9, 0x5cd, 0x81, 0xf, 0x8, 0x3ff, 0x6, 0x1, 0x1, 0x6, 0x10, 0x5, 0x4, 0x0, 0x0, 0x4, 0x73df, 0x2, 0x7, 0x41, 0xd, 0x7, 0x9, 0xffffffff, 0x2, 0xf235, 0x0, 0x7, 0x8001, 0x2, 0xfff, 0x4080000, 0x5, 0x4, 0x5, 0x80, 0x80, 0xfffffffa, 0x1, 0x7, 0x1b, 0x5, 0x100, 0x1, 0x2, 0x5, 0x1, 0xfffffffc, 0x6, 0x8, 0x3, 0x8, 0x3ff, 0x6, 0x8, 0xb, 0x0, 0xd651, 0xea, 0x2001, 0x5, 0x0, 0xfffff1a1, 0x6, 0xe69c, 0x0, 0x29, 0x2, 0x4, 0x10, 0x4, 0x3, 0x8, 0x4, 0x55, 0xfffffffc, 0x5, 0x7, 0x345, 0x7, 0x643, 0x27, 0x2, 0x0, 0x9, 0x1, 0x8, 0x5, 0x8, 0x7, 0xe74, 0xf52, 0xfffffffa, 0x1, 0x6, 0x3, 0x2, 0xd, 0x5, 0x6, 0x6, 0x7fffffff, 0xff, 0x2, 0xffffffff, 0x1, 0x8, 0x2, 0xfffffffa, 0x68, 0xb, 0x7, 0x0, 0x8, 0x3, 0x2, 0x2, 0x9, 0xf08, 0x8, 0x8, 0x0, 0x100, 0x9, 0x400, 0x6, 0x5, 0x7f, 0xec3f, 0xcd64, 0x6, 0x8, 0x5, 0x4, 0x10000, 0x2, 0x5cf, 0x2, 0x40, 0x7f, 0x5, 0x6, 0x8, 0x9, 0x4, 0x3, 0xdd, 0x0, 0x623a, 0x800, 0x0, 0xfffff800, 0x8000, 0xffff0000, 0x7, 0x80000000, 0xc0e8, 0x2, 0x2, 0x9, 0x3, 0xfffffffa, 0x1, 0x8, 0x1, 0xfff, 0x0, 0x10000, 0x0, 0x4, 0x0, 0x3, 0x1, 0x10, 0x6, 0x9, 0x401, 0xffffffa2, 0x6, 0x8, 0x7, 0x78c, 0x8, 0x3, 0x4, 0xa, 0x7f, 0x401, 0x6, 0x6, 0xffffffff, 0x3ff, 0x1, 0x4a1, 0xfffffff7, 0x5, 0x5, 0x8, 0x4, 0x1000, 0x5, 0x5, 0xc2ab, 0x8001, 0xff, 0x5, 0xffffffff, 0x8, 0x1ff, 0x9, 0x5, 0x400, 0x1, 0xffffffff, 0x2, 0x8, 0x261e52b9, 0x2, 0x6b2, 0x8000, 0x6, 0x0, 0x7, 0x500, 0x2, 0x80, 0x9, 0x9, 0x3acc, 0xffffffff, 0x87e, 0x80000001, 0x3, 0x1, 0x1, 0x8000, 0x0, 0x1, 0x2, 0x45f8, 0x9e22, 0xffffffff, 0x3, 0xfffff801, 0x2, 0x5, 0x3, 0x7bd8, 0x0, 0xee3a, 0x81, 0x3ff, 0x2, 0x6, 0x7, 0x9, 0xe7, 0x2, 0x9, 0x727d, 0x40, 0x5e3, 0x6ab, 0x4, 0x5, 0x3, 0x1000, 0x7, 0x400, 0x10000, 0x3, 0x3, 0x0, 0xa, 0xa, 0x1000, 0x874b, 0x14, 0x8, 0x7, 0xb, 0x7fff, 0x65c5, 0x81, 0x3, 0x0, 0x7, 0x8001, 0x1, 0xfffffff8, 0x778, 0x0, 0xfffffffb, 0x6, 0x9, 0x2, 0x200, 0x9, 0x73, 0x2, 0x5, 0x5fb, 0xd, 0x80000001, 0xa, 0x4800000, 0xee1a, 0x7, 0x9, 0x7, 0x80000001, 0x6, 0x3, 0x39f, 0x4, 0x6, 0x2, 0x100, 0x6, 0xffffff80, 0x0, 0x3, 0x7, 0x6, 0x1, 0x4, 0x0, 0x3ff, 0x2, 0x10000, 0xffffff81, 0x6, 0xd496, 0x3, 0xa, 0x8, 0x639, 0x2, 0x7fff, 0x7, 0x80000001, 0x2, 0x9, 0x1, 0xff, 0xa1, 0xbf4, 0xe0, 0xfffffffc, 0x4, 0x7fffffff, 0xf5db, 0x9, 0x6, 0x7, 0x782, 0x6, 0xffffa8d3, 0xe7, 0x6, 0x5, 0x6, 0x7, 0xf, 0x4, 0x101, 0x754, 0xe, 0xffff, 0x1, 0x2, 0xfffffff1, 0x4, 0x5, 0x5, 0x2de, 0x95e, 0x3, 0x1, 0x8001, 0x6, 0x80, 0x1000, 0x3, 0x9, 0x7, 0x6000000, 0x9, 0xfff, 0x1dd, 0x3ff, 0x6, 0xab, 0x3, 0x5, 0x4, 0x6, 0xb2d1, 0xb, 0xfff, 0x9, 0xe7, 0x3, 0x9, 0x3, 0x5, 0x8, 0x2, 0x7, 0x728, 0x1, 0x100, 0x0, 0x0, 0x9, 0x217, 0x1, 0xaacf, 0x2, 0x80000000, 0xff, 0x1, 0xf9fb, 0x8, 0x80000000, 0x4, 0x2, 0x8000, 0x7, 0x6, 0x8, 0x5, 0x1, 0x0, 0x9f, 0x21e, 0x0, 0x5, 0x438, 0x9ac, 0x1, 0x37, 0x9, 0x2, 0xe72, 0xfffffc00, 0x4, 0x1, 0x8, 0xaf, 0x6, 0x4, 0x3, 0x10001, 0x4, 0x40, 0x7, 0x0, 0xb, 0x0, 0x0, 0x8, 0x0, 0x7, 0x792, 0x10, 0x490f, 0x4, 0x4, 0x3dc, 0x0, 0x7, 0xfffffffb, 0x5, 0x40, 0x7, 0x3, 0x0, 0x9, 0xe0e, 0x7fffffff, 0x101, 0x10001, 0x2, 0x4, 0x5, 0x9, 0x4, 0xe, 0x3, 0x9000000, 0x2, 0x349f, 0x6, 0xb, 0x6, 0xf7, 0x81, 0x2d, 0x0, 0x4, 0x0, 0x6, 0x3, 0x92a, 0x0, 0x5, 0xa0000, 0x7, 0x6, 0x2, 0x5, 0x5c866fcb, 0x9, 0x5, 0xfffffe01, 0xb, 0x3, 0x6aa6, 0x4, 0xfffffffe, 0x0, 0x0, 0x6, 0x2fa, 0x1, 0x7, 0x6, 0xeb0, 0x3, 0x7fffffff, 0x8, 0x7, 0x561, 0x96d, 0x4, 0x8, 0xb, 0x3, 0x9, 0x3, 0xc, 0x7, 0x6, 0xfffffff3, 0x1, 0x8, 0x0, 0x2, 0x0, 0xb, 0x5221b0ef, 0x8, 0x400, 0x1, 0x1, 0x4, 0x80, 0x4, 0x81, 0x1], 0x5, 0x400, 0x2a99})
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r8 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r8, 0x50009405, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKFINISHZONE(r3, 0x40101288, &(0x7f0000003400)={0x81, 0x5})
r9 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r9, 0x40086607, &(0x7f0000000280)=0x27b)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

22m23.871877014s ago: executing program 1 (id=2297):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x8200, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000280)=0x10)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r2, 0xc01064c2, &(0x7f0000000080)={<r3=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f00000000c0)={<r4=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r1, 0xc00864bf, &(0x7f00000001c0)={<r5=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r1, 0xc01064c2, &(0x7f0000000200)={<r6=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r1, 0xc01864cb, &(0x7f00000002c0)={&(0x7f0000000240)=[0x0, r3, r4, r5, r6], &(0x7f0000000280)=[0x3], 0x5})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000009702"])
r10 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r10, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

22m22.604965682s ago: executing program 1 (id=2302):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0x4000000000001d7)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

22m7.458540345s ago: executing program 32 (id=2302):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0x4000000000001d7)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

18m35.985134659s ago: executing program 3 (id=3573):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x12d002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x42280, 0x0)
close(0x4)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000000)={0x8000000, 0x205000, 0x8})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

18m34.652802941s ago: executing program 3 (id=3575):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, 0xffffffffffffffff, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x2, 0x20402)
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x5, 0xa, 0x4})
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1}) (async)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000080)=0x2) (async)
close(r1) (async)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, &(0x7f0000000100)={0x48, 0x5, r4, 0x0, <r5=>0xffffffffffffffff})
ioctl$IOMMU_TEST_OP_ACCESS_REPLACE_IOAS(r3, 0x3ba0, &(0x7f0000000080)={0x48, 0xb, r5, 0x0, r4}) (async)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000140)) (async)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0) (async)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r6, 0xc00c55ca, &(0x7f0000000040)={0x10}) (async)
r7 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800000000000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f0000000040)={0x4, 0x2, 0x1}) (async)
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc058560f, &(0x7f0000000180)={0x4, 0xa}) (async)
r8 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r8, 0x7dfff000)

18m34.619410731s ago: executing program 3 (id=3576):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x14d802, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSLCKTRMIOS(r1, 0x80047456, &(0x7f00000010c0))
ioctl$FS_IOC_RESVSP(r0, 0x402c5839, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r5, 0x4068aea3, &(0x7f00000000c0)={0xc7, 0x0, 0x1})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440), 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000780), 0x153000, 0x0)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f0000000040)=0x4)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r9, 0x402c5342, &(0x7f00000000c0))
write$cgroup_int(r2, &(0x7f0000000140)=0x2, 0x12)
r10 = openat$vnet(0xffffffffffffff9c, &(0x7f00000038c0), 0x2, 0x0)
r11 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r12 = dup(r11)
write$UHID_INPUT(r12, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006)
ioctl$VHOST_SET_OWNER(r10, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r10, 0x4008af03, &(0x7f0000000040)={0x1, 0x0, [{0x0, 0x0, 0x0}]})
ioctl$VHOST_NET_SET_BACKEND(r10, 0x4008af30, &(0x7f00000000c0))

18m33.816630391s ago: executing program 3 (id=3578):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r1, 0x0, 0x0)
ioctl$BLKOPENZONE(r1, 0x40101286, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r1, 0x7dfff000)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000000580)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000500), 0x20000, 0x0)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000029c0)={0x658, 0x0, r4, [{{0x0, 0x2, 0x8001, 0x46, 0xff, 0x2, {0x6, 0xfa9, 0xfffffffffffffff9, 0xfff, 0x2, 0x3, 0x4, 0x0, 0xed07, 0xa000, 0x8, r5, 0x0, 0x55fd, 0x80000001}}, {0x0, 0x3, 0x6, 0x5, 'vcan0\x00'}}, {{0x6, 0x0, 0x5, 0xffffffffffffffc0, 0x3, 0x200, {0x3, 0x2, 0x5, 0xffffffffffffff01, 0xf, 0x7, 0xffff, 0x2, 0xfffffe01, 0x3000, 0x2, r5, r6, 0x5, 0x4c18}}, {0x0, 0x10001, 0x8, 0xb, '%pB    \x00'}}, {{0x1, 0x0, 0xffffffff, 0x7, 0xf425, 0x2, {0x6, 0x7, 0x2, 0xf, 0xffffffffffffffff, 0x1, 0x2, 0x8, 0x9461, 0xe000, 0x7, r5, r6, 0x8000, 0x1ff8000}}, {0x1, 0xd0a9, 0xa, 0x9a5e, '/dev/cuse\x00'}}, {{0x6, 0x2, 0x5f, 0x4, 0x4, 0x1, {0x0, 0x7, 0x1000, 0xfffffffffffffff9, 0x8001, 0x0, 0x800, 0x80000000, 0xb83, 0xc000, 0x80000001, r5, r6, 0x28a, 0x7}}, {0x5, 0x4, 0x1, 0xa, '\x00'}}, {{0x5, 0x2, 0x8, 0x8001, 0xd, 0x6, {0x6, 0x184, 0x587, 0x8000, 0x8, 0x0, 0xffffffff, 0x6, 0x10, 0x2000, 0xb, r5, r6, 0x80000000, 0xb}}, {0x2, 0x8, 0x1, 0xa2, '('}}, {{0x2, 0x1, 0x9, 0x6, 0xfffffff8, 0x7fff, {0x5, 0x1, 0xc, 0xa, 0x6, 0x6, 0x3, 0x6, 0x7, 0x8000, 0x8, r5, r6, 0x5, 0x3}}, {0x3, 0x2, 0x1, 0x9, ','}}, {{0x6, 0x0, 0x5dd5, 0x3, 0x5, 0x81, {0x3, 0x100000001, 0x5, 0x2, 0x1, 0x2, 0x6, 0x69504f9e, 0x80000000, 0x2000, 0x6, r5, r6, 0x6, 0x5}}, {0x0, 0xfffffffffffffffc, 0x6, 0x4, '&\'.:&('}}, {{0x2, 0x1, 0x401, 0x5, 0x80, 0x4, {0x5, 0x404, 0x5, 0x4, 0x801, 0xff, 0x6, 0xd7a2, 0x7fff, 0x4000, 0x7f, 0x0, 0x0, 0x7fffffff, 0xc6}}, {0x4, 0x100000001, 0x4, 0xf4f, '\\--,'}}, {{0x5, 0x1, 0x7ff, 0x4, 0x3d, 0x7f, {0x6, 0x7, 0x5, 0x3, 0x59ec, 0x5, 0x4, 0xf6c, 0x80000000, 0x4000, 0x80, r5, r6, 0x6, 0x6a4a}}, {0x2, 0x54f, 0x8, 0x3ff, 'nl80211\x00'}}, {{0x5, 0x2, 0x2, 0x49f, 0x7fff, 0x65, {0x5, 0xbe4a, 0x707, 0x4b3, 0x0, 0x3, 0x10001, 0xfffff800, 0x6, 0x4000, 0x4b4cca3e, 0xee00, r6, 0x1, 0x62e2}}, {0x2, 0x101, 0x1, 0x3, '\xad'}}]}, 0x658)
ioctl$TUNSETGROUP(r2, 0x400454ce, r6)
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r8, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r10 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
r11 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_TRY_ENCODER_CMD(r11, 0xc028564e, &(0x7f0000000080))
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(r10, 0xc01064c1, &(0x7f0000000280))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r9, 0x0)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000080)={0x4, 0x0, 0x28, 0x10, 0x100, &(0x7f00000000c0)="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"})
r12 = syz_open_dev$dri(&(0x7f00000004c0), 0xfffffffffffffffe, 0x5c5403)
ioctl$DRM_IOCTL_SET_VERSION(r12, 0xc0106407, &(0x7f0000000000)={0x1, 0x0, 0x1, 0x61d})
r13 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBSENT(r13, 0x4b49, &(0x7f0000001240)={0xfe, "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"})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

18m33.553641527s ago: executing program 3 (id=3579):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0), 0x2, 0x6}}, 0x20) (async)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0) (async)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r3, 0x7dfff000)

18m33.292910313s ago: executing program 3 (id=3581):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0) (async)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x110, r1, 0x1000000000000000) (async)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) (async)
read(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$mice(0xffffffffffffff9c, 0x0, 0x80082)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006) (async)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}, r6}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000480)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @local}, r6}}, 0x48) (async)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r5, 0x0, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r5, &(0x7f0000000200)={0x1, 0x10, 0xfa00, {&(0x7f00000000c0), r6}}, 0x18) (async)
ioctl$TCSETSW(r4, 0x5403, &(0x7f0000000080)={0x2, 0x3, 0x101, 0x7fffffff, 0xa, "633fefc4c9edffd671e3202ae0d3c571f287a7"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

18m18.22806356s ago: executing program 33 (id=3581):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0) (async)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x110, r1, 0x1000000000000000) (async)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) (async)
read(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$mice(0xffffffffffffff9c, 0x0, 0x80082)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006) (async)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}, r6}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000480)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @local}, r6}}, 0x48) (async)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r5, 0x0, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r5, &(0x7f0000000200)={0x1, 0x10, 0xfa00, {&(0x7f00000000c0), r6}}, 0x18) (async)
ioctl$TCSETSW(r4, 0x5403, &(0x7f0000000080)={0x2, 0x3, 0x101, 0x7fffffff, 0xa, "633fefc4c9edffd671e3202ae0d3c571f287a7"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

27.800750271s ago: executing program 5 (id=9935):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x1992c0)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x5, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x6, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
read$FUSE(r1, 0x0, 0x0) (async)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2) (async)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1, 0x1}, 0x8) (async)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, &(0x7f0000000080)=0x2) (async)
ioctl$IOMMU_HWPT_ALLOC$TEST(0xffffffffffffffff, 0x3b89, &(0x7f00000002c0)={0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdead, 0x0, 0x0})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x486500, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
ioctl$TCSETS(r6, 0x89f2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "bb40af00008000"}) (async)
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f00000000c0)=0x2) (async)
write$dsp(r5, &(0x7f0000000280)="034e6ddc35f6ca4aea4231070b408a15ac9ca93b88ce0851f71748a0c27a355260bd26f7a0407e77bc9fc81345c280ae196c675a684e48b92c279d7e9dbd1de80b1c6a0754f15cd59e180609a889b9c61a0c0d2c478131707bf965f6168afae296a1bcd1a0d9a7a119bcb260123cf763bf52d89263d07bc2a26dfdb56fd15f278f", 0x81) (async)
mmap$dsp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x100000b, 0x8012, r5, 0x0)
close(r5) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600}) (async)
r8 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$binfmt_register(r8, &(0x7f0000000080)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x3, 0x3a, '.^', 0x3a, '&]!/', 0x3a, './cgroup', 0x3a, [0x46]}, 0x2f)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f00000001c0)={0xa33, 0xfffffb1b, 0x5b61, 0xfffffd6b, 0x5, "fc2b9bc90ba13939d1fca3271dcc40c05549c3"})

27.643971126s ago: executing program 5 (id=9938):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001100), 0x28200, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x10000000, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r1, 0xc00464be, &(0x7f0000001140))
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000040))
r3 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2465)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, &(0x7f00000011c0)=ANY=[@ANYRES32=r4, @ANYRES16], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r4, 0x0)
ioctl$SNDRV_PCM_IOCTL_FORWARD(r3, 0x40084149, &(0x7f0000000040)=0x8000000400000000)

26.413647825s ago: executing program 5 (id=9941):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000080)=0x200000000)
r3 = dup2(r2, r2)
read$FUSE(r3, &(0x7f0000004d80)={0x2020}, 0x2020)
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000040)=0x1)
write$vhost_msg_v2(r3, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/128, 0x20000, 0x0, 0x0, 0x2}}, 0x48)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r6, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

25.104093125s ago: executing program 5 (id=9947):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000785000/0x1000)=nil, 0x1000, 0xb, 0x202812, r0, 0x7dfff000)

24.892987559s ago: executing program 5 (id=9948):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000000)={'nicvf0', 0x32, 0x35}, 0x9)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)

24.128521643s ago: executing program 5 (id=9950):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1, 0xfc}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r3, 0xc400941d, &(0x7f00000003c0)={<r5=>0x0, 0xe, 0x3})
ioctl$BTRFS_IOC_DEV_INFO(r2, 0xd000941e, &(0x7f00000007c0)={r5, "bdad4945792cdf5978b008f6ba98c020"})
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

24.028738637s ago: executing program 0 (id=9951):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r1, 0xc01064c8, &(0x7f0000000200)={0x1, 0x0, &(0x7f0000000300)=[<r3=>0x0]})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000002c0)={r3, r3, r3, 0x0, 0x0, 0x5, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000380), 0xc080, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f00000003c0)={0xc, <r5=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000400)={0x28, 0x4, r5, 0x0, &(0x7f0000fe6000/0x2000)=nil, 0x2000, 0x8})
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r1, 0xc04064aa, &(0x7f0000000880)={0x0, 0x0, r3})
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000000)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r6, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e})
r7 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r8 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x12, r8, 0x80000000)
ioctl$IOCTL_VMCI_VERSION2(r7, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r7, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x5, 0x5e})
read(r0, &(0x7f0000000140)=""/162, 0xa2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000007, 0x8010, 0xffffffffffffffff, 0x39f3c000)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000080)={'nr0\x00', 0x2})
ioctl$TUNATTACHFILTER(r9, 0x401054d5, &(0x7f0000000600)={0x2, &(0x7f0000000340)=[{0x5c, 0x0, 0x0, 0xffffffff}, {0x6}]})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

23.34445045s ago: executing program 0 (id=9953):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
r1 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_AUDOUT(r1, 0x40345632, &(0x7f0000000000)={0x5, "504aa57f4f8d37386dce37ae7b09c7329b881ccd27113bceefb560cb277f7192", 0x2, 0x1}) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000100)={0xeeef0000, 0x1000})
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000080)=0x200000000) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0x4048aecb, &(0x7f0000000480)=ANY=[])
r8 = dup2(r4, r4) (async)
r9 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r9, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r9, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r10=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r9, 0xc02064b6, &(0x7f00000001c0)={r10, <r11=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r9, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]}) (async)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r9, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, <r12=>0x0], &(0x7f0000000040), 0x5, r11}) (async)
r13 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r13, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000380)={<r14=>0xffffffffffffffff}, 0x2, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_ACCEPT(r13, &(0x7f0000000580)={0x8, 0x120, 0xfa00, {0x0, {0x1, 0x3, "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", 0xd, 0x1, 0x8, 0x9, 0x6, 0x8, 0x4}, r14}}, 0x128) (async)
ioctl$DRM_IOCTL_MODE_ATOMIC(r9, 0xc03864bc, &(0x7f0000000380)={0x201, 0x1, &(0x7f0000000440)=[r11], &(0x7f0000000200), &(0x7f00000000c0)=[r12], &(0x7f0000000340)}) (async)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r8, 0xc100565c, &(0x7f0000000180)={0xf9, 0x4cd7cd7c, 0x1, {0x1, @pix_mp={0x4, 0x2, 0x52424752, 0x5, 0x8, [{0x9, 0x5}, {0x3, 0x800}, {0x4, 0x8}, {0x0, 0x6}, {0xffff1baa, 0x7ff}, {0x0, 0xfff}, {0xc1954211}, {0xfffff41c, 0x7fffffff}], 0x1, 0x6, 0x3, 0x0, 0x7}}, 0x4000004})
read$FUSE(r8, &(0x7f0000004d80)={0x2020}, 0x2020)
ioctl$KVM_X86_SET_MCE(r8, 0x4040ae9e, &(0x7f0000000340)={0x0, 0x1, 0x6, 0xa, 0x1a}) (async)
ioctl$VHOST_VSOCK_SET_RUNNING(r8, 0x4004af61, &(0x7f0000000040)=0x1)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x2800007, 0x11, r0, 0x7dfff000)

