last executing test programs:

8m46.961543372s ago: executing program 3 (id=156):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x80, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000680)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x8, 0x0, 0x0, 0x0, 0xe, 0x1c, "fee8a2ab780e00001ea8ffffffff0000000000000004ddb49a000000000000000000f8ff000800000000000000000000000000001400", "2809e8dbe108598948f8ffd54a07c21d875397bdb22d0008b420a1819e01177d3d458dd4992861ac00000080ffffffffffffffff001700", "90be8bf4bd00000000000000000000e4ff00001000"}})

8m46.727041018s ago: executing program 3 (id=160):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000001880), 0x5, 0x800)
ioctl$VIDIOC_SUBDEV_G_EDID(r2, 0xc0285628, &(0x7f0000001900)={0x0, 0x0, 0x6, '\x00', &(0x7f00000018c0)=0x7d})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x401, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0xc0010001, 0x0, 0x200000000400}]})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

8m45.573302349s ago: executing program 3 (id=164):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, &(0x7f0000000a40)={0x1, 0x0, 0x0, 0x0, 'syz0\x00'}) (async)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_ABSBIT(r2, 0x40045567, 0x0) (async)
ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f00000002c0)={0x3f})
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3) (async)
write$uinput_user_dev(r2, &(0x7f0000001740)={'syz1\x00', {}, 0x0, [0x1]}, 0x45c) (async)
ioctl$UI_DEV_CREATE(r2, 0x5501) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000040)={{0x1, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}) (async)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
preadv(r3, &(0x7f0000000080)=[{&(0x7f0000000280)=""/203, 0xcb}], 0x1, 0x40001, 0x100b)

8m45.050644506s ago: executing program 3 (id=170):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000000))
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000000)={0x40, 0x1, 0x0, "da7893900cd98d67a85222250342d04a2c1f1a3f20d4507c14e951d29546029a"})
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000080))
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r2, &(0x7f0000000100)=""/159, 0xfffffe5a)

8m43.814200733s ago: executing program 3 (id=174):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x40, 0x3, 0x5, 0x11, "0eb595d626db7acdc4413e65587407b5c041d11cde2805efe414d884273065f56622af3d0639fa45429875183644375ef4ae9f68a3d0955f5cf8bb604df36371", "26636f3f2f9932a49a2cc4c001042f98b79e75b4c421df18e5e90dd7b6d302f0", [0xff, 0xb7d]})
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
read$FUSE(r4, &(0x7f00000003c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000005e40)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_ATTR(r6, &(0x7f0000005340)={0x78, 0x0, r7, {0x2000000007, 0x400, 0x0, {0x6, 0xfffe000000000000, 0xfffffffffffffffb, 0xff, 0x694, 0x3, 0x7f, 0x9, 0x800, 0x2000, 0x2, r8, r9, 0xb, 0x8, 0x1000000}}}, 0x78)
read$FUSE(r2, &(0x7f0000002400)={0x2020, 0x0, 0x0, 0x0, <r10=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000004440)={0xa0, 0x0, r5, {{0x4, 0x1, 0x8000, 0x5698, 0x8, 0x7, {0x3, 0x1, 0x1, 0x7855, 0x1, 0x2, 0x5, 0x5, 0x94, 0x4000, 0x5, r8, r10, 0x8, 0x623b}}, {0x0, 0x5}}}, 0xa0)

8m43.574530621s ago: executing program 3 (id=177):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom0\x00', 0x400, 0x0)
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r5, 0x40045532, &(0x7f00000000c0)=0x6)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r7 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
ioctl$SNDCTL_DSP_GETOSPACE(r6, 0x8010500c, &(0x7f0000000040))
ioctl$SNDRV_PCM_IOCTL_HW_FREE(r7, 0x4112, 0x0)
ioctl$SNDCTL_DSP_SYNC(r6, 0x5001, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000015c0)=ANY=[@ANYBLOB="0100000000000000044d564b", @ANYRES64])
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

8m28.390491039s ago: executing program 32 (id=177):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom0\x00', 0x400, 0x0)
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r5, 0x40045532, &(0x7f00000000c0)=0x6)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r7 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
ioctl$SNDCTL_DSP_GETOSPACE(r6, 0x8010500c, &(0x7f0000000040))
ioctl$SNDRV_PCM_IOCTL_HW_FREE(r7, 0x4112, 0x0)
ioctl$SNDCTL_DSP_SYNC(r6, 0x5001, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000015c0)=ANY=[@ANYBLOB="0100000000000000044d564b", @ANYRES64])
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

7m7.349090303s ago: executing program 4 (id=856):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x110, r0, 0x1000000000000000)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x541b, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

7m6.848394606s ago: executing program 4 (id=859):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000380)=@urb_type_control={0x2, {0x1}, 0x5, 0x40, &(0x7f0000000180)={0x0, 0x0, 0xf29e, 0x3900, 0xa}, 0x8, 0x2, 0x26e5, 0x0, 0x1, 0x1, &(0x7f0000000480)="2eafe16bd260b492dd1eb0da57549ea5a1abf796ba3f22abd0451924e3d7032bbffc6d058942b8f353563ab374f54792cc791233a93e6aa0cf"})
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), 0x41, 0x0, &(0x7f0000000100)="56da06210988e722d2cf2cdef5541a9e5283ca262769cd34d29fca78d02d674b82537b79b7a8b06c77c30b0c1f1dd7cec0cf50f17d55614588132bf4376b87a393"})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x8600, 0x0)
ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000040)=0x100000001)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc0f8565c, &(0x7f0000000000)={0x0, 0xbd5, 0x2, {0x2, @raw_data="f91fd2868ba3d9189024fc40809db9e19479c0b5fce2c721330d5771dbf9dbfa9e2ad24622489141b4803cfeb0b70909e75715a13fada32fef53473eb9ce014fbe3929ea41fdeb0ff177dfb9d3227f213a6451b667d35b03b25618d20cea1f072990b86d463a0de7513744a2bb3bf4fb6049e30f7c533837beba9566c9fd8721c48fad424a5fb17bc1419fb85e5e7dce382ba5a1ce182b419becd67c18f0ba055b8d72225df5a5e7917f8a87a52b8c2516745c462e944b0c22a7e71ecf492a0ef916598abba0e732"}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl(r2, 0xfffff000, &(0x7f0000000000))
r3 = syz_open_dev$loop(&(0x7f0000000540), 0x80, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000400)={0x0, r3, 0x1})
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f00000002c0)={r4, 0x1000, {0x2a00, 0x80010000, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d09000000000000008dd4992861ac00", "90be8b38559265406c09306003d8002000", [0x0, 0x2]}})
read(r1, &(0x7f00000001c0)=""/157, 0x9d)

7m6.757446116s ago: executing program 4 (id=860):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, 0x0)
read(0xffffffffffffffff, &(0x7f0000000080)=""/163, 0xfffffdb3)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r2, 0x8bd3c000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000000, 0x80010, 0xffffffffffffffff, 0x1000000000040000)

7m6.574935359s ago: executing program 4 (id=863):
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r0, 0xc0bc5310, &(0x7f0000000040))
write$sndseq(r0, &(0x7f0000000100)=[{0x4, 0x5, 0x3, 0x3, @tick=0x80000001, {0x1, 0x40}, {0x4, 0x10}, @time=@time={0x1ff, 0xc}}, {0x7, 0x7, 0xd, 0x43, @time={0x3ff, 0xc}, {0x9, 0x8}, {0xe, 0x1}, @raw8={"3757c8e75c29415e256abf7b"}}, {0x8, 0x4, 0xf7, 0x54, @time={0x8, 0x3}, {0xfb, 0xd0}, {0x0, 0x39}, @raw8={"0f64bfe26e377a0838502be1"}}, {0x2, 0x9, 0x3, 0xf, @time={0x0, 0x3}, {0xc, 0xef}, {0x1, 0x3}, @result={0x1191, 0x700000}}, {0x4, 0x51, 0x0, 0x3, @tick=0x28c, {0x81, 0x1}, {0x2}, @queue={0x7, {0x7ff, 0x5}}}, {0x9, 0xe, 0x9, 0x8, @time={0x7f, 0x4}, {0x5, 0x8}, {0xb, 0x1}, @addr={0x2, 0x5}}, {0x6, 0xf, 0x6, 0x0, @time={0x2, 0xf}, {0x4, 0x2}, {0x40, 0x3}, @result={0x5, 0x8}}, {0x0, 0x6, 0x4, 0x8, @tick=0xffffffff, {0x0, 0x9a}, {0xf, 0x3}, @result={0x7, 0x9}}], 0xe0)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(0xffffffffffffffff, 0xc1205531, &(0x7f0000000200)={0xffffffff, 0x8000, 0x0, 0xadb, '\x00', '\x00', '\x00', 0xfffffffd, 0xf98, 0xc, 0x1, "534e871d41012a4fd3ee902afe51607c"})
write$sndseq(r0, &(0x7f00000003c0)=[{0x5, 0x4, 0x4, 0x3, @time={0x4, 0xcf1}, {0x0, 0x2}, {0x0, 0x9}, @addr={0x10, 0x2}}, {0xf6, 0x9, 0x66, 0xb, @tick=0x8, {0x5, 0x7}, {0xe, 0x7f}, @result={0x2, 0xf2}}, {0x3, 0x81, 0x3, 0x8, @tick, {0xa, 0x1}, {0xe, 0x5}, @raw8={"52c8643ffb2752c8fe826e8b"}}, {0x7, 0xfa, 0x8, 0x3, @tick=0xffff, {0x0, 0xe}, {0x5, 0x6}, @addr={0x4, 0xd}}, {0x3, 0xa2, 0x1, 0x0, @time={0xffff5c18, 0x1000}, {0x7, 0x1}, {0x2c, 0x9}, @addr={0x20, 0x2}}, {0xff, 0x4, 0x62, 0x7, @tick=0x4, {0x80, 0x7}, {0xd, 0x8}, @queue={0x5, {0x5, 0x2}}}, {0x9, 0x2, 0x1, 0xb, @tick=0x8, {0x1, 0x4}, {0x1, 0x1}, @ext={0x65, &(0x7f0000000340)="9e6d204e4509a81f16f17fea1434cff23e64449afadd9af281c8f50785d3e6d3afa74e84b1b1ee681465111cf6b4c279bfaf4556ffafebde0a2eddd85307fdf01c5a69f971d2c30d62071360d2ea574667d503759d23264445fbf2e33275e6e9074e019c27"}}, {0x3, 0x3, 0x1, 0x2, @time={0x2}, {0x7, 0x9}, {0xe, 0x6}, @time=@tick=0xe}], 0xe0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000004c0), 0x4100, 0x0)
r2 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000500), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000540)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
r4 = syz_open_dev$amidi(&(0x7f0000000580), 0x6, 0x220000)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f00000005c0)={0x2, 0x0, 0x8, 0x6af, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000000640)={0xa, 0x2, 0x5, 0x10001, 0x0, 0x2})
read$midi(r4, &(0x7f00000006c0)=""/4096, 0x1000)
write$apparmor_exec(r3, &(0x7f00000016c0)={'exec ', '^*-#\x00'}, 0xa)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000001700)={{0x0, 0x2, 0x5, 0x0, 0x7}})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000001740)={0x10001, 0x3, 0x7, 0x4, 0x0, 0xffff4719})
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f00000017c0)=""/223)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000018c0)={{0x1, 0x1, 0x18, <r5=>r1, {0x7}}, './file0\x00'})
ioctl$HIDIOCSFLAG(r3, 0x4004480f, &(0x7f0000001900)=0x2)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001940), 0x98400)
write$sndseq(r6, &(0x7f0000001a00)=[{0x28, 0x9, 0xb, 0x0, @time={0x629, 0x4}, {0x9, 0x9}, {0x9, 0x9}, @quote={{0x2, 0xe7}, 0x9, &(0x7f0000001980)={0x7, 0x5, 0x1, 0x3, @time={0x0, 0x9c7b}, {0x2, 0xcd}, {0xef, 0xe6}, @raw32={[0x6, 0x3e83, 0x2]}}}}, {0x3, 0x8, 0xb, 0x5, @tick=0x3, {0x8, 0x5a}, {0x1, 0x4}, @addr={0x7, 0x6}}, {0x7, 0x1, 0x80, 0x80, @tick=0x6, {0x4, 0x9}, {0xb2, 0x4}, @raw8={"5aae7bbb580aaafcfd02a144"}}, {0x8, 0x8, 0x6a, 0x6, @tick=0x2, {0x9, 0xfe}, {0xef, 0x3}, @time=@time={0x3, 0x8001}}, {0xfd, 0xc9, 0x6, 0xd, @tick=0x8, {0x9, 0x7f}, {0x5, 0x13}, @control={0x5f, 0x9, 0x2}}, {0x5, 0x3, 0x9, 0x5b, @tick=0x9, {0x8d, 0x8}, {0x1, 0x2}, @queue={0x10, {0xfffffffe, 0xf43b}}}, {0x80, 0x40, 0x0, 0x3, @tick=0x1, {0x1, 0x5}, {0x81, 0xf}, @quote={{0x5, 0x50}, 0x1a, &(0x7f00000019c0)={0x4, 0xb4, 0x8, 0xff, @time={0x7}, {0x6, 0xa}, {0x81, 0x5}, @note={0x5, 0x7, 0x2, 0x88, 0x5}}}}, {0x5, 0x8, 0xf9, 0xf7, @time={0x0, 0x9}, {0x6, 0x57}, {0x5, 0x9}, @connect={{0x1, 0x5}, {0x1, 0x4}}}, {0x8, 0xec, 0xfb, 0x0, @time={0x2, 0xfffffffc}, {0x0, 0x6}, {0x9, 0x8}, @addr={0x11, 0x7f}}, {0x4, 0x81, 0xf5, 0xf3, @tick=0x2, {0x3}, {0x6, 0x9}, @note={0xa, 0x3, 0x0, 0x5, 0xff}}], 0x118)
r7 = syz_open_dev$sndctrl(&(0x7f0000001b40), 0x7fffffffffffffff, 0x602200)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r7, 0x81785501, &(0x7f0000001b80)=""/36)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r0, 0xc02054a5, &(0x7f0000001bc0)={0x9, <r8=>r1, 'id1\x00'})
ioctl$AUTOFS_DEV_IOCTL_FAIL(r8, 0xc0189377, &(0x7f0000001c40)={{0x1, 0x1, 0x18, r3, {0xfff, 0x2}}, './file0\x00'})
r9 = syz_open_dev$dri(&(0x7f0000001c80), 0x9, 0x40181)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000001cc0)={<r10=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r8, 0xc00864bf, &(0x7f0000001d00)={<r11=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(r9, 0xc02064cc, &(0x7f0000001d40)={r10, r11, 0x5f6e, 0x40, 0x2})
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)

7m6.458004299s ago: executing program 4 (id=864):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x515c058468db9072, 0x0)
read(r0, &(0x7f00000001c0)=""/164, 0xa4)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000180), 0x48a200, 0x0)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x399802, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$fb(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x11, r5, 0x6f000)
r6 = syz_open_dev$loop(&(0x7f0000000280), 0x10000, 0x400000)
ioctl$LOOP_SET_STATUS(r6, 0x4c02, &(0x7f00000004c0)={0x0, {}, 0x0, {}, 0x4, 0x8, 0x1d, 0x0, "848a607562f8ca7032ec2cea4180f13546884a39dd2c90c5ac0fdf378f12003ccde4d89d3f5e355c08a5eba750ccbc084e33814eec2a50bf89f47d69124a36ea", "863430e02ee5020864dd86f2ea4cd0c5bda5a3422b96a4ed4476ceda23f8ea5b", [0x6, 0x200]})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000100)=0xf)
ioctl$TCFLSH(r7, 0x540b, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_OPTION(r0, 0x8002f515, &(0x7f0000000100))
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000300)={0xa0, 0x0, 0x0, {{0x2, 0x1, 0x2, 0x3, 0x8, 0x1, {0x6, 0x7fffffff, 0x100000002, 0x6, 0x6, 0x1, 0x101, 0x7, 0x6, 0x6000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r4, 0x0, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r9 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r9, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r9, &(0x7f00000014c0)={0x2, 0x0, {&(0x7f0000001340)=""/87, 0xb, &(0x7f0000001540)=""/242, 0x2, 0x2}}, 0x48)
dup(r8)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
close(r8)

7m6.204441551s ago: executing program 4 (id=866):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x70fec1, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4008700c, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

6m51.079093895s ago: executing program 33 (id=866):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x70fec1, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4008700c, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

1m20.9571358s ago: executing program 1 (id=3628):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async, rerun: 64)
r1 = syz_open_dev$rtc(&(0x7f0000000140), 0x0, 0x0) (rerun: 64)
ioctl$RTC_WKALM_SET(r1, 0x4028700f, 0x0) (async)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGETLED(r2, 0x560c, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

1m20.704952474s ago: executing program 1 (id=3629):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x163881)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000100)={0x80, 0x0, 0x0, 0x2})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000000000001b"])
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000000000008605"])
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r8, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0)
r9 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r9, 0x7dfff000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x163881) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000100)={0x80, 0x0, 0x0, 0x2}) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000000000001b"]) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000000000008605"]) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async)
dup(r7) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r8, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0) (async)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r9, 0x7dfff000) (async)

1m20.158243545s ago: executing program 1 (id=3631):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x4, 0x40010, r1, 0x3000)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x44, 0x11cfe, 0x10000000, 0x8000008, 0x3, 0x4, 0x80000001})
ioctl$VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000000)={0x9, 0x2, 0x1, "164273d540b831e577af07147c23102927b52e82bec01f57aa3a1df6490f74fe", 0x38416761})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f00000001c0)={0x800000, 0xffffffff, 0xfffffff8, 0xe1d9, 0x1101, 0xcc3})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f00000004c0)={0x800100, 0xfffffffd, 0x4, 0x8, 0x9, 0x6})
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r3, 0x7dfff000)

1m20.060404726s ago: executing program 1 (id=3633):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000100)={{0xffff0104, 0x0, 0xf000, 0x0, 0x0, 0x0, 0x6, 0x0, 0xf0, 0x0, 0x3, 0x7}, {0x3000, 0x0, 0x7, 0x0, 0x0, 0x5, 0x0, 0xa, 0x0, 0x0, 0x0, 0x2}, {0x5002, 0x2, 0x8, 0xe, 0x0, 0x5, 0x81, 0xff, 0x43, 0xe, 0x0, 0x3}, {0x1, 0xf5c2ba5dcd6379d8, 0x0, 0x0, 0x0, 0x0, 0x38}, {0xf000, 0x0, 0x0, 0x0, 0x4, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x12, 0xca}, {0x8000000, 0xeeee0000, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x4, 0x2, 0x84}, {0x1, 0x80a0000, 0x9, 0x0, 0x9, 0x0, 0x1, 0x3, 0xfd, 0xa, 0x0, 0x1}, {0xeeee0000, 0x0, 0x0, 0x82, 0x0, 0x0, 0x9, 0x0, 0x3}, {0x6000, 0xfffd}, {0xf000, 0xfffe}, 0x40000013, 0x0, 0xf000, 0x0, 0x4, 0x400, 0xd000, [0x0, 0x0, 0x0, 0x1000000003]})
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000080)={0xf0f008, 0x2400})
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
preadv(r5, &(0x7f00000041c0)=[{&(0x7f0000001040)=""/102, 0x5}], 0x2, 0x0, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r7=>0x0})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r5, 0x4068aea3, &(0x7f00000005c0))
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r6, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, 0x0, 0x0, 0x100000001, 0x8800000})
r8 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r8, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r9=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(0xffffffffffffffff, 0x3ba0, &(0x7f0000000100)={0x1d, 0x2, r9, 0x0, 0x0, <r10=>0x0})
ioctl$IOMMU_HWPT_GET_DIRTY_BITMAP(r8, 0x3b8c, &(0x7f00000002c0)={0x30, r10, 0x1, 0x0, 0x5, 0x0, 0x1, 0x0})
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f0000000300)={0xc, 0x0, <r11=>0x0})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(0xffffffffffffffff, 0x3b82, &(0x7f0000000400)={0x18, r11, 0x0, 0x0, &(0x7f0000000300)})
ioctl$IOMMU_IOAS_MAP$PAGES(r6, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r7, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001})
r12 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0xe1b8c061028bbfcb, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r12, 0x3b81, &(0x7f00000000c0)={0xc})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r12, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r9, 0x0, 0x0, 0x0, <r13=>0x0})
ioctl$IOMMU_GET_HW_INFO(r12, 0x3b8a, &(0x7f0000000380)={0x28, 0x0, r13, 0x1c, &(0x7f00000004c0)=""/28})
syz_open_dev$video(&(0x7f0000000280), 0x8, 0x480402)
ioctl$IOMMU_GET_HW_INFO(0xffffffffffffffff, 0x3b8a, &(0x7f0000000240)={0x28, 0x0, r13, 0x7a, &(0x7f0000000080)=""/122})
ioctl$KVM_CAP_X86_GUEST_MODE(r2, 0x4068aea3, &(0x7f0000000540))
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r6, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r7})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)