22.892230342s ago: executing program 4 (id=9956):
r0 = syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x129240, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000000440)={r1, 0x0, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe78d09843d601010000000000080d0ec0c1b4e9b1c4369d03740250ceaac594b1b3c741dd17c18e8438ef2a565e04603323695c58d66500", "a1163939c787a16c1ca43f8539f3d3289737f0374c72a964a0193b3e8772fd29f35239d200", "24431a1e77a68e174f000000000000000010e200"}})
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
ioctl$vim2m_VIDIOC_QUERYCAP(r0, 0x80685600, 0xfffffffffffffffe)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r3, 0x7dfff000)
r4 = syz_open_dev$vcsa(&(0x7f0000000000), 0x2, 0x402000)
write$uinput_user_dev(r4, &(0x7f0000000080)={'syz1\x00', {0x5, 0x1, 0x6, 0xffff}, 0x50, [0x8, 0xfffffff0, 0x1000, 0x2, 0x7fffffff, 0xfcc5, 0x42, 0x7fff, 0xd6, 0x9, 0x100, 0x3, 0x8, 0x8, 0x5, 0xe, 0xcf, 0x7, 0x1, 0x8, 0x3, 0xc0, 0xf2e, 0x2, 0x8, 0x5, 0x7, 0x9, 0x1, 0x10000, 0xfffffffb, 0xa28, 0x6, 0x2, 0x0, 0x4, 0x0, 0x8001, 0x7, 0x3, 0x4, 0x8, 0x6231b311, 0x2, 0x0, 0xfffffff8, 0x7, 0x4, 0x5, 0x200, 0x8cbb, 0x11, 0x9, 0x9, 0x176d118b, 0x7a, 0x3, 0x0, 0x1, 0x4, 0x8000, 0x9, 0x6, 0x7], [0x4, 0x59f, 0x4, 0x6, 0x4, 0xffff38bb, 0x400, 0x80, 0x1, 0xc, 0xeed, 0xe, 0xffffffff, 0x1, 0x5, 0x6, 0xc, 0xc34e, 0x8, 0x7, 0x1, 0x9, 0x9, 0x8, 0x7, 0x9, 0x40, 0x2, 0x79e, 0x7, 0x5b7, 0xc, 0xb57c, 0xb, 0x7, 0x5, 0x100, 0x1, 0x7, 0x80000001, 0xacc1, 0x3, 0xa, 0xa7, 0x4, 0x98, 0x7fc00, 0xf9, 0x3, 0x3, 0x8, 0x7fff, 0x10001, 0x2, 0x8000, 0x99000000, 0xb, 0x8, 0x8001, 0x7b, 0x1f5, 0x10000, 0xff, 0x8], [0x2dc7, 0xfa, 0x9, 0xffff7fff, 0x4, 0x6, 0x73, 0xffffffff, 0x5, 0x7, 0x9, 0x0, 0xd, 0x9, 0x80000001, 0x9, 0x4, 0x7, 0x6, 0xfffffff9, 0x61b7, 0x9, 0xfffffffe, 0x4, 0xf7be, 0x5, 0x0, 0x1, 0x4098, 0xb, 0x6, 0xffffffff, 0x4, 0x8, 0xffffffff, 0x2, 0x7, 0x0, 0x40, 0x9, 0xd8fd, 0x8, 0x800, 0x9, 0xfd41, 0x3, 0x0, 0xbdc, 0x81, 0x6, 0x6, 0x7f, 0x87, 0x7, 0x9, 0x9, 0xc, 0x8, 0x7ff, 0xc, 0x10, 0x9, 0x3, 0x7], [0x0, 0x4, 0xffffffff, 0x1, 0x7, 0x8000, 0x6af, 0xfffffffe, 0x6, 0x4, 0x5, 0x4, 0xa, 0x0, 0x0, 0xcdaf, 0x6, 0x10000, 0xdd5f, 0x8000, 0x10, 0x3, 0x6000000, 0x7, 0xda0, 0x0, 0x0, 0xffffffff, 0x4, 0x6, 0x3, 0x0, 0x8, 0x80000001, 0x10, 0x7f, 0x9, 0x5, 0x0, 0x8, 0xffff, 0x0, 0x101, 0x1000, 0x1, 0x8001, 0xf82, 0x8, 0xffffffc0, 0x0, 0x5, 0x200, 0x3, 0xfffffffb, 0x9, 0x9, 0x6, 0x3, 0x5, 0xba, 0xb4e6, 0x3, 0xc6, 0x3]}, 0x45c)
ioctl$TCSETSW(r4, 0x5403, &(0x7f0000000500)={0x6, 0x5, 0x7fffffff, 0x2, 0x1b, "40bbe591cf48710e295cb4b9abe21feacaef6e"})

22.527133279s ago: executing program 4 (id=9957):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async, rerun: 32)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (rerun: 32)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) (async)
ioctl$int_in(r2, 0x5421, &(0x7f0000000100)=0x10000)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
read$FUSE(r3, 0x0, 0x0) (async)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4) (async)
r6 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
ioctl$NS_GET_OWNER_UID(r6, 0xb704, &(0x7f0000000000)=<r7=>0x0)
write$FUSE_CREATE_OPEN(r6, &(0x7f0000000300)={0xa0, 0x0, 0x0, {{0x2, 0x2, 0x5, 0x6bf, 0x8, 0x1, {0x5, 0x2, 0x100000000, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, r7, 0x0, 0x0, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
r8 = openat$cuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
read$FUSE(r8, &(0x7f0000000400)={0x2020, 0x0, <r9=>0x0, <r10=>0x0, <r11=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r8, &(0x7f0000002f80)={0xa0, 0x0, r9, {{0x2, 0x2, 0x6, 0x4, 0x7, 0x7, {0x1, 0xe, 0x100, 0x7b, 0xf, 0x400, 0x3, 0x6, 0x8, 0x8000, 0x10001, r10, r11, 0x9, 0x8}}, {0x0, 0x1d}}}, 0xa0) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r7, r11}}, './file0\x00'}) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0) (async)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

21.996938689s ago: executing program 4 (id=9958):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0xe9, 0x3, 0x3, "2160d7493503a6097d505ba1bbf9c9b73bb15ab73e0401dae440d6934c49ff05", 0x31363553})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x8600, 0x0)
read(r1, &(0x7f00000001c0)=""/157, 0x9d)

21.890257933s ago: executing program 0 (id=9959):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28202, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(0xffffffffffffffff, &(0x7f00000003c0)={0x2020}, 0x2020) (async)
read$FUSE(0xffffffffffffffff, &(0x7f00000003c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000002400)={0x50, 0x0, r2, {0x7, 0x2b, 0x180b, 0x2121a041, 0xfff7, 0x2, 0x99, 0xf1a1, 0x0, 0x0, 0x40, 0x3}}, 0x50) (async)
write$FUSE_INIT(r1, &(0x7f0000002400)={0x50, 0x0, r2, {0x7, 0x2b, 0x180b, 0x2121a041, 0xfff7, 0x2, 0x99, 0xf1a1, 0x0, 0x0, 0x40, 0x3}}, 0x50)
read$FUSE(r1, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r1)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) (async)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) (async)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000000000000910000400eca"])
r5 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x0, 0x10000, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

21.827052292s ago: executing program 4 (id=9960):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001100), 0x28200, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x10000000, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r1, 0xc00464be, &(0x7f0000001140))
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2465)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r3, &(0x7f00000011c0)=ANY=[@ANYRES32=r3, @ANYRES16], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0)
ioctl$SNDRV_PCM_IOCTL_FORWARD(r2, 0x40084149, &(0x7f0000000040)=0x8000000400000000)

21.364897794s ago: executing program 0 (id=9961):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x6c000, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

21.326670599s ago: executing program 0 (id=9962):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x6084, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'batadv_slave_0\x00', 0x1100})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r2, &(0x7f00000001c0)={'c', ' *:* ', 'r\x00'}, 0x8)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r3, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

20.731055032s ago: executing program 4 (id=9963):
ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f00000000c0)={0x3, 0x0, 0x98, &(0x7f0000000000)={0x0, 0x200, 0x11}})
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r0, 0x7dfff000)

20.544772443s ago: executing program 4 (id=9964):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
read$FUSE(r1, &(0x7f0000000440)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000002480)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x0, 0x6, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0xa1, 0x7, 0xfffffffe, 0xb000, 0x7, 0x0, r2, 0x1, 0x6}}, {0x0, 0x1c}}}, 0xa0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000240)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000000180)={0x0, 0x0, {0x1, 0x0, 0x0, 0xa092a5fe06e0bc84}})
write$UHID_INPUT(r1, &(0x7f0000002540)={0x8, {"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", 0x1000}}, 0x1006)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r6, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r7, 0x0)
write$cgroup_subtree(r7, &(0x7f0000003580)=ANY=[@ANYBLOB="19c0d1777626515c55feed725617509671678fc1eec842293317d0ae732052f2647dc62f05884d56c4e6cb9f16c31bc35c8447db968aa6a800465b27397c032a18142c7322a40fab01ab7c79a8324d8c948562c29f4fb4f2d2784b8c78a6b09d7ab7998c5fc6314e06708f22e24251cf701e20654438558b52cc", @ANYRES32=r6], 0xd)
ioctl$VIDIOC_DV_TIMINGS_CAP(r7, 0xc0905664, &(0x7f0000000300)={0x0, 0x0, '\x00', @bt={0x7, 0x8001, 0x3d, 0x1, 0x0, 0x1ff, 0x1c, 0x8}})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
r8 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
pwritev(r8, &(0x7f0000000140)=[{&(0x7f0000000c00)="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", 0x718}], 0x1, 0x2, 0x1)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

20.517173921s ago: executing program 0 (id=9965):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20400, 0x0)
ioctl$BLKSSZGET(r0, 0x1268, &(0x7f0000000040))
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x40024108)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0))
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x10000, 0x0)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000140))
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x4c2)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f00000001c0))
ioctl$LOOP_CLR_FD(r1, 0x4c01)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3)
ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f0000000200)={0x800, 0x7})
ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000240))
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
read$nci(r3, &(0x7f00000002c0)=""/4096, 0x1000)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000012c0), 0x8000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2)
close(r1)
ioctl$SNDRV_TIMER_IOCTL_TREAD64(r4, 0x400454a4, &(0x7f0000001300))
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000001340)={0x6, 0x4})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000001380)={0x0, r0, 0x8, 0x300, 0x7, 0x9d})
ioctl$BLKOPENZONE(r0, 0x40101286, &(0x7f00000013c0)={0x7ff, 0x10001})
r5 = dup(r1)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000001400)={0x0, 0x4, 0x100})
ioctl$BTRFS_IOC_DEV_REPLACE(r4, 0xca289435, &(0x7f0000001440)={0x0, 0x100000000, @status={[0x3, 0xffff, 0x6, 0x1, 0x100, 0x100]}, [0xfffffffffffffffb, 0x8, 0x80, 0x8, 0xfffffffffffffffe, 0x6, 0x0, 0x4c, 0xb, 0x6000000, 0x10000, 0x80e, 0x1, 0x0, 0x8, 0x0, 0x90000000000000, 0xfffffffffffffffe, 0xffff, 0x3, 0x1, 0x80, 0xfffffffffffffffa, 0x4, 0x7, 0x177, 0x9, 0x7, 0xffffffff, 0x2a00000000, 0x8000000000000000, 0x1, 0x0, 0x3, 0x40, 0x0, 0xfffffffffffff800, 0x0, 0x6, 0x7, 0x5, 0x8, 0x2, 0x3, 0x5, 0xdc, 0x6, 0x1, 0x7, 0x800, 0x8000000000000000, 0x5, 0x6, 0x3, 0x8, 0x0, 0x880e, 0x0, 0x7, 0x1, 0x8001, 0x7, 0x7, 0x7]})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000001e80)={{0x1, 0x1, 0x18, <r6=>r0, {0xff}}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r6, 0x40045402, &(0x7f0000001ec0)=0x1)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000004, 0x1010, r1, 0xadbd0000)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000001f00), 0x2)

19.120861354s ago: executing program 2 (id=9968):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pimreg\x00', 0x5dcf70ef8daa5d0e}) (async)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000340)=[{0x28, 0x0, 0x0, 0xfffff03b}]}) (async)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a) (async, rerun: 32)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r2, 0x1000) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x3cbd42, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
write$cgroup_devices(r3, &(0x7f0000001080)=ANY=[@ANYBLOB="1e0396ca3c5c980128876360864668f82ffdd569d2f530b5e033ff11edf1c5ffc733d2acb165fe588cd568cd1f31b87b68b00ad80806"], 0xffdd) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

17.188997332s ago: executing program 2 (id=9969):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_HYPERV_TLBFLUSH(r0, 0x4068aea3, &(0x7f0000000000))
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r0, 0x4002f516, &(0x7f0000000080)={0x7, 0x98})
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000100)=@attr_pmu_filter={0x0, 0x1, 0x1, &(0x7f00000000c0)={0x3, 0x7, 0x19a562f0bcc8f83e}})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_VDPA_GET_CONFIG_SIZE(r1, 0x8004af79, &(0x7f0000000180))
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000340)={0x0, 0x1, &(0x7f0000000200)=""/53, &(0x7f0000000240)=""/79, &(0x7f00000002c0)=""/83, 0x10000})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000380), 0x500002, 0x0)
ioctl$SOUND_MIXER_WRITE_RECSRC(r3, 0xc0044dff, &(0x7f00000003c0)=0x4401)
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000400)=0x8000000)
write$sndseq(r3, &(0x7f0000000440)=[{0xb, 0x81, 0x2a, 0x80, @tick=0x10000, {0x14, 0x8b}, {0x7, 0x4}, @result={0x6, 0x3ff}}, {0x9, 0x4, 0x40, 0x9, @time={0x7, 0x4}, {0x6, 0xfe}, {0x80, 0x91}, @control={0x6b, 0x0, 0x7}}], 0x38)
ioctl$PTP_ENABLE_PPS(r3, 0x40043d04, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000480), 0xffffffffffffffff, 0x6040)
ioctl$DRM_IOCTL_AUTH_MAGIC(r4, 0x40046411, &(0x7f00000004c0)=0x2)
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f0000000540)={0x0, 0x0, <r5=>0x0, 0x0, 0x0, 0x1, &(0x7f0000000500)=[0x0]})
ioctl$DRM_IOCTL_MODE_GETENCODER(r3, 0xc01464a6, &(0x7f0000000580)={0x0, 0x0, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f0000000600)={0x0, <r7=>0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000005c0)=[0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f00000006c0)={&(0x7f0000000640)=[<r8=>0x0], &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000740)={&(0x7f0000000700)=[0x0, <r9=>0x0], 0x2})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000007c0)={&(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x0, <r10=>0x0})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000880)={&(0x7f0000000840)=[0x0, 0x0, <r11=>0x0, 0x0], 0x4})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000009c0)={&(0x7f00000008c0)=[0x0, 0x0], &(0x7f0000000900)=[0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, <r12=>0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0], 0x2, 0x3, 0x6, 0x2})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r4, 0xc01864c6, &(0x7f0000000a40)={&(0x7f0000000a00)=[r5, r6, r7, r8, 0x0, r9, 0x0, r10, r11, r12], 0xa, 0x80000, 0x0, <r13=>0xffffffffffffffff})
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000a80)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
r14 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000ac0), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r14, 0x4004af61, &(0x7f0000000b00))
ioctl$VHOST_SET_VRING_ADDR(r13, 0x4028af11, &(0x7f0000000c80)={0x3, 0x1, &(0x7f0000000b40)=""/137, &(0x7f0000000c00)=""/55, &(0x7f0000000c40)=""/20, 0x10000})
ioctl$VHOST_SET_VRING_BASE(r14, 0x4008af12, &(0x7f0000000cc0)={0x0, 0x8})
ioctl$BTRFS_IOC_DEV_INFO(r2, 0xd000941e, &(0x7f0000001d00)={0x0, "559897a2c48e82050b3e0def1af44da7"})

16.967214005s ago: executing program 2 (id=9970):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000001100), 0x28200, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x10000000, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r1, 0xc00464be, &(0x7f0000001140))
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2465)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r3, &(0x7f00000011c0)=ANY=[@ANYRES32=r3, @ANYRES16], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0)
ioctl$SNDRV_PCM_IOCTL_FORWARD(r2, 0x40084149, &(0x7f0000000040)=0x8000000400000000)

15.700319422s ago: executing program 2 (id=9971):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000280)=0x20000401)
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
write(r1, &(0x7f00000002c0), 0x0)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000080)={0xf0f046})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
preadv(r4, &(0x7f0000000080), 0x0, 0x1, 0x55f)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r7, 0x4188aea7, &(0x7f0000000300)=ANY=[@ANYRESDEC=r5])
r8 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r8, 0x4068aea3, &(0x7f0000000280)={0x79, 0x0, 0x2000000000000})
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_CPUID2(r11, 0x4048aecb, &(0x7f0000000540)=ANY=[@ANYBLOB="2191f8033fab80a56251bed9c9cfd9a7380835b3d361cadc8b747a2344486ab17d511f5108320687690118d6d397644c68b520794920eee964f5a5557808fd6033d3b1e7ca2621470e36e51d262a15cd9b55a8e7e94f48e4fcb806a812b7cb0b7f589615fabc26f8c5101db4a781007fd5f3f6b991979be9102ed2ebc227037eaa208895e8463f5d7dc5c176aeaaf78e6fbbc0ed79f9c0e97638ce12b050b35c2947aed3342431400bac82171f88ba59a1dda93133f401d6adfca8f3ad78b465054773d4adc9e0be220bafe8d07ae4cfc50d61e52539afaad5e61009bf62e55bb5d1d46bbd989b9d2c3b8f6e67f8c5e7f93d5a19eee52d9d724fae074815169e20f3b26b3526b3b079f92f9849dea3062d9d1920d1c68d6c548802d61884cc0a218d009cdf1faafa994265513aab5b0221e5ac2e5ec757d3e991d713a8fb037f71e4c9c73c110c79d5d024b1b0bc4e1de36ae8bfcc20aa5f34dbae52c8be258856119fa9a0da4d90e3921cac74894e5f5bf15baee24367e568724f9fb59333f92594b024ca76782d6cb4612da0d7121c61bb117c18e32158158d523978a21637d94d03e4b86e599c70cda59610c111604e566e2bdc10482e0479305db45fddb5c87f98e09a073d43764ebae041a7d4cfff65b953d3d2de5a396308ea23faa14d0e251cd9e411daad841a7ad910ff5c0f70c0cdc76dbcda7b323cfb62e4d234ad6a215611e6da427d3cd88571c467b17d309609c624b979bc344293caf85bf7c4f37884a6a8de7341c8e4741837f74efa3a1e3b014d2ab789a148bf16e39c4fc57648c1e079ad8891928c8dfd52eec7540e2bd09ddb434f102437d57c828cbc6fafdc6d276b4cc50cb0f2b47822a1655e908cc4730a6bb7d9045eb660f5df3accb17a4263e0e8cad1e68049233719e09baf460ef945b960dd231109d9369e3845f012a3dca33a2b2f8efaaa78638e70b28d8135ec34005256557776b84edbcd91b8e56b69e803080d3e222dd8deb4dfb3a9be38297835f04e7148397d0745267fef87fba19912305c1ffadab7951a891108ce1296d3a4fb50e6522d2b29c35b85561f9301eb9ffce527b4531bea9f2bd68b13538a06e7b0ef79e5cb32ea78cdb6c4a36bb79005789bc7e42a6345dd2bbcd1545ea9df58884928d9ee347b1d5304cb0f89f89ae8c8e3c531b7260ea8844903d061afc6a74bfae04193d512688ce748c09605c38ef4c80953cf1e5a2592e90dc9fd3feef8b91995b2c9cdfceeac86eb9029a492b566501c6ab0f00b51e25cb25da8a12b38bcb462bd94f11f3b99517f780d4a0b513235ad48c3b99684bc1bb0d8d26ffc4d995f0a3d4d73368916c7c32c2ad5c7829036e87123ea419c3a288214934dad50e870808ec2e26c11ae044759e303a0f0635d02d276da541961873b00041484ba6b45e97134525aac52625e0cb3ca042c406b1e8be83dec3b24aadbc54a701234cd005f5811087ac854f45523f4ee91432a273d34c50ddabf48cc1c7df63e896e60b1ffd0cf4e5ee62a39e1ee2d42bbb9060d64a3b3fe33d72cc3c499d6f7b57463fa20c0939cf94356ee6b5ae24889092588d366b3583cc4e6bd7e5187bbbf3d4b280b9d1ec87951ea8662916fa61e613a81fe09cb00c44ae9e6a5279276ce493e0899db80938d5b1658a4733e224fb4c94e41efbbe6dfe68fa77d5016e98d5a61566d82c4454552f46bf81d003dbcc25a4a52beb570159ce7a75388a035417e5b95959ed119ca7c69eba3c57774367721cef0c9b2f9fc4dad5e4b565328bc00ce876e0cacac788c5e529adedca74fb0eafa4094ea98e1ca5edfe494f8e7cb578395e294433719b9ccdd8f462e33731a420c238c30f0bd597bfdb28e4c6c2382919c6f77b1cc52003e3753181f9051bacb7facd9876468e8f73308f48400e6b60aed5f91ceddc28f5c83e3579ac296b1598baf74db7e3b2519e102bee4e82f3af89e6d9f999dd1097aab60e90817c137d8130c350163a5a50dbcdac03a4fffa7ab625bec3e461d184eb5f52f202c5e962d033951028f3c11a41929062305ca9aaeaa90d5c5cd4f6cced7681456da7881236ba93da11f6bd83c0134f55dee3675dceffd1b8bb15ec123d3377c2c32eba7cf77ff458fdd6aacd81c494c66a3acf22c848c85bbd134959f2cd758a05e79ee367cd032c5423034a80e2b6c4ed9f5e80ff5378e072121f791220c0f6ac0695c8d6b06067f85d453e24ff12394dc845c8bc29be56f9d026c5ec3569591ed5d87df946ee55106e5b4887938572ca44bbcffb4f1e02ce210bb4b5640bbbf892d2722287848cebb18e63938482ec8acf663b2b8e3c17c55468f196e04f7ac762c5a6136d333ac735c19d597295727928621e9d8e3db845f49d0deefab0803f50905b40f050eeb721e4adc124ecc26d5a0c2914dc4cdedfcd2920010730c4ead0eef228110432d019135294c29f0d01517c3aa2e08c7051b71565e9f92a49b7b4f70f7daf9c81b50fb48a7c8facaf3fb7c2aaf695380d91c3881057d8f886fb55775416e74476b9bb8c43c1c7dee422eb8db44a4ff95770b9424a0a12c2baa0b9b4f3261b3ecfe1cbe099fe5aaac44ab3ec5f1220ad82049023d3f86146997cb54a52b7c8c4ddf6beaafcaa919a9be4ded2c0e4ea01a91ca934406235815ff7b5435b74049dc780dac6e9b2fea38a28ae0b0bd05bdbc7fe774e5c3c97f77613bc7386fd54514b139afc18cccfd5164d0f9bef6d1ad84fffe749b5129af48e7784c52a195b26b3fed484004e6e42f09eaac13f313a0d4ebad017bcdbf6ae88ebc87fa4d40c29f4b2921eb7302ce58f47ee8078d9020a9e1ff0b0ce08a353208924cf0d6b664092aaac07f123960cdf39b22fbd353c7370e396849fd9df81af65192a92ee9ba560f162ddd9a2f84b38d39500620d1433915ba07869ba531d3c8bab0dc46eee1a0b4e2e4d126d5978919e080773e307d3f9e5ddee2dcd662d7df30530e3df1689ab58af6db5989d37b0c43bd802ab801471f130089dca202ba07383c24a8df80665dc2ff3c53328fa6eef564632aeece51fe9a053e91a73e54f80ce76d1cc40b3c42533b5734b4ec1353e69853fb0abbb5b1b4a60d84e3618f3ec157d85265b6ff8be5b3fd148981dcec33354c069376de4d50a8949744a2a3b83711ce3c6b5b6f8f04943bb315ed329585203ab330023ef592b93a5a78fa7bcf20d8493d60c3cd1d3d19e0a309e15dc48fb436c8ba91e869747b9f6ebd4263c2fca0d70bd961b2a92d83445c4b6a1ef0971423f7f2b7a852e2a82ded0e3bd2609c2872883014713ba6ef31d3c59502e8df7d5a0b4fb6e6bb26384370b87932056951785137f8999099a585abd7a055d35b5a0377907242b6ed0bfb58e912423164b9ffee9e006ce2d7d83da6599044e9c01381c8a774f872f1e79fdd805d39b18a4497c5dedbcd6dbca3a4243b54830037d2d990279c2c8644907bdd491d84dfa78bc3d087589a219c6470b79e8c20dd2cee6627f38048ca1e2aba206d9f80584068ec8c506fefecfabf44c3817c452e98e7cfd3fa28db5704e95804328d4f6e5dbe9010f945b478a553460658c95e4bc8dfce1aebe5c2cb91d86a0a5351c9d611e155cb7a26d1d5b1b57f8652ed4b4d6f1093eaacad4d60aba85004c634f9da77926164b99203d273ce1c30bc672f5149a3b602a9d9f57046b3cfbb09f79d9435d054116f58e1917ca54b7cd0856cce286424cb196f07d2f9e3a223a3f297a7650588ec32e78158e3cba62bdc9d9f7b816ad9d031d81527ea5e74e2d72c58ff999c5a6faa4729db56c30d74740a7719320183c7421e792a4c9e807b861333b353460fcaf9c151b67c1fea05b0c42ac89c28b67bd1cf77ae22254012ba58945819509645a859dd0ac95a7eecaf138d75bca493db5ba16e8af23950eb02d6755115060493df366a2e925b1e0cf146e13506b0b99bcbaff6681fb3d82968e70720a3a13233d1ea70a87e8eedf48b303efc0b5ee8e9425974227e454cc328f6a6825f3e4cff461b3c51f4e65b66f1f9ca7efbb1469266f888958bae29942a3736502992e017c676f6338a2756d99d66bc2d486b990fa358c1550c1c1409bf3448696eff70fd2dcb1834553e3fee8dc1e22fbb89fc7aa4db39640111b9b566affe3ba4f4f30ae5a314bc161b313978da15387df4a8a92690034f149933c6eea70fe06aab53bbc0dcaf13cfd149581cdbe68f0d57bea03c3b783fc27877d317f3f58e819b17557b3eb24e865fcc9aa3fe42556c9a193eb9a0cbcef26937fe4ae9c517ba546971b6280f2a2e975e8c4085d7ad23ef962c300bbcaebf0e39672a752588c1ca8040f365d093cc8f6a77b689c4330e0ac825b31ab48fd339af5b930c887e65f7ea385932456fe1c209ce406d253e6a2e1147282172413b4dea8ef34168273c8bc13fd71a712de8d1b5815d8883ff30f7adcbfc8842880cf531aa2b673cce0e9e371335742e730b8ba267f60a81b87902e91cab7a2bc3dda6420622879c59c11deeb60da7adad321d41751d960047de5af79ce4db135a6fe6d73a30166e4a08d1061802072280f45f16044c5a7538458f766c2bc7aea8f672f5ed4ab3824b959643f087be935c0a69a35471b76e76f95b6c492e91659cadfa42a4c7fbfedcf2c70ac485e37b2292ffddac09c102f8193e1bac9030525bc9ae12e49f74392bf433b990ee82c239cea913ea2c553dc2b1784552106a14f2b90da224cf4be1de84a44f717f90247ee951255e6f21814522f8d245d9c7bc38a831ae0ca5b6bf3b456fc2f17d9350059c595adbd5d4766ed8f6268deece8390e1c1fb1e6965a827a0622a7fb66d31c117fae9bdda6964482cf687796da997adb9574fcb5d9c8de0f6c6023038e7cc20aa390c34ffed05970b07af54af953c385c5bb16cad54e72ad9bf71bd12da0e9d82c6bf75a1ed43b7b5a1e0a970c45d2e9d0869d63895c4e437b58ca33743fc04e6356083ae2ce23dd59210e8cbc122946dc31f09046ff3126bec6551ec424d7cb8de33bb7edc347bd09a713054893290bcc5c6cc5319a26da36cfadc883f43222d13062fc086044782b2d3f6cb66c184b1467d2bde21e3bf5ec8cdc191c2b99b5285a8462311a04d789ee209114b5f16e721506f4734393c998c6a896ee8f2eacf07beef917c64e32adc9bf2fd3a420f13d6c18451fb5d3839593719f3bf6250204c38b2a72d99b7316987de996afc04fac6557dc962e7c940172fe0abb318786fc3268f3983dbf80f080d2b51aa28076d94c7007567144222cd47876f20c3240a11dd0ff530531721878a6d4655631b92b470eadcdebb5255ecb5161e9f3768ba406f60e0b94d3de621d2371e6307d9aa293b830a4a86a45bc3481e8f786e55b2af393ca005b6d16d62884a2cff9cbd628f1964d1ec263d4cd6b27337760a27efd3ca1226c851e7fc19d825a437e73994220050e242d299ddc6a25bb55fc2ccee559aeee24d98dd1bca11fb53f65e669594296f4121ee9214836268ec8d6df116c5ce59314a2d527bb539fab9c043bb98e2eb5e63cba75816e46c8a74bf7310b927c1edda8ebe0eb07fab478407b11b5dc37008fd880c1d5b81da066ebee8e6561f25c59f4ba80ac1135d08a767ebc1aa1ecfcb45f9be2067d1f98bbea1b0c561c8709dd5ecd6ed39495a3656f3b1a4e6053046749e58f4794c0640db77167a167c714b544027e748dd6622bfb54cf1bf090bcdfd6e9a4304e9510a1fea84b112b65d3b710fe291ac0a18f7b3cbb1cab1641ce690", @ANYRESOCT=r7, @ANYRES8=r7])
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r12=>0x0})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r3, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r12, 0x0, 0x97, 0x8000000})
ioctl$IOMMU_VFIO_IOAS$GET(r3, 0x3b88, &(0x7f0000000080)={0xc, <r13=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000500)={0x28, 0x0, r13, 0x0, &(0x7f00004fe000/0xb000)=nil, 0xb000, 0x80000001})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r3, 0x3ba0, &(0x7f0000000180)={0x6a, 0x2, r12})
r14 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r14)

15.347513906s ago: executing program 2 (id=9972):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x321404)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000040)=0x4000)
ioctl$PPPIOCGDEBUG(r0, 0x80047441, &(0x7f0000000080))
pwritev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f00000000c0)="f24abf2ce02f9933e89b9071d42c448cbdd1c1e430c9dc71bb3c346bd7b8166814e5fed22f06327f541c3993877be8d9af85b70b00bf9401fd02e90e2cc3f6959f070bd95d787cbe774f84ba975297ad0cd0392caec51d9e6dcde29dc4ba45ed254df3a8088ff1b957240d608c", 0x6d}, {&(0x7f0000000140)="fe6c10bf300b6c28cb359eee26e74fc73f6206bbbd3651eb38ff74c4fa06dbbdaeee48fdc628ea9248c6ab92577dd315e07202b95ca4f5c681eecd1c227c723c5b70db8fb77ebb5026e7b1f24182c82ed25522e3dcca81bf8074f93af8c7e16d7bfbd35770607fd44800aaba00ba2d72241a1a8ef6910f822ccdb305293aa92cc5a3ce626f88aa5af1c3d8b158f950b60db2c92909fc700bd7dd428b2e5ae8347104d01dfcfce9913f74", 0xaa}], 0x2, 0x3, 0x7)
write$char_usb(r0, &(0x7f0000000240)="44b09fef5df1719528f6e56a6b7a07efb91d229599c719a8775075858fc6ba4f1993e31bbfc5c8689626713e93fbde7c331b5b0a99e4883bd242c52ec89ab0bf54411992ff96820a5ec9275cb418f48930f6ca30f47037cb1d67fa9ef37e8823856ed24f8daa6ac0f81fac3c88031f07d6fa0f55e23a2e7851e38d07609dda537d67829760505d", 0x87)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000340))
ioctl$VHOST_VDPA_GET_IOVA_RANGE(r1, 0x8010af78, &(0x7f0000000380))
ioctl$VHOST_SET_VRING_ENDIAN(r0, 0x4008af13, &(0x7f00000003c0)={0x1, 0x5})
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000400), 0xc0001)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000440)={"6781bffae644bd1b97b24141e8c99864", <r3=>0x0, 0x0, {0x4, 0x1}, {0x0, 0xff}, 0x3, [0x4, 0x9, 0x7, 0xfffffffffffffffe, 0x5, 0xac, 0x4, 0x9, 0x9, 0x50, 0x17, 0x4, 0x5, 0x4, 0x2, 0x7]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r1, 0x5000943f, &(0x7f0000000540)={{r2}, r3, 0x12, @unused=[0x8000, 0x3, 0x1, 0x8000000000000001], @name="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"})
ioctl$VIDIOC_DBG_S_REGISTER(r2, 0x4038564f, &(0x7f0000001540)={{0x2, @addr=0x2}, 0x8, 0x9, 0xe0000})
ioctl$EVIOCGPROP(r2, 0x80404509, &(0x7f0000001580)=""/161)
r4 = syz_open_dev$sndctrl(&(0x7f0000001640), 0x6792000, 0x214800)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r4, 0xc0045516, &(0x7f0000001680)=0x6)
ioctl$VHOST_VDPA_GET_CONFIG(r0, 0x8008af73, &(0x7f00000016c0)={0x0, 0xb5, ""/181})
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000001780)=0x100000000)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r2, 0x7a4, &(0x7f00000017c0)={{@local, 0x1a}, 0x80000001, 0xa5ff, 0xd8a, 0x1fe})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000002a00)={0x3, 0x0, [{0x8000000, 0xf2, &(0x7f0000001800)=""/242}, {0x4, 0xe9, &(0x7f0000001900)=""/233}, {0x5000, 0x1000, &(0x7f0000001a00)=""/4096}]})
ioctl$VHOST_VDPA_GET_STATUS(r1, 0x8001af71, &(0x7f0000002a80))
ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000002ac0)={0x0, <r5=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000002b00)={r5})
ioctl$VIDIOC_G_JPEGCOMP(r2, 0x808c563d, &(0x7f0000002b40))
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000002c00), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000002c40)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_DIRENT(r6, &(0x7f0000004c80)={0x80, 0x0, r7, [{0x5, 0x4, 0x2, 0xfffffff6, '@^'}, {0x3, 0x3e, 0x13, 0x100, '/dev/snd/controlC#\x00'}, {0x1, 0x10000, 0x5, 0x9, '%@!(/'}]}, 0x80)
ioctl$VIDIOC_CROPCAP(r2, 0xc02c563a, &(0x7f0000004d00)={0x9, {0xf1a3, 0x1000, 0x7f, 0xa}, {0x8001, 0x3, 0xfffff000, 0x1800000}, {0x5, 0x5}})
ioctl$VIDIOC_G_TUNER(r2, 0xc054561d, &(0x7f0000004d40)={0x5, "b5d242b8376a9e7c1f67dc2039b0ce8b5f1b5c8b5609e0e19f38d0401006109a", 0x0, 0x20, 0x9, 0xe, 0x2, 0x2, 0x80000000, 0x8})
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000004dc0)={{0x1, 0x1, 0x18, r6, {0x5}}, './file0\x00'})

15.134158685s ago: executing program 2 (id=9973):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x109900)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000b40)={0x52, 0x1, 0x1, {0x0, 0x1}, {0x61, 0x800}, @rumble={0x7, 0x5}})
write$char_usb(r1, &(0x7f0000000040)="e2", 0x2250)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x0, 0x0, 0x0, @time={0x4f, 0x5}, {}, {0x0, 0xfc}, @raw32}], 0x1c)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x4, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xf, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x4058534c, &(0x7f0000000200)={0x0, 0xfffffe6e, 0x5, 0x6, 0x401, 0x8000})
write$rfkill(r2, &(0x7f00000001c0)={0xc, 0x4, 0x2, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r7=>0x0})
ioctl$TCSETS(r5, 0x5402, &(0x7f0000000280)={0x6, 0x1, 0x6c, 0x58af, 0x16, "11603365b626fc5fbb71d8ca256c7950284298"})
r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r8, 0xc0d05605, &(0x7f0000000b40)={0x1, @pix={0x0, 0x0, 0x47425247}})
ioctl$IOMMU_IOAS_MAP$PAGES(r6, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r7, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r6, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r7, 0x0, <r9=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r6, 0x3ba0, &(0x7f00000000c0)={0x48, 0x7, r9, 0x0, 0x10001, 0x0, 0x4, 0xd6fe5, 0x3d3b4e})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

5.096241822s ago: executing program 34 (id=9965):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x20400, 0x0)
ioctl$BLKSSZGET(r0, 0x1268, &(0x7f0000000040))
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x40024108)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f00000000c0))
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x10000, 0x0)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000140))
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x4c2)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f00000001c0))
ioctl$LOOP_CLR_FD(r1, 0x4c01)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3)
ioctl$IOC_PR_RELEASE(r0, 0x401070ca, &(0x7f0000000200)={0x800, 0x7})
ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000240))
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
read$nci(r3, &(0x7f00000002c0)=""/4096, 0x1000)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000012c0), 0x8000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2)
close(r1)
ioctl$SNDRV_TIMER_IOCTL_TREAD64(r4, 0x400454a4, &(0x7f0000001300))
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000001340)={0x6, 0x4})
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000001380)={0x0, r0, 0x8, 0x300, 0x7, 0x9d})
ioctl$BLKOPENZONE(r0, 0x40101286, &(0x7f00000013c0)={0x7ff, 0x10001})
r5 = dup(r1)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000001400)={0x0, 0x4, 0x100})
ioctl$BTRFS_IOC_DEV_REPLACE(r4, 0xca289435, &(0x7f0000001440)={0x0, 0x100000000, @status={[0x3, 0xffff, 0x6, 0x1, 0x100, 0x100]}, [0xfffffffffffffffb, 0x8, 0x80, 0x8, 0xfffffffffffffffe, 0x6, 0x0, 0x4c, 0xb, 0x6000000, 0x10000, 0x80e, 0x1, 0x0, 0x8, 0x0, 0x90000000000000, 0xfffffffffffffffe, 0xffff, 0x3, 0x1, 0x80, 0xfffffffffffffffa, 0x4, 0x7, 0x177, 0x9, 0x7, 0xffffffff, 0x2a00000000, 0x8000000000000000, 0x1, 0x0, 0x3, 0x40, 0x0, 0xfffffffffffff800, 0x0, 0x6, 0x7, 0x5, 0x8, 0x2, 0x3, 0x5, 0xdc, 0x6, 0x1, 0x7, 0x800, 0x8000000000000000, 0x5, 0x6, 0x3, 0x8, 0x0, 0x880e, 0x0, 0x7, 0x1, 0x8001, 0x7, 0x7, 0x7]})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000001e80)={{0x1, 0x1, 0x18, <r6=>r0, {0xff}}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r6, 0x40045402, &(0x7f0000001ec0)=0x1)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000004, 0x1010, r1, 0xadbd0000)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000001f00), 0x2)

5.030643083s ago: executing program 35 (id=9964):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
read$FUSE(r1, &(0x7f0000000440)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000002480)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x0, 0x6, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0xa1, 0x7, 0xfffffffe, 0xb000, 0x7, 0x0, r2, 0x1, 0x6}}, {0x0, 0x1c}}}, 0xa0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000240)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000000180)={0x0, 0x0, {0x1, 0x0, 0x0, 0xa092a5fe06e0bc84}})
write$UHID_INPUT(r1, &(0x7f0000002540)={0x8, {"a4020e21e3150171ed9852b03974c5e89b469866797d938019d901d9cf845e28141ee12e2ab04b4e3b7a3a91a809b8593e2535edef18cde01874f6f0cb454ec59820b25a41ab4e87c262ec8ba6532b4c36f992504bbfc16964aa3520255486d55bb1bd8e6008bf4e882bc4a207cb9980ab9a6124702d7abd17c22ddd4091004b104f00759b4ce9a0679c79312207e93c07713a9a736a5b788da590a38dae083af0aa4aa85cbcc727e7310085329ac8a4834a975ff86a5567c6fc1ecf95a8bf0971b205778c488123cfc5a228d4ffb24e7aab33e7d0ecaf2c4ceb9b0fb90ab80428b44db8dcc377b288631677b791e4ea8c0b1e2e25fde450bfaa0abd89498b691fdc038eefc9643595fc557bcb54a6ce35c6046b47984856c4258d0d24a007a1f270ada69cb42c9c57f2415d2a09d35a5b94a3f3b01465075ec166636bdea18641b5b7487d196c44f21754aa684483ccb36ff3c173a075ad032587c17074b421eb0d9b148d9a12835bc3750781d9d0e0b9ddbea6ec7d92516748fc3c182d1df6d5a988d37b877e102f7f51eecc09d42a7e271faee8bc9edc05e562a837aa554001ed3cd9b137861ed511076c391854b03a370672e2d9bff13ffc5e73a7d7aa74a62fc711082bb7e2fc4c5fe16fe55cb1dceafd91ef32f91e9e875f2e889a310055eb3a56ca133e7e9c6b0b0153f2604457f4fb36bb0e40349ffac54982abf93ebb62440c72c01b58a62c46d4af6d4a43847cd9d2c6c440dabe9fff0a772ea50e1c28c841cdf45d7aa259690e85075b0f55d0e839fda2130b9e6a7689a2772665117e5699651e27f617955411bff8a71ec82260cf7ac6a1c20f2c151a53f1f227cfc290d6d77512624655d6c035355d506784741491211b2b5d5d9c448bdf02e5ff9b0be95637cccdcba2daa445d0875b1b0a9777ec49689685256f1d341ace6c4a308261593743613ef27109fb62f78b39933e879873a1eac90a322dc1c0edb062f8c5667aa127481d049e663f4057550f0753373e82e9cfa4292aa0726f306c00dc6099ddd8d360bb17b9813672d738718f86aec0258bcb242d0e99b05c2c50eea29c57f2823528669f7ff7e44b4f7d8853c13c77c828e255c5fcdb7c6e77bcf689f4651b47e8109f60c8d30a297d20b9500f982e7d20aa653e6823193d0b84c3a289c5fc74549b6fb4e22e1b8761b37030ac7b96496ee6a02253de5a4a61c7faccb14f98defb37bf64a7e16ff9c028eed32dd76f1fccd788d362fb603dd74fc0152b10c9bebd721d9ebbc74d5f3a5d79a38ebbfebc3e2a8f31054683e657c811d2531491588d5aaddad0d861b7e681dc3ef1f602cee44687c5b3e17db084e399d5a7cc22abf6fdae3e12b30691a1a78d219fb2e40cf28e911a40b7935c372dff97dacfbfbc93184ff617f6a9469aae94208a49557cb5d9461dbff02c8bb2d826ad6938e5474460dd2b9a48b1050c6788f5147f30b1747524c41326cf8fbff6ac5064c9682faa242eb4a66bc0d82053a7f41be39814668797ff8f506e3b2ad20bf4a6d9ab6cfbbd15703fbb1579826378bfd844d33da9f49534fe64da14c51d15b43d1e3cb2a11513e7f6034ba58ee544d39e7714d9b9bad6be6f1f0f1407dc50b714fbcccc996e30f1e2e702bc4c2c1fa94e28b2ddca5bdd94285d3f74c44cdccf3cf3da25b256c0e343c53e2a041feb71a1ceda331a9c87c3f423c953deb6436d15c96b15302b9b5d86e817db00eb670dea39ed3dd7535a4b839e920976a042980af5e9b0dabe306bbf86871bb85238960fc7182752193ebe134b1077b3e4de1682e48099def4cbb726bb522417ec6b653501ab86310d6b10595b089eb56f604d5c8f2058fa9279c32a536726e4cffd0088a24c51fe4f4d585418dbf1442130078df8bc6b75219e5180c5c245749b6292a267ff373820ea2409f01741ca70061517cbc708660f94142ce2af29924e70d7f1b5e66494f6da0fc27372c361856f3839b9bffdea591b9f9279498c34c12c604f4278ec77ffac9915fb250e4010cfa96e4b9d06783a10bfc343e5a128357c894bd33c480c537813c29d109ff1ffeb9cc13aacd66ada012ea5631d897ccd89714584e937ecb9fffe58e626ef2ac101921db4f7abb0f5f21513d0fdcc66f043d15408b128da6aef36b1426ddee4c9258caaa11fa58200f30e977503f7f99023d00c85b264e065ba7e99a46cd607b0c1133157ada284e04b7dc360ecaa464390ff00409c13e78bacba7abeaf9f54e367d8cf475edf694d45654efd5f759fd942bb50e3757144bb3f5e41ac51751e9b49cbca88ae4397164c846cbaf524a952661b94477d3c7e8bd4a83bfc716f1f3e9ed4a059e49189c2aa817b834b921608798a1cd1cd25848158aaf000b5735f40b5d33afbaf74a98c6fec552a74a771b9cfa8ee428947fb0e6f0e239d58aabe3de9baa88885de5e1f3a6f160d439f8536d28914d51466904099704db5772566cc849e6d115183a61dabe1e55aa3721b4a6a4fbbd091c2078d8a1b735245c21843bf80c52e2e647e9a4d33fcef6d71fecf3bc75a85d43a4109c4e73160c9e1ad3cfd389a789ae3907bc34067b17f6cc26fbeac4c1e9584f6de2bcf1b5669634a88db9af4e9f077d117f66b4002da68f18d7a769fe76eb1f8a80c58b15f75135a7eefc49fd07d53661073651994d1686189007ecd750fe0500326a5e07559ab9409a0c2aab5a077cef74efffba323563f1d3e2776ecaae3e0d71aff99567490b447100782d83d424622d3d870b346290fc1d2583a3932e89494b179dc6d6c3e1877cee673b54bef568f239bf1d3c7ebf82e14db6f8eed19d4382ffde289d0a424f46e0c42d3d3febfabe02bea9642ace6932dd4e1e5fec88252b6c0dc0a68e483ebf3d99b59d70afc174c4d5e58f36df795cc0b5302773ab8f7ae0fd00c8f5e70e96cfc01075b3e1442376a4b4eea45af37ae42bd83af869d8f7a1b278da0a92ec302dc6044c9457ae8f43e9f1923d0538e5a30a3a612cbe1c14ea7adade1be3117192517be8cf1b1ebb6a4cdb4566ea37d4ffc4a52355db8208f0c0a866ad819239d31d57a1793c09c80ea05cc1f9fee2409a00247c887027ab2c9beaa42773aa6f50d6ed5cc1431253d69fdf9cb146af60261ebf84a81fe85811485c12864c4588d9ce1e97cc9fee0191d34d29215907e93632ef0f2c97a2b375e986243e7299703b534532076dc7fbaaa812e1be7ad9e7e8add10f857801756d02b9f0aa1ec9c6667cf915aa855f23f0bea51b2da9d5393e21b24a0d2186b2570ebb703b1abe1507494d8e0d55af266c51d14ab1494437281d2166dec7fadb3851fc374501134d61b540e0655a348705f76ca00bcf49813bdadf206d0d304036890e5db3c13130e1f5ed10b90662ef44a971a1fdf8d6cde73aaecf8cefa76d3e804979604aba0b6e974e436c6d97b60f6be8af22d47d8cfe9506bff0d72ec6b9c406e306a28cabffe8af3be999ff8e5f3cb98133405b41d95f4dd86c5bc3e7eeec8720c259259bba131684bb09271eb9aa8562989eec5d65a12f0c9cdcc2485f9928e7e261f31413d18ce67c0c1c92a3202bbb9820468bf79a1df36004ef67e5300f5bfcf2fbea501631a523f7a53efc68472c91963bff5a0a00179ef3c066b1c78568fca526c3a06986713f7623b071644b2a2fce0bfbcbf0381f2b50e8af0484eeeb8d0080350b554a5142c985fd89d1c616f5ae43f08b70152d789a85a084d6adfae84a7e772ae1784fc03e8205162c18452d3d1df1f6222d60cc388153ec557267990c8fa69e07b062a0d1032e01f37efdc453c59e3736c246ad355539787845e3421f149b4302e1ab179f6672a0bb6633e83f982fb62a59cbf9f5beda093a1ac56444b1eda355381cf37b073e24ca21fe1afa3e15605f467c604d0217ef620132f42ad8bf7acd42a848a6a4d0e8bc6b22d6d4a28d14384e1566a3a7392e8dd4432f329fa752e4e6ef468268b5f7c4dcc0a29c6311f91f9ae9c51c5fb677588acd68e71f05bd68a1dcb77cf55239fee0a6c2049e5d068f78a308e22999a9f798899cc93e375f11323f8ce34c83471766ad6666e868d2dc54dfc9443ee30043d26025cf74aa6d7485bfa2c7be765f29e1dba4cd73aca8ed3b856146e0d913c1ac435fdb42254b33a02ac66b6eeda5cd9023a0ed43b7b3bf6e8f3a9bac4b7ffe2ab40ee791275378272790e1bc6b30e51851a28ba0407612234eb847dfacfbbf091a0529708a25a33b02d25ce4f3837aec08be4b12a9285214c4fc9ad845be7e339248c4f59cacae92a2d9f8031183c801341761a7c744717d437f776d5ea4ff9f61c56370a265b37437bf56220665e80f17937a8468f6a0cd533b1a6a57a28ee59f29c8381d351f9445e2fc2b19610ccb136c453484b6ec753eb989c554eb62d6d308c518a23e9375f4af2584dcc9d5a320a9e34525d16d04a2446c5b31c3567363905241488f148188c77e733b5b4770640661beceb46d9c14a3632e603dd492ee70cb9124062f5e6afb8507524d5efbdc016bd70e257342cb7bbf0a736294b92d2431224f0d0e00a158b089361d4605105242d82c9768959fc226823141dee000ac2102cb31ee61e37d3a5cf5d914043647131b66ac4304074b53a0d148f5e285154de1a0a0d8b4b5960fb8ea392d6bf7f60e633cc37ee54fd83f317b89d9ab43532c0cfaca262c84d2e5ea1e1a0b3387a15d9326ccbf8f6e2d6e303b4080ad735c456827be3ebdb0ce42488f11c47d008957ed986c7b8c0492f5040a7b723fbf4e34f4af420984cde55e6abe014685bda7bb423cea8ca8ec98566ea35aae28d263398aa81ac85c5b24bd2242f6a01715fff3643a5819fe56952724fa93d614d94b15777c37564a5391a8c5686f2e8b64f31f2897b38ec2675d252eb159e5d898954fa3262f57b2dfbec842518ad9321f841c9a052b61ddd9f597a39989efa63aefc6fd35912d18485770acd16b23aa84de2fcdaba86d73c32a6e1360c7755754019948669a4c7dda62ba31569ed929837258f5a5600f67ff41324b38d863e16aef8725b6a4eaa68621949a6260a23b5dcef37c731ced74d4dca292e5dd232538a111d7c8ca07c251bb1251c3b62c896bbe7efe8079d2f3ba4ba68806fd5566b5c58ee49a370f1e65fc960697d28ca64720f60c4920cf4d043552ad0fbda0b85b21286db7f05eb46832ba5cd48b69b5bc5ce7a28148d81b87659f04c4c1ec3f30ee2810a959fc6fe152c03095f75ef9712e7faa2e58ac94f3dd66fda0db45f1942a1bb1672b2973618cd1f1e886fd16828bea758493340a073c09fa15b7fe3cd271d5552919bceaa54878d2fee0fa53bcac9e95b1a33d41cbbb85e0eab60e122b506f43d3caf6d87f5831c060cfb35168cfe8a76dd9ed17f9897d2da3eb47f65dc49497f2a360b0b0afda78688eed7433adb7a3cd2f4a7a68bcb3d5dc3140b2d77ec1beae617ec0f20f29986bf9d1597c5bcc78740bde0f1da56be3aac998b19ea9902f9f693e8889ba0480c134594d5cb438bba8192c4ef6a53e1190718dc009632df0c67f4d441fea2f70c71ae13859b8b45f3a777fcce1c672f59d5538dd1201c51f60b00688e9c9be1e16994eecc898cbb07d14e5f0f2d666cabc08370e37b6132efc37dd7a7a4238150ef76103a94f7c489be3d4160bc7eb855c96afdf89cc0682805cef8f3eb46e5cf0b5df142cd5d61fad3308138fcc7d7366d4f5c39ed2140acd07fd80e36470ee50194163153a8906f7528d6e359476e31a46a85be6a8630ec", 0x1000}}, 0x1006)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r6, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r7, 0x0)
write$cgroup_subtree(r7, &(0x7f0000003580)=ANY=[@ANYBLOB="19c0d1777626515c55feed725617509671678fc1eec842293317d0ae732052f2647dc62f05884d56c4e6cb9f16c31bc35c8447db968aa6a800465b27397c032a18142c7322a40fab01ab7c79a8324d8c948562c29f4fb4f2d2784b8c78a6b09d7ab7998c5fc6314e06708f22e24251cf701e20654438558b52cc", @ANYRES32=r6], 0xd)
ioctl$VIDIOC_DV_TIMINGS_CAP(r7, 0xc0905664, &(0x7f0000000300)={0x0, 0x0, '\x00', @bt={0x7, 0x8001, 0x3d, 0x1, 0x0, 0x1ff, 0x1c, 0x8}})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
r8 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
pwritev(r8, &(0x7f0000000140)=[{&(0x7f0000000c00)="3d438cfb9166a77b294815e29f236a8317292c28959d04fc6af404e915d4f6fe054b8e91d9c58bccb6c92d88d363c4bbf96c7806adf9361b44bea0178aaac830e8c671484991ad19d53251ec9adac8b71803f0b7d16914a60396b1092fe938b13af127cb295bad6ddc899a1712ace21b8da2471ed084606050c1a42f7c4ea651d357cd0d994d33968ffb0cf9342430774428b03227bf85bf606ed11edc5ded51d6316be14969cb761266662f378da51b9ca3b76fe0f595d8c446c9ac11281e10d0babee8e01f99dc7d3bd9f5eb19386ccbc6af740fcae35d4a51468dab6a0f7a93824e62ea8348f4646948e415a6e1f5209cbfd9412ebb7b38b09cb8a515a3986ff7582d3ec307a5d2891e87963e6cd6329859906044688bd3770e28fa382254a8a9d41311053903653f79f96ce20ad4b7d43b20b2d9798264f6abc7080cc6c00aadaec9d711d0c33fc3d4d53d55037c527de33cb6e72e1c41ca8562b11e833dfaab7759608c8ac5e51fb8d251d2dcab917764bb96e4788c3b89b34085c0f9e8b7f6e48f20b08b65031ae1e4b3c5213ade4a475ef06537568b1ab90ceed025b010ebc278a950f875dcf7fd5005654f0f1fbd52d5f8742cf1cad04471389681596a9b35aa6007db0d6a482f8345180e0de341d989f82ca557c259a0745d1a294958b6ceb60a7ce0ae48d548174eb24979dfea5e1d4db4700eefacad971e6c6fdc064f68a74c7a5d74c8eb7d5583fe34cbe5be3ad08032ad7ba49b2c1714f6636050a84439c1bb903a53b7c2a0cef85ff20dab25226873a544c2cd63eb8f7c524f6fa9be7bde85c8bf3f36fd42b4559e91f7f3b5525f5ad8ec1c7d0c482ea84641bfde7874a35e62576557ad25851ca19a6626d40cf66588f4b9ea09cea747d0e2f720083d8121b02e56681186a44a7bf25530fc918956cbcf23a3316c8e7cf60901509390ef9e7f0d89dd0654e7b7883eb401a293e1bef6fc0c8e012c3a3e16890047887b31a5e2087b65e8571d1bb10efcb2ba062ec1672bcf0e78acd2eb6ae265b14e73d72bc23552cf53d4988e916e7208e8f675903c411c1af424753b0420ab4acba887192a837555dce524c3880b80bdbf489de15321ba91978e7da20f0586a4a61af0190f2bb67d9018304d632e27ff1c5403a419db8b99446d0bde72f3745b0d10a6b0680aae0ab27891707273eb2f82ffaa9a000070dcefa25857ee0e885020f31566ffaa753a05a3869a7e79da196fd9b90be936cf737fa75ea8714a443a39e5123069ed3333e376b1b21b88b63341bb17fba41425022f1a936a0a86a004fad3a2591a0b93f8796ec192f84887e48c4a781ebac1d70f40b8726af582e92b5a021f6b83dc1cc56052ff16eaa80064031e60a9321d912ea56e1716046904e041dab7ba266a45b1f22c71f326492cac0f3fd90f814e500cdc41a5be3ea259348092466e061939196bfa89c44a23ddfd20c31cb30af554b9c6157ba51df3a6b5681f5078eebe6aea15dda78caff246602d9f479670d28457f2ed325a96bbe4f6b627d1e45361b1d3b1931f555852ddd3795bc416bf57b65ba1d0e5014d78c354d7cf7a070fc9eced3172a18d23d4ccc320a126c3e2a446a252199aeafbcf211f5230944a453ded91144e9fbe9a7ef56a5da258b7742bbb971f72f203018b3174ae2040e0bbe44b2245e37031fb027a5557592d7b4537899f40a71708d3b82700592fa8da7520188534c5d514055ba8bd385168a8603dc625930899d0f8e2c909a2844011d88886a3b549b9930959990172ca31838a4a0e771d81a868fd2899c03dffdd581c0a2c5660c3f92efcf2a3fcc862503c6b12a73a46a538a04d4b6a66795169febb855a3c10e4302cb419a560bc97e1b7a3becde396e7c9116e14a494d404ca0acbc3a1d72c8b7bc4c909c4cdec2bb70d26707ca6f826cf2376039da87b0074ee9a35ad9340c6936d0ccd36829c74b0ce29ca5b847caf15b092aa7873de11bb35ef9821d6ba8366fd1822cf3e7356d5ad26d0d632fe202c12b10fda037a0352c1c123366d0fb0e36477ecbab47458bb40e02cc03ac59d3b5f4084529b496dc02d26bb728e43c6429681aed196d9133b92104493982c926e465f4996e2a34a81d1969470aa9b44bab558af150ac4b980e526fd8bb6bd48b4c31aa95e93d515244c8e1d4388e6df13a0b1840d260bb51d981af4196c0fd22deeb0e61dfdfee8ced41887d8088d45bc23494eb06d85d9fb9b1c4cb400ab28fb3495b9f9e73b73510722e96fc00f08dbef5b9bc1b4d4ad134c591bcf7d19d149ba66223d455f329abe265f8ae7a081eb1a465401bd6c98b37ee4eeee74a8bc6bb061b2839ea2ecec9f8c94b47061243bc5a2d80aa61225a72c0773ef14c4eddefdb9fd198565453b290fd7a488c51d7584658ee2535e3e1a1218787ed73df4b230dd3a409283ef60ca0acc1af2ad662a5f330d48733c7030a2d16c5dc4a7ddb03d66a3cd24c76d5d80cffdd5a8e7cc5108c555b4f484fb01f6fc512b8f1d8e48bb418a24c32b04993bc97120d09a2d7ab0c694feb5ed0390698317", 0x718}], 0x1, 0x2, 0x1)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