1m19.233884788s ago: executing program 1 (id=3635):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
dup(0xffffffffffffffff) (async)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r1, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r2, 0x0, 0x97, 0x8000000}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r2, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r2}) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)

1m19.179218341s ago: executing program 1 (id=3636):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async, rerun: 32)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async, rerun: 32)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x0, <r2=>0xffffffffffffffff}}, './file0\x00'})
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x4, 0x104, 0x7, 0xe, 0x1000, 0x7, 0x0, r2, 0x1, 0x4}}, {0x0, 0x4}}}, 0xfffffca1) (async)
r3 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r3, 0x0, 0xb0) (async)
write$proc_mixer(r3, 0x0, 0xf7)
read$FUSE(r1, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

1m4.058225916s ago: executing program 34 (id=3636):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async, rerun: 32)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async, rerun: 32)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x0, <r2=>0xffffffffffffffff}}, './file0\x00'})
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x4, 0x104, 0x7, 0xe, 0x1000, 0x7, 0x0, r2, 0x1, 0x4}}, {0x0, 0x4}}}, 0xfffffca1) (async)
r3 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r3, 0x0, 0xb0) (async)
write$proc_mixer(r3, 0x0, 0xf7)
read$FUSE(r1, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

57.480081653s ago: executing program 0 (id=3732):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000) (async, rerun: 32)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (rerun: 32)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x15) (async, rerun: 64)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (rerun: 64)

57.238238242s ago: executing program 0 (id=3733):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4c5481, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0) (async)
r2 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f00000001c0)) (async)
mmap(&(0x7f0000618000/0x2000)=nil, 0x2000, 0x2, 0x30, r2, 0x11156000) (async)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
preadv2(r4, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xfffffed1}], 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r3, 0x40505331, &(0x7f0000000200)={0xefd, 0x0, 0x0, {0x3}}) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000000)={0x51, 0x1, 0x0, "600000eef2000020000000ddee4f9100000000000000000000ff0057e31e9400"})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

56.997393202s ago: executing program 0 (id=3737):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600) (async)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pwritev(r3, &(0x7f0000002340)=[{&(0x7f00000020c0)='[', 0x1}], 0x1, 0x0, 0x0) (async)
pwritev(r3, &(0x7f0000002340)=[{&(0x7f00000020c0)='[', 0x1}], 0x1, 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r4=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f00000001c0)={0x0, 0x2, &(0x7f0000010140)=[r4, r4], &(0x7f0000010200), 0x0, 0x0, 0x0, 0x1000000000000})
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x810, r3, 0xdf29e000) (async)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x810, r3, 0xdf29e000)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x8, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x2) (async)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x2)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r1, 0x80184132, &(0x7f0000000000))
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

56.669855651s ago: executing program 0 (id=3739):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0x2, 0x0)
write$cgroup_pid(r0, &(0x7f0000000000), 0x12) (async)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) (async, rerun: 64)
r2 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0) (rerun: 64)
ioctl$SNDRV_PCM_IOCTL_STATUS64(r2, 0xc0884123, &(0x7f0000000080))
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) (async)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r3, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r3, 0x40101286, 0x0) (async, rerun: 64)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082) (rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r5=>r4, {<r6=>0x0, <r7=>0xffffffffffffffff}}, './file0\x00'})
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000280)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0xb, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x2, 0x101, 0x7, 0xe, 0x2000, 0x7, r6, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r4, 0x0, 0x0) (async)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async)
read$FUSE(r5, &(0x7f0000001600)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r4, &(0x7f00000001c0)={0xa0, 0xfffffffffffffff5, r9, {{0x4, 0x1, 0xa7f, 0x0, 0x7fff, 0x4, {0x0, 0x537afcaa, 0x2, 0x3ff2c418, 0xff, 0x96a, 0x2, 0x101, 0x5268, 0x4000, 0x7ff, r6, r7, 0x7c4, 0x5}}}}, 0xa0) (async)
r10 = dup(r8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r10, 0x0) (async)
ioctl$BLKZEROOUT(r10, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

53.617088662s ago: executing program 0 (id=3760):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (rerun: 32)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000040)={0x0, 0x4289, 0x2}) (async, rerun: 32)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"]) (async, rerun: 32)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f0000000240)={0xfffffffffffffffe})
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r5, 0x7dfff000)

53.16236878s ago: executing program 0 (id=3764):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2a8340, 0x0)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f00000000c0)={0x2, 0x0, 0x0, {0x0, 0x0, 0xffffffff, 0xfffffff9}})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)

25.034060863s ago: executing program 5 (id=3876):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r0, 0x3ba0, &(0x7f0000000240)={0x48, 0x4, 0xffffffffffffffff, 0x0, 0x1000000, 0x0, 0x20000000})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)

24.658071013s ago: executing program 5 (id=3882):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
write$sequencer(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="800357640423a80294"], 0x10)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0], 0x3, 0x800, 0x0, <r3=>0xffffffffffffffff}) (async)
r4 = openat$cuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
read$FUSE(r4, &(0x7f0000000400)={0x2020, 0x0, <r5=>0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000002f80)={0xa0, 0x0, r5, {{0x2, 0x2, 0x6, 0x4, 0x7, 0x7, {0x1, 0xe, 0x100, 0x7b, 0xf, 0x400, 0x3, 0x6, 0x8, 0x8000, 0x10001, r6, r7, 0x9, 0x8}}, {0x0, 0x1d}}}, 0xa0)
r8 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) (async)
ioctl$MEDIA_IOC_G_TOPOLOGY(r3, 0xc0487c04, &(0x7f0000002800)={0x0, 0x6, 0x0, &(0x7f00000025c0)=[{}, {}, {}, {}, {}, {}], 0x7, 0x0, &(0x7f0000003040)=[{}, {}, {}, {}, {}, {}, {}], 0x3, 0x0, &(0x7f0000000200)=[{}, {}, {}], 0x8, 0x0, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}, {}]})
read$FUSE(r8, &(0x7f0000000580)={0x2020, 0x0, <r9=>0x0, <r10=>0x0, <r11=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r8, &(0x7f00000029c0)={0x658, 0x0, r9, [{{0x0, 0x2, 0x8001, 0x46, 0xff, 0x2, {0x6, 0xfa9, 0xfffffffffffffff9, 0xfff, 0x2, 0x3, 0x4, 0x0, 0xed07, 0xa000, 0x8, r10, 0x0, 0x55fd, 0x80000001}}, {0x0, 0x3, 0x6, 0x5, 'vcan0\x00'}}, {{0x6, 0x0, 0x5, 0xffffffffffffffc0, 0x3, 0x200, {0x3, 0x2, 0x5, 0xffffffffffffff01, 0xf, 0x7, 0xffff, 0x2, 0xfffffe01, 0x3000, 0x2, r10, r11, 0x5, 0x4c18}}, {0x0, 0x10001, 0x8, 0xb, '%pB    \x00'}}, {{0x1, 0x0, 0xffffffff, 0x7, 0xf425, 0x2, {0x6, 0x7, 0x2, 0xf, 0xffffffffffffffff, 0x1, 0x2, 0x8, 0x9461, 0xe000, 0x7, r10, r11, 0x8000, 0x1ff8000}}, {0x1, 0xd0a9, 0xa, 0x9a5e, '/dev/cuse\x00'}}, {{0x6, 0x2, 0x5f, 0x4, 0x4, 0x1, {0x0, 0x7, 0x1000, 0xfffffffffffffff9, 0x8001, 0x0, 0x800, 0x80000000, 0xb83, 0xc000, 0x80000001, r10, r11, 0x28a, 0x7}}, {0x5, 0x4, 0x1, 0xa, '\x00'}}, {{0x5, 0x2, 0x8, 0x8001, 0xd, 0x6, {0x6, 0x184, 0x587, 0x8000, 0x8, 0x0, 0xffffffff, 0x6, 0x10, 0x2000, 0xb, r10, r11, 0x80000000, 0xb}}, {0x2, 0x8, 0x1, 0xa2, '('}}, {{0x2, 0x1, 0x9, 0x6, 0xfffffff8, 0x8003, {0x5, 0x1, 0xc, 0xa, 0x6, 0x6, 0x3, 0x6, 0x7, 0x8000, 0x8, r10, r11, 0x5, 0x3}}, {0x3, 0x2, 0x1, 0x9, ','}}, {{0x6, 0x0, 0x5dd5, 0x3, 0x5, 0x81, {0x3, 0x100000001, 0x5, 0x2, 0x1, 0x2, 0x6, 0x69504f9e, 0x80000000, 0x2000, 0x6, r10, r11, 0x6, 0x5}}, {0x0, 0xfffffffffffffffc, 0x6, 0x4, '&\'.:&('}}, {{0x2, 0x1, 0x401, 0x5, 0x80, 0x4, {0x5, 0x404, 0x5, 0x4, 0x801, 0xff, 0x6, 0xd7a2, 0x7fff, 0x4000, 0x7f, 0x0, 0x0, 0x7fffffff, 0xc6}}, {0x4, 0x100000001, 0x4, 0xf4f, '\\--,'}}, {{0x5, 0x1, 0x7ff, 0x4, 0x3d, 0x7f, {0x6, 0x7, 0x5, 0x3, 0x59ec, 0x5, 0x4, 0xf6c, 0x80000000, 0x4000, 0x80, r10, r11, 0x6, 0x6a4a}}, {0x2, 0x54f, 0x8, 0x3ff, 'nl80211\x00'}}, {{0x5, 0x2, 0x2, 0x49f, 0x7fff, 0x65, {0x5, 0xbe4a, 0x707, 0x4b3, 0x0, 0x3, 0x10001, 0xfffff800, 0x6, 0x4000, 0x4b4cca3e, 0xee00, r11, 0x1, 0x62e2}}, {0x2, 0x101, 0x1, 0x3, '\xad'}}]}, 0x658) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r3, {r6, r11}}, './file0\x00'}) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r13, 0x4048aec9, &(0x7f0000000740)={0x2, 0x0, @pic={0x4}})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

24.498142372s ago: executing program 5 (id=3883):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
r2 = syz_open_dev$video4linux(&(0x7f0000000000), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r2, 0xc0445624, &(0x7f00000005c0))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0xc018aec0, &(0x7f00000000c0)={0x0, 0x2, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0x4008ae90, &(0x7f0000000140)=ANY=[@ANYRES16=r7])
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYRESOCT=r5])
r8 = openat$ptp0(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000001c0), 0x748e43, 0x0)
ioctl$SOUND_MIXER_READ_STEREODEVS(r9, 0x80044dfb, &(0x7f0000000200))
ioctl$PTP_PIN_GETFUNC2(r8, 0xc0603d0f, &(0x7f0000000040))
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f00000000c0)=0x1b)
r11 = dup(r10)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_REJECT(r0, &(0x7f0000000380)={0x9, 0x108, 0xfa00, {r1, 0x0, "1c5c70", "655722996b9a10718d926a4fc3b3551ac4734f083a9db2f7a90ad9d3e3589c167369299646d7718f758d98ec99190c3233ae5cada9c007ae62663e32f62e04817818bb40b783950c8b667141fc9dcd129ac9daf64cad1699de9361597eab2bbf93dc97938587c3a88a05b762c779622fd9a04f499cdb5eb284f2a09204afee2bdb91604f0938ec6cae6fc0537ce05cf95f6554e839b0d363f0a24e43fc435a0b9308169593b2344ddf99a4419d894a5199eaa7d3b4a6e36648907d59db4adc9efacc63d38d82335ca62420601f00d7d5dbcaefd2d7fd2b9011ad68d6f51fdd63b84452fe7254def5469bf357a9ff7e90a4e9403c917174dc7a5f53c19513823d"}}, 0x110)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r12 = openat$cgroup_ro(r11, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x26e1, 0x0)
ioctl$FS_IOC_RESVSP(r12, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x10000, 0x6})
ioctl$PTP_SYS_OFFSET_EXTENDED(r12, 0xc4c03d09, &(0x7f0000000600)={0x5})
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r12, &(0x7f0000000140)={0x4, 0x8, 0xfa00, {r1, 0x9}}, 0x10)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60)

23.714000349s ago: executing program 5 (id=3885):
r0 = syz_open_dev$video(&(0x7f0000000100), 0x0, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc0405668, &(0x7f0000000000)={0x0, 0x0, 0xe}) (async, rerun: 64)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x438280, 0x0) (rerun: 64)
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000000), 0x12) (async, rerun: 32)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(0xffffffffffffffff, 0xc01064c7, &(0x7f00000000c0)={0x3, 0x0, &(0x7f0000000080)=[0x0, <r3=>0x0, 0x0]}) (rerun: 32)
ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r2, 0xc00464c9, &(0x7f00000001c0)={r3}) (async)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f00000001c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000001140)=""/5, 0x5}}, 0x120) (async)
ioctl$VIDIOC_S_SELECTION(0xffffffffffffffff, 0xc040565f, &(0x7f0000000200)={0x2, 0x100, 0x7, {0x0, 0x0, 0x7fe, 0x81}}) (async)
openat$rnullb(0xffffffffffffff9c, 0x0, 0x28200, 0x0) (async)
ioctl$KVM_CAP_X86_GUEST_MODE(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000240))
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60) (async)
ioctl$KVM_CREATE_PIT2(r7, 0x4040ae77, &(0x7f0000000040)) (async)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x2, 0x180, 0x4, 0x8, 0xf1, 0x50, 0x7fffffffffffe, 0x5, 0x10000000000000, 0x9, 0x0, 0x6, 0x0, 0xbdb], 0xffff1001, 0x120182}) (async)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r7, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0xc003, 0x3, 0x5, 0x0, 0x4, 0x7, 0xd, 0xb9, 0x0, 0xe, 0x5, 0x204}, {0x804, 0x1, 0x4, 0x45, 0x7, 0xe7, 0x2, 0xff, 0x0, 0x4, 0x4, 0x7b, 0x209}, {0x1, 0x6, 0x18, 0x5, 0x80, 0xfd, 0x3, 0x2, 0x0, 0x70, 0x4, 0x7}], 0xfbffffff})
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f00000003c0)={[0x5ffffffffff, 0x1000000000, 0x0, 0x43, 0x2000001, 0x0, 0x2004cb, 0x0, 0x1000000, 0x68ff, 0x5, 0x9, 0x3], 0x1, 0x202}) (async)
ioctl$KVM_SET_PIT(r7, 0x8048ae66, &(0x7f0000000480)={[{0x9570002, 0x3, 0x0, 0x0, 0x85, 0x1, 0xff, 0x2, 0x6, 0x4, 0x47, 0xf, 0x1}, {0x1009f83, 0x7, 0xe, 0x2e, 0x1, 0x3, 0x9, 0x81, 0x7, 0x5, 0x6, 0x3, 0x6}, {0x6, 0x1005, 0x81, 0xc, 0x6, 0x46, 0xf8, 0x4f, 0xc, 0x98, 0x1a, 0x1, 0x8}], 0x3}) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async, rerun: 64)
r9 = syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x0) (rerun: 64)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r9, 0x0) (async)
read(r5, &(0x7f00000000c0)=""/51, 0xd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r4, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

23.452874622s ago: executing program 5 (id=3888):
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0)
close(r0)

23.14629628s ago: executing program 5 (id=3892):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async, rerun: 32)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (rerun: 32)
write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000000)={0x13, 0x10, 0x7, {0x0, 0xffffffffffffffff, 0x1}}, 0x18) (async, rerun: 64)
r2 = dup(r0) (rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0) (async, rerun: 32)
ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0xfffffffffffffffc) (async, rerun: 32)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000040)={0x200028, 0x26, 0x20000000, 0x12, 0x3, 0x400004f, 0x1100010, 0x2c, 0xffffffffffffffff}) (async)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x3, 0x0, 0x0, 0x5, 0x0, 0x4002004c4, 0x1000], 0xeeee8000, 0x1144})
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0)
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x40002, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000180)={&(0x7f0000000000)=[0x0, 0x0], &(0x7f00000000c0), &(0x7f0000000100)=[0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0], 0x2, 0x0, 0x3, 0x3})
r7 = openat$vmci(0xffffff9c, &(0x7f0000001640), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r7, 0x7a7, &(0x7f0000000040)=0x10000) (async, rerun: 64)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r7, 0x7a0, &(0x7f00000000c0)={@hyper}) (async, rerun: 64)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r7, 0x7b2, 0x0) (async)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r6, 0x7dfff000)

21.03308398s ago: executing program 2 (id=3902):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r2 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f910, 0x8000, '\x00', @ptr=0x20001100}})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000000231001c0"])
r6 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
syz_open_dev$evdev(&(0x7f0000000080), 0xffffffffffffffff, 0xc00)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
preadv2(r7, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xfffffed1}], 0x1, 0x0, 0x0, 0x0)
r8 = syz_open_dev$I2C(&(0x7f00000000c0), 0x4, 0x4000)
r9 = dup(r8)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r9, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) (async)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f910, 0x8000, '\x00', @ptr=0x20001100}}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000000231001c0"]) (async)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1}) (async)
syz_open_dev$evdev(&(0x7f0000000080), 0xffffffffffffffff, 0xc00) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0) (async)
preadv2(r7, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xfffffed1}], 0x1, 0x0, 0x0, 0x0) (async)
syz_open_dev$I2C(&(0x7f00000000c0), 0x4, 0x4000) (async)
dup(r8) (async)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r9, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000) (async)

20.544139573s ago: executing program 2 (id=3905):
ioctl$VIDIOC_S_AUDOUT(0xffffffffffffffff, 0x40345632, &(0x7f0000000000)={0x0, "1eabbc095f01e538a544d9853de709655578132bc7388956090f072cdddc352b", 0x2}) (async)
ioctl$SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, &(0x7f0000000040)=0x7) (async)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0) (async)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0)
ioctl$SNDCTL_SEQ_SYNC(r0, 0x5101)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
ioctl$SNDCTL_SEQ_RESET(r1, 0x5100) (async)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x56000, 0x0)
ioctl$PTP_EXTTS_REQUEST(r3, 0x40103d02, &(0x7f0000000180)={0x200, 0x2}) (async)
ioctl$SNDCTL_SEQ_OUTOFBAND(r2, 0x40085112, &(0x7f00000001c0)=@n={0x3, 0x1, @generic=0x5, 0x4}) (async)
r4 = syz_open_dev$audion(&(0x7f0000000200), 0x8, 0x400)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000240)) (async)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x400, 0x0)
ioctl$SNDCTL_TMR_STOP(r5, 0x5403)
ioctl$BTRFS_IOC_WAIT_SYNC(r5, 0x40089416, &(0x7f00000002c0)) (async)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r4, 0xc05c5340, &(0x7f0000000300)={0x5, 0xd, 0x5, {0x10000, 0x9}, 0xa8, 0x1}) (async)
ioctl$SNDCTL_SEQ_RESET(r5, 0x5100)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f0000000380)=0x8)
preadv(r5, &(0x7f00000013c0)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, 0xf983, 0x396)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0) (async)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r3, 0x40047211, &(0x7f0000001440)=0x20) (async)
write$sndseq(r4, &(0x7f0000001500)=[{0xb5, 0x8, 0x5, 0x3, @tick=0x7, {0x2, 0x5}, {0xbc, 0x99}, @ext={0x53, &(0x7f0000001480)="4367a32a4913a63bd23dc413f897aca674956cecb7f3bc51486a8d3c565767e6e8b0a5ec55a1dd446f50016d39ea31a024d4fe08687b66e1c6d78530c89dec4b77b306d15a8d1a5daf61b3422c076c5fa991f0"}}, {0x4, 0x6, 0x0, 0x4, @tick=0xfff, {0x1, 0x4}, {0x4, 0x6}, @queue={0x1, {0x600, 0x2}}}, {0x7, 0x7, 0x9, 0x3, @time={0x57, 0x2}, {0x6, 0x4}, {0x3}, @raw32={[0x7f, 0x1, 0xfffffffc]}}], 0x54)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r4, 0x8010661b, &(0x7f0000001580))
r6 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000015c0), 0x581480, 0x0)
ioctl$PTP_PIN_SETFUNC(r6, 0x40603d07, &(0x7f0000001600)={'\x00', 0x6, 0x3, 0xdd7f})
ioctl$SNDCTL_SEQ_RESET(r1, 0x5100)
r7 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000001680), 0x2, 0x0)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(r7, 0xf50f, 0x0)
ioctl$SNDCTL_TMR_SELECT(r5, 0x40045408)

20.44227183s ago: executing program 2 (id=3906):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0xa0001, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r1, 0x3ba0, &(0x7f0000000080)={0x48, 0x2, r2, 0x0, 0x0, <r3=>0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000180)={0xc})
ioctl$IOMMU_HWPT_SET_DIRTY_TRACKING(r1, 0x3b8b, &(0x7f0000000100)={0x10, 0x0, r3})
ioctl$IOMMU_HWPT_ALLOC$NONE(r1, 0x3b89, &(0x7f0000000200)={0x28, 0x2, r4, r2, 0x0, 0x0, 0x0, 0x2d, &(0x7f00000001c0)="5cfc1fc3464c6c3e3548120448eb2e4edd3d5ed10722ac59592c2ea3cf6be927a683de8878de9a0ec517d8db45"}) (async, rerun: 64)
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007) (rerun: 64)