0s ago: executing program 36 (id=9973):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x109900)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000b40)={0x52, 0x1, 0x1, {0x0, 0x1}, {0x61, 0x800}, @rumble={0x7, 0x5}})
write$char_usb(r1, &(0x7f0000000040)="e2", 0x2250)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x0, 0x0, 0x0, @time={0x4f, 0x5}, {}, {0x0, 0xfc}, @raw32}], 0x1c)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x4, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xf, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x4058534c, &(0x7f0000000200)={0x0, 0xfffffe6e, 0x5, 0x6, 0x401, 0x8000})
write$rfkill(r2, &(0x7f00000001c0)={0xc, 0x4, 0x2, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r7=>0x0})
ioctl$TCSETS(r5, 0x5402, &(0x7f0000000280)={0x6, 0x1, 0x6c, 0x58af, 0x16, "11603365b626fc5fbb71d8ca256c7950284298"})
r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r8, 0xc0d05605, &(0x7f0000000b40)={0x1, @pix={0x0, 0x0, 0x47425247}})
ioctl$IOMMU_IOAS_MAP$PAGES(r6, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r7, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r6, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r7, 0x0, <r9=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r6, 0x3ba0, &(0x7f00000000c0)={0x48, 0x7, r9, 0x0, 0x10001, 0x0, 0x4, 0xd6fe5, 0x3d3b4e})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

kernel console output (not intermixed with test programs):

mmufd_mock iommufd_mock0: Adding to iommu group 0
[ 1387.794436][T27712] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1388.609404][T27744] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1390.712505][T27785] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1392.926680][T27818] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1395.502129][T27874] syz.4.7841: attempt to access beyond end of device
[ 1395.502129][T27874] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1396.490586][T27891] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1397.959968][    C1] sd 0:0:1:0: [sda] tag#163 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 1397.970470][    C1] sd 0:0:1:0: [sda] tag#163 CDB: Read(6) 08 00 00 00 85 f0
[ 1398.479646][T27937] syz.0.7856: attempt to access beyond end of device
[ 1398.479646][T27937] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1400.109467][T27974] input: syz0 as /devices/virtual/input/input278
[ 1401.262415][ T7636] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1401.275950][ T7636] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1401.286186][ T7636] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1401.299418][ T7636] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1401.309002][T14606] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1401.322484][ T7636] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1401.354512][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1401.366773][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1401.374923][ T5843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1401.389728][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1401.399519][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1402.167500][T14606] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1402.914675][T14606] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1403.172227][T14606] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1403.219491][T28065] input: syz1 as /devices/virtual/input/input279
[ 1403.449456][ T5843] Bluetooth: hci3: command tx timeout
[ 1403.599574][ T5843] Bluetooth: hci4: command 0x1003 tx timeout
[ 1403.607590][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1404.338446][T27989] chnl_net:caif_netlink_parms(): no params data found
[ 1405.372318][T27989] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1405.399120][T27989] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1405.442581][T27989] bridge_slave_0: entered allmulticast mode
[ 1405.451561][T27989] bridge_slave_0: entered promiscuous mode
[ 1405.467950][T27989] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1405.528054][ T7636] Bluetooth: hci3: command tx timeout
[ 1405.531134][T27989] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1405.569776][T27989] bridge_slave_1: entered allmulticast mode
[ 1405.578059][T27989] bridge_slave_1: entered promiscuous mode
[ 1405.727086][T27989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1405.777770][T27989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1406.176780][T27989] team0: Port device team_slave_0 added
[ 1406.216917][T14606] bridge_slave_1: left allmulticast mode
[ 1406.225235][T14606] bridge_slave_1: left promiscuous mode
[ 1406.239851][T14606] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1406.268748][T14606] bridge_slave_0: left allmulticast mode
[ 1406.307293][T14606] bridge_slave_0: left promiscuous mode
[ 1406.327074][T14606] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1406.350044][T28339] input: syz0 as /devices/virtual/input/input280
[ 1406.460533][T28273] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1406.474490][T28273] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 1407.037347][T28363] ptm ptm1: ldisc open failed (-12), clearing slot 1
[ 1408.602736][T14606] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1408.656823][T14606] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1408.713005][T14606] bond0 (unregistering): Released all slaves
[ 1408.786298][T27989] team0: Port device team_slave_1 added
[ 1409.276448][T27989] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1409.294468][T27989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1409.326879][T27989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1409.413823][T28413] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1409.485798][T27989] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1409.515353][T27989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1409.541649][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1409.598686][T27989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1409.759907][T14606] hsr_slave_0: left promiscuous mode
[ 1409.799916][T14606] hsr_slave_1: left promiscuous mode
[ 1409.838740][T14606] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1409.858135][T14606] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1409.867230][T14606] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1409.880403][T14606] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1409.938750][T14606] veth1_macvtap: left promiscuous mode
[ 1409.945505][T14606] veth0_macvtap: left promiscuous mode
[ 1409.956034][T14606] veth1_vlan: left promiscuous mode
[ 1409.976593][T14606] veth0_vlan: left promiscuous mode
[ 1411.834177][   T30] audit: type=1400 audit(1750379960.640:37): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=28510 comm="syz.0.7904"
[ 1412.928310][T14606] team0 (unregistering): Port device team_slave_1 removed
[ 1413.171288][T14606] team0 (unregistering): Port device team_slave_0 removed
[ 1415.967050][T27989] hsr_slave_0: entered promiscuous mode
[ 1415.987996][T27989] hsr_slave_1: entered promiscuous mode
[ 1416.014077][T27989] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1416.032487][T27989] Cannot create hsr debugfs directory
[ 1416.058298][T28558] ubi31: attaching mtd0
[ 1416.077134][T28558] ubi31: scanning is finished
[ 1416.455373][T28558] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1416.507887][T28558] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1416.563130][T28558] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1416.593258][T28558] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1416.640123][T28558] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1416.681607][T28558] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1416.726954][T28558] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1856887175
[ 1416.759333][T28558] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1416.824198][T28614] ubi31: background thread "ubi_bgt31d" started, PID 28614
[ 1417.999859][T27989] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1418.024731][T27989] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1418.103627][T27989] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1418.116586][T28715] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1418.154602][T27989] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1418.554417][T27989] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1418.619958][T27989] 8021q: adding VLAN 0 to HW filter on device team0
[ 1418.658638][ T3478] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1418.665906][ T3478] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1418.721727][ T3478] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1418.728999][ T3478] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1418.730527][T28746] binder: 28745:28746 ioctl 40046205 0 returned -22
[ 1419.236407][T28756] mkiss: ax0: crc mode is auto.
[ 1419.667419][T27989] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1419.708244][T28785] vim2m vim2m.0: Fourcc format (0x47425247) invalid.
[ 1419.839633][T27989] veth0_vlan: entered promiscuous mode
[ 1419.893723][T27989] veth1_vlan: entered promiscuous mode
[ 1420.030547][T27989] veth0_macvtap: entered promiscuous mode
[ 1420.061191][T27989] veth1_macvtap: entered promiscuous mode
[ 1420.153741][T27989] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1420.251615][T27989] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1420.287811][T27989] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1420.328138][T27989] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1420.358113][T28805] binder: 28804:28805 ioctl c0306201 2000000003c0 returned -14
[ 1420.365962][T27989] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1420.399818][T27989] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1420.781757][T14606] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1420.812061][T14606] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1420.944164][T14606] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1421.019335][T14606] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1421.718659][T28875] ptm ptm4: ldisc open failed (-12), clearing slot 4
[ 1423.014820][T28955] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1423.382071][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.388680][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.534299][T28978] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1423.894047][T28997] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1425.389442][T29048] input: syz1 as /devices/virtual/input/input283
[ 1425.931024][T29077] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1425.960773][T29079] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1427.409524][T29254] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1427.907751][T29286] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1428.447648][T29299] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1428.477034][T29300] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1428.989661][T29329] random: crng reseeded on system resumption
[ 1429.878746][T29371] binder: 29370:29371 ioctl c018620b 9999999999999999 returned -14
[ 1430.900516][T29394] input: syz1 as /devices/virtual/input/input285
[ 1431.658941][T29422] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1432.417331][T29445] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1433.755538][T29469] input: syz1 as /devices/virtual/input/input286
[ 1434.315921][T29485] CUSE: unknown device info "MzP�´Ã{UÀÞÒ—ýEÞsª¹Z$cw#¤/…fƒ}Ù”Ðb,Q«[{æ•Æ®$
[ 1434.315921][T29485] Ç4&I:#5o6Ÿ3”ÑŽ.l%¤žwC
[ 1434.315921][T29485] Ž?"
[ 1434.336317][T29485] CUSE: unknown device info "v…2‰.7’õ¸Ë‚þ ®Ñ*5®¸Óì•SEAy û…	¿`?e`þŠl6Ý¡ÐÙéQ0V84ÜŽ{c"áKüü^÷vaOÖ�M Œ××Ê8æf1¨\.dž6�á(3´iË¿­›ƒfω11,kb­°îz›Ö‰"�NXjª}˜	ß~
ïwu/¾KÈ9Ê.²Ðrù¯×¤©"
[ 1434.355858][T29485] CUSE: DEVNAME unspecified
[ 1435.393387][T29513] usb usb8: usbfs: process 29513 (syz.5.8026) did not claim interface 0 before use
[ 1436.442632][T29529] mkiss: ax0: crc mode is auto.
[ 1437.138080][T29549] sp0: Synchronizing with TNC
[ 1439.314876][T29595] binder: BC_ACQUIRE_RESULT not supported
[ 1439.320794][T29595] binder: 29594:29595 ioctl c0306201 200000000580 returned -22
[ 1440.756127][T29638] input: syz1 as /devices/virtual/input/input287
[ 1441.399102][T29659] binder: 29658:29659 ioctl c0306201 200000000300 returned -22
[ 1441.896021][T29687] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1442.301645][T29709] CUSE: info not properly terminated
[ 1442.400396][T29711] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1442.467268][T29711] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1446.630977][T29833] sp0: Synchronizing with TNC
[ 1448.425566][   T30] audit: type=1400 audit(1750379997.230:38): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=29894 comm="syz.0.8095"
[ 1448.444697][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1449.618463][   T30] audit: type=1800 audit(1750379998.420:39): pid=29939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.8102" name="dmabuf" dev="dmabuf" ino=47 res=0 errno=0
[ 1450.106868][   T30] audit: type=1800 audit(1750379998.910:40): pid=29957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.8107" name="memory.events" dev="tmpfs" ino=723 res=0 errno=0
[ 1450.256113][   T30] audit: type=1800 audit(1750379999.060:41): pid=29965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.8107" name="memory.events" dev="tmpfs" ino=723 res=0 errno=0
[ 1450.979589][T29997] binder: 29988:29997 ioctl c0306201 200000000540 returned -14
[ 1451.564976][   T30] audit: type=1400 audit(1750380000.370:42): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="%" pid=30011 comm="syz.4.8119"
[ 1451.652145][T30017] input: syz0 as /devices/virtual/input/input288
[ 1452.037159][T30037] CUSE: unknown device info "MzP�´Ã{UÀÞÒ—ýEÞsª¹Z$cw#¤/…fƒ}Ù”Ðb,Q«[{æ•Æ®$
[ 1452.037159][T30037] Ç4&I:#5o6Ÿ3”ÑŽ.l%¤žwC
[ 1452.037159][T30037] Ž?"
[ 1452.095788][T30037] CUSE: unknown device info "v…2‰.7’õ¸Ë‚þ ®Ñ*5®¸Óì•SEAy û…	¿`?e`þŠl6Ý¡ÐÙéQ0V84ÜŽ{c"áKüü^÷vaOÖ�M Œ××Ê8æf1¨\.dž6�á(3´iË¿­›ƒfω11,kb­°îz›Ö‰"�NXjª}˜	ß~
ïwu/¾KÈ9Ê.²Ðrù¯×¤©"
[ 1452.160379][T30037] CUSE: DEVNAME unspecified
[ 1452.667062][T30065] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1452.755965][T30063] tap0: tun_chr_ioctl cmd 1074025672
[ 1452.940626][T30063] tap0: ignored: set checksum enabled
[ 1453.017931][T30063] mkiss: ax0: crc mode is auto.
[ 1455.308576][T30139] binder: 30138:30139 ioctl c00c620f 200000000180 returned -22
[ 1455.594408][T30155] ubi: mtd0 is already attached to ubi31
[ 1456.573789][T30178] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1456.840374][T30195] dlm: no local IP address has been set
[ 1456.847400][T30195] dlm: cannot start dlm midcomms -107
[ 1457.942233][T30237] binder: BC_ACQUIRE_RESULT not supported
[ 1457.954240][T30237] binder: 30236:30237 ioctl c0306201 200000000580 returned -22
[ 1458.027457][T30239] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1458.119009][T30241] binder: 30236:30241 ioctl 3b81 2000000001c0 returned -22
[ 1458.462216][T30261] input: syz1 as /devices/virtual/input/input289
[ 1458.726427][   T49] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1460.719857][ T5843] Bluetooth: hci4: command 0x1003 tx timeout
[ 1460.724746][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1461.584330][T30364] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1461.602868][T30362] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1462.120086][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1462.148723][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1462.164072][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1462.183551][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1462.201995][T29662] rtc rtc0: __rtc_set_alarm: err=-22
[ 1463.839982][T30437] random: crng reseeded on system resumption
[ 1464.161165][T30457] ptm ptm0: ldisc open failed (-12), clearing slot 0
[ 1465.545523][   T30] audit: type=1400 audit(1750380014.350:43): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=30527 comm="syz.5.8223"
[ 1466.277335][T30555] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1466.974499][T30588] input: syz0 as /devices/virtual/input/input292
[ 1467.120149][T30595] input: syz1 as /devices/virtual/input/input293
[ 1467.322337][T30607] sp0: Synchronizing with TNC
[ 1467.584458][T30614] sp0: Synchronizing with TNC
[ 1468.690000][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.712701][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.734367][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.759059][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.782040][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.798490][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.815494][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.823683][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.835306][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.844674][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.857546][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.865874][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.878583][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.887887][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.898815][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.908562][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.926501][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.936418][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.947626][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.957955][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.970388][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.978048][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1468.999277][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.021581][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.041296][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.059376][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.077520][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.086997][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.095136][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.106464][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.114598][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.128347][T29662] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1469.143120][T29662] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1469.300717][T30682] fido_id[30682]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1470.448302][T30723] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1471.159415][T30746] program syz.2.8266 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1471.880221][T30768] mkiss: ax0: crc mode is auto.
[ 1474.042447][T30876] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1475.782045][T30928] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1476.222991][T30949] serio: Serial port ttynull
[ 1476.386708][T30954] input: syz0 as /devices/virtual/input/input294
[ 1478.692882][T31034] CUSE: info not properly terminated
[ 1479.997999][   T30] audit: type=1800 audit(1750380028.800:44): pid=31057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8327" name="memory.events" dev="tmpfs" ino=558 res=0 errno=0
[ 1480.028616][T31066] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1481.047272][T31154] binder: 31151:31154 ioctl 40046210 ffffffffffffffff returned -14
[ 1481.596421][T31199] CUSE: info not properly terminated
[ 1484.122991][   T30] audit: type=1800 audit(1750380032.930:45): pid=31448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.8352" name="dmabuf" dev="dmabuf" ino=49 res=0 errno=0
[ 1484.809976][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.818540][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.934050][   T30] audit: type=1800 audit(1750380033.720:46): pid=31483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.8361" name="dmabuf" dev="dmabuf" ino=50 res=0 errno=0
[ 1485.160964][T31492] binder: 31490:31492 ioctl c00c620f 0 returned -14
[ 1485.247455][T31494] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1485.971613][T31492] binder: 31490:31492 ioctl c0306201 200000001680 returned -14
[ 1486.106135][T31532] ubi31: detaching mtd0
[ 1486.172479][T31532] ubi31: mtd0 is detached
[ 1488.133290][T31595] CUSE: info not properly terminated
[ 1488.496680][T31606] syz.2.8388: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1488.591230][T31606] CPU: 1 UID: 0 PID: 31606 Comm: syz.2.8388 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1488.591260][T31606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1488.591273][T31606] Call Trace:
[ 1488.591282][T31606]  <TASK>
[ 1488.591290][T31606]  dump_stack_lvl+0x189/0x250
[ 1488.591324][T31606]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1488.591347][T31606]  ? __pfx__printk+0x10/0x10
[ 1488.591369][T31606]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1488.591396][T31606]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1488.591422][T31606]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1488.591447][T31606]  warn_alloc+0x214/0x310
[ 1488.591481][T31606]  ? __pfx_warn_alloc+0x10/0x10
[ 1488.591517][T31606]  ? __get_vm_area_node+0x28f/0x300
[ 1488.591542][T31606]  ? __v4l2_ctrl_modify_dimensions+0x443/0xb90
[ 1488.591568][T31606]  __vmalloc_node_range_noprof+0x67e/0x12f0
[ 1488.591621][T31606]  ? __mutex_lock+0x330/0xe80
[ 1488.591644][T31606]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1488.591673][T31606]  ? rcu_is_watching+0x15/0xb0
[ 1488.591695][T31606]  ? __v4l2_ctrl_modify_dimensions+0x443/0xb90
[ 1488.591714][T31606]  ? __v4l2_ctrl_modify_dimensions+0x443/0xb90
[ 1488.591735][T31606]  __kvmalloc_node_noprof+0x3b8/0x5f0
[ 1488.591761][T31606]  ? __v4l2_ctrl_modify_dimensions+0x443/0xb90
[ 1488.591792][T31606]  __v4l2_ctrl_modify_dimensions+0x443/0xb90
[ 1488.591819][T31606]  ? tpg_update_mv_step+0x2a7/0x520
[ 1488.591851][T31606]  vivid_update_format_cap+0x134e/0x20e0
[ 1488.591888][T31606]  ? __pfx_vivid_update_format_cap+0x10/0x10
[ 1488.591910][T31606]  ? vivid_get_format+0x2ad/0x2e0
[ 1488.591947][T31606]  vivid_s_fmt_vid_cap+0x28a2/0x5990
[ 1488.591969][T31606]  ? __lock_acquire+0xab9/0xd20
[ 1488.591998][T31606]  ? __mutex_trylock_common+0x153/0x260
[ 1488.592029][T31606]  ? __asan_memset+0x22/0x50
[ 1488.592057][T31606]  fmt_sp2mp_func+0xcc/0x400
[ 1488.592076][T31606]  ? __pfx_vivid_s_fmt_vid_cap+0x10/0x10
[ 1488.592097][T31606]  ? __pfx_fmt_sp2mp_func+0x10/0x10
[ 1488.592142][T31606]  ? v4l_sanitize_format+0x5cc/0x9f0
[ 1488.592162][T31606]  ? video_devdata+0x6b/0xd0
[ 1488.592180][T31606]  ? vidioc_s_fmt_vid_cap+0x8c/0xc0
[ 1488.592205][T31606]  v4l_s_fmt+0x644/0xbf0
[ 1488.592233][T31606]  __video_do_ioctl+0xc98/0xdb0
[ 1488.592266][T31606]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1488.592304][T31606]  video_usercopy+0x86e/0x14f0
[ 1488.592336][T31606]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1488.592357][T31606]  ? __pfx_video_usercopy+0x10/0x10
[ 1488.592392][T31606]  ? __fget_files+0x2a/0x420
[ 1488.592423][T31606]  ? __fget_files+0x2a/0x420
[ 1488.592449][T31606]  ? __fget_files+0x3a0/0x420
[ 1488.592480][T31606]  v4l2_ioctl+0x18d/0x1e0
[ 1488.592504][T31606]  ? __pfx_v4l2_ioctl+0x10/0x10
[ 1488.592525][T31606]  __se_sys_ioctl+0xfc/0x170
[ 1488.592552][T31606]  do_syscall_64+0xfa/0x3b0
[ 1488.592571][T31606]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1488.592600][T31606]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1488.592618][T31606]  ? clear_bhb_loop+0x60/0xb0
[ 1488.592642][T31606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1488.592661][T31606] RIP: 0033:0x7f5e5518e929
[ 1488.592681][T31606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1488.592696][T31606] RSP: 002b:00007f5e56050038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1488.592718][T31606] RAX: ffffffffffffffda RBX: 00007f5e553b5fa0 RCX: 00007f5e5518e929
[ 1488.592732][T31606] RDX: 0000200000000040 RSI: 00000000c0d05605 RDI: 0000000000000005
[ 1488.592744][T31606] RBP: 00007f5e55210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1488.592757][T31606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1488.592768][T31606] R13: 0000000000000000 R14: 00007f5e553b5fa0 R15: 00007ffe840659d8
[ 1488.592799][T31606]  </TASK>
[ 1488.593036][T31606] Mem-Info:
[ 1488.594749][T31615] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1488.605362][T31606] active_anon:13659 inactive_anon:3 isolated_anon:0
[ 1488.605362][T31606]  active_file:1564 inactive_file:44519 isolated_file:0
[ 1488.605362][T31606]  unevictable:776 dirty:24 writeback:0
[ 1488.605362][T31606]  slab_reclaimable:11500 slab_unreclaimable:96737
[ 1488.605362][T31606]  mapped:24356 shmem:4559 pagetables:1466
[ 1488.605362][T31606]  sec_pagetables:0 bounce:0
[ 1488.605362][T31606]  kernel_misc_reclaimable:0
[ 1488.605362][T31606]  free:1332690 free_pcp:9091 free_cma:0
[ 1488.605440][T31606] Node 0 active_anon:54636kB inactive_anon:12kB active_file:6256kB inactive_file:177872kB unevictable:1568kB isolated(anon):0kB isolated(file):0kB mapped:97424kB dirty:96kB writeback:0kB shmem:16700kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11824kB pagetables:5700kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1489.059833][T31606] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1489.097779][T31606] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1489.140327][T31606] lowmem_reserve[]: 0 2497 2498 2498 2498
[ 1489.146321][T31606] Node 0 DMA32 free:1395108kB boost:0kB min:34232kB low:42788kB high:51344kB reserved_highatomic:0KB free_highatomic:0KB active_anon:54892kB inactive_anon:12kB active_file:6240kB inactive_file:176544kB unevictable:1568kB writepending:96kB present:3129332kB managed:2557540kB mlocked:32kB bounce:0kB free_pcp:30096kB local_pcp:21428kB free_cma:0kB
[ 1489.178842][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1489.192708][T31606] lowmem_reserve[]: 0 0 1 1 1
[ 1489.198663][T31606] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1489.254299][T31634] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1489.259209][T31606] lowmem_reserve[]: 0 0 0 0 0
[ 1489.276788][T31606] Node 1 Normal free:3911432kB boost:0kB min:55652kB low:69564kB high:83476kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:4992kB local_pcp:4992kB free_cma:0kB
[ 1489.308043][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1489.333350][T31606] lowmem_reserve[]: 0 0 0 0 0
[ 1489.366884][T31606] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1489.403687][T31606] Node 0 DMA32: 2247*4kB (UME) 2338*8kB (UME) 2555*16kB (UME) 1379*32kB (UME) 616*64kB (UME) 123*128kB (UME) 133*256kB (UME) 92*512kB (UME) 23*1024kB (UME) 2*2048kB (UE) 275*4096kB (UM) = 1403068kB
[ 1489.457978][T31606] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[ 1489.474328][T31606] Node 1 Normal: 194*4kB (UME) 52*8kB (UME) 50*16kB (UME) 260*32kB (UME) 133*64kB (UME) 29*128kB (UME) 11*256kB (UM) 2*512kB (M) 2*1024kB (ME) 2*2048kB (UE) 947*4096kB (M) = 3911432kB
[ 1489.494838][T31606] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1489.505052][T31606] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1489.519453][T31606] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1489.533758][T31606] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1489.544030][T31606] 50689 total pagecache pages
[ 1489.548834][T31606] 3 pages in swap cache
[ 1489.553810][T31606] Free swap  = 124984kB
[ 1489.559069][T31606] Total swap = 124996kB
[ 1489.563466][T31606] 2097051 pages RAM
[ 1489.576064][T31606] 0 pages HighMem/MovableOnly
[ 1489.582129][T31606] 425688 pages reserved
[ 1489.586339][T31606] 0 pages cma reserved
[ 1490.001422][T31656] CUSE: info not properly terminated
[ 1493.323836][T31794] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1495.079054][T31848] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1495.160462][T31846] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1498.124953][T20355] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1498.142193][T31938] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1499.298946][T31977] input: syz1 as /devices/virtual/input/input295
[ 1499.340154][T31977] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1500.160449][ T5843] Bluetooth: hci4: command 0x1003 tx timeout
[ 1500.160578][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1502.165217][T32073] syz.2.8480 (32073): drop_caches: 0
[ 1504.990346][T32158] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1505.812154][T32194] snd_dummy snd_dummy.0: control 1:254:0:syz0:0 is already present
[ 1506.207219][T32199] input: syz1 as /devices/virtual/input/input298
[ 1507.048227][T32237] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1508.128066][T32279] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1508.559372][T32297] vivid-001: disconnect
[ 1508.800571][T32294] vivid-001: reconnect
[ 1510.676604][T32367] usb usb8: usbfs: process 32367 (syz.5.8539) did not claim interface 0 before use
[ 1510.953283][T32372] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1511.001549][   T30] audit: type=1400 audit(1750380059.810:47): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=32371 comm="syz.4.8541"
[ 1511.468070][T32403] syz.0.8546: attempt to access beyond end of device
[ 1511.468070][T32403] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1512.001151][T32416] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1512.905778][T32449] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1512.936745][T32449] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1513.087191][T32460] usb usb8: usbfs: process 32460 (syz.2.8560) did not claim interface 0 before use
[ 1513.677513][T32491] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1513.959212][ T5940] psmouse serio26: Failed to reset mouse on : -5
[ 1514.251540][T32530] blktrace: Concurrent blktraces are not allowed on sg0
[ 1514.565615][T32545] random: crng reseeded on system resumption
[ 1514.636140][T32548] input: syz1 as /devices/virtual/input/input302
[ 1514.687427][T32553] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1515.523979][T32589] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1517.616072][T32663] mkiss: ax0: crc mode is auto.
[ 1517.676765][T32672] binder: 32671:32672 ioctl 400c620e 2000000000c0 returned -22
[ 1517.699922][ T5940] misc userio: Buffer overflowed, userio client isn't keeping up
[ 1518.625295][T32716] usb usb8: usbfs: process 32716 (syz.2.8612) did not claim interface 0 before use
[ 1518.772012][ T5940] input: PS/2 Generic Mouse as /devices/serio26/input/input301
[ 1518.860104][T32727] mkiss: ax0: crc mode is auto.
[ 1519.019262][ T5940] psmouse serio26: Failed to enable mouse on 
[ 1519.022732][T32747] input: syz1 as /devices/virtual/input/input304
[ 1519.034669][T32546] Unrecognized hibernate image header format!
[ 1519.043601][T32546] PM: hibernation: Image mismatch: architecture specific data
[ 1520.637500][  T367] input: syz1 as /devices/virtual/input/input305
[ 1521.700732][  T394] can0: slcan on ptm0.
[ 1522.100938][  T410] [U] 
[ 1522.103810][  T410] [U] K{‘
[ 1522.107052][  T410] [U] ÄT Ž1ÊÀŠªFÌÇÄFËŠÎ`GÊJǘÜGÖƯ¹¬¡—ÞÈOÕÑ/ÜMCÇ
[ 1522.152618][  T393] can0 (unregistered): slcan off ptm0.
[ 1522.180287][  T410] [U] TžØ–/,�~ˆÄœ­‹JÕßÊ}8ÎÊÞ'O1�Ü"™7-΂JQœK—¤WºÏQÉ5C%"¬H12–¦Y“„‰ž€ÊXÍ`ˆ‚Íȼ`+³Û(·Â¿!(ÉÛÉZ'ÀTXLN»I®GÅJ– °ÜÝ­·PÅ~÷7Í!‘ÕÒ"بÎ¾ª(È5ˆOBܤ‡ÍƒJÖ
[ 1522.252390][  T410] [U] ±K\&—}6£6œXÎHX�¥Ôµ„ÌÞ.`¸A“$Û40|϶¿�9°ØÞ¨„¯ÀÏU‚Ò4�ÔÄ®VBZÃÐ}ÌWÔM”TºŽÍQŸÝΦR’4”ß
[ 1522.296750][  T410] [U] ".H6ØÞ"ÖKÇ[›‰¤ŒJÁ4ÇØI�N¨™[Z(•„C|TË]Z{�Â3ŸC=»¨XÎԞ˅Î4¿W‰)\T‘XJØ�SH{Q;̹¢…ÖTÔÇ+‹¦÷GÍÈß®D„.Ë‚³>Yž�÷ÉWUH„FN—Ž�ÇHL]SÔ2ŠÇÙ\G%ŠO¼&Z)µК'¨PUL‚_<Ã	¢Ø°‰Ò®ÔÅ`Ò±TÔÁÞœÐËÞ;_Ô"(‘U{7Jœ¿2X ‘/€'ÝÙCÑÌÕIº©ÀÏH¿C�Õ³žV¦=�‘AIÇ%W¼ESž RšŸJŠÎœƒÚ”GÂ÷RÁ¹Í¡HI
˜¢œAÏÌ6-ÚD�ÚV¨Á I"ØÅNƨ ÞÚASC~4Áª¹8CØ*­OO5/ßœJš~º§¡W—VK+¬®‰Œ3ÈÇY)Ž¹M°¸ÆV¶ÌYQƽ€DTR¯
OTPEM%F×ÊEJÍA5ÆÔT_-X~ ^AAÛ‚Ò˜½QÖÅ
[ 1522.332729][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1522.607827][  T410] [U] 	+�W‰G?]£Ó'A:	»Ú)Õ
ÏÓ™“' B>T¢ ¡F/™÷<'ÈUÓ'–¼H§IÉ.+]EŸ.½-É¿ß¿Ò%÷È>2`¶^Uß8F.Š6¤Å3ÓØ+ËA¾Â««„°G3ÓPÂÓ6:�^0À�TÉÈV÷'EÕT¼€ÛÂYC‰N¾ÞRÏ©ÞNÈPJ×;ÆZ†ÊÔÑÛ‘8!¯È\Ù…¸AØÊ–2Á£$е™Â­WI.ÍÇ#ŠÈ/BAI¼�Ä`ÐÁ4J’ÔDÎY@ÓZ„ÜGW÷5Ë¿Bĵٜ NÓY"VI2ÛÌ
[ 1522.684206][  T410] [U] ÔT¦_K5¸T¬YJÐÞÎ9ÐÕCÊ$BRŸLÚNUL¶Ü9WÈÝÍ|žGÅ"ʃÆ%ÇÚ¶ÊCªØ�°¶ºQÎÙ
 ŸÇ3‹ÆQ¯ÔN^HP*½Ü$	µ.Î7YÓ±œ2³
[ 1522.715476][  T410] [U] ½?�©ßHÜÄ*ÙÁ”Î3Í�7ÜÉ�¾^#Q�"0~‡‚Ð(ÉOÏXLŒB£,'VÎÓ=‹ÝËCÌS«…’G‚S¶Þ0•Ö‚‹Ù`˜›žÙ‡Ÿ†=1(÷ξ™÷P#Ò2DO*Ƀ
[ 1522.751011][  T410] [U] ©S¹“Gžµ²¶“˜GUÐÔD-{¸™Â|&“�®ŸŸÑ�2µ›LÞC_©œ!`¨ÍOZÖ¥¢B¶³%>ÊRѶÖWχݎSSÂH"£YA4£O.šYÙÛÄ�„RTÔ¶ŒBÚ[+/<<R�B�ÊÄÕ|ФEŽžÑÛ –V96#ÛÚÑͤʦJºUº%
S851ƒ�ÞÒ©S�P±¨\£ƒ?Qª|L�´QXµ0ÂKÔ1ORÉ´2¡½|ÖÜDÖFÌ¿»Ù�ÚË2Þ”–¨×0ÌÅH•}C[/¤»“ŸPX^¼ÈO
[ 1522.774747][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1522.823048][  T410] [U] ÖØ›·Ü—(JÅЛ•§MÛÜXZ˜;œ½±ÓßØ�_¹»µÔ*3÷3…¿5¸\ƒXM³ÚU�‰AK!AQ`¿
[ 1522.831395][  T410] [U] 
[ 1522.834135][  T410] [U] 
[ 1522.836880][  T410] [U] 
[ 1522.927833][  T410] [U] 
[ 1523.417164][  T462] blktrace: Concurrent blktraces are not allowed on sg0
[ 1525.238432][  T517] ptm ptm0: ldisc open failed (-12), clearing slot 0
[ 1525.572593][  T529] input: syz0 as /devices/virtual/input/input306
[ 1526.756482][  T580] CUSE: info not properly terminated
[ 1527.398878][  T605] input: syz1 as /devices/virtual/input/input307
[ 1527.486145][  T615] vivid-000: =================  START STATUS  =================
[ 1527.503710][  T615] vivid-000: Enable Output Cropping: false
[ 1527.513955][  T615] vivid-000: Enable Output Composing: false
[ 1527.524814][  T615] vivid-000: Enable Output Scaler: false
[ 1527.531164][  T615] vivid-000: Tx RGB Quantization Range: Automatic
[ 1527.538986][  T615] vivid-000: Transmit Mode: HDMI
[ 1527.548876][  T615] vivid-000: Hotplug Present: 0x00000000
[ 1527.561647][  T615] vivid-000: RxSense Present: 0x00000000
[ 1527.574130][  T615] vivid-000: EDID Present: 0x00000000
[ 1527.586886][  T615] vivid-000: ==================  END STATUS  ==================
[ 1528.468497][  T649] input: syz1 as /devices/virtual/input/input308
[ 1529.088596][T20355] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1530.483190][  T712] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1530.503474][  T712] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1531.119421][ T7636] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 1531.125608][ T5843] Bluetooth: hci4: command 0xfc11 tx timeout
[ 1531.133035][  T764] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1532.179214][   T30] audit: type=1400 audit(1750380080.970:48): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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
[ 1532.215865][  T815] input: syz1 as /devices/virtual/input/input310
[ 1532.307211][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1532.735514][  T837] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1534.422607][  T884] input: syz0 as /devices/virtual/input/input311
[ 1535.196574][  T919] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1535.714495][   T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1535.941809][   T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1535.951434][  T959] binder: BC_ACQUIRE_RESULT not supported
[ 1535.969377][  T959] binder: 956:959 ioctl c0306201 200000000580 returned -22
[ 1536.243067][   T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1536.482101][   T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1536.659571][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1536.677788][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1536.686325][ T5843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1536.696519][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1536.706267][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1536.744358][ T7636] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1536.776556][ T7636] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1536.789586][ T7636] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1536.799682][ T7636] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1536.813616][ T7636] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1537.086327][   T49] bridge_slave_1: left allmulticast mode
[ 1537.096989][   T49] bridge_slave_1: left promiscuous mode
[ 1537.130610][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1537.185004][   T49] bridge_slave_0: left allmulticast mode
[ 1537.205657][   T49] bridge_slave_0: left promiscuous mode
[ 1537.244823][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1537.271852][T14606] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1538.879854][ T5843] Bluetooth: hci3: command tx timeout
[ 1539.023909][ T1068] binder: 1067:1068 ioctl 400c620e 2000000000c0 returned -22
[ 1539.279976][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1539.284995][ T5843] Bluetooth: hci4: command 0x1003 tx timeout
[ 1539.576351][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1539.622186][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1539.681240][   T49] bond0 (unregistering): Released all slaves
[ 1539.954510][ T1072] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1539.962715][ T1072] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 1540.520002][  T976] chnl_net:caif_netlink_parms(): no params data found
[ 1540.946744][   T49] hsr_slave_0: left promiscuous mode
[ 1540.948843][ T1274] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1540.976750][   T49] hsr_slave_1: left promiscuous mode
[ 1540.991368][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1541.000073][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1541.010930][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1541.018419][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1541.151633][   T49] veth1_macvtap: left promiscuous mode
[ 1541.174660][   T49] veth0_macvtap: left promiscuous mode
[ 1541.192832][   T49] veth1_vlan: left promiscuous mode
[ 1541.212776][   T49] veth0_vlan: left promiscuous mode
[ 1541.575128][ T1300] qrtr: Invalid version 43
[ 1541.659020][ T1307] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1541.762971][ T1307] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1542.118882][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1542.126817][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1542.149540][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1542.166418][T29662] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1542.191258][T29662] rtc rtc0: __rtc_set_alarm: err=-22
[ 1543.904901][   T49] team0 (unregistering): Port device team_slave_1 removed
[ 1544.173853][   T49] team0 (unregistering): Port device team_slave_0 removed
[ 1546.243627][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.250259][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1547.520489][  T976] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1547.538240][  T976] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1547.553654][  T976] bridge_slave_0: entered allmulticast mode
[ 1547.567887][  T976] bridge_slave_0: entered promiscuous mode
[ 1547.587732][  T976] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1547.595532][  T976] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1547.607723][  T976] bridge_slave_1: entered allmulticast mode