20.281215841s ago: executing program 2 (id=3907):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000040)={0x0, @bt={0xb93, 0x10000, 0x0, 0x0, 0x2, 0x2, 0x200, 0xd52, 0x867a, 0x4, 0x7fffffff, 0xffffffaa, 0x10001, 0xaad, 0x14, 0x1, {0xec, 0x7fffffff}, 0x40, 0x1}})
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000100)={0x0, @reserved})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x81}}, './file0\x00'})
pwritev2(r1, &(0x7f0000000480)=[{&(0x7f0000000200)="711e0ec5552ec968ed501409f925721982b569a767176a351d53e1de13140e0a1432edb932bb93b4b8b54cf2352171385b01b1ae4f1454fe0b05ac0c8efa29a24e68cfa95548f4bf5c55b1117c13e7f20f423cdf8422b295db57a189696356ff74d387a7310990100d0b5f5b798c7e5a1d7c45af503ad9b3279783cc", 0x7c}, {&(0x7f0000000280)="691541e4daa45957b39db35eda4703dae592e90f79c2ea2cd7ddd0a1007114a804dee270688f9cb634f074b10c55ccba2107318640be0f399880e6c9c90ef5d2f5def57e9bd36e66adb82f7b28ba841de580919a48e6e36c4f05346690ba", 0x5e}, {&(0x7f0000000300)="beaa1406261639c30bab881a83e76a42767b64679066a055f7e29a191d26389db0dc0d01a44a356058b52b1d7bd96fb3859f3956e2c222eed7f645f546f9436da5f05bb599643cbe182348cbb80eedd3b522e80ef79b6ab5357621ad85f2d3c35471d525536a3eb581cdf0f601832c042fdd31b76e49570ce4447fd63f1f5a679aa46d675c9efee0b13700d4", 0x8c}, {&(0x7f00000003c0)="20f1d4ecfc1750a8e06c17d8b5d8941566f8811baf230c5eb30a7fb92add51423d5290acafb67b5cd7a6cfc14675680377e2111bc32609b576f8beab25b545d6fc7df4a2fbf40c62ae105ca1a392d46c6904180c90c52be205b329f6e6c572861a1a222e6e61b92b9834bf75b778710752d06b8b472c3ee8933e44f516c4412ffa5ca9c32f049dfbb684ea2e13097cd70b8567b66395f836d42143930cd2d07f74861f99b191977a5828b3e004cdee83af90e885a75fd58152f62670eca4", 0xbe}], 0x4, 0xb7, 0x7, 0x4)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000004c0)={0x6, 0x1, 0x3, 0x0, 0xd})
ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f0000000540)={0x0, 0x0, 0x4, '\x00', &(0x7f0000000500)=0x3})
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0x40405515, &(0x7f00000005c0)={0x3, 0x2, 0x9, 0x8000, 'syz1\x00', 0xf394})
r3 = syz_open_dev$vbi(&(0x7f0000000600), 0x3, 0x2)
r4 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
ioctl$VIDIOC_S_TUNER(r4, 0x4054561e, &(0x7f0000000680)={0x0, "f19fe5d99e91ce994714880b444bd0049bd305841c6fb970b81a2f112e8ae549", 0x3, 0x100, 0x8001, 0x7, 0x8, 0x2, 0x6, 0x3})
r5 = syz_open_dev$vbi(&(0x7f0000000700), 0x2, 0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r2, 0xc0745645, &(0x7f0000000740)={0xb, [0xffff, 0x7ff, 0x78a, 0x2, 0x779, 0x6, 0x4, 0x2, 0xfff7, 0xfc06, 0xf, 0x3, 0x7, 0x114, 0x100, 0x2, 0x5, 0xeead, 0x3ff, 0x8, 0xfff5, 0x5, 0x1, 0x0, 0x2, 0x8, 0x4, 0x9, 0x8, 0x3, 0x5116, 0x3, 0xe, 0x8, 0x5, 0x4, 0x2, 0x6, 0x0, 0x2000, 0x3ff, 0x89, 0x200, 0xd, 0x4, 0x8, 0x8], 0xc})
ioctl$VIDIOC_QUERYCTRL(r4, 0xc0445624, &(0x7f00000007c0)={0x3d, 0x1, "8a574c2ca1f7499d6d9f54d345e0b2d0d21388bfdf7f97731c264a9079f2fd5b", 0x8, 0x5, 0x3, 0x1, 0x1})
ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000840)={0x8, 0x6})
ioctl$VIDIOC_S_CROP(r2, 0x4014563c, &(0x7f0000000880)={0x3, {0x0, 0x10, 0x7, 0x1000000}})
ioctl$INCFS_IOC_CREATE_FILE(r4, 0xc058671e, &(0x7f0000001c80)={{'\x00', 0x3}, {0xe}, 0x60, 0x0, 0x0, &(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)='./file0\x00', &(0x7f0000000940)="f6275ed30334642ad0e23f1fb3d0445a9c7156c9f12f62115dc0e2fd9314184b262ad49791e1f702fc05141100ede3dee257c52f1a7f14aedcba5d280ffb42909ffddb7cb5e0d03b6bbb6473920b9f159d87dce0a20850670aa45e88ddbd6b7a4a336b7fd184589cf689e4f5799da8cc258d05f14c39c89c53cd8a7b9d235201e7079c86d612eabfa5680c7d5d6f7dd74da0f6ef241bde7c6a3ad49313dc0d8bba16a8642979855419a4b5c039c4430fe49ee7b31a0a6bcd4a0e0f49eb86bbf256add73554ade45c1b4662ddfd8ba6fff0dc6daa42d6f85d3a04cec88a2ae731e25b8d615524379e2f8fc08050e37b67d66dc58bd9fc3279596ccb244c5870e7f3d3bf2e473c955e0af6426623b7630be25b20cb563768a916ac2b5bc01a9d1af969a5d24e2f8cf797a6ca0986ceb607df9968f3775e5ab0e836c199fe406a42ac052ddef70fbb003398ddbd63e8b3a920a0a8e99d971d9fc041be92ffcab44ca468d9e80411df2a1055f315a8db699a9ba8e8307388abdfea346d9e46426c164b41d432276cf7ca4f777bf00423b57892964c14ade213e2ab0e915f66e6c5dfab3ab2591e51238b30b85e64a6ace9e699dfd4739ed4d02860708c85cebed44809909f50761c8933d3a93c792b3352947caefa04d74cf681c9ba9a3622", 0x1dd, 0x0, &(0x7f0000000b40)={0x2, 0x1039, {0x1, 0xc, 0x2c, "8ac26e6b79604f5e427c274286eeebcb06c5f1aafbd90320e31b60efe2437af22995f375cdd06d27aa472b3d", 0x1000, "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"}, 0xcd, "c0996fefe369fa32120a972cbb0ad109261ab921599d876d47c6e5177716c42bf75ca5b89c1cbb2a0146cbe59ee3823d53746f3cd7ecd11c433531f98d6b1e5631c5f99efe62b3d3b5ea0fd7d86de666f68ade464dad85c39c41b900dc0f8139b7797182aa9de7c97ba52c544bef2db5766dd8097931b417289eaebc4c6f5b823c6bb971d6298bee9edea9a769c26ba50a6f29e9a7750c14c006a956e7aa8f3152a7dc093824ac4cb28f03b240445611ae6e7d3dc8ed0aeba1c3b2b3912963744970e62517af27aafd5f34d1a4"}, 0x1112})
syz_open_dev$vbi(&(0x7f0000001d00), 0x0, 0x2)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000001d40)={{0x1, 0x1, 0x18, <r6=>r3, {<r7=>r3}}, './file0\x00'})
lseek(r7, 0x7, 0x0)
syz_open_dev$vbi(&(0x7f0000001d80), 0x3, 0x2)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000001dc0)={0x0, @bt={0x9, 0x8, 0x1, 0x0, 0x5, 0x1, 0x5, 0xce7, 0xb, 0x0, 0x9, 0x6, 0x7, 0x8, 0x4, 0x0, {0x3, 0x10001}, 0x81, 0xc}})
r8 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000001e80), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r8, 0xc0205647, &(0x7f0000001f00)={0x9f0000, 0x8001, 0x2, 0xffffffffffffffff, 0x0, &(0x7f0000001ec0)={0x9a0914, 0x0, '\x00', @value64=0x3}})
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000001f40)=<r9=>0x0)
write$cgroup_pid(r6, &(0x7f0000001f80)=r9, 0x12)
ioctl$AUTOFS_IOC_FAIL(r5, 0x9361, 0xfff)
ioctl$SCSI_IOCTL_STOP_UNIT(r1, 0x6)
write$cgroup_int(r1, &(0x7f0000001fc0)=0xff, 0x12)

20.20412222s ago: executing program 2 (id=3908):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000340)=0x4)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0x5460, 0x1000000000000)
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a)
r3 = syz_open_dev$sndmidi(&(0x7f0000003640), 0x2, 0x20042)
ioctl$BLKSSZGET(r1, 0x1268, &(0x7f0000000300))
write$midi(r3, 0x0, 0x2c)
read(r3, &(0x7f0000000280)=""/92, 0x5c)
preadv2(r2, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/43, 0x2b}, {&(0x7f0000000080)=""/27, 0x1b}, {&(0x7f0000000380)=""/187, 0xbb}], 0x3, 0x4, 0x7fffffff, 0x2)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r4, 0x0)
r5 = syz_open_dev$video4linux(&(0x7f00000000c0), 0xf, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r5, 0x4020565a, &(0x7f0000001980))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

19.281332498s ago: executing program 2 (id=3913):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2)
r4 = openat$nci(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0x541b, 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
r6 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)

19.012670838s ago: executing program 6 (id=3914):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
read$FUSE(r1, &(0x7f00000003c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, r2, {{0x3, 0x2, 0x2, 0x4000000401, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0x7, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x1000003}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
r5 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r5, {0x9}}, './file0\x00'})
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

17.829860989s ago: executing program 6 (id=3915):
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x459, 0x1c51c1)
close(r0)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f0000000100)={0x0, 0x100})
r1 = syz_open_dev$cec(&(0x7f00000003c0), 0x0, 0x0)
ioctl$CEC_TRANSMIT(r1, 0xc0386105, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000000)=@usbdevfs_driver={0x0, 0x7, 0x0})
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r3 = syz_open_dev$video4linux(&(0x7f0000000240), 0x200000000000004, 0x20002)
ioctl$VIDIOC_DV_TIMINGS_CAP(r3, 0xc0905664, &(0x7f0000000000)={0x0, 0x0, '\x00', @raw_data=[0x8001, 0x6, 0x9, 0x2, 0xfffffffd, 0x708a, 0x0, 0x6, 0x0, 0x0, 0x4, 0x0, 0x4, 0x5cc, 0x0, 0x41000, 0x553b2758, 0xa, 0x80000001, 0x1, 0x80, 0x4, 0x7, 0xffffff81, 0x2, 0x1, 0xcb, 0x5, 0x393a00, 0x401, 0xffff0000, 0x1ff]})
read(r2, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000280)={0x3, 0x8, 0x1, 'queue1\x00', 0x8000})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
mmap(&(0x7f00007a9000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0)

16.74061952s ago: executing program 6 (id=3916):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
read(r0, &(0x7f0000000040)=""/94, 0x5e)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000000c0)={[0x302f, 0x4, 0x5, 0x5, 0x400, 0x8001, 0x8000000000000001, 0x2, 0x100000000, 0x8, 0xf884, 0x4, 0x9, 0x8, 0x6, 0x9], 0x4, 0x180801})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff}, './file0\x00'})
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000001c0)={0xa, 0x0, [{0x4b564d02, 0x0, 0x2}, {0x9f5, 0x0, 0x9}, {0x22a}, {0x896, 0x0, 0x9}, {0x92d, 0x0, 0x6}, {0x2f2, 0x0, 0x6}, {0x2f6, 0x0, 0x1}, {0x282, 0x0, 0x3}, {0x487, 0x0, 0x2}, {0x759, 0x0, 0xfffffffffffffffa}]})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, &(0x7f0000000280)={{r3}, "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"})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000001280)={0x3, 0x0, [{0xd, 0x1, 0x0, 0x5, 0x14, 0x1, 0x3}, {0xa, 0x1, 0x0, 0x8, 0x2a4, 0xeff, 0xac4}, {0xc000000d, 0xe, 0x3, 0x8, 0x5, 0x5, 0x1}]})
ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000001300))
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000001700)={0x1, 0x0, [{0x80f, 0x0, 0x8000000000000000}]})
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000001740)={0x5, 0x6b, 0x3, 0x60722855, 0x5})
syz_open_dev$sg(&(0x7f0000001780), 0x0, 0x111002)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000017c0), 0x2, 0x0)
close(r5)
openat$kvm(0xffffffffffffff9c, &(0x7f0000001800), 0x400400, 0x0)
read$FUSE(r2, &(0x7f0000001840)={0x2020, 0x0, <r6=>0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_WRITE(r2, &(0x7f0000003880)={0x18, 0x0, r6, {0x1098}}, 0x18)
r9 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000038c0), 0x80180, 0x0)
r10 = openat$cuse(0xffffffffffffff9c, &(0x7f0000003900), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r9, 0x8004e500, &(0x7f0000003940)=r10)
close(r9)
ioctl$VIDIOC_ENUMOUTPUT(r9, 0xc0485630, &(0x7f0000003980)={0x9, "a88d8ddfa4a0778b4fc20dfd3058a1ec2995b892b6893f2663f672f7635bf328", 0x2, 0x40, 0x0, 0x40, 0x2})
ioctl(0xffffffffffffffff, 0x2, &(0x7f0000003a00)="de36e7746ddb7d4290741a98dbdc9d245c23b996e77afb035e273821b2e635e02c462abd477b8dfbde4e9067799002ee41cdd08a79a1dae8c2c639959515f7c86600d37830d920622d1b0b3d6d39966aa987d3ee549e9ad0d3f7a0a151aee30fc54f160b73e381723035ae56da4d1815bc883a1c15ed83aede77ffb67f9b1a465f3d7e3443b832")
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003ac0), 0x10000, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
write$FUSE_DIRENTPLUS(r9, &(0x7f0000007bc0)={0x488, 0x0, r6, [{{0x1, 0x3, 0x0, 0x6, 0x8, 0x40000000, {0x5, 0x7, 0x7, 0xff, 0x0, 0x9, 0x2, 0x5, 0x3, 0xc000, 0x6, r7, r8, 0x4, 0xff}}, {0x4, 0x101, 0x1, 0x1, '\x00'}}, {{0x3, 0x0, 0x2, 0xa8, 0xf359, 0x0, {0x1, 0x7b0, 0x6, 0x9, 0x1d6c, 0x1, 0xfffffffe, 0x8dc, 0xc4f, 0x1000, 0x10, r7, r8, 0x9, 0xffff8000}}, {0x0, 0xffffffffffff2cc6, 0x4, 0x0, '[/$/'}}, {{0x2, 0x1, 0x3, 0x7fffffffffffffff, 0x0, 0x0, {0x1, 0x3, 0x5, 0x3, 0x40, 0x9, 0x8, 0x200, 0x3ff, 0x8000, 0x5, r7, r8, 0xb, 0x82}}, {0x2, 0x81, 0x0, 0x1}}, {{0x1, 0x2, 0x3, 0x0, 0x5, 0x9, {0x2, 0x3694, 0x1, 0xfff, 0x9, 0x0, 0xf, 0x2, 0xf, 0x4000, 0x3, 0x0, r8, 0x2, 0xda1}}, {0x5, 0x55c2732e, 0xa, 0xffff507c, '/dev/vcsa\x00'}}, {{0x1, 0x0, 0xfff, 0x4, 0x3, 0x2, {0x6, 0xfff, 0xb483, 0x5, 0x80, 0x7f, 0x1, 0x1, 0x24e, 0x6d5e6f88e2252fb8, 0x0, r7, r8, 0x1, 0x10}}, {0x6, 0xfffffffffffffffd, 0x1, 0x3ff, ':'}}, {{0x1, 0x3, 0xc7ef, 0x8, 0x9, 0x19, {0x1, 0x3, 0x40, 0xdc1, 0x8000, 0x3, 0x800, 0xfffff001, 0x81, 0x2000, 0x0, 0x0, 0x0, 0x8001, 0x3ff}}, {0x1, 0x100000000, 0x11, 0x0, '/dev/vhost-vsock\x00'}}, {{0x4, 0x1, 0x5, 0x29, 0x2, 0x9, {0x6, 0x4, 0x0, 0x3ff, 0x5, 0x2, 0x7fff, 0x5e, 0x1, 0x1000, 0x7b59, r7, 0x0, 0xff, 0x2}}, {0x5, 0x8001, 0x9, 0xc, '/dev/sg#\x00'}}]}, 0x488)

16.556341781s ago: executing program 6 (id=3917):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0xbc0, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x786d)
read(r2, &(0x7f0000000100)=""/147, 0x93)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3, 0x20000000ec013, 0xffffffffffffffff, 0x3e000)

15.61827875s ago: executing program 6 (id=3918):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0xf, 0x9442)
mmap(&(0x7f000038a000/0x1000)=nil, 0x1000, 0x2, 0x11, r1, 0xffffd000)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r2, &(0x7f00000001c0)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

15.05368546s ago: executing program 6 (id=3919):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000600)={0x1000000, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x90, 0x5, 0x9, 0x7f}})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r2, 0x0)
ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000500))
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000789000/0x1000)=nil, 0x1000, 0xb, 0x202812, r5, 0x7dfff000)

4.023160464s ago: executing program 35 (id=3913):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2)
r4 = openat$nci(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0x541b, 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
r6 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)

0s ago: executing program 36 (id=3919):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000600)={0x1000000, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x90, 0x5, 0x9, 0x7f}})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r2, 0x0)
ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000500))
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000789000/0x1000)=nil, 0x1000, 0xb, 0x202812, r5, 0x7dfff000)

kernel console output (not intermixed with test programs):