[ 1547.616536][  T976] bridge_slave_1: entered promiscuous mode
[ 1547.801724][ T1425] input: syz0 as /devices/virtual/input/input312
[ 1548.041455][  T976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1548.116345][  T976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1548.332847][  T976] team0: Port device team_slave_0 added
[ 1548.386920][  T976] team0: Port device team_slave_1 added
[ 1548.621683][  T976] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1548.628718][  T976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1548.743671][  T976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1548.791641][  T976] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1548.798660][  T976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1548.919634][  T976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1549.198491][  T976] hsr_slave_0: entered promiscuous mode
[ 1549.226740][  T976] hsr_slave_1: entered promiscuous mode
[ 1549.250174][  T976] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1549.268233][  T976] Cannot create hsr debugfs directory
[ 1549.333462][ T1562] blktrace: Concurrent blktraces are not allowed on sg0
[ 1549.421671][ T1561] relay: one or more items not logged [item size (64) > sub-buffer size (7)]
[ 1551.973278][  T976] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1552.023859][  T976] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1552.140807][  T976] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1552.211395][  T976] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1552.744736][  T976] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1552.804096][  T976] 8021q: adding VLAN 0 to HW filter on device team0
[ 1552.855183][T28163] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1552.862470][T28163] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1552.953817][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1552.961136][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1553.275173][ T1780] syz.0.8789: attempt to access beyond end of device
[ 1553.275173][ T1780] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1553.772002][  T976] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1553.964185][  T976] veth0_vlan: entered promiscuous mode
[ 1553.988407][  T976] veth1_vlan: entered promiscuous mode
[ 1554.085247][  T976] veth0_macvtap: entered promiscuous mode
[ 1554.134573][  T976] veth1_macvtap: entered promiscuous mode
[ 1554.215491][  T976] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1554.248010][  T976] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1554.297339][  T976] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1554.339257][  T976] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1554.379168][  T976] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1554.402868][  T976] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1554.835132][ T2992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1554.880983][ T2992] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1555.051194][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1555.088096][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1556.835866][ T1919] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1557.126942][ T1936] serio: Serial port ttynull
[ 1558.882340][ T2004] program syz.0.8818 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1559.435749][ T2019] binder: 2017:2019 ioctl c0306201 2000000003c0 returned -14
[ 1559.863153][ T2039] input: syz1 as /devices/virtual/input/input313
[ 1560.391183][ T2077] binder: 2075:2077 ioctl c00c6211 0 returned -14
[ 1560.469808][ T2096] vimc link validate: Scaler:src:16x16 (0x33424752, 8, 0, 6, 0) RGB/YUV Capture:snk:16x16 (0x30314752, 8, 0, 0, 0)
[ 1562.377247][ T2166] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1563.500479][ T2201] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1564.384343][ T2230] syz.5.8859: attempt to access beyond end of device
[ 1564.384343][ T2230] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1565.946451][ T2287] can0: slcan on ptm0.
[ 1566.294987][ T2286] can0 (unregistered): slcan off ptm0.
[ 1566.856355][T10898] hid (null): unknown global tag 0xe
[ 1566.873012][T10898] hid (null): global environment stack underflow
[ 1566.939039][T10898] hid (null): report_id 3176408875 is invalid
[ 1566.947884][T10898] hid (null): invalid report_size 13026
[ 1566.981639][T10898] hid-generic 0004:0001:0006.0012: unknown global tag 0xe
[ 1567.028574][T10898] hid-generic 0004:0001:0006.0012: item 0 1 1 14 parsing failed
[ 1567.060161][T10898] hid-generic 0004:0001:0006.0012: probe with driver hid-generic failed with error -22
[ 1569.304797][ T2401] binder: 2396:2401 ioctl c018620c 200000001180 returned -22
[ 1573.367015][ T2528] program syz.2.8910 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1573.474069][ T2531] binder: BINDER_SET_CONTEXT_MGR already set
[ 1573.504141][ T2531] binder: 2529:2531 ioctl 4018620d 2000000002c0 returned -16
[ 1573.537161][ T2536] binder: 2535:2536 ioctl c0306201 0 returned -14
[ 1574.990980][ T2568] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1575.685963][ T2568] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1575.762084][ T2568] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1577.272488][ T2667] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1577.851550][ T2694] sp0: Synchronizing with TNC
[ 1578.553427][ T2724] input: syz1 as /devices/virtual/input/input318
[ 1580.752832][ T2794] qrtr: Invalid version 40
[ 1581.200675][ T2830] vivid-000: disconnect
[ 1581.205097][   T30] audit: type=1400 audit(1750380130.010:49): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=2827 comm="syz.2.8951"
[ 1581.964507][ T2829] vivid-000: reconnect
[ 1582.296952][ T2878] sp0: Synchronizing with TNC
[ 1583.180773][ T2905] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1583.357298][ T2919] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1583.567101][ T2925] input: syz1 as /devices/virtual/input/input319
[ 1583.624617][ T2925] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1584.331135][ T2960] binder: 2958:2960 ioctl c0306201 200000000540 returned -14
[ 1585.250325][ T2985] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1585.999744][ T3001] random: crng reseeded on system resumption
[ 1586.223981][ T3010] input: syz0 as /devices/virtual/input/input320
[ 1588.001969][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1588.009841][ T5843] Bluetooth: hci4: command 0x1003 tx timeout
[ 1588.176181][ T3076] random: crng reseeded on system resumption
[ 1590.247432][ T3153] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1590.256751][ T3152] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1591.042210][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1591.050909][ T5843] Bluetooth: hci4: command 0x1003 tx timeout
[ 1591.280152][ T7636] Bluetooth: hci3: Received unexpected HCI Event 0x00
[ 1591.597095][T14606] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1591.816983][T14606] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1591.966016][T14606] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1592.098648][T17823] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1592.110942][T17823] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1592.124106][T17823] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1592.137619][T17823] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1592.165656][T17823] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1592.213180][ T7636] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1592.223140][ T7636] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1592.235515][ T7636] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1592.247941][ T7636] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1592.252106][T14606] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1592.269563][ T7636] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1592.936539][T14606] bridge_slave_1: left allmulticast mode
[ 1592.950781][T14606] bridge_slave_1: left promiscuous mode
[ 1592.956741][T14606] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1593.018492][T14606] bridge_slave_0: left allmulticast mode
[ 1593.097289][T14606] bridge_slave_0: left promiscuous mode
[ 1593.135623][T14606] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1593.279724][ T7636] Bluetooth: hci3: command 0x1003 tx timeout
[ 1593.280985][ T5843] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 1593.422488][ T3293] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1593.428488][ T3293] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[ 1593.593872][ T3389] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1594.962392][ T3429] input: syz1 as /devices/virtual/input/input321
[ 1595.786102][T14606] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1595.912941][T14606] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1595.981656][T14606] bond0 (unregistering): Released all slaves
[ 1596.369034][ T3237] chnl_net:caif_netlink_parms(): no params data found
[ 1596.748361][ T3543] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1596.787288][ T3543] program syz.4.9053 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1596.841822][ T3543] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1597.321671][ T3237] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1597.328929][ T3237] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1597.345874][ T3237] bridge_slave_0: entered allmulticast mode
[ 1597.358998][ T3237] bridge_slave_0: entered promiscuous mode
[ 1597.393421][ T3237] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1597.407339][ T3237] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1597.431327][ T3237] bridge_slave_1: entered allmulticast mode
[ 1597.451287][ T3237] bridge_slave_1: entered promiscuous mode
[ 1597.722238][T14606] hsr_slave_0: left promiscuous mode
[ 1597.749829][T14606] hsr_slave_1: left promiscuous mode
[ 1597.756483][T14606] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1597.789292][T14606] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1597.896469][T14606] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1597.925302][T14606] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1597.936661][   T30] audit: type=1400 audit(1750380146.740:50): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3A3A0AE10CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A552C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=3629 comm="syz.4.9056"
[ 1597.968299][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1598.028451][T14606] veth1_macvtap: left promiscuous mode
[ 1598.035514][T14606] veth0_macvtap: left promiscuous mode
[ 1598.041909][T14606] veth1_vlan: left promiscuous mode
[ 1598.047311][T14606] veth0_vlan: left promiscuous mode
[ 1599.371787][ T3664] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1600.233989][ T3682] QAT: failed to copy from user cfg_data.
[ 1600.493800][ T3690] dlm: no locking on control device
[ 1600.701012][T14606] team0 (unregistering): Port device team_slave_1 removed
[ 1600.931316][T14606] team0 (unregistering): Port device team_slave_0 removed
[ 1602.126357][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.134207][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.142400][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.150523][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.158596][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.166630][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.174521][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.182082][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.192759][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.200526][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.208018][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.215623][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.225938][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.235761][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.243558][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.251235][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.258652][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.266216][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.274020][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.283900][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.291464][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.307693][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.315373][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.322917][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.331496][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.338947][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.346491][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.354160][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.361787][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.369305][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.376730][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.384220][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.391670][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.399196][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.406654][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.414480][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.422028][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.429527][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.436948][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.444572][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.452201][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.459752][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.467184][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.474710][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.482500][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.490177][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.497682][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.505440][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.513100][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.520948][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.528566][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.536233][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.544185][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.551743][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.560164][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.567775][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.575834][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.583622][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.592180][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.600151][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.607637][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.615308][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.622854][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.630550][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.637996][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.645631][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.653419][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.663774][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.671582][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.679014][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.686734][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.694640][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.702536][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.710257][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.717703][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.729448][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.736910][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.744870][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.752434][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.760020][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.767635][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.775170][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.782704][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.790303][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.797755][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.805328][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.812802][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.820358][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.827781][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.835288][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.843019][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.850850][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.858396][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.865915][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.873413][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.881085][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.888718][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.896243][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.903906][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.911445][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.919169][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.926703][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.934362][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.941886][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.949421][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.956850][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.964636][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.972132][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.979685][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.987120][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1602.994775][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.002547][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.010052][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.017486][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.025196][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.032817][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.041605][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.049560][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.057082][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.064725][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.072379][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.080131][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.087555][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.095137][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.102823][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.110559][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.117993][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.126347][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.133907][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.141526][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.149047][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.156567][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.164078][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.171757][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.179629][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.187113][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.194653][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.202369][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.209889][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.217289][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.225084][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.232562][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.240123][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.247546][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.255060][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.262551][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.270027][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.277442][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.284917][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.292656][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.300353][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.307781][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.315337][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.322880][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.330435][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.337863][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.345537][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.353062][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.360582][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.368026][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.375542][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.383038][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.390663][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.398115][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.405876][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.413480][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.420994][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.428453][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.436149][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.443625][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.451160][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.458692][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.466214][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.473805][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.481385][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.489307][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.496864][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.504696][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.512451][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.520410][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.527863][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.535504][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.543300][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.550775][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.558187][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.565657][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.573165][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.580683][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.588099][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.595578][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.603431][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.610973][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.618502][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.626311][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.633807][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.641344][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.648868][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.656397][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.663997][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.671475][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.678936][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.686475][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.694032][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.701535][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.708973][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.717084][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.724621][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.732380][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.740156][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.747703][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.755256][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.762803][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.770325][T14911] hid-generic 01FF:0004:0400.0013: unknown main item tag 0x0
[ 1603.780539][T14911] hid-generic 01FF:0004:0400.0013: hidraw0: <UNKNOWN> HID v0.05 Device [syz0] on syz1
[ 1603.837110][ T3729] fido_id[3729]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1604.565772][ T3766] dlm: plock device version mismatch: kernel (1.2.0), user (1.6.16)
[ 1604.600094][ T3237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1604.672237][ T3237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1604.882625][ T3237] team0: Port device team_slave_0 added
[ 1604.901314][ T3237] team0: Port device team_slave_1 added
[ 1605.171964][ T3237] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1605.210267][ T3237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1605.263461][ T3237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1605.308177][ T3237] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1605.317187][ T3237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1605.374102][ T3237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1605.913126][ T3237] hsr_slave_0: entered promiscuous mode
[ 1605.935727][ T3237] hsr_slave_1: entered promiscuous mode
[ 1605.957732][ T3237] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1605.985238][ T3237] Cannot create hsr debugfs directory
[ 1607.690017][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.696496][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.883261][ T4050] input input323: cannot allocate more than FF_MAX_EFFECTS effects
[ 1608.226025][ T3237] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1608.333092][ T3237] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1608.399806][ T3237] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1608.429027][ T3237] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1608.684738][ T3237] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1608.735031][ T3237] 8021q: adding VLAN 0 to HW filter on device team0
[ 1608.767761][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1608.775116][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1608.813019][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1608.820295][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1609.492498][ T3237] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1609.693240][ T3237] veth0_vlan: entered promiscuous mode
[ 1609.731937][ T3237] veth1_vlan: entered promiscuous mode
[ 1609.814751][ T3237] veth0_macvtap: entered promiscuous mode
[ 1609.830720][ T3237] veth1_macvtap: entered promiscuous mode
[ 1609.901440][ T3237] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1609.957879][ T3237] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1610.016778][ T3237] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1610.026356][ T3237] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1610.071777][ T3237] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1610.094716][ T3237] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1610.400059][T14606] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1610.408120][T14606] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1610.585720][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1610.604673][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1612.635507][ T7636] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1612.647345][ T7636] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1612.657014][ T7636] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1612.682259][ T7636] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1612.692157][ T7636] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1612.720102][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1612.727556][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1612.735395][ T5843] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1612.750061][ T5843] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1612.769218][ T5843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1613.992932][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.061483][ T4306] input: syz1 as /devices/virtual/input/input326
[ 1614.068122][ T4289] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1614.098773][ T4289] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1614.294587][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.492747][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1614.679812][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1615.372721][ T4251] chnl_net:caif_netlink_parms(): no params data found
[ 1615.493389][   T13] bridge_slave_1: left allmulticast mode
[ 1615.514341][   T13] bridge_slave_1: left promiscuous mode
[ 1615.531914][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1615.634054][   T13] bridge_slave_0: left allmulticast mode
[ 1615.669269][   T13] bridge_slave_0: left promiscuous mode
[ 1615.675182][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1616.512879][ T4546] dlm: no locking on control device
[ 1618.125309][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1618.173551][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1618.233623][   T13] bond0 (unregistering): Released all slaves
[ 1618.466949][ T4610] random: crng reseeded on system resumption
[ 1619.011185][ T4251] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1619.018427][ T4251] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1619.047222][ T4251] bridge_slave_0: entered allmulticast mode
[ 1619.059990][ T4251] bridge_slave_0: entered promiscuous mode
[ 1619.135733][ T4251] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1619.149572][ T4251] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1619.157184][ T4251] bridge_slave_1: entered allmulticast mode
[ 1619.172088][ T4251] bridge_slave_1: entered promiscuous mode
[ 1619.590185][ T4251] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1619.858630][   T13] hsr_slave_0: left promiscuous mode
[ 1619.905956][   T13] hsr_slave_1: left promiscuous mode
[ 1619.920899][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1619.937623][ T4686] input: syz0 as /devices/virtual/input/input328
[ 1619.944582][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1619.972743][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1619.991469][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1620.085033][   T13] veth1_macvtap: left promiscuous mode
[ 1620.107034][   T13] veth0_macvtap: left promiscuous mode
[ 1620.114100][   T13] veth1_vlan: left promiscuous mode
[ 1620.132114][   T13] veth0_vlan: left promiscuous mode
[ 1621.313563][ T4736] input: syz0 as /devices/virtual/input/input329
[ 1622.155205][ T4299] hid (null): global environment stack underflow
[ 1622.179276][ T4299] hid (null): global environment stack underflow
[ 1622.198983][ T4299] hid (null): unknown global tag 0xc
[ 1622.212355][ T4299] hid (null): invalid report_count -162343640
[ 1622.228061][ T4299] hid (null): invalid report_count 19040
[ 1622.239864][ T4299] hid (null): unknown global tag 0xe
[ 1622.260769][ T4299] hid-generic 0001:FFFFFFFB:0005.0014: global environment stack underflow
[ 1622.279725][ T4299] hid-generic 0001:FFFFFFFB:0005.0014: item 0 4 1 11 parsing failed
[ 1622.295049][ T4299] hid-generic 0001:FFFFFFFB:0005.0014: probe with driver hid-generic failed with error -22
[ 1623.722404][ T4818] syz.0.9173: attempt to access beyond end of device
[ 1623.722404][ T4818] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1624.010975][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1624.202051][ T4837] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1624.293789][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1627.459343][ T4251] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1627.574996][ T4251] team0: Port device team_slave_0 added
[ 1627.604596][ T4251] team0: Port device team_slave_1 added
[ 1627.743956][ T4251] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1627.759172][ T4251] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1627.840192][ T4251] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1627.862428][ T4251] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1627.888930][ T4251] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1627.962262][ T4251] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1628.335005][ T4251] hsr_slave_0: entered promiscuous mode
[ 1628.350548][ T4251] hsr_slave_1: entered promiscuous mode
[ 1628.357122][ T4251] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1628.371525][ T4251] Cannot create hsr debugfs directory
[ 1629.220438][ T5068] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1630.151184][ T4251] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1630.225670][ T4251] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1630.272655][ T4251] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1630.351634][ T4251] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1630.538788][ T5151] kvm: kvm [5148]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010005) = 0xaaf5040000000001
[ 1630.638169][ T4251] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1630.707459][ T4251] 8021q: adding VLAN 0 to HW filter on device team0
[ 1630.727408][ T3478] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1630.734687][ T3478] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1630.753300][ T3478] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1630.760707][ T3478] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1631.466828][ T4251] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1632.513749][   T30] audit: type=1400 audit(1750380181.310:51): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=5224 comm="syz.5.9205"
[ 1632.630744][ T4251] veth0_vlan: entered promiscuous mode
[ 1632.685329][ T4251] veth1_vlan: entered promiscuous mode
[ 1632.825792][ T4251] veth0_macvtap: entered promiscuous mode
[ 1632.867106][ T4251] veth1_macvtap: entered promiscuous mode
[ 1632.951267][ T4251] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1633.018013][ T4251] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1633.042919][ T4251] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1633.062510][ T4251] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1633.081862][ T4251] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1633.112023][ T4251] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1633.452223][T20355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1633.469682][T20355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1633.547593][ T2992] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1633.570615][ T2992] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1634.137072][ T5301] input: syz1 as /devices/virtual/input/input330
[ 1634.215621][ T5307] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1636.238128][ T5352] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[ 1636.271941][T17823] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1636.287908][T17823] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1636.296540][T17823] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1636.304993][   T49] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1636.330897][T17823] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1636.343487][T17823] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1637.104530][T28163] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1637.374384][T28163] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1637.390682][ T5406] syz.2.9225: attempt to access beyond end of device
[ 1637.390682][ T5406] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1637.607651][T28163] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1638.051990][T28163] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1638.088732][ T5357] chnl_net:caif_netlink_parms(): no params data found
[ 1638.321737][T17823] Bluetooth: hci1: command 0x1003 tx timeout
[ 1638.328830][ T7636] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1638.403663][ T7636] Bluetooth: hci3: command tx timeout
[ 1638.498156][ T5357] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1638.515734][ T5357] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1638.522452][ T5584] dlm: plock device version mismatch: kernel (1.2.0), user (1.6.16)
[ 1638.552699][ T5357] bridge_slave_0: entered allmulticast mode
[ 1638.566660][ T5357] bridge_slave_0: entered promiscuous mode
[ 1638.595216][ T5357] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1638.613731][ T5357] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1638.621398][ T5357] bridge_slave_1: entered allmulticast mode
[ 1638.631350][ T5357] bridge_slave_1: entered promiscuous mode
[ 1638.824818][ T5357] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1638.878966][ T5357] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1639.096314][ T5357] team0: Port device team_slave_0 added
[ 1639.123320][ T5357] team0: Port device team_slave_1 added
[ 1639.221326][T28163] bridge_slave_1: left allmulticast mode
[ 1639.227053][T28163] bridge_slave_1: left promiscuous mode
[ 1639.249563][T28163] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1639.276301][T28163] bridge_slave_0: left allmulticast mode
[ 1639.283607][T28163] bridge_slave_0: left promiscuous mode
[ 1639.296118][T28163] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1639.981082][ T5687] dlm: plock device version mismatch: kernel (1.2.0), user (1.6.16)
[ 1640.332730][ T5690] input: syz0 as /devices/virtual/input/input332
[ 1640.490624][ T7636] Bluetooth: hci3: command tx timeout
[ 1642.118248][T28163] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1642.195938][T28163] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1642.262614][T28163] bond0 (unregistering): Released all slaves
[ 1642.466454][ T5357] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1642.476135][ T5357] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1642.477077][ T5357] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1642.527866][ T5357] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1642.527894][ T5357] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1642.527938][ T5357] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1642.560208][ T7636] Bluetooth: hci3: command tx timeout
[ 1642.643582][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1642.823361][ T5357] hsr_slave_0: entered promiscuous mode
[ 1642.833749][ T5357] hsr_slave_1: entered promiscuous mode
[ 1642.864963][ T5357] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1642.879276][ T5357] Cannot create hsr debugfs directory
[ 1643.020916][ T5792] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1643.097669][ T5792] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1643.555915][T28163] hsr_slave_0: left promiscuous mode
[ 1643.573735][T28163] hsr_slave_1: left promiscuous mode
[ 1643.598175][T28163] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1643.629240][T28163] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1643.664782][T28163] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1643.684162][T28163] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1643.810911][T28163] veth1_macvtap: left promiscuous mode
[ 1643.816580][T28163] veth0_macvtap: left promiscuous mode
[ 1643.837501][T28163] veth1_vlan: left promiscuous mode
[ 1643.843359][T28163] veth0_vlan: left promiscuous mode
[ 1644.639544][ T7636] Bluetooth: hci3: command tx timeout
[ 1646.446721][T28163] team0 (unregistering): Port device team_slave_1 removed
[ 1646.652829][T28163] team0 (unregistering): Port device team_slave_0 removed
[ 1649.508431][ T5847] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1649.515887][ T5847] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 1649.712336][ T5872] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[ 1651.142974][ T5357] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1651.231606][ T5357] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1651.345810][ T5357] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1651.394549][ T5357] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1651.854851][ T5357] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1651.925059][ T5357] 8021q: adding VLAN 0 to HW filter on device team0
[ 1651.971175][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1651.978410][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1652.041135][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1652.048366][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1652.194000][ T6049] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1653.194441][ T5357] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1653.361067][ T5357] veth0_vlan: entered promiscuous mode
[ 1653.374156][ T6083] input: syz0 as /devices/virtual/input/input333
[ 1653.432268][ T5357] veth1_vlan: entered promiscuous mode
[ 1653.538114][ T5357] veth0_macvtap: entered promiscuous mode
[ 1653.558034][ T5357] veth1_macvtap: entered promiscuous mode
[ 1653.622849][ T5357] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1653.655132][ T5357] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1653.703840][ T5357] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1653.733962][ T5357] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1653.758085][ T5357] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1653.778852][ T5357] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1654.180554][T14606] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1654.188455][T14606] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1654.368833][ T2992] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1654.411113][ T2992] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1655.794233][ T6186] sp0: Synchronizing with TNC
[ 1656.557486][ T6232] input: syz1 as /devices/virtual/input/input334
[ 1657.122027][ T6267] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1657.141738][ T6267] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[ 1657.407699][ T6288] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1657.856432][ T6306] mkiss: ax0: crc mode is auto.
[ 1658.019202][ T6315] dlm: plock device version mismatch: kernel (1.2.0), user (1000.6.16)
[ 1658.140032][ T6319] cgroup: fork rejected by pids controller in /syz4
[ 1658.599263][ T6335] binder: 6334:6335 ioctl 400c620e 9999999999999999 returned -14
[ 1659.229853][ T6349] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1659.546919][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1659.642654][ T6347] mkiss: ax0: crc mode is auto.
[ 1659.891483][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1660.123179][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1660.322088][T17823] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1660.340661][T17823] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1660.351031][T17823] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1660.364049][T17823] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1660.375687][T17823] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1660.397747][ T7636] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1660.402815][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1660.419939][ T7636] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1660.430209][ T7636] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1660.440282][ T7636] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1660.454969][ T7636] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1661.113572][   T13] bridge_slave_1: left allmulticast mode
[ 1661.119628][   T13] bridge_slave_1: left promiscuous mode
[ 1661.149568][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1661.332880][   T13] bridge_slave_0: left allmulticast mode
[ 1661.350074][   T13] bridge_slave_0: left promiscuous mode
[ 1661.355983][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1662.479279][ T7636] Bluetooth: hci0: command tx timeout
[ 1662.708200][ T6479] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1662.739801][ T6479] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1664.185873][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1664.236606][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1664.281173][   T13] bond0 (unregistering): Released all slaves
[ 1664.504953][ T6381] chnl_net:caif_netlink_parms(): no params data found
[ 1664.562045][ T7636] Bluetooth: hci0: command tx timeout
[ 1664.631138][ T6484] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1664.637127][ T6484] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1665.211347][ T6677] dlm: plock device version mismatch: kernel (1.2.0), user (1.6.16)
[ 1665.431442][ T6684] input: syz0 as /devices/virtual/input/input335
[ 1665.482297][ T6381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1665.526885][ T6381] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1665.539731][ T6381] bridge_slave_0: entered allmulticast mode
[ 1665.561729][ T6381] bridge_slave_0: entered promiscuous mode
[ 1665.621233][ T6381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1665.653433][ T6381] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1665.682600][ T6381] bridge_slave_1: entered allmulticast mode
[ 1665.700431][ T6381] bridge_slave_1: entered promiscuous mode
[ 1665.725271][ T6698] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1665.899328][   T13] hsr_slave_0: left promiscuous mode
[ 1665.926454][   T13] hsr_slave_1: left promiscuous mode
[ 1665.942729][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1665.964661][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1665.991500][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1666.000649][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1666.047760][   T13] veth1_macvtap: left promiscuous mode
[ 1666.078703][   T13] veth0_macvtap: left promiscuous mode
[ 1666.101380][   T13] veth1_vlan: left promiscuous mode
[ 1666.135433][   T13] veth0_vlan: left promiscuous mode
[ 1669.125342][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.139226][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1669.324139][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1669.583821][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1669.598813][ T6771] slcan: can't register candev
[ 1672.382546][ T6381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1672.446788][ T6381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1672.665320][ T6381] team0: Port device team_slave_0 added
[ 1672.683670][ T6381] team0: Port device team_slave_1 added
[ 1672.722068][ T6820] dlm: plock device version mismatch: kernel (1.2.0), user (1.6.16)
[ 1672.897656][ T6381] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1672.914718][ T6381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1673.016686][ T6381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1673.059673][ T6381] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1673.066723][ T6381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1673.111474][ T6381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1673.612534][ T6381] hsr_slave_0: entered promiscuous mode
[ 1673.669554][ T6381] hsr_slave_1: entered promiscuous mode
[ 1674.691426][ T6988] syz.2.9349: attempt to access beyond end of device
[ 1674.691426][ T6988] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1675.703909][ T7047] syz.2.9358: attempt to access beyond end of device
[ 1675.703909][ T7047] nbd0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1675.818959][ T6381] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1675.896071][ T6381] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1675.946233][ T6381] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1676.024263][ T6381] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1676.377505][ T6381] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1676.496362][ T6381] 8021q: adding VLAN 0 to HW filter on device team0
[ 1676.532331][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1676.539604][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1676.605210][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1676.612499][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1677.436492][ T7106] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1677.827048][ T6381] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1677.922667][ T7124] vivid-000: =================  START STATUS  =================
[ 1677.975290][ T7124] vivid-000: Radio HW Seek Mode: Bounded
[ 1678.001937][ T7124] vivid-000: Radio Programmable HW Seek: false
[ 1678.024098][ T7124] vivid-000: RDS Rx I/O Mode: Block I/O
[ 1678.087447][ T7124] vivid-000: Generate RBDS Instead of RDS: false
[ 1678.178710][ T7124] vivid-000: RDS Reception: false
[ 1678.184396][ T7124] vivid-000: RDS Program Type: 0 inactive
[ 1678.200180][ T7124] vivid-000: RDS PS Name:  inactive
[ 1678.208423][ T7124] vivid-000: RDS Radio Text:  inactive
[ 1678.218663][ T7124] vivid-000: RDS Traffic Announcement: false inactive
[ 1678.246963][ T7124] vivid-000: RDS Traffic Program: false inactive
[ 1678.263008][ T7124] vivid-000: RDS Music: false inactive
[ 1678.272579][ T7124] vivid-000: ==================  END STATUS  ==================
[ 1678.314119][ T7132] vivid-000: =================  START STATUS  =================
[ 1678.336627][ T7132] vivid-000: Radio HW Seek Mode: Bounded
[ 1678.351801][ T7132] vivid-000: Radio Programmable HW Seek: false
[ 1678.358221][ T7132] vivid-000: RDS Rx I/O Mode: Block I/O
[ 1678.364096][ T7132] vivid-000: Generate RBDS Instead of RDS: false
[ 1678.370871][ T7132] vivid-000: RDS Reception: false
[ 1678.376280][ T7132] vivid-000: RDS Program Type: 0 inactive
[ 1678.382284][ T7132] vivid-000: RDS PS Name:  inactive
[ 1678.416948][ T7132] vivid-000: RDS Radio Text:  inactive
[ 1678.426983][ T7132] vivid-000: RDS Traffic Announcement: false inactive
[ 1678.435413][ T7132] vivid-000: RDS Traffic Program: false inactive
[ 1678.444366][ T7132] vivid-000: RDS Music: false inactive
[ 1678.543880][ T7132] vivid-000: ==================  END STATUS  ==================
[ 1678.733652][ T7150] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1678.750789][ T6381] veth0_vlan: entered promiscuous mode
[ 1678.807288][ T6381] veth1_vlan: entered promiscuous mode
[ 1678.952230][ T6381] veth0_macvtap: entered promiscuous mode
[ 1678.991925][ T6381] veth1_macvtap: entered promiscuous mode
[ 1679.072957][ T6381] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1679.107711][ T6381] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1679.151941][ T6381] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1679.171751][ T6381] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1679.182754][ T6381] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1679.194727][ T6381] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1679.476687][ T2992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1679.497855][ T2992] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1679.595735][ T2992] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1679.622750][ T2992] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1679.943169][ T7225] binder: 7224:7225 ioctl c0306201 200000000000 returned -14
[ 1680.799849][ T7636] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1681.855868][ T7293] sp0: Synchronizing with TNC
[ 1682.202239][ T7291] [U] è
[ 1682.692675][ T7346] input: syz1 as /devices/virtual/input/input338
[ 1682.775493][ T7354] binder: 7344:7354 ioctl c00c620f 0 returned -14
[ 1682.949737][ T7354] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[ 1684.125389][ T7405] QAT: Invalid ioctl -2147176575
[ 1684.146098][ T7405] QAT: Invalid ioctl -1072405338
[ 1686.444220][ T7490] input: syz1 as /devices/virtual/input/input339
[ 1687.200826][ T7538] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1687.401495][ T7556] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1687.589459][ T7567] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1688.305770][ T7592] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1689.127139][ T7609] random: crng reseeded on system resumption
[ 1689.318158][ T7618] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1690.516597][ T7767] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1690.966860][ T7808] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1691.132095][ T7825] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1691.781193][ T7855] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1692.209288][ T7867] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[ 1692.788789][ T7888] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1692.800825][ T7888] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1693.523479][ T7915] dlm: plock device version mismatch: kernel (1.2.0), user (1986356271.1684107823.2322281)
[ 1693.589709][ T7917] binder: 7916:7917 ioctl c018620c 0 returned -14
[ 1693.719643][ T7922] binder: 7916:7922 ioctl c018620c 0 returned -14
[ 1693.729320][ T7921] input: syz1 as /devices/virtual/input/input340
[ 1693.880862][ T7925] input: syz1 as /devices/virtual/input/input341
[ 1695.057582][ T7952] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1695.418334][ T7975] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1696.007325][ T7987] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1697.274172][ T8016] dlm: non-version read from control device 215
[ 1698.195027][ T8049] Failed to get privilege flags for destination (handle=0x2:0x10)
[ 1698.264049][ T8052] CUSE: info not properly terminated
[ 1698.429722][ T8055] mkiss: ax0: crc mode is auto.
[ 1699.228403][ T8072] syz.2.9503: attempt to access beyond end of device
[ 1699.228403][ T8072] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1699.643156][ T8081] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1701.669544][   T30] audit: type=1400 audit(1750380250.470:52): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=5D9625292F2D2E212D pid=8116 comm="syz.5.9514"
[ 1703.134952][ T8177] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1705.270266][ T8329] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1705.331216][ T8332] pim6reg0: tun_chr_ioctl cmd 1074025677
[ 1705.337275][ T8332] pim6reg0: linktype set to 769
[ 1707.079980][   T30] audit: type=1400 audit(1750380255.880:53): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3A3A0AE10CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A552C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=8401 comm="syz.0.9553"
[ 1707.111383][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1707.145301][ T8400] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1710.438558][ T8488] hub 6-0:1.0: USB hub found
[ 1710.452840][ T8488] hub 6-0:1.0: 1 port detected
[ 1711.024292][ T8504] input: syz0 as /devices/virtual/input/input344
[ 1712.484869][ T8552] random: crng reseeded on system resumption
[ 1713.316341][ T8575] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1714.884708][ T8630] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1715.064690][ T8638] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1717.626447][ T8692] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1717.838936][ T8707] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1719.557781][ T8737] mkiss: ax0: crc mode is auto.
[ 1720.443727][ T8790] tap0: tun_chr_ioctl cmd 1074812118
[ 1722.579983][ T8898] random: crng reseeded on system resumption
[ 1723.262794][ T8927] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1725.217894][ T8998] syz.0.9657: attempt to access beyond end of device
[ 1725.217894][ T8998] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1725.910221][ T9031] CUSE: info not properly terminated
[ 1728.373662][ T9115] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1730.261187][ T9207] ALSA: seq fatal error: cannot create timer (-22)
[ 1730.590502][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.597139][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1731.255149][ T9238] CUSE: info not properly terminated
[ 1732.063475][ T9275] random: crng reseeded on system resumption
[ 1734.030368][ T9326] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1734.580088][ T9352] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1735.753478][   T30] audit: type=1800 audit(1750380284.560:54): pid=9384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.9733" name="dmabuf" dev="dmabuf" ino=59 res=0 errno=0
[ 1735.773356][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1736.646394][ T9413] syz.2.9740: attempt to access beyond end of device
[ 1736.646394][ T9413] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1737.402346][ T9435] binder: 9433:9435 ioctl c0046209 0 returned -22
[ 1738.386209][ T9448] loop6: detected capacity change from 0 to 524287999
[ 1742.480002][ T9561] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1742.705202][ T9558] loop6: detected capacity change from 0 to 524287999
[ 1742.712969][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.721568][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.729763][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.737912][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.746065][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.754240][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.762491][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.785823][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.815612][ T9558] ldm_validate_partition_table(): Disk read failed.
[ 1742.859592][ T9560] Invalid logical block size (9)
[ 1742.875013][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.931085][ T9558] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1742.952209][ T9558] Dev loop6: unable to read RDB block 0
[ 1742.958590][ T9558]  loop6: unable to read partition table
[ 1743.009511][ T9558] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[ 1743.071124][ T5208] ldm_validate_partition_table(): Disk read failed.
[ 1743.078244][ T5208] Dev loop6: unable to read RDB block 0
[ 1743.097704][ T5208]  loop6: unable to read partition table
[ 1747.669234][ T9867] usb usb8: usbfs: process 9867 (syz.5.9805) did not claim interface 0 before use
[ 1748.023983][ T9874] vivid-000: disconnect
[ 1748.063744][ T9874] vivid-000: reconnect
[ 1748.292152][ T9881] kvm: user requested TSC rate below hardware speed
[ 1751.688164][ T9983] mkiss: ax0: crc mode is auto.
[ 1752.436809][T10030] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[ 1752.705115][T10038] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1752.858388][T10045] ptm ptm17: ldisc open failed (-12), clearing slot 17
[ 1753.074093][T10062] mkiss: ax0: crc mode is auto.
[ 1753.280838][T10080] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1754.186372][T28163] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1754.364692][T10114] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1754.385042][T28163] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1754.722415][T28163] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1754.956077][ T7636] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1754.970544][T28163] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1754.983093][ T7636] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1754.992226][ T7636] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1755.003284][ T7636] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1755.013032][ T7636] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1755.069452][T17823] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1755.078171][T17823] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1755.087903][T17823] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1755.108899][T17823] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1755.118544][T17823] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1755.479601][T28163] bridge_slave_1: left allmulticast mode
[ 1755.490633][T28163] bridge_slave_1: left promiscuous mode
[ 1755.497114][T28163] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1755.516527][T28163] bridge_slave_0: left allmulticast mode
[ 1755.529258][T28163] bridge_slave_0: left promiscuous mode
[ 1755.545449][T28163] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1757.199437][ T7636] Bluetooth: hci1: command tx timeout
[ 1757.815292][T28163] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1757.872803][T28163] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1757.921199][T28163] bond0 (unregistering): Released all slaves
[ 1758.118187][T10201] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1758.154767][T10201] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[ 1758.511119][T10273] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1759.092268][T28163] hsr_slave_0: left promiscuous mode
[ 1759.131287][T28163] hsr_slave_1: left promiscuous mode
[ 1759.149470][T28163] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1759.157017][T28163] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1759.178192][T28163] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1759.196337][T28163] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1759.294788][T28163] veth1_macvtap: left promiscuous mode
[ 1759.313228][T28163] veth0_macvtap: left promiscuous mode
[ 1759.329612][T28163] veth1_vlan: left promiscuous mode
[ 1759.341651][T28163] veth0_vlan: left promiscuous mode
[ 1760.436273][T10459] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1761.271214][T10538] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1761.517374][T10551] input: syz1 as /devices/virtual/input/input349
[ 1762.613184][T28163] team0 (unregistering): Port device team_slave_1 removed
[ 1762.833597][T28163] team0 (unregistering): Port device team_slave_0 removed
[ 1763.167912][T10579] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1763.527543][T10595] kvm: user requested TSC rate below hardware speed
[ 1765.917311][T10129] chnl_net:caif_netlink_parms(): no params data found
[ 1766.490837][T10129] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1766.498923][T10129] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1766.518128][T10129] bridge_slave_0: entered allmulticast mode
[ 1766.536173][T10129] bridge_slave_0: entered promiscuous mode
[ 1766.939357][T10129] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1766.946611][T10129] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1766.961312][T10129] bridge_slave_1: entered allmulticast mode
[ 1766.969981][T10129] bridge_slave_1: entered promiscuous mode
[ 1767.218800][T10129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1767.243690][T10129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1767.421798][T10751] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1767.463883][T10129] team0: Port device team_slave_0 added
[ 1767.483203][T10129] team0: Port device team_slave_1 added
[ 1767.577343][T10129] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1767.590979][T10129] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1767.617018][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1767.625284][T10129] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1767.655339][T10129] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1767.680211][T10129] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1767.749217][T10129] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1767.831802][T10804] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1767.842347][ T7636] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1767.943193][T10129] hsr_slave_0: entered promiscuous mode
[ 1767.950885][T10129] hsr_slave_1: entered promiscuous mode
[ 1767.957438][T10129] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1767.993133][T10129] Cannot create hsr debugfs directory
[ 1769.679267][T10946] i2c i2c-0: Invalid block write size 34
[ 1770.270339][T10985] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1770.443215][T10985] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1770.575950][T10997] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1771.067746][T10129] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1771.086996][T10129] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1771.124191][T10129] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1771.158097][T10129] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1771.507009][T10129] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1771.561077][T10129] 8021q: adding VLAN 0 to HW filter on device team0
[ 1771.613851][ T3478] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1771.621605][ T3478] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1771.654099][ T3478] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1771.661427][ T3478] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1771.811682][T10129] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1771.838248][T10129] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1772.474059][T10129] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1772.712802][T10129] veth0_vlan: entered promiscuous mode
[ 1772.773731][T10129] veth1_vlan: entered promiscuous mode
[ 1772.873578][T10129] veth0_macvtap: entered promiscuous mode
[ 1772.919589][T10129] veth1_macvtap: entered promiscuous mode
[ 1773.027771][T10129] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1773.092960][T10129] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1773.133110][T10129] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1773.189105][T10129] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1773.197925][T10129] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1773.259138][T10129] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1773.586898][T20355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1773.619412][T20355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1773.730112][T28163] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1773.753386][T28163] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1774.131741][T11121] input: syz1 as /devices/virtual/input/input350
[ 1776.796306][T11239] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1777.537836][T11277] syz.2.9936: attempt to access beyond end of device
[ 1777.537836][T11277] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1777.620440][T11274] QAT: failed to copy from user.
[ 1777.653484][T11274] QAT: failed to copy from user.
[ 1777.653614][T11274] QAT: failed to copy from user.
[ 1777.653720][T11274] QAT: failed to copy from user.
[ 1777.653818][T11274] QAT: failed to copy from user.
[ 1777.653928][T11274] QAT: failed to copy from user.
[ 1777.654028][T11274] QAT: failed to copy from user.
[ 1777.654126][T11274] QAT: failed to copy from user.
[ 1777.654237][T11274] QAT: failed to copy from user.
[ 1777.654336][T11274] QAT: failed to copy from user.
[ 1777.656043][T11274] QAT: failed to copy from user.
[ 1777.656142][T11274] QAT: failed to copy from user.
[ 1777.656233][T11274] QAT: failed to copy from user.
[ 1777.656326][T11274] QAT: failed to copy from user.
[ 1777.656417][T11274] QAT: failed to copy from user.
[ 1777.656512][T11274] QAT: failed to copy from user.
[ 1777.670062][T11274] QAT: failed to copy from user.
[ 1777.670199][T11274] QAT: failed to copy from user.
[ 1777.670299][T11274] QAT: failed to copy from user.
[ 1777.670420][T11274] QAT: failed to copy from user.
[ 1777.670523][T11274] QAT: failed to copy from user.
[ 1777.670621][T11274] QAT: failed to copy from user.
[ 1777.670720][T11274] QAT: failed to copy from user.
[ 1777.670821][T11274] QAT: failed to copy from user.
[ 1777.670945][T11274] QAT: failed to copy from user.
[ 1777.671125][T11274] QAT: failed to copy from user.
[ 1777.671227][T11274] QAT: failed to copy from user.
[ 1777.671324][T11274] QAT: failed to copy from user.
[ 1777.671425][T11274] QAT: failed to copy from user.
[ 1777.671527][T11274] QAT: failed to copy from user.
[ 1777.671626][T11274] QAT: failed to copy from user.
[ 1777.671734][T11274] QAT: failed to copy from user.
[ 1777.671826][T11274] QAT: failed to copy from user.
[ 1778.075257][T11285] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1778.098382][T11295] blktrace: Concurrent blktraces are not allowed on sg0
[ 1781.786101][T11389] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1782.495031][T11417] loop6: detected capacity change from 0 to 524287999
[ 1783.563740][T17823] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1783.573598][T17823] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1783.583362][T17823] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1783.598162][T17823] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1783.608824][T17823] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1783.637672][ T7636] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1783.693544][ T7636] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1783.706167][ T7636] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1783.718384][ T7636] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1783.737632][ T7636] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1784.543039][   T36] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1784.782209][   T36] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1784.976355][   T36] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1785.205643][   T36] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1785.729697][   T36] bridge_slave_1: left allmulticast mode
[ 1785.759280][   T36] bridge_slave_1: left promiscuous mode
[ 1785.766325][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1785.806364][   T36] bridge_slave_0: left allmulticast mode
[ 1785.840719][   T36] bridge_slave_0: left promiscuous mode
[ 1785.849347][T11511] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1785.855328][T11511] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1785.863585][ T7636] Bluetooth: hci2: command tx timeout
[ 1785.878800][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1787.757632][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1787.811652][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1787.873131][   T36] bond0 (unregistering): Released all slaves
[ 1787.951866][T11451] chnl_net:caif_netlink_parms(): no params data found
[ 1788.190411][T11451] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1788.198108][T11451] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1788.206941][T11451] bridge_slave_0: entered allmulticast mode
[ 1788.215943][T11451] bridge_slave_0: entered promiscuous mode
[ 1788.226895][T11451] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1788.235098][T11451] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1788.242837][T11451] bridge_slave_1: entered allmulticast mode
[ 1788.251484][T11451] bridge_slave_1: entered promiscuous mode
[ 1788.386871][T11451] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1788.442395][T11451] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1788.594898][T11451] team0: Port device team_slave_0 added
[ 1788.623539][T11451] team0: Port device team_slave_1 added
[ 1788.725973][T11451] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1788.742519][T11451] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1788.776019][T11451] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1788.793164][T11451] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1788.803385][T11451] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1788.831552][T11451] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1789.038323][T11451] hsr_slave_0: entered promiscuous mode
[ 1789.048518][T11451] hsr_slave_1: entered promiscuous mode
[ 1789.055851][T11451] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1789.073581][T11451] Cannot create hsr debugfs directory
[ 1789.664703][T11916] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1790.405617][T11451] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1790.433765][T11451] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1790.457192][T11451] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1790.535215][T11451] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1790.853517][T11451] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1790.933494][T11451] 8021q: adding VLAN 0 to HW filter on device team0
[ 1790.973843][T20355] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1790.981105][T20355] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1791.028024][T20355] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1791.035438][T20355] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1791.466123][T11451] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1791.874595][T11451] veth0_vlan: entered promiscuous mode
[ 1791.903262][T11451] veth1_vlan: entered promiscuous mode
[ 1791.962498][T11451] veth0_macvtap: entered promiscuous mode
[ 1791.976688][T11451] veth1_macvtap: entered promiscuous mode
[ 1792.007592][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.019302][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.025596][T11451] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1792.031509][T11451] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1792.064803][T11451] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.075751][T11451] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.098829][T11451] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.114084][T11451] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1853.446454][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.453027][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1914.886822][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.897663][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1946.879274][   T31] INFO: task kworker/u8:2:36 blocked for more than 143 seconds.
[ 1946.887069][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1946.894933][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1946.903795][   T31] task:kworker/u8:2    state:D stack:20680 pid:36    tgid:36    ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1946.916047][   T31] Workqueue: netns cleanup_net
[ 1946.920911][   T31] Call Trace:
[ 1946.924193][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1946.927141][   T31]  __schedule+0x16f5/0x4d00
[ 1946.931857][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1946.936757][   T31]  ? schedule+0x165/0x360
[ 1946.942531][   T31]  ? __pfx___schedule+0x10/0x10
[ 1946.947466][   T31]  ? schedule+0x91/0x360
[ 1946.951923][   T31]  schedule+0x165/0x360
[ 1946.956171][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1946.979077][   T31]  __mutex_lock+0x724/0xe80
[ 1946.983696][   T31]  ? kobject_put+0x43f/0x480
[ 1946.988325][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1947.019210][   T31]  ? rfkill_unregister+0xc8/0x220
[ 1947.024340][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1947.036508][   T31]  ? __pfx_device_del+0x10/0x10
[ 1947.043452][   T31]  rfkill_unregister+0xc8/0x220
[ 1947.048386][   T31]  wiphy_unregister+0x238/0xae0
[ 1947.055010][   T31]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[ 1947.061734][   T31]  ? __pfx_wiphy_unregister+0x10/0x10
[ 1947.067156][   T31]  ? kasan_quarantine_put+0xdd/0x220
[ 1947.072509][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1947.077756][   T31]  ? kfree+0x18e/0x440
[ 1947.081969][   T31]  ieee80211_unregister_hw+0x1e2/0x2c0
[ 1947.087500][   T31]  mac80211_hwsim_del_radio+0x275/0x460
[ 1947.093252][   T31]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[ 1947.099516][   T31]  hwsim_exit_net+0x584/0x640