[T15627]  ? look_up_lock_class+0x74/0x170
[  390.351201][T15627]  ? register_lock_class+0x51/0x320
[  390.351223][T15627]  ? __lock_acquire+0xab9/0xd20
[  390.351271][T15627]  kvm_vcpu_ioctl+0x95c/0xe90
[  390.351299][T15627]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  390.351323][T15627]  ? __lock_acquire+0xab9/0xd20
[  390.351362][T15627]  ? __fget_files+0x2a/0x420
[  390.351387][T15627]  ? __fget_files+0x2a/0x420
[  390.351407][T15627]  ? __fget_files+0x3a0/0x420
[  390.351428][T15627]  ? __fget_files+0x2a/0x420
[  390.351453][T15627]  ? bpf_lsm_file_ioctl+0x9/0x20
[  390.351471][T15627]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  390.351491][T15627]  __se_sys_ioctl+0xfc/0x170
[  390.351514][T15627]  do_syscall_64+0xfa/0x3b0
[  390.351530][T15627]  ? lockdep_hardirqs_on+0x9c/0x150
[  390.351552][T15627]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.351568][T15627]  ? clear_bhb_loop+0x60/0xb0
[  390.351589][T15627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.351605][T15627] RIP: 0033:0x7f8d15d8e929
[  390.351621][T15627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.351635][T15627] RSP: 002b:00007f8d16ce0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  390.351654][T15627] RAX: ffffffffffffffda RBX: 00007f8d15fb5fa0 RCX: 00007f8d15d8e929
[  390.351665][T15627] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  390.351672][T15627] RBP: 00007f8d16ce0090 R08: 0000000000000000 R09: 0000000000000000
[  390.351680][T15627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  390.351690][T15627] R13: 0000000000000000 R14: 00007f8d15fb5fa0 R15: 00007ffdecebfcb8
[  390.351718][T15627]  </TASK>
[  390.351799][T15627] Mem-Info:
[  390.719395][T15627] active_anon:11313 inactive_anon:0 isolated_anon:0
[  390.719395][T15627]  active_file:1245 inactive_file:40640 isolated_file:0
[  390.719395][T15627]  unevictable:768 dirty:32 writeback:0
[  390.719395][T15627]  slab_reclaimable:11125 slab_unreclaimable:96151
[  390.719395][T15627]  mapped:24298 shmem:5530 pagetables:1778
[  390.719395][T15627]  sec_pagetables:0 bounce:0
[  390.719395][T15627]  kernel_misc_reclaimable:0
[  390.719395][T15627]  free:1210521 free_pcp:14844 free_cma:0
[  390.765821][    C1] vkms_vblank_simulate: vblank timer overrun
[  390.781153][T15627] Node 0 active_anon:45252kB inactive_anon:0kB active_file:4980kB inactive_file:162356kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97192kB dirty:124kB writeback:0kB shmem:20584kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11644kB pagetables:6976kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  390.831786][T15627] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  390.945424][T15627] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  390.977103][T15627] lowmem_reserve[]: 0 2497 2498 2498 2498
[  390.981912][T15652] random: crng reseeded on system resumption
[  390.982896][T15627] Node 0 DMA32 free:923708kB boost:0kB min:34232kB low:42788kB high:51344kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46792kB inactive_anon:0kB active_file:4980kB inactive_file:159964kB unevictable:1536kB writepending:128kB present:3129332kB managed:2557540kB mlocked:0kB bounce:0kB free_pcp:39876kB local_pcp:21116kB free_cma:0kB
[  391.021398][    C1] vkms_vblank_simulate: vblank timer overrun
[  391.026250][T15627] lowmem_reserve[]: 0 0 1 1 1
[  391.032696][T15627] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  391.062980][T15627] lowmem_reserve[]: 0 0 0 0 0
[  391.070884][T15627] Node 1 Normal free:3908192kB boost:0kB min:55652kB low:69564kB high:83476kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:15140kB local_pcp:6592kB free_cma:0kB
[  391.106342][T15627] lowmem_reserve[]: 0 0 0 0 0
[  391.111314][T15627] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  391.127686][T15627] Node 0 DMA32: 3195*4kB (UME) 1760*8kB (UME) 622*16kB (UME) 329*32kB (UME) 134*64kB (UME) 75*128kB (UME) 118*256kB (UME) 90*512kB (UME) 36*1024kB (UM) 13*2048kB (UME) 175*4096kB (UM) = 922092kB
[  391.150307][T15627] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  391.192481][T15627] Node 1 Normal: 188*4kB (UME) 52*8kB (UME) 49*16kB (UME) 136*32kB (UME) 47*64kB (UME) 10*128kB (UME) 5*256kB (UME) 4*512kB (UME) 1*1024kB (M) 1*2048kB (E) 950*4096kB (M) = 3908192kB
[  391.216860][T15627] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  391.230019][T15627] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  391.241982][T15627] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  391.252864][T15627] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  391.265804][T15627] 47475 total pagecache pages
[  391.270511][T15627] 0 pages in swap cache
[  391.277978][T15627] Free swap  = 124996kB
[  391.282159][T15627] Total swap = 124996kB
[  391.294202][T15627] 2097051 pages RAM
[  391.298070][T15627] 0 pages HighMem/MovableOnly
[  391.304469][T15627] 425688 pages reserved
[  391.308697][T15627] 0 pages cma reserved
[  392.091425][T15701] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  392.337758][T15714] input: syz1 as /devices/virtual/input/input107
[  393.265463][T15754] dlm: Unknown command passed to DLM device : 0
[  393.265463][T15754] 
[  393.328717][T15751] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  394.690490][T15835] dlm: no local IP address has been set
[  394.719498][T15835] dlm: cannot start dlm midcomms -107
[  395.185934][T15867] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  395.205529][T15866] syz.5.2432: attempt to access beyond end of device
[  395.205529][T15866] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  395.257454][T15867] nvme_fabrics: unknown parameter or missing value '*Ï ' in ctrl creation request
[  395.824467][T15907] kvm_intel: kvm [15905]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xff
[  396.917844][T15963] loop6: detected capacity change from 0 to 7
[  396.942875][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  396.952139][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  396.971372][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  396.981172][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  396.996831][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.006114][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.015032][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.024309][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.038843][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.048078][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.080942][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.090199][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.098536][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.107756][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.121612][T15963] ldm_validate_partition_table(): Disk read failed.
[  397.129452][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.138655][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.155081][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.164313][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.173088][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  397.182329][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  397.193855][T15963] Dev loop6: unable to read RDB block 0
[  397.200707][T15963]  loop6: unable to read partition table
[  397.208218][T15963] loop6: partition table beyond EOD, truncated
[  397.216711][T15963] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà–() failed (rc=-5)
[  397.466061][   T30] audit: type=1800 audit(1750376460.783:18): pid=15976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2453" name="dmabuf" dev="dmabuf" ino=17 res=0 errno=0
[  397.929692][T16011] loop8: detected capacity change from 0 to 7
[  397.942956][T16011] Dev loop8: unable to read RDB block 7
[  397.952807][T16011]  loop8: unable to read partition table
[  397.964895][T16011] loop8: partition table beyond EOD, truncated
[  397.981334][T16011] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  398.072678][T16021] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  398.208627][T16038] random: crng reseeded on system resumption
[  398.432246][T16059] CUSE: info not properly terminated
[  398.558849][T16066] loop8: detected capacity change from 0 to 7
[  398.587559][T16066] Dev loop8: unable to read RDB block 7
[  398.603852][T16066]  loop8: unable to read partition table
[  398.609854][T16066] loop8: partition table beyond EOD, truncated
[  398.628351][T16066] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  399.213850][ T5156] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  399.448817][T16115] loop8: detected capacity change from 0 to 7
[  399.474163][T16115] Dev loop8: unable to read RDB block 7
[  399.479779][T16115]  loop8: unable to read partition table
[  399.497356][T16115] loop8: partition table beyond EOD, truncated
[  399.537474][T16115] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  399.698744][T16131] binder: 16130:16131 ioctl c018620c 200000000380 returned -22
[  399.725473][T16126] syz.0.2484: attempt to access beyond end of device
[  399.725473][T16126] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  399.764765][T16129] binder: 16119:16129 ioctl c0306201 2000000003c0 returned -14
[  400.751336][T16201] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  400.888580][T16213] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  401.061636][T16225] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  401.111281][T16222] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  401.178017][T16232] iommufd_mock iommufd_mock2: Adding to iommu group 0
[  401.201005][T16238] sp0: Synchronizing with TNC
[  402.066094][T16317] syz.1.2508: attempt to access beyond end of device
[  402.066094][T16317] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  402.346030][T16342] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  403.131194][T16466] sp0: Synchronizing with TNC
[  403.722886][T16605] CUSE: info not properly terminated
[  404.633821][T16711] input: syz1 as /devices/virtual/input/input115
[  404.804595][T16733] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  404.900872][T16743] loop8: detected capacity change from 0 to 7
[  404.942033][T16743] Dev loop8: unable to read RDB block 7
[  404.958920][T16743]  loop8: unable to read partition table
[  404.987095][T16743] loop8: partition table beyond EOD, truncated
[  405.004143][T16743] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  405.478411][T16801] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  405.481795][T16798] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  405.801151][T16856] loop8: detected capacity change from 0 to 7
[  405.832199][T16856] Dev loop8: unable to read RDB block 7
[  405.849338][T16856]  loop8: unable to read partition table
[  405.857812][T16856] loop8: partition table beyond EOD, truncated
[  405.887676][T16856] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  406.690546][T16964] loop8: detected capacity change from 0 to 7
[  406.719812][T16964] Dev loop8: unable to read RDB block 7
[  406.750389][T16964]  loop8: unable to read partition table
[  406.771004][T16964] loop8: partition table beyond EOD, truncated
[  406.791342][T16964] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  407.408283][T16980] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  407.927007][T17019] usb usb1: usbfs: process 17019 (syz.5.2571) did not claim interface 0 before use
[  408.413107][T17042] loop8: detected capacity change from 0 to 7
[  408.424300][T17043] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  408.435568][ T8537] Dev loop8: unable to read RDB block 7
[  408.441196][ T8537]  loop8: unable to read partition table
[  408.491191][T17046] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  408.504362][ T8537] loop8: partition table beyond EOD, truncated
[  408.513274][T17042] Dev loop8: unable to read RDB block 7
[  408.525351][T17042]  loop8: unable to read partition table
[  408.531327][T17042] loop8: partition table beyond EOD, truncated
[  408.544015][T17042] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  408.957641][T17074] Invalid logical block size (8)
[  409.471817][T17093] loop8: detected capacity change from 0 to 7
[  409.509503][ T8537] Dev loop8: unable to read RDB block 7
[  409.526797][ T8537]  loop8: unable to read partition table
[  409.544655][ T8537] loop8: partition table beyond EOD, truncated
[  409.562800][T17093] Dev loop8: unable to read RDB block 7
[  409.600367][T17093]  loop8: unable to read partition table
[  409.621270][T17093] loop8: partition table beyond EOD, truncated
[  409.631349][T17093] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  409.897183][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.937065][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.956876][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.956912][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.956937][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.956962][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.956986][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957009][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957032][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957057][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957081][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957106][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957130][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957154][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957178][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957202][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957227][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.957250][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966634][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966673][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966697][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966722][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966745][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966767][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966788][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966811][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966835][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966860][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966911][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966936][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966960][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.966984][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967008][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967032][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967055][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967080][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967103][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967127][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967151][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967175][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967197][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967221][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967245][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967268][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967288][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967309][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967330][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.967353][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970783][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970821][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970847][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970871][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970895][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970920][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970945][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970969][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.970993][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971018][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971042][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971066][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971090][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971116][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971140][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971164][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971189][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971214][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971238][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971263][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971287][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971312][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971336][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971360][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971384][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971408][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971432][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971456][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971480][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971504][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971528][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971552][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971577][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971602][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971626][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971655][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971679][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971703][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971727][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971752][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971776][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971800][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971824][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971849][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971874][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971898][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971922][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971947][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971971][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.971996][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972019][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972044][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972069][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972093][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972117][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972142][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972167][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972192][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972216][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972240][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972265][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972289][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972313][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972338][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972362][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972386][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972407][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972426][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972450][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972475][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972498][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972530][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972554][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972578][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972603][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972627][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972657][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972682][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972706][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972730][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972755][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972779][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972803][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972826][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972850][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972875][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972899][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972924][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972948][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972972][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.972998][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973021][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973046][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973071][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973095][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973120][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973144][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973168][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973193][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973218][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973242][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973266][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973291][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973315][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973340][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973364][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973388][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973412][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973436][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973461][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973486][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973510][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973534][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973559][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973584][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973608][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973632][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.973661][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978689][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978719][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978744][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978769][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978792][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978817][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978840][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978864][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978888][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978912][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978936][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978959][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.978983][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979007][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979030][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979054][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979078][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979101][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979126][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979149][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979173][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979197][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979221][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979245][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979268][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979291][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979315][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.979338][ T5837] hid-generic 0101:0000:0003.0008: unknown main item tag 0x0
[  409.990479][ T5837] hid-generic 0101:0000:0003.0008: hidraw0: <UNKNOWN> HID v0.08 Device [syz1] on syz0
[  411.027598][T17153] loop8: detected capacity change from 0 to 7
[  412.025421][T17108] tty tty25: ldisc open failed (-12), clearing slot 24
[  412.027316][ T8537] Dev loop8: unable to read RDB block 7
[  412.041869][ T8537]  loop8: unable to read partition table
[  412.042057][ T8537] loop8: partition table beyond EOD, truncated
[  412.064581][T17113] tty tty24: ldisc open failed (-12), clearing slot 23
[  412.313233][T17174] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  412.822930][T17199] loop8: detected capacity change from 0 to 7
[  412.857838][T17199] Dev loop8: unable to read RDB block 7
[  412.864339][T17199]  loop8: unable to read partition table
[  412.870343][T17199] loop8: partition table beyond EOD, truncated
[  412.916360][T17199] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  413.429308][T17224] CUSE: info not properly terminated
[  413.642937][T17235] loop8: detected capacity change from 0 to 7
[  413.662843][T17235] Dev loop8: unable to read RDB block 7
[  413.682153][T17235]  loop8: unable to read partition table
[  413.698671][T17235] loop8: partition table beyond EOD, truncated
[  413.715491][T17235] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  413.895013][T17250] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  414.604994][T17301] loop8: detected capacity change from 0 to 7
[  414.634302][T17301] Dev loop8: unable to read RDB block 7
[  414.639977][T17301]  loop8: unable to read partition table
[  414.674008][T17301] loop8: partition table beyond EOD, truncated
[  414.688309][T17301] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  415.302003][T17339] input: syz1 as /devices/virtual/input/input117
[  415.755092][T17370] loop8: detected capacity change from 0 to 7
[  415.770016][ T8537] Dev loop8: unable to read RDB block 7
[  415.804467][ T8537]  loop8: unable to read partition table
[  415.811220][ T8537] loop8: partition table beyond EOD, truncated
[  415.820463][T17370] Dev loop8: unable to read RDB block 7
[  415.835052][T17370]  loop8: unable to read partition table
[  415.843057][T17370] loop8: partition table beyond EOD, truncated
[  415.862206][T17370] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  416.032190][T17384] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  416.679625][T17402] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  416.955518][T17419] loop8: detected capacity change from 0 to 7
[  416.965793][ T8537] Dev loop8: unable to read RDB block 7
[  416.970947][T17420] binder: 17416:17420 ioctl c018620c 200000000640 returned -22
[  416.974704][ T8537]  loop8: unable to read partition table
[  416.985471][ T8537] loop8: partition table beyond EOD, truncated
[  416.992585][T17419] Dev loop8: unable to read RDB block 7
[  417.002243][T17419]  loop8: unable to read partition table
[  417.010819][T17419] loop8: partition table beyond EOD, truncated
[  417.019500][T17419] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  417.532044][   T30] audit: type=1800 audit(1750376480.843:19): pid=17453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2659" name="memory.events" dev="tmpfs" ino=439 res=0 errno=0
[  417.575492][T17455] usb usb8: usbfs: process 17455 (syz.1.2662) did not claim interface 0 before use
[  417.612274][T17457] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  418.808561][T17541] sp0: Synchronizing with TNC
[  418.851966][T17541] sp0: Found TNC
[  418.975830][T17535] [U] è`
[  421.648544][T17671] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  422.276458][T14179] cgroup: fork rejected by pids controller in /syz1