[ 1947.104392][   T31]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1947.109732][   T31]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[ 1947.115590][   T31]  ops_undo_list+0x49a/0x990
[ 1947.123056][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1947.128248][   T31]  cleanup_net+0x4c5/0x800
[ 1947.132750][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1947.137718][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1947.143086][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1947.149156][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1947.155049][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1947.160816][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1947.166869][   T31]  worker_thread+0x8a0/0xda0
[ 1947.171572][   T31]  kthread+0x70e/0x8a0
[ 1947.175694][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1947.181166][   T31]  ? __pfx_kthread+0x10/0x10
[ 1947.185953][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1947.191386][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1947.196747][   T31]  ? __pfx_kthread+0x10/0x10
[ 1947.201675][   T31]  ret_from_fork+0x3f9/0x770
[ 1947.206338][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1947.211540][   T31]  ? __switch_to_asm+0x39/0x70
[ 1947.216458][   T31]  ? __switch_to_asm+0x33/0x70
[ 1947.221407][   T31]  ? __pfx_kthread+0x10/0x10
[ 1947.226038][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1947.230955][   T31]  </TASK>
[ 1947.234234][   T31] INFO: task kworker/1:3:19684 blocked for more than 143 seconds.
[ 1947.243238][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1947.255873][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1947.264779][   T31] task:kworker/1:3     state:D stack:24296 pid:19684 tgid:19684 ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1947.277136][   T31] Workqueue: events rfkill_global_led_trigger_worker
[ 1947.283963][   T31] Call Trace:
[ 1947.287272][   T31]  <TASK>
[ 1947.290390][   T31]  __schedule+0x16f5/0x4d00
[ 1947.294967][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1947.300566][   T31]  ? schedule+0x165/0x360
[ 1947.305000][   T31]  ? __pfx___schedule+0x10/0x10
[ 1947.310038][   T31]  ? schedule+0x91/0x360
[ 1947.314335][   T31]  schedule+0x165/0x360
[ 1947.318512][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1947.324029][   T31]  __mutex_lock+0x724/0xe80
[ 1947.328557][   T31]  ? look_up_lock_class+0x74/0x170
[ 1947.333751][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1947.338456][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[ 1947.344879][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1947.350050][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1947.355868][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1947.361756][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[ 1947.368031][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1947.374031][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1947.379731][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1947.385879][   T31]  worker_thread+0x8a0/0xda0
[ 1947.390555][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1947.397013][   T31]  ? __kthread_parkme+0x7b/0x200
[ 1947.402110][   T31]  kthread+0x70e/0x8a0
[ 1947.406288][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1947.411618][   T31]  ? __pfx_kthread+0x10/0x10
[ 1947.416356][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1947.421975][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1947.427564][   T31]  ? __pfx_kthread+0x10/0x10
[ 1947.432304][   T31]  ret_from_fork+0x3f9/0x770
[ 1947.437024][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1947.442262][   T31]  ? __switch_to_asm+0x39/0x70
[ 1947.447154][   T31]  ? __switch_to_asm+0x33/0x70
[ 1947.451988][   T31]  ? __pfx_kthread+0x10/0x10
[ 1947.456621][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1947.461572][   T31]  </TASK>
[ 1947.464664][   T31] INFO: task syz-executor:11451 blocked for more than 143 seconds.
[ 1947.472767][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1947.480454][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1947.489533][   T31] task:syz-executor    state:D stack:21704 pid:11451 tgid:11451 ppid:1      task_flags:0x400140 flags:0x00004004
[ 1947.502316][   T31] Call Trace:
[ 1947.505995][   T31]  <TASK>
[ 1947.509051][   T31]  __schedule+0x16f5/0x4d00
[ 1947.513981][   T31]  ? __kasan_slab_free+0x62/0x70
[ 1947.520537][   T31]  ? security_file_open+0xb1/0x270
[ 1947.526242][   T31]  ? do_dentry_open+0x35e/0x1970
[ 1947.531857][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1947.536936][   T31]  ? schedule+0x165/0x360
[ 1947.541378][   T31]  ? __pfx___schedule+0x10/0x10
[ 1947.546473][   T31]  ? schedule+0x91/0x360
[ 1947.550983][   T31]  schedule+0x165/0x360
[ 1947.555263][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1947.560799][   T31]  __mutex_lock+0x724/0xe80
[ 1947.565357][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1947.570216][   T31]  ? misc_open+0x51/0x330
[ 1947.574670][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1947.579958][   T31]  misc_open+0x51/0x330
[ 1947.584440][   T31]  chrdev_open+0x4cc/0x5e0
[ 1947.589338][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1947.594339][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1947.599741][   T31]  do_dentry_open+0xdf3/0x1970
[ 1947.604588][   T31]  vfs_open+0x3b/0x340
[ 1947.608697][   T31]  ? path_openat+0x2ecd/0x3830
[ 1947.613663][   T31]  path_openat+0x2ee5/0x3830
[ 1947.618370][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1947.623571][   T31]  ? do_syscall_64+0xfa/0x3b0
[ 1947.628373][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1947.633503][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1947.640837][   T31]  do_filp_open+0x1fa/0x410
[ 1947.645403][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1947.650364][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1947.655485][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1947.660863][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1947.665527][   T31]  do_sys_openat2+0x121/0x1c0
[ 1947.670962][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1947.676306][   T31]  ? fput_close_sync+0x119/0x200
[ 1947.681831][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[ 1947.687302][   T31]  __x64_sys_openat+0x138/0x170
[ 1947.692265][   T31]  do_syscall_64+0xfa/0x3b0
[ 1947.696801][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1947.703010][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1947.709276][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1947.713997][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1947.720146][   T31] RIP: 0033:0x7f8b7698d290
[ 1947.724861][   T31] RSP: 002b:00007fff7f7dbc50 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1947.733760][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8b7698d290
[ 1947.741965][   T31] RDX: 0000000000000002 RSI: 00007f8b76a115b1 RDI: 00000000ffffff9c
[ 1947.750367][   T31] RBP: 00007f8b76a115b1 R08: 0000000000000000 R09: 0000000000000000
[ 1947.758475][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008
[ 1947.774048][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1947.782345][   T31]  </TASK>
[ 1947.785524][   T31] INFO: task syz.4.9964:11511 blocked for more than 144 seconds.
[ 1947.793417][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1947.801217][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1947.810141][   T31] task:syz.4.9964      state:D stack:25624 pid:11511 tgid:11502 ppid:6381   task_flags:0x400040 flags:0x00004006
[ 1947.822328][   T31] Call Trace:
[ 1947.825724][   T31]  <TASK>
[ 1947.829196][   T31]  __schedule+0x16f5/0x4d00
[ 1947.834158][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1947.839555][   T31]  ? schedule+0x165/0x360
[ 1947.843958][   T31]  ? __pfx___schedule+0x10/0x10
[ 1947.849437][   T31]  ? schedule+0x91/0x360
[ 1947.853910][   T31]  schedule+0x165/0x360
[ 1947.858292][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1947.863943][   T31]  __mutex_lock+0x724/0xe80
[ 1947.868522][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1947.873920][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1947.878706][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[ 1947.884324][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1947.889497][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1947.894801][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1947.901113][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1947.907584][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 1947.913495][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[ 1947.918799][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 1947.924900][   T31]  rfkill_set_block+0x1cf/0x440
[ 1947.930031][   T31]  rfkill_fop_write+0x44b/0x570
[ 1947.934927][   T31]  ? common_file_perm+0x199/0x200
[ 1947.940037][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[ 1947.945436][   T31]  ? security_kernfs_init_security+0x250/0x290
[ 1947.951781][   T31]  ? rw_verify_area+0x258/0x650
[ 1947.956807][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[ 1947.962249][   T31]  vfs_write+0x27b/0xa90
[ 1947.966531][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 1947.971386][   T31]  ? __fget_files+0x2a/0x420
[ 1947.976014][   T31]  ? __fget_files+0x2a/0x420
[ 1947.980665][   T31]  ? __fget_files+0x3a0/0x420
[ 1947.985501][   T31]  ? __fget_files+0x2a/0x420
[ 1947.990240][   T31]  ksys_write+0x145/0x250
[ 1947.994717][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 1947.999816][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1948.004652][   T31]  ? do_syscall_64+0xbe/0x3b0
[ 1948.009452][   T31]  do_syscall_64+0xfa/0x3b0
[ 1948.014033][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1948.019451][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.025762][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1948.030786][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.036925][   T31] RIP: 0033:0x7fe47038e929
[ 1948.045603][   T31] RSP: 002b:00007fe47114a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1948.054379][   T31] RAX: ffffffffffffffda RBX: 00007fe4705b6080 RCX: 00007fe47038e929
[ 1948.062540][   T31] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000008
[ 1948.070763][   T31] RBP: 00007fe470410b39 R08: 0000000000000000 R09: 0000000000000000
[ 1948.078805][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1948.087034][   T31] R13: 0000000000000000 R14: 00007fe4705b6080 R15: 00007fffdd54d218
[ 1948.095217][   T31]  </TASK>
[ 1948.098295][   T31] INFO: task syz.0.9965:11505 blocked for more than 144 seconds.
[ 1948.106770][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1948.114609][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1948.123335][   T31] task:syz.0.9965      state:D stack:26200 pid:11505 tgid:11503 ppid:5357   task_flags:0x400140 flags:0x00004006
[ 1948.135335][   T31] Call Trace:
[ 1948.138666][   T31]  <TASK>
[ 1948.142004][   T31]  __schedule+0x16f5/0x4d00
[ 1948.146597][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1948.152780][   T31]  ? schedule+0x165/0x360
[ 1948.157258][   T31]  ? __pfx___schedule+0x10/0x10
[ 1948.162936][   T31]  ? schedule+0x91/0x360
[ 1948.167882][   T31]  schedule+0x165/0x360
[ 1948.172295][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1948.177809][   T31]  __mutex_lock+0x724/0xe80
[ 1948.182410][   T31]  ? kobject_put+0x43f/0x480
[ 1948.187143][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1948.192353][   T31]  ? rfkill_unregister+0xc8/0x220
[ 1948.197612][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1948.202905][   T31]  ? __pfx_device_del+0x10/0x10
[ 1948.207815][   T31]  rfkill_unregister+0xc8/0x220
[ 1948.212791][   T31]  nfc_unregister_device+0x96/0x2a0
[ 1948.218046][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[ 1948.223872][   T31]  virtual_ncidev_close+0x56/0x90
[ 1948.228979][   T31]  __fput+0x44c/0xa70
[ 1948.233008][   T31]  task_work_run+0x1d1/0x260
[ 1948.237653][   T31]  ? __pfx_task_work_run+0x10/0x10
[ 1948.243087][   T31]  get_signal+0x11ed/0x1340
[ 1948.247670][   T31]  ? task_work_add+0x377/0x420
[ 1948.252542][   T31]  ? __pfx_vfs_read+0x10/0x10
[ 1948.257548][   T31]  arch_do_signal_or_restart+0x9a/0x750
[ 1948.264734][   T31]  ? __pfx___fput_deferred+0x10/0x10
[ 1948.270230][   T31]  ? __fget_files+0x2a/0x420
[ 1948.274898][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1948.281217][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[ 1948.286936][   T31]  exit_to_user_mode_loop+0x75/0x110
[ 1948.292367][   T31]  do_syscall_64+0x2bd/0x3b0
[ 1948.296986][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1948.302302][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.308493][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1948.313292][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.319354][   T31] RIP: 0033:0x7f1a3c18e929
[ 1948.323899][   T31] RSP: 002b:00007f1a3cf2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1948.332412][   T31] RAX: fffffffffffffff2 RBX: 00007f1a3c3b5fa0 RCX: 00007f1a3c18e929
[ 1948.340577][   T31] RDX: 0000000000001000 RSI: 00002000000002c0 RDI: 0000000000000004
[ 1948.348747][   T31] RBP: 00007f1a3c210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1948.356963][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1948.365075][   T31] R13: 0000000000000000 R14: 00007f1a3c3b5fa0 R15: 00007ffc5a5f2728
[ 1948.374364][   T31]  </TASK>
[ 1948.377559][   T31] INFO: task syz.2.9973:11962 blocked for more than 144 seconds.
[ 1948.385895][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1948.393795][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1948.402653][   T31] task:syz.2.9973      state:D stack:27752 pid:11962 tgid:11959 ppid:10129  task_flags:0x400040 flags:0x00004004
[ 1948.415014][   T31] Call Trace:
[ 1948.418341][   T31]  <TASK>
[ 1948.421373][   T31]  __schedule+0x16f5/0x4d00
[ 1948.425935][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1948.432083][   T31]  ? schedule+0x165/0x360
[ 1948.436480][   T31]  ? __pfx___schedule+0x10/0x10
[ 1948.441477][   T31]  ? schedule+0x91/0x360
[ 1948.445792][   T31]  schedule+0x165/0x360
[ 1948.450154][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1948.455672][   T31]  __mutex_lock+0x724/0xe80
[ 1948.460397][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1948.465347][   T31]  ? rfkill_fop_open+0x12d/0x820
[ 1948.470520][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1948.475606][   T31]  ? __raw_spin_lock_init+0x45/0x100
[ 1948.481493][   T31]  ? __init_waitqueue_head+0xa9/0x150
[ 1948.486913][   T31]  rfkill_fop_open+0x12d/0x820
[ 1948.492312][   T31]  ? __pfx_rfkill_fop_open+0x10/0x10
[ 1948.497752][   T31]  misc_open+0x2bc/0x330
[ 1948.502205][   T31]  chrdev_open+0x4cc/0x5e0
[ 1948.506686][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1948.511823][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1948.516802][   T31]  do_dentry_open+0xdf3/0x1970
[ 1948.521660][   T31]  vfs_open+0x3b/0x340
[ 1948.525754][   T31]  ? path_openat+0x2ecd/0x3830
[ 1948.531094][   T31]  path_openat+0x2ee5/0x3830
[ 1948.535733][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1948.540956][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1948.545940][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.552224][   T31]  do_filp_open+0x1fa/0x410
[ 1948.556981][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1948.562052][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1948.567548][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1948.572528][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1948.576944][   T31]  do_sys_openat2+0x121/0x1c0
[ 1948.582941][   T31]  ? __se_sys_futex+0x36f/0x400
[ 1948.587861][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1948.593289][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1948.598113][   T31]  __x64_sys_openat+0x138/0x170
[ 1948.603059][   T31]  do_syscall_64+0xfa/0x3b0
[ 1948.607610][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1948.612936][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.619076][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1948.623993][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.629987][   T31] RIP: 0033:0x7f98cdf8e929
[ 1948.634436][   T31] RSP: 002b:00007f98cbdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1948.643007][   T31] RAX: ffffffffffffffda RBX: 00007f98ce1b6080 RCX: 00007f98cdf8e929
[ 1948.651041][   T31] RDX: 0000000000000801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1948.659094][   T31] RBP: 00007f98ce010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1948.667114][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1948.675173][   T31] R13: 0000000000000000 R14: 00007f98ce1b6080 R15: 00007ffd03de6b98
[ 1948.683219][   T31]  </TASK>
[ 1948.686256][   T31] INFO: task syz.2.9973:11969 blocked for more than 145 seconds.
[ 1948.694110][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1948.701831][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1948.710717][   T31] task:syz.2.9973      state:D stack:26344 pid:11969 tgid:11959 ppid:10129  task_flags:0x400040 flags:0x00004004
[ 1948.722768][   T31] Call Trace:
[ 1948.726794][   T31]  <TASK>
[ 1948.729880][   T31]  __schedule+0x16f5/0x4d00
[ 1948.734440][   T31]  ? __kasan_slab_free+0x62/0x70
[ 1948.739665][   T31]  ? security_file_open+0xb1/0x270
[ 1948.744862][   T31]  ? do_dentry_open+0x35e/0x1970
[ 1948.749978][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1948.754983][   T31]  ? schedule+0x165/0x360
[ 1948.759445][   T31]  ? __pfx___schedule+0x10/0x10
[ 1948.764395][   T31]  ? schedule+0x91/0x360
[ 1948.768685][   T31]  schedule+0x165/0x360
[ 1948.772956][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1948.778476][   T31]  __mutex_lock+0x724/0xe80
[ 1948.783213][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1948.787937][   T31]  ? misc_open+0x51/0x330
[ 1948.792403][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1948.797482][   T31]  misc_open+0x51/0x330
[ 1948.805647][   T31]  chrdev_open+0x4cc/0x5e0
[ 1948.810549][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1948.815589][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1948.820861][   T31]  do_dentry_open+0xdf3/0x1970
[ 1948.825714][   T31]  vfs_open+0x3b/0x340
[ 1948.829987][   T31]  ? path_openat+0x2ecd/0x3830
[ 1948.834788][   T31]  path_openat+0x2ee5/0x3830
[ 1948.839600][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1948.844525][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1948.849586][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.855726][   T31]  do_filp_open+0x1fa/0x410
[ 1948.860427][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1948.865350][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1948.870989][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1948.875916][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1948.880388][   T31]  do_sys_openat2+0x121/0x1c0
[ 1948.885172][   T31]  ? __se_sys_futex+0x36f/0x400
[ 1948.890168][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1948.895699][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1948.900604][   T31]  __x64_sys_openat+0x138/0x170
[ 1948.905517][   T31]  do_syscall_64+0xfa/0x3b0
[ 1948.910102][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1948.915361][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.921641][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1948.926815][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1948.932852][   T31] RIP: 0033:0x7f98cdf8e929
[ 1948.937329][   T31] RSP: 002b:00007f98cbdd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1948.945827][   T31] RAX: ffffffffffffffda RBX: 00007f98ce1b6160 RCX: 00007f98cdf8e929
[ 1948.953869][   T31] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1948.962017][   T31] RBP: 00007f98ce010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1948.970137][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1948.978232][   T31] R13: 0000000000000000 R14: 00007f98ce1b6160 R15: 00007ffd03de6b98
[ 1948.986417][   T31]  </TASK>
[ 1948.989596][   T31] INFO: task syz-executor:12063 blocked for more than 145 seconds.
[ 1948.997576][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1949.005311][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1949.015537][   T31] task:syz-executor    state:D stack:28008 pid:12063 tgid:12063 ppid:1      task_flags:0x400040 flags:0x00004000
[ 1949.027786][   T31] Call Trace:
[ 1949.032339][   T31]  <TASK>
[ 1949.035309][   T31]  __schedule+0x16f5/0x4d00
[ 1949.040131][   T31]  ? __kasan_slab_free+0x62/0x70
[ 1949.045124][   T31]  ? security_file_open+0xb1/0x270
[ 1949.050416][   T31]  ? do_dentry_open+0x35e/0x1970
[ 1949.055666][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1949.060600][   T31]  ? schedule+0x165/0x360
[ 1949.064969][   T31]  ? __pfx___schedule+0x10/0x10
[ 1949.069906][   T31]  ? schedule+0x91/0x360
[ 1949.074293][   T31]  schedule+0x165/0x360
[ 1949.078454][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1949.084002][   T31]  __mutex_lock+0x724/0xe80
[ 1949.088547][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1949.093303][   T31]  ? misc_open+0x51/0x330
[ 1949.097679][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1949.102841][   T31]  misc_open+0x51/0x330
[ 1949.107030][   T31]  chrdev_open+0x4cc/0x5e0
[ 1949.111505][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1949.116997][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1949.122333][   T31]  do_dentry_open+0xdf3/0x1970
[ 1949.127340][   T31]  vfs_open+0x3b/0x340
[ 1949.131532][   T31]  ? path_openat+0x2ecd/0x3830
[ 1949.136347][   T31]  path_openat+0x2ee5/0x3830
[ 1949.141063][   T31]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1949.146592][   T31]  ? count_memcg_event_mm+0x21/0x260
[ 1949.152012][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1949.157023][   T31]  ? __pfx___up_read+0x10/0x10
[ 1949.162238][   T31]  ? do_user_addr_fault+0xbc1/0x1390
[ 1949.167582][   T31]  do_filp_open+0x1fa/0x410
[ 1949.172199][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1949.177255][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1949.182404][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1949.187305][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1949.191742][   T31]  do_sys_openat2+0x121/0x1c0
[ 1949.196461][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1949.201896][   T31]  ? fd_install+0x97/0x540
[ 1949.206414][   T31]  ? fd_install+0x30d/0x540
[ 1949.211156][   T31]  __x64_sys_openat+0x138/0x170
[ 1949.216044][   T31]  do_syscall_64+0xfa/0x3b0
[ 1949.220622][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1949.225855][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1949.232030][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1949.236748][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1949.242816][   T31] RIP: 0033:0x7fd865d8d211
[ 1949.247557][   T31] RSP: 002b:00007ffcffd25240 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 1949.256079][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fd865d8d211
[ 1949.264218][   T31] RDX: 0000000000000002 RSI: 00007fd865e11506 RDI: 00000000ffffff9c
[ 1949.272298][   T31] RBP: 00007fd865e11506 R08: 0000000000000000 R09: 00007fd866aed6c0
[ 1949.280418][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[ 1949.288583][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1949.296741][   T31]  </TASK>
[ 1949.299838][   T31] INFO: task syz-executor:12064 blocked for more than 145 seconds.
[ 1949.307747][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1949.315479][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1949.324217][   T31] task:syz-executor    state:D stack:28008 pid:12064 tgid:12064 ppid:1      task_flags:0x400040 flags:0x00004000
[ 1949.336276][   T31] Call Trace:
[ 1949.339665][   T31]  <TASK>
[ 1949.342603][   T31]  __schedule+0x16f5/0x4d00
[ 1949.347228][   T31]  ? __kasan_slab_free+0x62/0x70
[ 1949.352321][   T31]  ? security_file_open+0xb1/0x270
[ 1949.357504][   T31]  ? do_dentry_open+0x35e/0x1970
[ 1949.362870][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1949.367774][   T31]  ? schedule+0x165/0x360
[ 1949.372219][   T31]  ? __pfx___schedule+0x10/0x10
[ 1949.377121][   T31]  ? schedule+0x91/0x360
[ 1949.381453][   T31]  schedule+0x165/0x360
[ 1949.385638][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1949.391236][   T31]  __mutex_lock+0x724/0xe80
[ 1949.395767][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1949.400550][   T31]  ? misc_open+0x51/0x330
[ 1949.404911][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1949.410121][   T31]  misc_open+0x51/0x330
[ 1949.414309][   T31]  chrdev_open+0x4cc/0x5e0
[ 1949.418730][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1949.423819][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1949.428792][   T31]  do_dentry_open+0xdf3/0x1970
[ 1949.433672][   T31]  vfs_open+0x3b/0x340
[ 1949.437764][   T31]  ? path_openat+0x2ecd/0x3830
[ 1949.442822][   T31]  path_openat+0x2ee5/0x3830
[ 1949.447502][   T31]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1949.453555][   T31]  ? count_memcg_event_mm+0x21/0x260
[ 1949.458894][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1949.463918][   T31]  ? __pfx___up_read+0x10/0x10
[ 1949.468688][   T31]  ? do_user_addr_fault+0xbc1/0x1390
[ 1949.474184][   T31]  do_filp_open+0x1fa/0x410
[ 1949.478739][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1949.483699][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1949.488791][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1949.493711][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1949.498165][   T31]  do_sys_openat2+0x121/0x1c0
[ 1949.502895][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1949.508203][   T31]  ? fd_install+0x97/0x540
[ 1949.512687][   T31]  ? fd_install+0x30d/0x540
[ 1949.517242][   T31]  __x64_sys_openat+0x138/0x170
[ 1949.522190][   T31]  do_syscall_64+0xfa/0x3b0
[ 1949.526725][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1949.532008][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1949.538107][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1949.542914][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1949.548830][   T31] RIP: 0033:0x7fa27cb8d211
[ 1949.553308][   T31] RSP: 002b:00007ffdf7b89d00 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 1949.561782][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa27cb8d211
[ 1949.569823][   T31] RDX: 0000000000000002 RSI: 00007fa27cc11506 RDI: 00000000ffffff9c
[ 1949.577993][   T31] RBP: 00007fa27cc11506 R08: 0000000000000000 R09: 00007fa27d8ed6c0
[ 1949.586011][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[ 1949.594086][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1949.602350][   T31]  </TASK>
[ 1949.605526][   T31] 
[ 1949.605526][   T31] Showing all locks held in the system:
[ 1949.613313][   T31] 1 lock held by khungtaskd/31:
[ 1949.618184][   T31]  #0: ffffffff8e33eda0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1949.628144][   T31] 4 locks held by kworker/u8:2/36:
[ 1949.633323][   T31]  #0: ffff88801b6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1949.644286][   T31]  #1: ffffc90000ac7bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1949.654923][   T31]  #2: ffffffff8f7159d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 1949.664347][   T31]  #3: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[ 1949.674670][   T31] 2 locks held by getty/5600:
[ 1949.679414][   T31]  #0: ffff88802794f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1949.689274][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 1949.699649][   T31] 3 locks held by kworker/1:3/19684:
[ 1949.704951][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1949.716214][   T31]  #1: ffffc90002f07bc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1949.729796][   T31]  #2: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[ 1949.741311][   T31] 3 locks held by kworker/u8:11/28163:
[ 1949.746798][   T31]  #0: ffff8880b8739f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 1949.756971][   T31]  #1: ffffc9000b5d7bc0 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1949.771913][   T31]  #2: ffffffff8e33eda0 (rcu_read_lock){....}-{1:3}, at: batadv_nc_worker+0xd2/0x610
[ 1949.781536][   T31] 1 lock held by syz-executor/11451:
[ 1949.786839][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.795441][   T31] 2 locks held by syz.4.9964/11511:
[ 1949.800680][   T31]  #0: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x191/0x570
[ 1949.810861][   T31]  #1: ffff888058f8b100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[ 1949.820754][   T31] 2 locks held by syz.0.9965/11505:
[ 1949.826145][   T31]  #0: ffff888058f8b100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[ 1949.835973][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[ 1949.848970][   T31] 2 locks held by syz.2.9973/11962:
[ 1949.854198][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.863268][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_open+0x12d/0x820
[ 1949.873833][   T31] 1 lock held by syz.2.9973/11969:
[ 1949.879072][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.887597][   T31] 1 lock held by syz-executor/12063:
[ 1949.892923][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.901670][   T31] 1 lock held by syz-executor/12064:
[ 1949.906976][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.915732][   T31] 1 lock held by syz-executor/12067:
[ 1949.921156][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.930048][   T31] 1 lock held by syz-executor/12078:
[ 1949.935385][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.943924][   T31] 1 lock held by syz-executor/12083:
[ 1949.949288][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.957744][   T31] 1 lock held by syz-executor/12084:
[ 1949.963080][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.971626][   T31] 1 lock held by syz-executor/12086:
[ 1949.976903][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1949.985579][   T31] 1 lock held by syz-executor/12097:
[ 1949.990928][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1950.000714][   T31] 1 lock held by syz-executor/12103:
[ 1950.006076][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1950.015128][   T31] 1 lock held by syz-executor/12104:
[ 1950.020508][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1950.031160][   T31] 1 lock held by syz-executor/12106:
[ 1950.036489][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1950.046815][   T31] 5 locks held by dhcpcd/12113:
[ 1950.053703][   T31]  #0: ffff888038ae6258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[ 1950.063710][   T31]  #1: ffff8880b8739f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 1950.073982][   T31]  #2: ffff8880b8723f08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x39a/0x6d0
[ 1950.085643][   T31]  #3: ffff8880b8723f08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_change+0xe5/0x250
[ 1950.097169][   T31]  #4: ffffffff99ee48b0 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0xbb/0x420
[ 1950.107674][   T31] 
[ 1950.111725][   T31] =============================================
[ 1950.111725][   T31] 
[ 1950.121220][   T31] NMI backtrace for cpu 0
[ 1950.121240][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1950.121263][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1950.121275][   T31] Call Trace:
[ 1950.121284][   T31]  <TASK>
[ 1950.121294][   T31]  dump_stack_lvl+0x189/0x250
[ 1950.121320][   T31]  ? __wake_up_klogd+0xd9/0x110
[ 1950.121352][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1950.121384][   T31]  ? __pfx__printk+0x10/0x10
[ 1950.121420][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1950.121451][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1950.121474][   T31]  ? _printk+0xcf/0x120
[ 1950.121501][   T31]  ? __pfx__printk+0x10/0x10
[ 1950.121524][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1950.121555][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1950.121584][   T31]  watchdog+0xfee/0x1030
[ 1950.121607][   T31]  ? watchdog+0x1de/0x1030
[ 1950.121633][   T31]  kthread+0x70e/0x8a0
[ 1950.121663][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1950.121680][   T31]  ? __pfx_kthread+0x10/0x10
[ 1950.121708][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1950.121736][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1950.121763][   T31]  ? __pfx_kthread+0x10/0x10
[ 1950.121790][   T31]  ret_from_fork+0x3f9/0x770
[ 1950.121812][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1950.121839][   T31]  ? __switch_to_asm+0x39/0x70
[ 1950.121862][   T31]  ? __switch_to_asm+0x33/0x70
[ 1950.121884][   T31]  ? __pfx_kthread+0x10/0x10
[ 1950.121911][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1950.121951][   T31]  </TASK>
[ 1950.121959][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1950.282733][    C1] NMI backtrace for cpu 1
[ 1950.282751][    C1] CPU: 1 UID: 0 PID: 28163 Comm: kworker/u8:11 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1950.282771][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1950.282782][    C1] Workqueue:  0x0 (bat_events)
[ 1950.282806][    C1] RIP: 0010:its_return_thunk+0x0/0x10
[ 1950.282829][    C1] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc <c3> cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 e9 0b 89 c3 f5 cc
[ 1950.282843][    C1] RSP: 0018:ffffc9000b5d7878 EFLAGS: 00000082
[ 1950.282857][    C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: f17ba23e2de70300
[ 1950.282868][    C1] RDX: 0000000000000000 RSI: ffffffff8be41860 RDI: ffffffff8be41820
[ 1950.282879][    C1] RBP: ffffc9000b5d7a10 R08: ffffffff8fc232f7 R09: 1ffffffff1f8465e
[ 1950.282891][    C1] R10: dffffc0000000000 R11: fffffbfff1f8465f R12: ffff88802b9da248
[ 1950.282901][    C1] R13: ffff88802b9d9e00 R14: ffff88802b9da2a9 R15: 1ffff920016baf30
[ 1950.282913][    C1] FS:  0000000000000000(0000) GS:ffff888125b1c000(0000) knlGS:0000000000000000
[ 1950.282926][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1950.282938][    C1] CR2: 00005623a00e34b0 CR3: 000000000e138000 CR4: 00000000003526f0
[ 1950.282954][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000800
[ 1950.282964][    C1] DR3: 0000000100000001 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1950.282975][    C1] Call Trace:
[ 1950.282982][    C1]  <TASK>
[ 1950.282988][    C1]  trace_rcu_utilization+0x47/0x1d0
[ 1950.283010][    C1]  rcu_note_context_switch+0xdc1/0x1140
[ 1950.283031][    C1]  ? __lock_acquire+0xab9/0xd20
[ 1950.283051][    C1]  ? do_raw_spin_lock+0x121/0x290
[ 1950.283073][    C1]  ? __pfx_rcu_note_context_switch+0x10/0x10
[ 1950.283096][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1950.283113][    C1]  __schedule+0x326/0x4d00
[ 1950.283138][    C1]  ? process_scheduled_works+0x1708/0x17b0
[ 1950.283158][    C1]  ? schedule+0x165/0x360
[ 1950.283179][    C1]  ? __lock_acquire+0xab9/0xd20
[ 1950.283194][    C1]  ? __pfx___schedule+0x10/0x10
[ 1950.283229][    C1]  ? schedule+0x91/0x360
[ 1950.283249][    C1]  schedule+0x165/0x360
[ 1950.283270][    C1]  worker_thread+0xa82/0xda0
[ 1950.283289][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1950.283313][    C1]  ? __kthread_parkme+0x7b/0x200
[ 1950.283335][    C1]  kthread+0x70e/0x8a0
[ 1950.283355][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1950.283371][    C1]  ? __pfx_kthread+0x10/0x10
[ 1950.283391][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1950.283411][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1950.283431][    C1]  ? __pfx_kthread+0x10/0x10
[ 1950.283450][    C1]  ret_from_fork+0x3f9/0x770
[ 1950.283467][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1950.283485][    C1]  ? __switch_to_asm+0x39/0x70
[ 1950.283504][    C1]  ? __switch_to_asm+0x33/0x70
[ 1950.283520][    C1]  ? __pfx_kthread+0x10/0x10
[ 1950.283540][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1950.283565][    C1]  </TASK>
[ 1950.283774][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1950.581144][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1950.592954][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1950.603014][   T31] Call Trace:
[ 1950.606297][   T31]  <TASK>
[ 1950.609235][   T31]  dump_stack_lvl+0x99/0x250
[ 1950.613841][   T31]  ? __asan_memcpy+0x40/0x70
[ 1950.618435][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1950.623639][   T31]  ? __pfx__printk+0x10/0x10
[ 1950.628246][   T31]  panic+0x2db/0x790
[ 1950.632159][   T31]  ? __pfx_panic+0x10/0x10
[ 1950.636579][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[ 1950.642394][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1950.647794][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[ 1950.653980][   T31]  watchdog+0x102d/0x1030
[ 1950.658323][   T31]  ? watchdog+0x1de/0x1030
[ 1950.662758][   T31]  kthread+0x70e/0x8a0
[ 1950.666929][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1950.671712][   T31]  ? __pfx_kthread+0x10/0x10
[ 1950.676315][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1950.681702][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1950.686914][   T31]  ? __pfx_kthread+0x10/0x10
[ 1950.691521][   T31]  ret_from_fork+0x3f9/0x770
[ 1950.696127][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1950.701250][   T31]  ? __switch_to_asm+0x39/0x70
[ 1950.706030][   T31]  ? __switch_to_asm+0x33/0x70
[ 1950.710805][   T31]  ? __pfx_kthread+0x10/0x10
[ 1950.715415][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1950.720206][   T31]  </TASK>
[ 1950.723512][   T31] Kernel Offset: disabled
[ 1950.727879][   T31] Rebooting in 86400 seconds..