[  422.820809][   T59] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.086144][   T59] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.268348][   T59] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.352028][T15971] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  423.367155][T15971] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  423.377534][T15971] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  423.389936][T15971] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  423.417992][T15971] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  423.483910][ T5156] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  423.491407][ T5156] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  423.503804][ T5156] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  423.531761][   T59] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  423.548752][ T5156] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  423.558477][ T5156] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  424.027929][   T59] bridge_slave_1: left allmulticast mode
[  424.046249][   T59] bridge_slave_1: left promiscuous mode
[  424.052063][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  424.141416][   T59] bridge_slave_0: left allmulticast mode
[  424.164766][   T59] bridge_slave_0: left promiscuous mode
[  424.173758][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[  424.335590][   T77] Bluetooth: Error in BCSP hdr checksum
[  424.597609][   T36] Bluetooth: Error in BCSP hdr checksum
[  425.133025][T17851] random: crng reseeded on system resumption
[  425.555816][T17862] binder: 17861:17862 ioctl c0306201 2000000003c0 returned -14
[  425.614422][ T5156] Bluetooth: hci2: command tx timeout
[  425.867178][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  425.901657][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  426.025814][   T59] bond0 (unregistering): Released all slaves
[  426.093902][ T5156] Bluetooth: hci4: command 0x1003 tx timeout
[  426.094550][T15971] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  426.236929][T17838] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  426.242890][T17838] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  426.475183][T17761] chnl_net:caif_netlink_parms(): no params data found
[  426.584535][T17972] binder: 17971:17972 ioctl 8030942b 200000000000 returned -22
[  426.642277][T17972] binder: 17971:17972 ioctl c0306201 2000000003c0 returned -14
[  427.171345][   T59] hsr_slave_0: left promiscuous mode
[  427.187342][   T59] hsr_slave_1: left promiscuous mode
[  427.195319][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  427.203145][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[  427.231989][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  427.243925][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[  427.286117][   T59] veth1_macvtap: left promiscuous mode
[  427.301202][   T59] veth0_macvtap: left promiscuous mode
[  427.319569][   T59] veth1_vlan: left promiscuous mode
[  427.330086][   T59] veth0_vlan: left promiscuous mode
[  428.016547][T18034] Falling back ldisc for ttyS3.
[  428.601654][T18072] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  429.348642][   T59] team0 (unregistering): Port device team_slave_1 removed
[  429.537709][   T59] team0 (unregistering): Port device team_slave_0 removed
[  431.885768][T17761] bridge0: port 1(bridge_slave_0) entered blocking state
[  431.892951][T17761] bridge0: port 1(bridge_slave_0) entered disabled state
[  431.918951][T17761] bridge_slave_0: entered allmulticast mode
[  431.927254][T17761] bridge_slave_0: entered promiscuous mode
[  431.995605][T17761] bridge0: port 2(bridge_slave_1) entered blocking state
[  432.010372][T17761] bridge0: port 2(bridge_slave_1) entered disabled state
[  432.043933][T17761] bridge_slave_1: entered allmulticast mode
[  432.051674][T17761] bridge_slave_1: entered promiscuous mode
[  432.181871][T17761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  432.227768][T17761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  432.519825][T17761] team0: Port device team_slave_0 added
[  432.569256][T17761] team0: Port device team_slave_1 added
[  433.061234][T17761] batman_adv: batadv0: Adding interface: batadv_slave_0
[  433.071810][T17761] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  433.167510][T17761] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  433.195104][T17761] batman_adv: batadv0: Adding interface: batadv_slave_1
[  433.233808][T17761] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  433.300339][T17761] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  433.515962][T17761] hsr_slave_0: entered promiscuous mode
[  433.556954][T17761] hsr_slave_1: entered promiscuous mode
[  435.212251][T17761] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  435.251599][T17761] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  435.301113][T17761] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  435.386762][T17761] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  435.705191][T17761] 8021q: adding VLAN 0 to HW filter on device bond0
[  435.836040][T17761] 8021q: adding VLAN 0 to HW filter on device team0
[  435.871730][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[  435.879008][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[  435.997409][   T77] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.004630][   T77] bridge0: port 2(bridge_slave_1) entered forwarding state
[  436.093183][T17761] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  436.117554][T17761] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  436.455943][T18465] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  436.583278][T17761] 8021q: adding VLAN 0 to HW filter on device batadv0
[  436.714261][T17761] veth0_vlan: entered promiscuous mode
[  436.779187][T17761] veth1_vlan: entered promiscuous mode
[  436.837716][T17761] veth0_macvtap: entered promiscuous mode
[  436.874858][T17761] veth1_macvtap: entered promiscuous mode
[  436.926406][T17761] batman_adv: batadv0: Interface activated: batadv_slave_0
[  436.969820][T17761] batman_adv: batadv0: Interface activated: batadv_slave_1
[  436.997161][T17761] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  437.018148][T17761] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  437.043818][T17761] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  437.052585][T17761] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  437.454618][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  437.484581][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  437.571112][   T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  437.593078][   T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  439.274769][T18654] input: syz0 as /devices/virtual/input/input123
[  439.293430][T18654] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  440.019460][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  440.031073][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  440.032887][T18682] input: syz0 as /devices/virtual/input/input125
[  440.065718][T18672] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=io+mem:owns=io+mem
[  440.099535][T18688] sp0: Synchronizing with TNC
[  440.151438][T18688] sp0: Found TNC
[  440.163424][T18681] [U] è`
[  441.174605][T18754] support for the xor transformation has been removed.
[  441.207766][T18754] support for the xor transformation has been removed.
[  441.414944][T18764] input: syz1 as /devices/virtual/input/input126
[  444.896864][T19069] loop8: detected capacity change from 0 to 7
[  444.946315][T19069] Dev loop8: unable to read RDB block 7
[  444.953190][T19069]  loop8: unable to read partition table
[  444.973159][T19069] loop8: partition table beyond EOD, truncated
[  444.993187][T19069] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  446.071416][T19127] loop8: detected capacity change from 0 to 7
[  446.080466][T19127] Dev loop8: unable to read RDB block 7
[  446.118111][T19127]  loop8: unable to read partition table
[  446.150774][T19127] loop8: partition table beyond EOD, truncated
[  446.170664][T19127] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  446.260548][T19140] program syz.0.2851 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  446.344088][T19140] usb usb1: usbfs: process 19140 (syz.0.2851) did not claim interface 0 before use
[  446.355979][T19140] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  446.729011][T19175] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  447.070219][T19201] loop8: detected capacity change from 0 to 7
[  447.088504][T19201] Dev loop8: unable to read RDB block 7
[  447.103531][T19201]  loop8: unable to read partition table
[  447.124058][T19201] loop8: partition table beyond EOD, truncated
[  447.143801][T19201] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  447.502476][T19218] input: syz0 as /devices/virtual/input/input128
[  447.518626][T19227] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  447.797319][T19256] loop8: detected capacity change from 0 to 7
[  447.809439][ T8537] Dev loop8: unable to read RDB block 7
[  447.815474][ T8537]  loop8: unable to read partition table
[  447.821442][ T8537] loop8: partition table beyond EOD, truncated
[  447.831099][T19256] Dev loop8: unable to read RDB block 7
[  447.839157][T19256]  loop8: unable to read partition table
[  447.845542][T19256] loop8: partition table beyond EOD, truncated
[  447.884038][T19256] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  448.729561][T19307] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  448.761188][T19307] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  449.203231][   T77] Bluetooth: hci4: Frame reassembly failed (-84)
[  449.285724][T19343] kvm: kvm [19342]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x7f00000000000000
[  451.019295][T19398] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  451.050527][T19402] [U] 
[  451.060798][T19402] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  451.085917][T19399] iommufd_mock iommufd_mock2: Adding to iommu group 2
[  451.215368][T15971] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  451.458642][T19445] loop8: detected capacity change from 0 to 7
[  451.493577][T19445] Dev loop8: unable to read RDB block 7
[  451.517496][T19445]  loop8: unable to read partition table
[  451.523376][T19445] loop8: partition table beyond EOD, truncated
[  451.543596][T19445] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  452.516297][T19494] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  453.519786][T19526] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  454.126215][T19571] loop8: detected capacity change from 0 to 7
[  454.142396][ T8537] Dev loop8: unable to read RDB block 7
[  454.154305][ T8537]  loop8: unable to read partition table
[  454.160142][ T8537] loop8: partition table beyond EOD, truncated
[  454.204556][T19571] Dev loop8: unable to read RDB block 7
[  454.219748][T19571]  loop8: unable to read partition table
[  454.234307][T19571] loop8: partition table beyond EOD, truncated
[  454.243035][T19571] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  455.036701][T19633] loop4: detected capacity change from 0 to 524255232
[  455.288281][T19654] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  456.352736][   T77] Bluetooth: hci4: Frame reassembly failed (-90)
[  456.380207][T19809] loop2: detected capacity change from 0 to 7
[  456.407517][T19809] Dev loop2: unable to read RDB block 7
[  456.413272][T19809]  loop2: unable to read partition table
[  456.419234][T19809] loop2: partition table beyond EOD, truncated
[  456.433807][T19809] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  456.460360][T19814] ALSA: mixer_oss: invalid OSS volume ''
[  457.072856][T19850] vim2m vim2m.0: Fourcc format (0x47524247) invalid.
[  457.447796][T19867] QAT: Invalid ioctl 62735
[  457.453016][T19867] QAT: Invalid ioctl -1073453434
[  457.528123][T19871] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  458.413776][T15971] Bluetooth: hci4: command 0x1003 tx timeout
[  458.414128][ T5156] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  458.649797][T19942] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  459.495443][T19992] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  459.970473][T20016] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  461.426917][T20114] CUSE: info not properly terminated
[  462.242462][T20178] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  462.261882][T20181] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  462.382534][T20190] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  463.148854][T20242] kvm: kvm [20241]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010007) = 0x7
[  463.365407][T20254] autofs4:pid:20254:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  463.410090][T20261] dlm: no locking on control device
[  464.102432][T20252] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  464.129685][T20252] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  464.521378][T20406] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  465.012876][T20433] kvm: Disabled LAPIC found during irq injection
[  465.729116][T20499] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  465.809743][T20507] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  465.962699][T20527] loop6: detected capacity change from 0 to 524287999
[  467.867931][T20623] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  467.870766][T20622] Context (ID=0x0) not attached to queue pair (handle=0x4d2:0x2)
[  467.969580][T20630] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  468.809805][T20677] input: syz0 as /devices/virtual/input/input138
[  469.310482][T20704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  469.340685][T20704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  470.865596][T20808] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.3094' sets config #1
[  470.887063][T20809] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  471.439375][T20864] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  471.463783][T20865] input: syz1 as /devices/virtual/input/input139
[  471.520342][T20866] input: syz1 as /devices/virtual/input/input140
[  471.547916][T20865] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  472.720174][T20934] binder: 20933:20934 ioctl 40489426 0 returned -22
[  473.123815][T20949] support for cryptoloop has been removed.  Use dm-crypt instead.
[  473.462291][T20969] loop8: detected capacity change from 0 to 7
[  473.473184][T20969] Dev loop8: unable to read RDB block 7
[  473.481855][T20969]  loop8: unable to read partition table
[  473.491184][T20969] loop8: partition table beyond EOD, truncated
[  473.508476][T20969] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  474.232053][T21015] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  474.336530][T21026] loop8: detected capacity change from 0 to 7
[  474.352247][ T8537] Dev loop8: unable to read RDB block 7
[  474.362990][ T8537]  loop8: unable to read partition table
[  474.372398][ T8537] loop8: partition table beyond EOD, truncated
[  474.380144][T21026] Dev loop8: unable to read RDB block 7
[  474.393753][T21026]  loop8: unable to read partition table
[  474.422357][T21026] loop8: partition table beyond EOD, truncated
[  474.449022][T21026] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  474.551727][T21036] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  474.733320][T21049] program syz.1.3136 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  474.892670][T21052] ALSA: mixer_oss: invalid OSS volume ''
[  475.519977][T21084] loop8: detected capacity change from 0 to 7
[  475.530203][T21084] Dev loop8: unable to read RDB block 7
[  475.541471][T21084]  loop8: unable to read partition table
[  475.550003][T21084] loop8: partition table beyond EOD, truncated
[  475.557552][T21084] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  475.577063][T21090] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  475.958210][T21123] ALSA: seq fatal error: cannot create timer (-22)
[  476.042511][T21130] loop8: detected capacity change from 0 to 7
[  476.058788][ T8537] Dev loop8: unable to read RDB block 7
[  476.080713][ T8537]  loop8: unable to read partition table
[  476.087530][ T8537] loop8: partition table beyond EOD, truncated
[  476.098950][T21130] Dev loop8: unable to read RDB block 7
[  476.107684][T21130]  loop8: unable to read partition table
[  476.117837][T21130] loop8: partition table beyond EOD, truncated
[  476.126774][T21130] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  476.339925][T21140] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  476.899693][T21167] binder: 21166:21167 ioctl c018620c 200000000380 returned -22
[  476.944203][T21167] usb usb8: usbfs: process 21167 (syz.0.3165) did not claim interface 0 before use
[  477.071870][T21175] loop8: detected capacity change from 0 to 7
[  477.114751][ T8537] Dev loop8: unable to read RDB block 7
[  477.120376][ T8537]  loop8: unable to read partition table
[  477.130733][ T8537] loop8: partition table beyond EOD, truncated
[  477.144400][T21175] Dev loop8: unable to read RDB block 7
[  477.150104][T21175]  loop8: unable to read partition table
[  477.170408][T21175] loop8: partition table beyond EOD, truncated
[  477.177535][T21175] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  477.255267][T21184] input: syz0 as /devices/virtual/input/input141
[  477.881551][T21239] loop8: detected capacity change from 0 to 7
[  477.923830][T21239] Dev loop8: unable to read RDB block 7
[  477.929448][T21239]  loop8: unable to read partition table
[  477.937903][T21239] loop8: partition table beyond EOD, truncated
[  477.956529][T21239] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  478.167799][T21256] dlm: no local IP address has been set
[  478.180162][T21256] dlm: cannot start dlm midcomms -107
[  478.194989][T21256] dlm: non-version read from control device 8224
[  478.232093][T21256] input: syz0 as /devices/virtual/input/input142
[  478.515301][T21272] syz.5.3185: attempt to access beyond end of device
[  478.515301][T21272] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  478.607347][   T30] audit: type=1400 audit(1750376541.873:20): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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
[  479.082697][T21306] loop8: detected capacity change from 0 to 7
[  479.218072][T21306] Dev loop8: unable to read RDB block 7
[  479.254368][T21306]  loop8: unable to read partition table
[  479.260223][T21306] loop8: partition table beyond EOD, truncated
[  479.283745][T21306] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  479.909547][   T30] audit: type=1800 audit(1750376543.223:21): pid=21344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3199" name="memory.events" dev="tmpfs" ino=512 res=0 errno=0
[  479.959548][   T30] audit: type=1800 audit(1750376543.223:22): pid=21344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3199" name="memory.events" dev="tmpfs" ino=512 res=0 errno=0
[  480.257721][T21357] loop8: detected capacity change from 0 to 7
[  480.367918][T21361] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  480.375400][T21357] Dev loop8: unable to read RDB block 7
[  480.385932][T21357]  loop8: unable to read partition table
[  480.405796][T21357] loop8: partition table beyond EOD, truncated
[  480.428870][T21370] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  480.437101][T21357] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  480.747283][T21387] mkiss: ax0: crc mode is auto.
[  480.762093][T21387] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  480.865705][T21395] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  481.665519][T21435] loop8: detected capacity change from 0 to 7
[  481.705698][ T8537] Dev loop8: unable to read RDB block 7
[  481.715322][ T8537]  loop8: unable to read partition table
[  481.727605][ T8537] loop8: partition table beyond EOD, truncated
[  481.751984][T21435] Dev loop8: unable to read RDB block 7
[  481.774191][T21435]  loop8: unable to read partition table
[  481.792598][T21435] loop8: partition table beyond EOD, truncated
[  481.799601][T21435] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  482.112705][T21462] syz.5.3220: attempt to access beyond end of device
[  482.112705][T21462] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  482.433278][T21482] loop8: detected capacity change from 0 to 7
[  482.455407][ T8537] Dev loop8: unable to read RDB block 7
[  482.461022][ T8537]  loop8: unable to read partition table
[  482.474031][ T8537] loop8: partition table beyond EOD, truncated
[  482.498808][T21482] Dev loop8: unable to read RDB block 7
[  482.505476][T21482]  loop8: unable to read partition table
[  482.521587][T21482] loop8: partition table beyond EOD, truncated
[  482.543194][T21482] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  482.806974][T21504] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  483.577981][T21530] random: crng reseeded on system resumption
[  483.604930][T21527] binder: 21525:21527 ioctl c0306201 200000000540 returned -14
[  484.079377][T21566] input: syz1 as /devices/virtual/input/input143
[  484.161424][T21572] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  484.377547][T21590] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  486.797408][T21721] random: crng reseeded on system resumption
[  488.464099][T21818] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  489.640518][T21903] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  489.807030][T21910] syz.2.3317: vmalloc error: size 16105472, failed to allocated page array size 31456, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  489.848462][T21910] CPU: 0 UID: 0 PID: 21910 Comm: syz.2.3317 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  489.848489][T21910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  489.848500][T21910] Call Trace:
[  489.848507][T21910]  <TASK>
[  489.848515][T21910]  dump_stack_lvl+0x189/0x250
[  489.848541][T21910]  ? __pfx_dump_stack_lvl+0x10/0x10
[  489.848560][T21910]  ? __pfx__printk+0x10/0x10
[  489.848578][T21910]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  489.848600][T21910]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  489.848623][T21910]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  489.848648][T21910]  warn_alloc+0x214/0x310
[  489.848676][T21910]  ? __pfx_warn_alloc+0x10/0x10
[  489.848707][T21910]  ? __get_vm_area_node+0x28f/0x300
[  489.848728][T21910]  ? kvm_set_memslot+0x4e2/0x1310
[  489.848749][T21910]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  489.848799][T21910]  ? kvm_set_memslot+0x3e/0x1310
[  489.848819][T21910]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  489.848851][T21910]  ? kvm_set_memslot+0x4e2/0x1310
[  489.848866][T21910]  __vmalloc_noprof+0xb1/0xf0
[  489.848887][T21910]  ? kvm_set_memslot+0x4e2/0x1310
[  489.848907][T21910]  kvm_set_memslot+0x4e2/0x1310
[  489.848927][T21910]  ? kvm_set_memory_region+0x775/0xc00
[  489.848950][T21910]  kvm_set_memory_region+0x9bb/0xc00
[  489.848981][T21910]  kvm_vm_ioctl_set_memory_region+0x6f/0xa0
[  489.849001][T21910]  kvm_vm_ioctl+0x957/0xc60
[  489.849020][T21910]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  489.849042][T21910]  ? do_vfs_ioctl+0x12ba/0x1990
[  489.849065][T21910]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  489.849102][T21910]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  489.849127][T21910]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  489.849150][T21910]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  489.849172][T21910]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  489.849196][T21910]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  489.849235][T21910]  ? __lock_acquire+0xab9/0xd20
[  489.849275][T21910]  ? __fget_files+0x2a/0x420
[  489.849299][T21910]  ? __fget_files+0x2a/0x420
[  489.849320][T21910]  ? __fget_files+0x3a0/0x420
[  489.849340][T21910]  ? __fget_files+0x2a/0x420
[  489.849365][T21910]  ? bpf_lsm_file_ioctl+0x9/0x20
[  489.849383][T21910]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  489.849400][T21910]  __se_sys_ioctl+0xfc/0x170
[  489.849422][T21910]  do_syscall_64+0xfa/0x3b0
[  489.849438][T21910]  ? lockdep_hardirqs_on+0x9c/0x150
[  489.849460][T21910]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.849477][T21910]  ? clear_bhb_loop+0x60/0xb0
[  489.849497][T21910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.849513][T21910] RIP: 0033:0x7fe18538e929
[  489.849528][T21910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.849543][T21910] RSP: 002b:00007fe1862e2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  489.849561][T21910] RAX: ffffffffffffffda RBX: 00007fe1855b5fa0 RCX: 00007fe18538e929
[  489.849573][T21910] RDX: 0000200000000080 RSI: 000000004020ae46 RDI: 0000000000000005
[  489.849584][T21910] RBP: 00007fe185410b39 R08: 0000000000000000 R09: 0000000000000000
[  489.849594][T21910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  489.849604][T21910] R13: 0000000000000000 R14: 00007fe1855b5fa0 R15: 00007ffc38e254a8
[  489.849633][T21910]  </TASK>
[  489.849640][T21910] Mem-Info:
[  490.189130][T21910] active_anon:14000 inactive_anon:0 isolated_anon:0
[  490.189130][T21910]  active_file:1309 inactive_file:42723 isolated_file:0
[  490.189130][T21910]  unevictable:772 dirty:77 writeback:0
[  490.189130][T21910]  slab_reclaimable:11257 slab_unreclaimable:96092
[  490.189130][T21910]  mapped:24306 shmem:5481 pagetables:1727
[  490.189130][T21910]  sec_pagetables:0 bounce:0
[  490.189130][T21910]  kernel_misc_reclaimable:0
[  490.189130][T21910]  free:1199986 free_pcp:20009 free_cma:0
[  490.234451][    C0] vkms_vblank_simulate: vblank timer overrun
[  490.241604][T21910] Node 0 active_anon:56300kB inactive_anon:0kB active_file:5236kB inactive_file:170988kB unevictable:1552kB isolated(anon):0kB isolated(file):0kB mapped:97224kB dirty:308kB writeback:0kB shmem:20388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11696kB pagetables:6772kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  490.274852][    C0] vkms_vblank_simulate: vblank timer overrun
[  490.281956][T21910] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  490.314245][T21910] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  490.346252][T21910] lowmem_reserve[]: 0 2497 2498 2498 2498
[  490.352057][T21910] Node 0 DMA32 free:874056kB boost:0kB min:34232kB low:42788kB high:51344kB reserved_highatomic:0KB free_highatomic:0KB active_anon:57252kB inactive_anon:0kB active_file:5236kB inactive_file:170664kB unevictable:1552kB writepending:308kB present:3129332kB managed:2557540kB mlocked:16kB bounce:0kB free_pcp:64668kB local_pcp:34152kB free_cma:0kB
[  490.388077][T21910] lowmem_reserve[]: 0 0 1 1 1
[  490.392840][T21910] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  490.432440][T21910] lowmem_reserve[]: 0 0 0 0 0
[  490.438729][T21910] Node 1 Normal free:3909220kB boost:0kB min:55652kB low:69564kB high:83476kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:14112kB local_pcp:7520kB free_cma:0kB
[  490.473180][T21910] lowmem_reserve[]: 0 0 0 0 0
[  490.478467][T21910] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  490.496397][T21910] Node 0 DMA32: 46*4kB (UME) 375*8kB (UME) 603*16kB (UME) 380*32kB (UME) 136*64kB (UME) 18*128kB (ME) 94*256kB (UME) 95*512kB (UME) 34*1024kB (UM) 12*2048kB (UME) 172*4096kB (UM) = 872608kB
[  490.518284][T21910] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  490.553285][T21910] Node 1 Normal: 189*4kB (UME) 52*8kB (UME) 49*16kB (UME) 160*32kB (UME) 49*64kB (UME) 11*128kB (UME) 5*256kB (UME) 4*512kB (UME) 1*1024kB (M) 1*2048kB (E) 950*4096kB (M) = 3909220kB
[  490.574788][T21910] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  490.587845][T21910] Node 0 hugepages_total=6 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  490.597376][T21910] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  490.608752][T21910] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  490.618219][T21910] 50228 total pagecache pages
[  490.623084][T21910] 0 pages in swap cache
[  490.630249][T21910] Free swap  = 124996kB
[  490.634678][T21910] Total swap = 124996kB
[  490.643609][T21910] 2097051 pages RAM
[  490.648759][T21910] 0 pages HighMem/MovableOnly
[  490.653539][T21910] 425688 pages reserved
[  490.657825][T21910] 0 pages cma reserved
[  490.966185][T21946] binder: 21942:21946 ioctl 400c620e 2000000014c0 returned -22
[  491.221779][T21956] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  491.249032][ T3537] Bluetooth: hci4: Frame reassembly failed (-84)
[  491.611212][T21986] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  492.738351][T22076] sp0: Synchronizing with TNC
[  493.294100][T15971] Bluetooth: hci4: command 0x1003 tx timeout
[  493.294965][ T5156] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  493.735917][T22127] binder: 22126:22127 ioctl c018620c 200000000140 returned -22
[  494.398840][T22164] loop8: detected capacity change from 0 to 7
[  494.410339][ T8537] Dev loop8: unable to read RDB block 7
[  494.419897][ T8537]  loop8: unable to read partition table
[  494.429236][ T8537] loop8: partition table beyond EOD, truncated
[  494.439466][T22164] Dev loop8: unable to read RDB block 7
[  494.463478][T22164]  loop8: unable to read partition table
[  494.472838][T22164] loop8: partition table beyond EOD, truncated
[  494.479322][T22164] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  495.339833][T22212] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  496.592741][T22273] nvme_fabrics: missing parameter 'transport=%s'
[  496.599612][T22273] nvme_fabrics: missing parameter 'nqn=%s'
[  497.374034][   T51] Bluetooth: hci4: command 0x1003 tx timeout
[  497.374390][ T5156] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  498.362324][T22352] ALSA: seq fatal error: cannot create timer (-22)
[  498.974474][T15971] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  498.978145][ T5156] Bluetooth: hci5: command 0x1003 tx timeout
[  499.317202][T22413] kvm: user requested TSC rate below hardware speed
[  499.723204][T22428] AppArmor: change_hat: Invalid input ''
[  501.458607][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  501.473470][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  506.409565][T22448] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  506.488523][T22453] cgroup: fork rejected by pids controller in /syz5
[  507.036413][T22604] binder: 22603:22604 ioctl 40046205 0 returned -22
[  507.452175][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.553274][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  507.562472][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  507.570209][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  507.595562][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  507.607292][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  507.630439][ T5156] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  507.638814][ T5156] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  507.648122][ T5156] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  507.656376][ T5156] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  507.668709][ T5156] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  507.669203][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.761346][T22655] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  507.825944][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.840966][T22604] binder: 22603:22604 ioctl c0306201 200000000040 returned -14
[  507.978535][T22667] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  507.979403][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  508.363444][T22623] chnl_net:caif_netlink_parms(): no params data found
[  508.573773][   T51] Bluetooth: hci4: command 0x1003 tx timeout
[  508.574100][T15971] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  508.653183][   T12] bridge_slave_1: left allmulticast mode
[  508.653211][   T12] bridge_slave_1: left promiscuous mode
[  508.653418][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  508.706098][   T12] bridge_slave_0: left allmulticast mode
[  508.706125][   T12] bridge_slave_0: left promiscuous mode
[  508.706338][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.832000][T22820] loop8: detected capacity change from 0 to 7
[  508.840445][T22652] Dev loop8: unable to read RDB block 7
[  508.846357][T22652]  loop8: unable to read partition table
[  508.852295][T22652] loop8: partition table beyond EOD, truncated
[  508.863735][T22820] Dev loop8: unable to read RDB block 7
[  508.869341][T22820]  loop8: unable to read partition table
[  508.887031][T22820] loop8: partition table beyond EOD, truncated
[  508.893306][T22820] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  509.366106][T22850] vivid-003: disconnect
[  509.565926][T22849] vivid-003: reconnect
[  509.693861][T15971] Bluetooth: hci1: command tx timeout
[  510.337990][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  510.348248][T22868] loop8: detected capacity change from 0 to 7
[  510.356154][T22868] Dev loop8: unable to read RDB block 7
[  510.361770][T22868]  loop8: unable to read partition table
[  510.368018][T22868] loop8: partition table beyond EOD, truncated
[  510.374512][T22868] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  510.391322][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  510.457083][   T12] bond0 (unregistering): Released all slaves
[  510.599503][T22623] bridge0: port 1(bridge_slave_0) entered blocking state
[  510.608587][T22623] bridge0: port 1(bridge_slave_0) entered disabled state
[  510.617042][T22623] bridge_slave_0: entered allmulticast mode
[  510.624962][T22623] bridge_slave_0: entered promiscuous mode
[  510.636242][T22832] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  510.656679][T22832] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  510.712816][T22623] bridge0: port 2(bridge_slave_1) entered blocking state
[  510.720159][T22623] bridge0: port 2(bridge_slave_1) entered disabled state
[  510.730319][T22623] bridge_slave_1: entered allmulticast mode
[  510.738469][T22623] bridge_slave_1: entered promiscuous mode
[  510.979929][T22960] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  511.002459][T22623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  511.040342][T22623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  511.685959][T22623] team0: Port device team_slave_0 added
[  511.804093][   T12] hsr_slave_0: left promiscuous mode
[  511.844091][   T12] hsr_slave_1: left promiscuous mode
[  511.873658][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  511.881112][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  511.920933][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  511.930251][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  511.939369][T23020] loop8: detected capacity change from 0 to 7
[  511.958403][T23020] Dev loop8: unable to read RDB block 7
[  511.972654][T23020]  loop8: unable to read partition table
[  511.983817][   T12] veth1_macvtap: left promiscuous mode
[  511.990856][T23020] loop8: partition table beyond EOD, truncated
[  511.994720][   T12] veth0_macvtap: left promiscuous mode
[  512.010710][T23020] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  512.013103][   T12] veth1_vlan: left promiscuous mode
[  512.049316][   T12] veth0_vlan: left promiscuous mode
[  512.229992][T23027] usb usb1: usbfs: process 23027 (syz.1.3467) did not claim interface 0 before use
[  512.278487][T23030] usb usb1: usbfs: process 23030 (syz.1.3467) did not claim interface 0 before use
[  514.162338][T23113] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  514.494728][T23126] CUSE: zero length info key specified
[  514.567262][   T12] team0 (unregistering): Port device team_slave_1 removed
[  514.745779][   T12] team0 (unregistering): Port device team_slave_0 removed
[  514.786645][T23143] loop8: detected capacity change from 0 to 7
[  514.794736][T23143] Dev loop8: unable to read RDB block 7
[  514.800646][T23143]  loop8: unable to read partition table
[  514.810507][T23143] loop8: partition table beyond EOD, truncated
[  514.817324][T23143] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  517.270904][T22623] team0: Port device team_slave_1 added
[  517.518539][T22623] batman_adv: batadv0: Adding interface: batadv_slave_0
[  517.557319][T22623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  517.622348][T22623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  517.646549][T22623] batman_adv: batadv0: Adding interface: batadv_slave_1
[  517.661432][T22623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  517.694793][T23210] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  517.744272][T22623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  518.019539][T22623] hsr_slave_0: entered promiscuous mode
[  518.064535][T22623] hsr_slave_1: entered promiscuous mode
[  518.090276][T22623] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  518.128335][T22623] Cannot create hsr debugfs directory
[  519.621632][T22623] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  519.680422][T22623] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  519.704691][T22623] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  519.745178][T22623] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  519.984106][T22623] 8021q: adding VLAN 0 to HW filter on device bond0
[  520.060416][T22623] 8021q: adding VLAN 0 to HW filter on device team0
[  520.092312][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  520.099548][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  520.133562][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[  520.140788][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[  520.812064][T23447] loop8: detected capacity change from 0 to 7
[  520.851876][T22623] 8021q: adding VLAN 0 to HW filter on device batadv0
[  520.853852][T23447] Dev loop8: unable to read RDB block 7
[  520.869871][T23447]  loop8: unable to read partition table
[  520.879114][T23447] loop8: partition table beyond EOD, truncated
[  520.896358][T23447] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  521.390864][T23481] sp0: Synchronizing with TNC
[  521.662346][T22623] veth0_vlan: entered promiscuous mode
[  521.688184][T22623] veth1_vlan: entered promiscuous mode
[  521.765868][T22623] veth0_macvtap: entered promiscuous mode
[  521.817615][T22623] veth1_macvtap: entered promiscuous mode
[  521.942752][T22623] batman_adv: batadv0: Interface activated: batadv_slave_0
[  522.032896][T22623] batman_adv: batadv0: Interface activated: batadv_slave_1
[  522.082609][T22623] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  522.108237][T23504] binfmt_misc: register: failed to install interpreter file ./file0
[  522.121900][T22623] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  522.141865][T22623] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  522.162609][T22623] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  522.427127][T22763] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  522.458266][T22763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  522.513054][ T3537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  522.521715][ T3537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  522.726825][T23544] loop6: detected capacity change from 0 to 524287999
[  523.368788][T23594] loop8: detected capacity change from 0 to 7
[  523.387321][T23594] Dev loop8: unable to read RDB block 7
[  523.392934][T23594]  loop8: unable to read partition table
[  523.419401][T23594] loop8: partition table beyond EOD, truncated
[  523.433747][T23594] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  523.807660][T23617] vivid-001: disconnect
[  523.882136][T23616] vivid-001: reconnect
[  524.122193][T23634] Bluetooth: hci4: Frame reassembly failed (-84)
[  524.126847][   T51] Bluetooth: hci4: unexpected event 0x04 length: 0 < 10
[  524.141714][   T12] Bluetooth: hci4: Frame reassembly failed (-90)
[  525.273369][T23679] syz.2.3558: attempt to access beyond end of device
[  525.273369][T23679] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  525.604984][T23699] binder: 23698:23699 ioctl c0306201 2000000001c0 returned -22
[  526.174239][   T51] Bluetooth: hci4: command 0x1003 tx timeout
[  526.180938][T15971] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  526.555624][T23740] syz.2.3575: attempt to access beyond end of device
[  526.555624][T23740] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  528.339950][   T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  528.341779][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  528.343034][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  528.350329][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  528.350970][   T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  528.403497][T15971] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  528.405453][T15971] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  528.407604][T15971] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  528.413115][T15971] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  528.416070][T15971] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  528.957092][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.235811][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.536075][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.879368][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.087009][T23799] chnl_net:caif_netlink_parms(): no params data found
[  530.501135][T15971] Bluetooth: hci4: command tx timeout
[  530.532850][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  530.548138][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  530.556604][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  530.557485][T23799] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.565490][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  530.581315][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  530.597503][T23799] bridge0: port 1(bridge_slave_0) entered disabled state
[  530.611355][T23799] bridge_slave_0: entered allmulticast mode
[  530.620169][T23799] bridge_slave_0: entered promiscuous mode
[  530.652481][T23799] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.664758][T23799] bridge0: port 2(bridge_slave_1) entered disabled state
[  530.672001][T23799] bridge_slave_1: entered allmulticast mode
[  530.680030][T23799] bridge_slave_1: entered promiscuous mode
[  530.714842][   T12] bridge_slave_1: left allmulticast mode
[  530.720526][   T12] bridge_slave_1: left promiscuous mode
[  530.745610][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  530.766632][   T12] bridge_slave_0: left allmulticast mode
[  530.772314][   T12] bridge_slave_0: left promiscuous mode
[  530.783944][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.419130][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  532.467392][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  532.525441][   T12] bond0 (unregistering): Released all slaves
[  532.574002][   T51] Bluetooth: hci4: command tx timeout
[  532.609205][T23799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  532.621724][T24098] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  532.631750][T24098] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  532.648865][T23799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.658299][   T51] Bluetooth: hci0: command tx timeout
[  532.795983][T24098] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  532.808182][T24098] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  532.828453][T23799] team0: Port device team_slave_0 added
[  532.838028][T23799] team0: Port device team_slave_1 added
[  533.050805][T23799] batman_adv: batadv0: Adding interface: batadv_slave_0
[  533.062759][T23799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.117036][T23799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  533.201670][T23799] batman_adv: batadv0: Adding interface: batadv_slave_1
[  533.213475][T23799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.249797][T23799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  533.631383][T23799] hsr_slave_0: entered promiscuous mode
[  533.646430][T23799] hsr_slave_1: entered promiscuous mode
[  533.652787][T23799] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  533.680828][T23799] Cannot create hsr debugfs directory
[  533.693517][   T12] hsr_slave_0: left promiscuous mode
[  533.726440][   T12] hsr_slave_1: left promiscuous mode
[  533.732696][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  533.749643][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  533.771862][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  533.783923][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  533.826405][   T12] veth1_macvtap: left promiscuous mode
[  533.832616][   T12] veth0_macvtap: left promiscuous mode
[  533.839156][   T12] veth1_vlan: left promiscuous mode
[  533.845399][   T12] veth0_vlan: left promiscuous mode
[  535.767919][   T12] team0 (unregistering): Port device team_slave_1 removed
[  535.976223][   T12] team0 (unregistering): Port device team_slave_0 removed
[  538.537414][T24045] chnl_net:caif_netlink_parms(): no params data found
[  538.971173][T24045] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.981875][T24045] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.989600][T24045] bridge_slave_0: entered allmulticast mode
[  538.997694][T24045] bridge_slave_0: entered promiscuous mode
[  539.007623][T24045] bridge0: port 2(bridge_slave_1) entered blocking state
[  539.014887][T24045] bridge0: port 2(bridge_slave_1) entered disabled state
[  539.022097][T24045] bridge_slave_1: entered allmulticast mode
[  539.030453][T24045] bridge_slave_1: entered promiscuous mode
[  539.181645][T24045] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  539.203028][T24045] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  539.295670][T24045] team0: Port device team_slave_0 added
[  539.566338][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.584416][T24045] team0: Port device team_slave_1 added
[  539.775186][T24045] batman_adv: batadv0: Adding interface: batadv_slave_0
[  539.782203][T24045] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.809822][T24045] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  539.823415][T24045] batman_adv: batadv0: Adding interface: batadv_slave_1
[  539.831160][T24045] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.857395][T24045] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  539.925736][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.997461][T24045] hsr_slave_0: entered promiscuous mode
[  540.003704][T24045] hsr_slave_1: entered promiscuous mode
[  540.010188][T24045] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  540.019870][T24045] Cannot create hsr debugfs directory
[  540.085948][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.276593][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.551898][T23799] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  540.635101][T23799] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  540.687544][T23799] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  540.742496][T23799] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  540.916164][   T12] bridge_slave_1: left allmulticast mode
[  540.921853][   T12] bridge_slave_1: left promiscuous mode
[  540.930293][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.961715][   T12] bridge_slave_0: left allmulticast mode
[  540.969929][   T12] bridge_slave_0: left promiscuous mode
[  540.987453][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  541.309461][T24785] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  542.883955][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  542.946997][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  543.015628][   T12] bond0 (unregistering): Released all slaves
[  543.710872][   T12] hsr_slave_0: left promiscuous mode
[  543.724812][   T12] hsr_slave_1: left promiscuous mode
[  543.756811][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  543.778960][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  543.810315][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  543.827514][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  543.873296][   T12] veth1_macvtap: left promiscuous mode
[  543.907221][   T12] veth0_macvtap: left promiscuous mode
[  543.912956][   T12] veth1_vlan: left promiscuous mode
[  543.929013][   T12] veth0_vlan: left promiscuous mode
[  546.504334][   T12] team0 (unregistering): Port device team_slave_1 removed
[  546.840268][   T12] team0 (unregistering): Port device team_slave_0 removed
[  550.122357][T23799] 8021q: adding VLAN 0 to HW filter on device bond0
[  550.178493][T23799] 8021q: adding VLAN 0 to HW filter on device team0
[  550.264987][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.272161][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  550.305162][T24045] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  550.327352][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.334529][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.360048][T24045] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  550.388442][T24045] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  550.419399][T24045] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  550.671690][T24045] 8021q: adding VLAN 0 to HW filter on device bond0
[  550.718983][T24045] 8021q: adding VLAN 0 to HW filter on device team0
[  550.742688][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.749846][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  550.782661][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.789873][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.895500][T24045] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  550.988336][T23799] 8021q: adding VLAN 0 to HW filter on device batadv0
[  551.089035][T23799] veth0_vlan: entered promiscuous mode
[  551.121576][T23799] veth1_vlan: entered promiscuous mode
[  551.185869][T23799] veth0_macvtap: entered promiscuous mode
[  551.209799][T23799] veth1_macvtap: entered promiscuous mode
[  551.257508][T23799] batman_adv: batadv0: Interface activated: batadv_slave_0
[  551.284940][T23799] batman_adv: batadv0: Interface activated: batadv_slave_1
[  551.307947][T23799] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  551.333696][T23799] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  551.342421][T23799] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  551.358533][T23799] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  551.409683][T24045] 8021q: adding VLAN 0 to HW filter on device batadv0
[  551.643719][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  551.651570][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  551.679767][T22763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  551.701502][T22763] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.072236][T25011] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  552.092347][T24045] veth0_vlan: entered promiscuous mode
[  552.119622][T25011] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  552.126226][T24045] veth1_vlan: entered promiscuous mode
[  552.201034][T24045] veth0_macvtap: entered promiscuous mode
[  552.215232][T24045] veth1_macvtap: entered promiscuous mode
[  552.270101][T24045] batman_adv: batadv0: Interface activated: batadv_slave_0
[  552.299205][T24045] batman_adv: batadv0: Interface activated: batadv_slave_1
[  552.320124][T24045] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.348357][T24045] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  552.363436][T24045] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  552.374403][T24045] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  552.531690][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  552.563680][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.638901][ T3537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  552.652754][ T3537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.838366][T25045] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  553.389714][T25060] CUSE: info not properly terminated
[  553.967382][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  553.985499][T25096] binder: 25095:25096 ioctl c00c620f 0 returned -14
[  553.996749][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.013973][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.024765][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.056906][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.069714][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.079877][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.088212][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.099246][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.109240][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.136655][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.145073][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.152474][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.186959][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.203750][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.212060][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.228381][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.244653][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.252081][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.266193][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.283534][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.302064][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.320984][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.344148][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.358497][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.376703][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.390290][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.411835][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.424751][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.439677][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.457421][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.473672][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.489518][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.504624][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.522060][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.537808][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.563842][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.571280][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.593299][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.604400][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.611922][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.630708][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.653998][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.661714][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.671135][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.694396][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.701828][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.757002][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.764674][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.787911][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.795437][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.803073][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.840014][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.868707][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.876781][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.884283][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.891799][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.901305][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.909750][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.933818][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.941254][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.952768][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.961408][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.971134][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  554.993431][T25130] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  555.021870][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.031775][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.046514][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.055006][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.062427][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.075763][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.083186][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.091053][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.102569][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.111310][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.122471][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.132830][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.140923][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.152002][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.159787][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.170866][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.188662][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.197573][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.210981][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.220244][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.229148][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.237245][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.245787][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.253365][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.282128][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.297977][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.313151][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.330853][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.352456][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.367833][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.409224][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.428607][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.443767][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.452688][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.461841][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.471747][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.479341][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.487877][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.495470][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.502950][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.512633][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.520197][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.532880][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.545637][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.587266][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.597708][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.618909][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.628621][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.636298][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.644624][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.652120][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.659626][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.667699][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.676119][ T5837] hid-generic 0007:0004:000E.0009: unknown main item tag 0x0
[  555.704049][ T5837] hid-generic 0007:0004:000E.0009: hidraw0: <UNKNOWN> HID v0.04 Device [syz1] on syz0
[  555.800561][T25150] fido_id[25150]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  555.834796][   T59] Bluetooth: hci1: Frame reassembly failed (-84)
[  557.854586][   T51] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  557.861273][T15971] Bluetooth: hci1: command 0x1003 tx timeout
[  558.105210][T15971] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  558.114736][T15971] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  558.122490][T15971] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  558.137131][T15971] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  558.149032][T15971] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  558.173861][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  558.187817][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  558.205186][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  558.236147][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  558.245768][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  558.687028][T25310] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  558.693007][T25310] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  558.884785][T25370] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  559.062477][T25421] binder: 25372:25421 ioctl c018620c 200000001180 returned -22
[  559.209356][T25267] chnl_net:caif_netlink_parms(): no params data found
[  559.275146][T25457] usb usb1: check_ctrlrecip: process 25457 (syz.5.3698) requesting ep 01 but needs 81
[  559.288023][T25457] usb usb1: usbfs: process 25457 (syz.5.3698) did not claim interface 0 before use
[  559.571103][T25267] bridge0: port 1(bridge_slave_0) entered blocking state
[  559.582284][T25267] bridge0: port 1(bridge_slave_0) entered disabled state
[  559.595569][T25526] input: syz0 as /devices/virtual/input/input153
[  559.647803][T25267] bridge_slave_0: entered allmulticast mode
[  559.674624][T25267] bridge_slave_0: entered promiscuous mode
[  559.697919][T25267] bridge0: port 2(bridge_slave_1) entered blocking state
[  559.706645][T25267] bridge0: port 2(bridge_slave_1) entered disabled state
[  559.715671][T25267] bridge_slave_1: entered allmulticast mode
[  559.723303][T25267] bridge_slave_1: entered promiscuous mode
[  559.847495][T25267] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  559.877588][T25267] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  560.001552][T25267] team0: Port device team_slave_0 added
[  560.135505][T25267] team0: Port device team_slave_1 added
[  560.379221][T25267] batman_adv: batadv0: Adding interface: batadv_slave_0
[  560.386375][T25267] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  560.412252][    C0] vkms_vblank_simulate: vblank timer overrun
[  560.422649][T25267] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  560.435888][T25267] batman_adv: batadv0: Adding interface: batadv_slave_1
[  560.442862][T25267] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  560.470193][T25267] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  560.657679][T25267] hsr_slave_0: entered promiscuous mode
[  560.665380][T25267] hsr_slave_1: entered promiscuous mode
[  560.671695][T25267] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  560.687370][T25267] Cannot create hsr debugfs directory
[  561.381000][T25267] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  561.419171][T25267] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  561.419837][T25774] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  561.470729][T25267] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  561.485411][T25773] mkiss: ax0: crc mode is auto.
[  561.531998][T25267] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  561.829660][T25267] 8021q: adding VLAN 0 to HW filter on device bond0
[  561.876352][T25267] 8021q: adding VLAN 0 to HW filter on device team0
[  561.899677][ T1313] bridge0: port 1(bridge_slave_0) entered blocking state
[  561.906894][ T1313] bridge0: port 1(bridge_slave_0) entered forwarding state
[  561.969178][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  561.976398][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  562.141803][T25267] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  562.689833][T25267] 8021q: adding VLAN 0 to HW filter on device batadv0
[  562.899219][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  562.906009][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  563.048296][T25863] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  563.387911][T25267] veth0_vlan: entered promiscuous mode
[  563.449697][T25267] veth1_vlan: entered promiscuous mode
[  563.531233][T25267] veth0_macvtap: entered promiscuous mode
[  563.562337][T25267] veth1_macvtap: entered promiscuous mode
[  563.648312][T25267] batman_adv: batadv0: Interface activated: batadv_slave_0
[  563.691300][T25267] batman_adv: batadv0: Interface activated: batadv_slave_1
[  563.740315][T25267] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  563.760090][T25890] input: syz0 as /devices/virtual/input/input154
[  563.789291][T25267] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  563.817311][T25894] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  563.827499][T25267] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  563.858544][T25267] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  564.151774][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  564.191843][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  564.291372][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  564.347507][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  564.393207][T25961] syz.0.3737: attempt to access beyond end of device
[  564.393207][T25961] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  564.458752][T25959] mkiss: ax0: crc mode is auto.
[  564.554714][T25969] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  565.084310][T26115] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:16x16 (0x32314752, 8, 0, 0, 0)
[  565.261212][T26121] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  567.913168][T26238] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  568.151638][T26259] autofs4:pid:26259:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e)
[  568.828303][   T59] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.065627][   T59] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.246610][   T59] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.337103][   T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  569.350644][   T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  569.381648][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  569.397818][   T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  569.417351][   T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  569.460216][T15971] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  569.509780][T15971] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  569.515432][T26341] CUSE: info not properly terminated
[  569.517351][T15971] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  569.524275][T26341] CUSE: info not properly terminated
[  569.530767][T15971] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  569.543343][T15971] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  569.589807][   T59] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.779916][T26357] input: syz1 as /devices/virtual/input/input155
[  569.871463][T26357] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  569.940498][T26357] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  569.993810][T26386] input: syz0 as /devices/virtual/input/input156
[  570.201356][   T59] bridge_slave_1: left allmulticast mode
[  570.213681][   T59] bridge_slave_1: left promiscuous mode
[  570.230042][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.280055][   T59] bridge_slave_0: left allmulticast mode
[  570.293990][   T59] bridge_slave_0: left promiscuous mode
[  570.299787][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.553501][  T889] hid (null): invalid report_size 161721114
[  570.579481][  T889] hid-generic 067C:FFFFFFFE:0005.000A: unknown main item tag 0x2
[  570.604433][  T889] hid-generic 067C:FFFFFFFE:0005.000A: unknown main item tag 0x3
[  570.622128][  T889] hid-generic 067C:FFFFFFFE:0005.000A: invalid report_size 161721114
[  570.641804][  T889] hid-generic 067C:FFFFFFFE:0005.000A: item 0 4 1 7 parsing failed
[  570.650901][  T889] hid-generic 067C:FFFFFFFE:0005.000A: probe with driver hid-generic failed with error -22
[  571.613933][   T51] Bluetooth: hci4: command tx timeout
[  572.207814][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  572.258410][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  572.325937][   T59] bond0 (unregistering): Released all slaves
[  572.582096][T26512] misc userio: Begin command sent, but we're already running
[  572.610122][T26512] misc userio: Can't change port type on an already running userio instance
[  572.918745][T26313] chnl_net:caif_netlink_parms(): no params data found
[  573.197447][T26586] binder: 26585:26586 ioctl c0306201 200000000540 returned -22
[  573.433820][   T59] hsr_slave_0: left promiscuous mode
[  573.467944][   T59] hsr_slave_1: left promiscuous mode
[  573.495288][T26598] syz.6.3789: attempt to access beyond end of device
[  573.495288][T26598] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  573.518273][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  573.541210][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[  573.594874][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  573.602308][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[  573.696764][   T51] Bluetooth: hci4: command tx timeout
[  573.848537][   T59] veth1_macvtap: left promiscuous mode
[  573.893833][   T59] veth0_macvtap: left promiscuous mode
[  573.918821][   T59] veth1_vlan: left promiscuous mode
[  573.941219][   T59] veth0_vlan: left promiscuous mode
[  575.774038][   T51] Bluetooth: hci4: command tx timeout
[  576.903364][   T59] team0 (unregistering): Port device team_slave_1 removed
[  577.153196][   T59] team0 (unregistering): Port device team_slave_0 removed
[  577.863883][   T51] Bluetooth: hci4: command tx timeout
[  579.900401][T26626] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  579.907523][T26626] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  579.986522][T26313] bridge0: port 1(bridge_slave_0) entered blocking state
[  579.997638][T26313] bridge0: port 1(bridge_slave_0) entered disabled state
[  580.008074][T26313] bridge_slave_0: entered allmulticast mode
[  580.016633][T26313] bridge_slave_0: entered promiscuous mode
[  580.026204][T26313] bridge0: port 2(bridge_slave_1) entered blocking state
[  580.033369][T26313] bridge0: port 2(bridge_slave_1) entered disabled state
[  580.040932][T26313] bridge_slave_1: entered allmulticast mode
[  580.049906][T26313] bridge_slave_1: entered promiscuous mode
[  580.149258][T26313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  580.196416][T26313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  580.532213][T24806] ALSA: mixer_oss: invalid OSS volume ''
[  580.660630][T26313] team0: Port device team_slave_0 added
[  580.676564][T26313] team0: Port device team_slave_1 added
[  580.761021][T26313] batman_adv: batadv0: Adding interface: batadv_slave_0
[  580.785462][T26313] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  580.850134][T26313] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  580.874092][T26313] batman_adv: batadv0: Adding interface: batadv_slave_1
[  580.881069][T26313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  580.915923][T26313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  581.068374][T26313] hsr_slave_0: entered promiscuous mode
[  581.077907][T26313] hsr_slave_1: entered promiscuous mode
[  581.088733][T26313] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  581.098605][T26313] Cannot create hsr debugfs directory
[  581.267364][T26908] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  581.539997][T26919] misc userio: The device must be registered before sending interrupts
[  581.575403][T26919] misc userio: No port type given on /dev/userio
[  581.648482][ T1313] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  581.919393][ T1313] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.201100][ T1313] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.370650][ T1313] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.957939][ T1313] bridge_slave_1: left allmulticast mode
[  582.969272][ T1313] bridge_slave_1: left promiscuous mode
[  582.990809][ T1313] bridge0: port 2(bridge_slave_1) entered disabled state
[  583.030481][ T1313] bridge_slave_0: left allmulticast mode
[  583.036436][ T1313] bridge_slave_0: left promiscuous mode
[  583.047773][ T1313] bridge0: port 1(bridge_slave_0) entered disabled state
[  583.129329][T27034] binder: 27033:27034 ioctl c0306201 200000000300 returned -22
[  584.707599][ T1313] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  584.746353][ T1313] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  584.795401][ T1313] bond0 (unregistering): Released all slaves
[  585.128450][T26313] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  585.174609][T27095] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  585.241106][T26313] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  585.269459][T26313] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  585.434940][ T1313] hsr_slave_0: left promiscuous mode
[  585.458388][ T1313] hsr_slave_1: left promiscuous mode
[  585.475061][ T1313] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  585.511547][ T1313] batman_adv: batadv0: Removing interface: batadv_slave_0
[  585.539527][ T1313] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  585.570909][ T1313] batman_adv: batadv0: Removing interface: batadv_slave_1
[  585.650206][ T1313] veth1_macvtap: left promiscuous mode
[  585.679870][ T1313] veth0_macvtap: left promiscuous mode
[  585.695000][ T1313] veth1_vlan: left promiscuous mode
[  585.703276][ T1313] veth0_vlan: left promiscuous mode
[  586.397467][T27261] ALSA: mixer_oss: invalid OSS volume 'LINM1'
[  587.414852][T27293] misc userio: Begin command sent, but we're already running
[  587.912295][ T1313] team0 (unregistering): Port device team_slave_1 removed
[  588.112490][ T1313] team0 (unregistering): Port device team_slave_0 removed
[  590.667859][T26313] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  590.766938][T27356] ALSA: mixer_oss: invalid OSS volume 'LINM1'
[  590.914941][T26313] 8021q: adding VLAN 0 to HW filter on device bond0
[  590.959411][T26313] 8021q: adding VLAN 0 to HW filter on device team0
[  590.996383][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  591.003551][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  591.044837][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  591.051989][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  591.416523][T27378] kvm: user requested TSC rate below hardware speed
[  591.708784][T26313] 8021q: adding VLAN 0 to HW filter on device batadv0
[  591.859640][T26313] veth0_vlan: entered promiscuous mode
[  591.893339][T26313] veth1_vlan: entered promiscuous mode
[  591.990088][T26313] veth0_macvtap: entered promiscuous mode
[  592.031663][T26313] veth1_macvtap: entered promiscuous mode
[  592.093408][T26313] batman_adv: batadv0: Interface activated: batadv_slave_0
[  592.127017][T26313] batman_adv: batadv0: Interface activated: batadv_slave_1
[  592.171305][T26313] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  592.207370][T26313] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  592.236622][T26313] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  592.248286][T26313] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  592.638926][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  592.681910][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  592.785677][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  592.808567][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  593.284475][T27484] ALSA: mixer_oss: invalid OSS volume 'LINM1'
[  594.280319][T27540] ALSA: mixer_oss: invalid OSS volume 'LINM1'
[  594.299756][T27543] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  594.311844][T27544] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  597.128970][T27667] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  597.653458][T27688] binder: 27679:27688 ioctl c018620c 200000001180 returned -22
[  598.589025][   T13] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.863932][T27850] input input160: cannot allocate more than FF_MAX_EFFECTS effects
[  598.888888][   T13] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.917493][T27850] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  599.240424][   T13] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.334561][T15971] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  599.343548][T15971] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  599.351828][T15971] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  599.390475][T15971] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  599.400283][T15971] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  599.421029][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  599.430069][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  599.443649][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  599.461672][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  599.470720][   T13] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.484747][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  600.062200][   T13] bridge_slave_1: left allmulticast mode
[  600.071387][   T13] bridge_slave_1: left promiscuous mode
[  600.082201][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  600.100519][   T13] bridge_slave_0: left allmulticast mode
[  600.109867][   T13] bridge_slave_0: left promiscuous mode
[  600.118254][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  600.289197][T28021] input: syz1 as /devices/virtual/input/input161
[  600.839391][T28046] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  601.543850][T15971] Bluetooth: hci0: command tx timeout
[  601.855171][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  601.887701][T28075] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  601.921247][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  601.958539][   T13] bond0 (unregistering): Released all slaves
[  601.987255][T27865] chnl_net:caif_netlink_parms(): no params data found
[  602.458567][T27865] bridge0: port 1(bridge_slave_0) entered blocking state
[  602.477981][T27865] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.493026][T27865] bridge_slave_0: entered allmulticast mode
[  602.510901][T27865] bridge_slave_0: entered promiscuous mode
[  602.530686][T27865] bridge0: port 2(bridge_slave_1) entered blocking state
[  602.549656][T27865] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.565434][T27865] bridge_slave_1: entered allmulticast mode
[  602.586666][T27865] bridge_slave_1: entered promiscuous mode
[  602.723007][T27865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  602.807093][T27865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  602.936782][T27865] team0: Port device team_slave_0 added
[  603.056159][T27865] team0: Port device team_slave_1 added
[  603.180675][T27865] batman_adv: batadv0: Adding interface: batadv_slave_0
[  603.191121][T27865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.220431][T27865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  603.236648][T27865] batman_adv: batadv0: Adding interface: batadv_slave_1
[  603.250347][T27865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.281794][T27865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  603.400053][T27865] hsr_slave_0: entered promiscuous mode
[  603.411158][T27865] hsr_slave_1: entered promiscuous mode
[  603.614444][T15971] Bluetooth: hci0: command tx timeout
[  604.252560][T27865] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  604.260037][T28112] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  604.272009][T28112] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  604.281544][T27865] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  604.313488][T27865] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  604.326800][T27865] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  604.537142][T27865] 8021q: adding VLAN 0 to HW filter on device bond0
[  604.591718][T27865] 8021q: adding VLAN 0 to HW filter on device team0
[  604.638202][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.645461][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[  604.673077][T24422] bridge0: port 2(bridge_slave_1) entered blocking state
[  604.680260][T24422] bridge0: port 2(bridge_slave_1) entered forwarding state
[  605.170426][T27865] 8021q: adding VLAN 0 to HW filter on device batadv0
[  605.618712][T27865] veth0_vlan: entered promiscuous mode
[  605.643513][T27865] veth1_vlan: entered promiscuous mode
[  605.745557][T27865] veth0_macvtap: entered promiscuous mode
[  605.778687][T27865] veth1_macvtap: entered promiscuous mode
[  605.812062][T27865] batman_adv: batadv0: Interface activated: batadv_slave_0
[  605.842980][T27865] batman_adv: batadv0: Interface activated: batadv_slave_1
[  605.871603][T27865] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  605.883238][T27865] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  605.903737][T27865] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  605.919257][T27865] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  624.337954][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  624.345877][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  685.779578][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  685.786175][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  747.226982][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  747.233320][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  761.293866][   T31] INFO: task kworker/u8:1:13 blocked for more than 143 seconds.
[  761.301573][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  761.309248][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  761.317998][   T31] task:kworker/u8:1    state:D stack:21864 pid:13    tgid:13    ppid:2      task_flags:0x4208060 flags:0x00004000
[  761.330123][   T31] Workqueue: netns cleanup_net
[  761.335274][   T31] Call Trace:
[  761.338568][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  761.341506][   T31]  __schedule+0x16f5/0x4d00
[  761.346128][   T31]  ? __lock_acquire+0xab9/0xd20
[  761.352226][   T31]  ? schedule+0x165/0x360
[  761.359492][   T31]  ? __pfx___schedule+0x10/0x10
[  761.366792][   T31]  ? schedule+0x91/0x360
[  761.372562][   T31]  schedule+0x165/0x360
[  761.413770][   T31]  schedule_preempt_disabled+0x13/0x30
[  761.419299][   T31]  __mutex_lock+0x724/0xe80
[  761.429317][   T31]  ? kobject_put+0x43f/0x480
[  761.434252][   T31]  ? __mutex_lock+0x51b/0xe80
[  761.438968][   T31]  ? rfkill_unregister+0xc8/0x220
[  761.445050][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  761.450109][   T31]  ? __pfx_device_del+0x10/0x10
[  761.456573][   T31]  rfkill_unregister+0xc8/0x220
[  761.461468][   T31]  wiphy_unregister+0x238/0xae0
[  761.468856][   T31]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  761.474997][   T31]  ? __pfx_wiphy_unregister+0x10/0x10
[  761.480412][   T31]  ? kasan_quarantine_put+0xdd/0x220
[  761.485972][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  761.491195][   T31]  ? kfree+0x18e/0x440
[  761.495305][   T31]  ieee80211_unregister_hw+0x1e2/0x2c0
[  761.500784][   T31]  mac80211_hwsim_del_radio+0x275/0x460
[  761.506400][   T31]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  761.512478][   T31]  hwsim_exit_net+0x584/0x640
[  761.517201][   T31]  ? __pfx_hwsim_exit_net+0x10/0x10
[  761.522405][   T31]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[  761.528242][   T31]  ops_undo_list+0x49a/0x990
[  761.532840][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  761.538259][   T31]  cleanup_net+0x4c5/0x800
[  761.542696][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  761.547870][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  761.553083][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  761.558840][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  761.564608][   T31]  process_scheduled_works+0xae1/0x17b0
[  761.570171][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  761.576264][   T31]  worker_thread+0x8a0/0xda0
[  761.580900][   T31]  kthread+0x70e/0x8a0
[  761.585019][   T31]  ? __pfx_worker_thread+0x10/0x10
[  761.590247][   T31]  ? __pfx_kthread+0x10/0x10
[  761.594926][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  761.600153][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  761.605392][   T31]  ? __pfx_kthread+0x10/0x10
[  761.609990][   T31]  ret_from_fork+0x3f9/0x770
[  761.614758][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  761.619884][   T31]  ? __switch_to_asm+0x39/0x70
[  761.624695][   T31]  ? __switch_to_asm+0x33/0x70
[  761.629483][   T31]  ? __pfx_kthread+0x10/0x10
[  761.634131][   T31]  ret_from_fork_asm+0x1a/0x30
[  761.638921][   T31]  </TASK>
[  761.642037][   T31] INFO: task kworker/1:6:5931 blocked for more than 143 seconds.
[  761.649787][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  761.657445][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  761.666173][   T31] task:kworker/1:6     state:D stack:24296 pid:5931  tgid:5931  ppid:2      task_flags:0x4208060 flags:0x00004000
[  761.678216][   T31] Workqueue: events rfkill_global_led_trigger_worker
[  761.684949][   T31] Call Trace:
[  761.688230][   T31]  <TASK>
[  761.691153][   T31]  __schedule+0x16f5/0x4d00
[  761.695797][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  761.701186][   T31]  ? schedule+0x165/0x360
[  761.705641][   T31]  ? __pfx___schedule+0x10/0x10
[  761.710538][   T31]  ? schedule+0x91/0x360
[  761.714843][   T31]  schedule+0x165/0x360
[  761.719085][   T31]  schedule_preempt_disabled+0x13/0x30
[  761.724628][   T31]  __mutex_lock+0x724/0xe80
[  761.729144][   T31]  ? look_up_lock_class+0x74/0x170
[  761.734304][   T31]  ? __mutex_lock+0x51b/0xe80
[  761.738993][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[  761.745293][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  761.750324][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  761.756095][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  761.761822][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[  761.767917][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  761.773940][   T31]  process_scheduled_works+0xae1/0x17b0
[  761.779529][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  761.785597][   T31]  worker_thread+0x8a0/0xda0
[  761.790202][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  761.796573][   T31]  ? __kthread_parkme+0x7b/0x200
[  761.801522][   T31]  kthread+0x70e/0x8a0
[  761.805668][   T31]  ? __pfx_worker_thread+0x10/0x10
[  761.810787][   T31]  ? __pfx_kthread+0x10/0x10
[  761.815423][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  761.820629][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  761.825873][   T31]  ? __pfx_kthread+0x10/0x10
[  761.830478][   T31]  ret_from_fork+0x3f9/0x770
[  761.835121][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  761.840262][   T31]  ? __switch_to_asm+0x39/0x70
[  761.845086][   T31]  ? __switch_to_asm+0x33/0x70
[  761.849855][   T31]  ? __pfx_kthread+0x10/0x10
[  761.854558][   T31]  ret_from_fork_asm+0x1a/0x30
[  761.859340][   T31]  </TASK>
[  761.862390][   T31] INFO: task syz-executor:27865 blocked for more than 143 seconds.
[  761.870340][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  761.878009][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  761.886720][   T31] task:syz-executor    state:D stack:21960 pid:27865 tgid:27865 ppid:1      task_flags:0x400140 flags:0x00004004
[  761.898660][   T31] Call Trace:
[  761.902029][   T31]  <TASK>
[  761.905020][   T31]  __schedule+0x16f5/0x4d00
[  761.909549][   T31]  ? __lock_acquire+0xab9/0xd20
[  761.914534][   T31]  ? schedule+0x165/0x360
[  761.918876][   T31]  ? __pfx___schedule+0x10/0x10
[  761.923794][   T31]  ? schedule+0x91/0x360
[  761.928048][   T31]  schedule+0x165/0x360
[  761.932230][   T31]  schedule_preempt_disabled+0x13/0x30
[  761.937923][   T31]  __mutex_lock+0x724/0xe80
[  761.942446][   T31]  ? __mutex_lock+0x51b/0xe80
[  761.947179][   T31]  ? rfkill_fop_open+0x12d/0x820
[  761.952132][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  761.957224][   T31]  ? __raw_spin_lock_init+0x45/0x100
[  761.962530][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  761.967947][   T31]  rfkill_fop_open+0x12d/0x820
[  761.972722][   T31]  ? __pfx_rfkill_fop_open+0x10/0x10
[  761.978055][   T31]  misc_open+0x2bc/0x330
[  761.982309][   T31]  chrdev_open+0x4cc/0x5e0
[  761.986766][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  761.991721][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  761.996698][   T31]  do_dentry_open+0xdf3/0x1970
[  762.001474][   T31]  vfs_open+0x3b/0x340
[  762.005560][   T31]  ? path_openat+0x2ecd/0x3830
[  762.010330][   T31]  path_openat+0x2ee5/0x3830
[  762.015237][   T31]  ? arch_stack_walk+0xfc/0x150
[  762.020109][   T31]  ? do_syscall_64+0xfa/0x3b0
[  762.024817][   T31]  ? __pfx_path_openat+0x10/0x10
[  762.029758][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.035881][   T31]  do_filp_open+0x1fa/0x410
[  762.040388][   T31]  ? __lock_acquire+0xab9/0xd20
[  762.045287][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  762.050335][   T31]  ? _raw_spin_unlock+0x28/0x50
[  762.055237][   T31]  ? alloc_fd+0x64c/0x6c0
[  762.059580][   T31]  do_sys_openat2+0x121/0x1c0
[  762.064310][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  762.069521][   T31]  ? fput_close_sync+0x119/0x200
[  762.074537][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[  762.079840][   T31]  __x64_sys_openat+0x138/0x170
[  762.084730][   T31]  do_syscall_64+0xfa/0x3b0
[  762.089233][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  762.094524][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.100599][   T31]  ? clear_bhb_loop+0x60/0xb0
[  762.105327][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.111224][   T31] RIP: 0033:0x7f608958d290
[  762.115676][   T31] RSP: 002b:00007ffd675066a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  762.124149][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f608958d290
[  762.132119][   T31] RDX: 0000000000000002 RSI: 00007f60896115b1 RDI: 00000000ffffff9c
[  762.140118][   T31] RBP: 00007f60896115b1 R08: 0000000000000000 R09: 0000000000000000
[  762.148112][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008
[  762.156119][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  762.164156][   T31]  </TASK>
[  762.167188][   T31] INFO: task syz.2.3913:28092 blocked for more than 144 seconds.
[  762.178526][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  762.186415][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  762.195317][   T31] task:syz.2.3913      state:D stack:25128 pid:28092 tgid:28092 ppid:14748  task_flags:0x400040 flags:0x00004004
[  762.207440][   T31] Call Trace:
[  762.210729][   T31]  <TASK>
[  762.213912][   T31]  __schedule+0x16f5/0x4d00
[  762.218458][   T31]  ? __lock_acquire+0xab9/0xd20
[  762.223308][   T31]  ? schedule+0x165/0x360
[  762.227674][   T31]  ? __pfx___schedule+0x10/0x10
[  762.232543][   T31]  ? schedule+0x91/0x360
[  762.236832][   T31]  schedule+0x165/0x360
[  762.240997][   T31]  schedule_preempt_disabled+0x13/0x30
[  762.246528][   T31]  __mutex_lock+0x724/0xe80
[  762.251036][   T31]  ? kobject_put+0x43f/0x480
[  762.255653][   T31]  ? __mutex_lock+0x51b/0xe80
[  762.260335][   T31]  ? rfkill_unregister+0xc8/0x220
[  762.265417][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  762.270448][   T31]  ? __pfx_device_del+0x10/0x10
[  762.275351][   T31]  rfkill_unregister+0xc8/0x220
[  762.280205][   T31]  nfc_unregister_device+0x96/0x2a0
[  762.285469][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  762.291195][   T31]  virtual_ncidev_close+0x56/0x90
[  762.296245][   T31]  __fput+0x44c/0xa70
[  762.300239][   T31]  task_work_run+0x1d1/0x260
[  762.304892][   T31]  ? __pfx_task_work_run+0x10/0x10
[  762.310021][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  762.315501][   T31]  exit_to_user_mode_loop+0xec/0x110
[  762.320801][   T31]  do_syscall_64+0x2bd/0x3b0
[  762.325451][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  762.330670][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.336891][   T31]  ? clear_bhb_loop+0x60/0xb0
[  762.341598][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.347540][   T31] RIP: 0033:0x7fe18538e929
[  762.351953][   T31] RSP: 002b:00007ffc38e25608 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  762.360392][   T31] RAX: 0000000000000000 RBX: 00007fe1855b7ba0 RCX: 00007fe18538e929
[  762.368388][   T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  762.376396][   T31] RBP: 00007fe1855b7ba0 R08: 000000000000013c R09: 0000001138e258ff
[  762.384405][   T31] R10: 00007fe1855b7ac0 R11: 0000000000000246 R12: 00000000000932ee
[  762.392383][   T31] R13: 00007fe1855b5fa0 R14: ffffffffffffffff R15: 00007ffc38e25720
[  762.400422][   T31]  </TASK>
[  762.403459][   T31] INFO: task syz.2.3913:28112 blocked for more than 144 seconds.
[  762.411226][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  762.419512][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  762.428501][   T31] task:syz.2.3913      state:D stack:26760 pid:28112 tgid:28092 ppid:14748  task_flags:0x400040 flags:0x00004006
[  762.440804][   T31] Call Trace:
[  762.445173][   T31]  <TASK>
[  762.448127][   T31]  __schedule+0x16f5/0x4d00
[  762.452626][   T31]  ? __lock_acquire+0xab9/0xd20
[  762.457513][   T31]  ? schedule+0x165/0x360
[  762.461853][   T31]  ? __pfx___schedule+0x10/0x10
[  762.466767][   T31]  ? schedule+0x91/0x360
[  762.471026][   T31]  schedule+0x165/0x360
[  762.475215][   T31]  schedule_preempt_disabled+0x13/0x30
[  762.480684][   T31]  __mutex_lock+0x724/0xe80
[  762.485228][   T31]  ? __lock_acquire+0xab9/0xd20
[  762.490082][   T31]  ? __mutex_lock+0x51b/0xe80
[  762.494888][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[  762.500187][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  762.505461][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  762.510682][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  762.516611][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  762.522946][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  762.528702][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[  762.533834][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  762.539542][   T31]  rfkill_set_block+0x1cf/0x440
[  762.544449][   T31]  rfkill_fop_write+0x44b/0x570
[  762.549330][   T31]  ? common_file_perm+0x199/0x200
[  762.554407][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[  762.559789][   T31]  ? security_kernfs_init_security+0x250/0x290
[  762.566016][   T31]  ? rw_verify_area+0x258/0x650
[  762.570890][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[  762.576636][   T31]  vfs_write+0x27b/0xa90
[  762.580960][   T31]  ? __pfx_vfs_write+0x10/0x10
[  762.585777][   T31]  ? __fget_files+0x2a/0x420
[  762.590377][   T31]  ? __fget_files+0x2a/0x420
[  762.595028][   T31]  ? __fget_files+0x3a0/0x420
[  762.599727][   T31]  ? __fget_files+0x2a/0x420
[  762.604371][   T31]  ksys_write+0x145/0x250
[  762.608708][   T31]  ? __pfx_ksys_write+0x10/0x10
[  762.613588][   T31]  ? rcu_is_watching+0x15/0xb0
[  762.618357][   T31]  ? do_syscall_64+0xbe/0x3b0
[  762.623019][   T31]  do_syscall_64+0xfa/0x3b0
[  762.627561][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  762.633027][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.639151][   T31]  ? clear_bhb_loop+0x60/0xb0
[  762.643878][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.649774][   T31] RIP: 0033:0x7fe18538e929
[  762.654297][   T31] RSP: 002b:00007fe1862c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  762.662730][   T31] RAX: ffffffffffffffda RBX: 00007fe1855b6080 RCX: 00007fe18538e929
[  762.670733][   T31] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000008
[  762.678743][   T31] RBP: 00007fe185410b39 R08: 0000000000000000 R09: 0000000000000000
[  762.687331][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  762.695357][   T31] R13: 0000000000000000 R14: 00007fe1855b6080 R15: 00007ffc38e254a8
[  762.703381][   T31]  </TASK>
[  762.706471][   T31] INFO: task syz.6.3919:28461 blocked for more than 144 seconds.
[  762.714217][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  762.721866][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  762.730947][   T31] task:syz.6.3919      state:D stack:27768 pid:28461 tgid:28460 ppid:25267  task_flags:0x400040 flags:0x00004004
[  762.747226][   T31] Call Trace:
[  762.750529][   T31]  <TASK>
[  762.753445][   T31]  __schedule+0x16f5/0x4d00
[  762.758000][   T31]  ? __kasan_slab_free+0x62/0x70
[  762.762947][   T31]  ? security_file_open+0xb1/0x270
[  762.768216][   T31]  ? do_dentry_open+0x35e/0x1970
[  762.773165][   T31]  ? __lock_acquire+0xab9/0xd20
[  762.778095][   T31]  ? schedule+0x165/0x360
[  762.782438][   T31]  ? __pfx___schedule+0x10/0x10
[  762.787365][   T31]  ? schedule+0x91/0x360
[  762.791620][   T31]  schedule+0x165/0x360
[  762.795818][   T31]  schedule_preempt_disabled+0x13/0x30
[  762.801286][   T31]  __mutex_lock+0x724/0xe80
[  762.805836][   T31]  ? __mutex_lock+0x51b/0xe80
[  762.810521][   T31]  ? misc_open+0x51/0x330
[  762.815017][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  762.820214][   T31]  misc_open+0x51/0x330
[  762.824454][   T31]  chrdev_open+0x4cc/0x5e0
[  762.828893][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  762.834229][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  762.839191][   T31]  do_dentry_open+0xdf3/0x1970
[  762.844006][   T31]  vfs_open+0x3b/0x340
[  762.848090][   T31]  ? path_openat+0x2ecd/0x3830
[  762.852854][   T31]  path_openat+0x2ee5/0x3830
[  762.857474][   T31]  ? arch_stack_walk+0xfc/0x150
[  762.862347][   T31]  ? __pfx_path_openat+0x10/0x10
[  762.867369][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.873449][   T31]  do_filp_open+0x1fa/0x410
[  762.878019][   T31]  ? __lock_acquire+0xab9/0xd20
[  762.882875][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  762.887950][   T31]  ? _raw_spin_unlock+0x28/0x50
[  762.892892][   T31]  ? alloc_fd+0x64c/0x6c0
[  762.897277][   T31]  do_sys_openat2+0x121/0x1c0
[  762.901957][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  762.907224][   T31]  ? exc_page_fault+0x76/0xf0
[  762.911927][   T31]  ? do_user_addr_fault+0xc8a/0x1390
[  762.917260][   T31]  __x64_sys_openat+0x138/0x170
[  762.922118][   T31]  do_syscall_64+0xfa/0x3b0
[  762.926640][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  762.931860][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.937957][   T31]  ? clear_bhb_loop+0x60/0xb0
[  762.942637][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.948550][   T31] RIP: 0033:0x7f354ed8e929
[  762.952984][   T31] RSP: 002b:00007f354fbae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  762.961447][   T31] RAX: ffffffffffffffda RBX: 00007f354efb5fa0 RCX: 00007f354ed8e929
[  762.969460][   T31] RDX: 0000000000000000 RSI: 0000200000000440 RDI: ffffffffffffff9c
[  762.977496][   T31] RBP: 00007f354ee10b39 R08: 0000000000000000 R09: 0000000000000000
[  762.985513][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  762.993522][   T31] R13: 0000000000000001 R14: 00007f354efb5fa0 R15: 00007fffd54d8f58
[  763.001503][   T31]  </TASK>
[  763.004566][   T31] INFO: task syz.6.3919:28464 blocked for more than 145 seconds.
[  763.012278][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  763.019925][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  763.028610][   T31] task:syz.6.3919      state:D stack:28328 pid:28464 tgid:28460 ppid:25267  task_flags:0x400040 flags:0x00004004
[  763.040555][   T31] Call Trace:
[  763.043891][   T31]  <TASK>
[  763.046823][   T31]  __schedule+0x16f5/0x4d00
[  763.051316][   T31]  ? __kasan_slab_free+0x62/0x70
[  763.056556][   T31]  ? security_file_open+0xb1/0x270
[  763.061687][   T31]  ? do_dentry_open+0x35e/0x1970
[  763.066657][   T31]  ? __lock_acquire+0xab9/0xd20
[  763.071509][   T31]  ? schedule+0x165/0x360
[  763.075912][   T31]  ? __pfx___schedule+0x10/0x10
[  763.080778][   T31]  ? schedule+0x91/0x360
[  763.085053][   T31]  schedule+0x165/0x360
[  763.089217][   T31]  schedule_preempt_disabled+0x13/0x30
[  763.094734][   T31]  __mutex_lock+0x724/0xe80
[  763.099255][   T31]  ? __mutex_lock+0x51b/0xe80
[  763.103971][   T31]  ? misc_open+0x51/0x330
[  763.108358][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  763.113415][   T31]  misc_open+0x51/0x330
[  763.117613][   T31]  chrdev_open+0x4cc/0x5e0
[  763.122041][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  763.127042][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  763.131986][   T31]  do_dentry_open+0xdf3/0x1970
[  763.136794][   T31]  vfs_open+0x3b/0x340
[  763.140862][   T31]  ? path_openat+0x2ecd/0x3830
[  763.145675][   T31]  path_openat+0x2ee5/0x3830
[  763.150272][   T31]  ? arch_stack_walk+0xfc/0x150
[  763.155193][   T31]  ? __pfx_path_openat+0x10/0x10
[  763.160137][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.166281][   T31]  do_filp_open+0x1fa/0x410
[  763.170829][   T31]  ? __lock_acquire+0xab9/0xd20
[  763.175705][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  763.180766][   T31]  ? _raw_spin_unlock+0x28/0x50
[  763.185684][   T31]  ? alloc_fd+0x64c/0x6c0
[  763.190027][   T31]  do_sys_openat2+0x121/0x1c0
[  763.194740][   T31]  ? __se_sys_futex+0x36f/0x400
[  763.199597][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  763.204846][   T31]  ? rcu_is_watching+0x15/0xb0
[  763.209617][   T31]  __x64_sys_openat+0x138/0x170
[  763.214608][   T31]  do_syscall_64+0xfa/0x3b0
[  763.219125][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  763.224380][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.230461][   T31]  ? clear_bhb_loop+0x60/0xb0
[  763.235412][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.241307][   T31] RIP: 0033:0x7f354ed8e929
[  763.245770][   T31] RSP: 002b:00007f354fb8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  763.254210][   T31] RAX: ffffffffffffffda RBX: 00007f354efb6080 RCX: 00007f354ed8e929
[  763.262171][   T31] RDX: 0000000000000000 RSI: 0000200000000240 RDI: ffffffffffffff9c
[  763.270165][   T31] RBP: 00007f354ee10b39 R08: 0000000000000000 R09: 0000000000000000
[  763.278160][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  763.286169][   T31] R13: 0000000000000000 R14: 00007f354efb6080 R15: 00007fffd54d8f58
[  763.294198][   T31]  </TASK>
[  763.297234][   T31] INFO: task syz-executor:28619 blocked for more than 145 seconds.
[  763.305170][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[  763.312799][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  763.321539][   T31] task:syz-executor    state:D stack:26168 pid:28619 tgid:28619 ppid:1      task_flags:0x400040 flags:0x00004000
[  763.333528][   T31] Call Trace:
[  763.336908][   T31]  <TASK>
[  763.339848][   T31]  __schedule+0x16f5/0x4d00
[  763.344430][   T31]  ? __kasan_slab_free+0x62/0x70
[  763.349387][   T31]  ? security_file_open+0xb1/0x270
[  763.354645][   T31]  ? do_dentry_open+0x35e/0x1970
[  763.359598][   T31]  ? __lock_acquire+0xab9/0xd20
[  763.364509][   T31]  ? schedule+0x165/0x360
[  763.368847][   T31]  ? __pfx___schedule+0x10/0x10
[  763.373853][   T31]  ? schedule+0x91/0x360
[  763.378126][   T31]  schedule+0x165/0x360
[  763.382274][   T31]  schedule_preempt_disabled+0x13/0x30
[  763.387792][   T31]  __mutex_lock+0x724/0xe80
[  763.392308][   T31]  ? __mutex_lock+0x51b/0xe80
[  763.397012][   T31]  ? misc_open+0x51/0x330
[  763.401349][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  763.406428][   T31]  misc_open+0x51/0x330
[  763.410589][   T31]  chrdev_open+0x4cc/0x5e0
[  763.415064][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  763.420014][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  763.425169][   T31]  do_dentry_open+0xdf3/0x1970
[  763.429959][   T31]  vfs_open+0x3b/0x340
[  763.434080][   T31]  ? path_openat+0x2ecd/0x3830
[  763.438853][   T31]  path_openat+0x2ee5/0x3830
[  763.443428][   T31]  ? __pfx_css_rstat_updated+0x10/0x10
[  763.448922][   T31]  ? count_memcg_event_mm+0x21/0x260
[  763.454358][   T31]  ? __pfx_path_openat+0x10/0x10
[  763.459285][   T31]  ? __pfx___up_read+0x10/0x10
[  763.464081][   T31]  ? do_user_addr_fault+0xbc1/0x1390
[  763.469394][   T31]  do_filp_open+0x1fa/0x410
[  763.473937][   T31]  ? __lock_acquire+0xab9/0xd20
[  763.478800][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  763.483951][   T31]  ? _raw_spin_unlock+0x28/0x50
[  763.488806][   T31]  ? alloc_fd+0x64c/0x6c0
[  763.493124][   T31]  do_sys_openat2+0x121/0x1c0
[  763.497843][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  763.503045][   T31]  ? fd_install+0x97/0x540
[  763.507512][   T31]  ? fd_install+0x30d/0x540
[  763.512025][   T31]  __x64_sys_openat+0x138/0x170
[  763.516919][   T31]  do_syscall_64+0xfa/0x3b0
[  763.521437][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  763.526712][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.532778][   T31]  ? clear_bhb_loop+0x60/0xb0
[  763.537720][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.545349][   T31] RIP: 0033:0x7f7d2e78d211
[  763.549797][   T31] RSP: 002b:00007ffd216318e0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  763.558421][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f7d2e78d211
[  763.566445][   T31] RDX: 0000000000000002 RSI: 00007f7d2e811506 RDI: 00000000ffffff9c
[  763.574486][   T31] RBP: 00007f7d2e811506 R08: 0000000000000000 R09: 00007f7d2f4ed6c0
[  763.582471][   T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  763.590485][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  763.598538][   T31]  </TASK>
[  763.601586][   T31] 
[  763.601586][   T31] Showing all locks held in the system:
[  763.609376][   T31] 4 locks held by kworker/u8:0/12:
[  763.614595][   T31] 4 locks held by kworker/u8:1/13:
[  763.619950][   T31]  #0: ffff88801b6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  763.631011][   T31]  #1: ffffc90000127bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  763.641590][   T31]  #2: ffffffff8f7159d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[  763.650932][   T31]  #3: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  763.661107][   T31] 1 lock held by khungtaskd/31:
[  763.666008][   T31]  #0: ffffffff8e33eda0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  763.675938][   T31] 2 locks held by getty/5598:
[  763.680597][   T31]  #0: ffff88803531a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  763.690365][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  763.700514][   T31] 3 locks held by kworker/1:6/5931:
[  763.705761][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  763.716782][   T31]  #1: ffffc90004447bc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  763.730368][   T31]  #2: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[  763.741762][   T31] 1 lock held by syz-executor/26313:
[  763.747234][   T31]  #0: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  763.757384][   T31] 2 locks held by syz-executor/27865:
[  763.762734][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.771252][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_open+0x12d/0x820
[  763.781365][   T31] 2 locks held by syz.2.3913/28092:
[  763.786599][   T31]  #0: ffff888054749100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[  763.796397][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[  763.806554][   T31] 2 locks held by syz.2.3913/28112:
[  763.811745][   T31]  #0: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x191/0x570
[  763.821879][   T31]  #1: ffff888054749100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[  763.831599][   T31] 1 lock held by syz.6.3919/28461:
[  763.836742][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.845256][   T31] 1 lock held by syz.6.3919/28464:
[  763.850358][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.859460][   T31] 1 lock held by syz-executor/28619:
[  763.864844][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.873331][   T31] 1 lock held by syz-executor/28660:
[  763.878691][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.887190][   T31] 1 lock held by syz-executor/28744:
[  763.892476][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.901002][   T31] 1 lock held by syz-executor/28756:
[  763.906322][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.914810][   T31] 1 lock held by syz-executor/28764:
[  763.920072][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.928546][   T31] 1 lock held by syz-executor/28767:
[  763.933877][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.942357][   T31] 1 lock held by syz-executor/28771:
[  763.947669][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.956155][   T31] 1 lock held by syz-executor/28780:
[  763.961417][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.969882][   T31] 1 lock held by syz-executor/28786:
[  763.975191][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.983665][   T31] 1 lock held by syz-executor/28790:
[  763.988946][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  763.997491][   T31] 1 lock held by syz-executor/28794:
[  764.002784][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  764.011301][   T31] 
[  764.013671][   T31] =============================================
[  764.013671][   T31] 
[  764.022086][   T31] NMI backtrace for cpu 1
[  764.022097][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  764.022109][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  764.022115][   T31] Call Trace:
[  764.022119][   T31]  <TASK>
[  764.022124][   T31]  dump_stack_lvl+0x189/0x250
[  764.022138][   T31]  ? __wake_up_klogd+0xd9/0x110
[  764.022153][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  764.022164][   T31]  ? __pfx__printk+0x10/0x10
[  764.022180][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  764.022195][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  764.022206][   T31]  ? _printk+0xcf/0x120
[  764.022219][   T31]  ? __pfx__printk+0x10/0x10
[  764.022230][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  764.022245][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  764.022259][   T31]  watchdog+0xfee/0x1030
[  764.022270][   T31]  ? watchdog+0x1de/0x1030
[  764.022282][   T31]  kthread+0x70e/0x8a0
[  764.022296][   T31]  ? __pfx_watchdog+0x10/0x10
[  764.022304][   T31]  ? __pfx_kthread+0x10/0x10
[  764.022317][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  764.022331][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  764.022345][   T31]  ? __pfx_kthread+0x10/0x10
[  764.022357][   T31]  ret_from_fork+0x3f9/0x770
[  764.022368][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  764.022380][   T31]  ? __switch_to_asm+0x39/0x70
[  764.022392][   T31]  ? __switch_to_asm+0x33/0x70
[  764.022402][   T31]  ? __pfx_kthread+0x10/0x10
[  764.022415][   T31]  ret_from_fork_asm+0x1a/0x30
[  764.022433][   T31]  </TASK>
[  764.022436][   T31] Sending NMI from CPU 1 to CPUs 0:
[  764.178755][    C0] NMI backtrace for cpu 0
[  764.178770][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  764.178787][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  764.178797][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  764.178821][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d e3 09 1b 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  764.178834][    C0] RSP: 0018:ffffffff8e007d80 EFLAGS: 000002c6
[  764.178847][    C0] RAX: 994fc9daa444fc00 RBX: ffffffff81979d58 RCX: 994fc9daa444fc00
[  764.178859][    C0] RDX: 0000000000000001 RSI: ffffffff8da4c121 RDI: ffffffff8be41880
[  764.178869][    C0] RBP: ffffffff8e007ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[  764.178880][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fc232f0
[  764.178891][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1c12a50
[  764.178900][    C0] FS:  0000000000000000(0000) GS:ffff888125a1c000(0000) knlGS:0000000000000000
[  764.178912][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  764.178923][    C0] CR2: 000055fe933fd000 CR3: 000000000e138000 CR4: 00000000003526f0
[  764.178936][    C0] DR0: 0000000000000001 DR1: 0000000000000006 DR2: 0200000000000001
[  764.178946][    C0] DR3: 0000000000000003 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  764.178955][    C0] Call Trace:
[  764.178962][    C0]  <TASK>
[  764.178967][    C0]  default_idle+0x13/0x20
[  764.178983][    C0]  default_idle_call+0x74/0xb0
[  764.178998][    C0]  do_idle+0x1e8/0x510
[  764.179017][    C0]  ? __pfx_do_idle+0x10/0x10
[  764.179038][    C0]  cpu_startup_entry+0x44/0x60
[  764.179053][    C0]  rest_init+0x2de/0x300
[  764.179068][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  764.179089][    C0]  start_kernel+0x47d/0x500
[  764.179106][    C0]  x86_64_start_reservations+0x24/0x30
[  764.179124][    C0]  x86_64_start_kernel+0x143/0x1c0
[  764.179148][    C0]  common_startup_64+0x13e/0x147
[  764.179173][    C0]  </TASK>
[  764.179853][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  764.384872][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  764.396681][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  764.406725][   T31] Call Trace:
[  764.409992][   T31]  <TASK>
[  764.412919][   T31]  dump_stack_lvl+0x99/0x250
[  764.417503][   T31]  ? __asan_memcpy+0x40/0x70
[  764.422081][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  764.427272][   T31]  ? __pfx__printk+0x10/0x10
[  764.431860][   T31]  panic+0x2db/0x790
[  764.435749][   T31]  ? __pfx_panic+0x10/0x10
[  764.440149][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  764.445946][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  764.451310][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  764.457457][   T31]  watchdog+0x102d/0x1030
[  764.462035][   T31]  ? watchdog+0x1de/0x1030
[  764.466441][   T31]  kthread+0x70e/0x8a0
[  764.470509][   T31]  ? __pfx_watchdog+0x10/0x10
[  764.475174][   T31]  ? __pfx_kthread+0x10/0x10
[  764.479755][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  764.485122][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  764.490308][   T31]  ? __pfx_kthread+0x10/0x10
[  764.494890][   T31]  ret_from_fork+0x3f9/0x770
[  764.499470][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  764.504572][   T31]  ? __switch_to_asm+0x39/0x70
[  764.509329][   T31]  ? __switch_to_asm+0x33/0x70
[  764.514081][   T31]  ? __pfx_kthread+0x10/0x10
[  764.518664][   T31]  ret_from_fork_asm+0x1a/0x30
[  764.523425][   T31]  </TASK>
[  764.526661][   T31] Kernel Offset: disabled
[  764.530976][   T31] Rebooting in 86400 seconds..