last executing test programs:

25m8.673664718s ago: executing program 2 (id=2036):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0xa)
ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000007601"])
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000100)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f0000000240)={0x48, 0x1, r5, 0x0, 0x7fffffffffffffff, 0x800})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f00000001c0)={0x48, 0x1, r5, 0x0, 0xfffffffffffffffe, 0x2})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x400000f4, 0x0, 0x1ff}]})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000340)={0x28, 0x6, r5, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2b8000000000000})
r9 = syz_open_dev$dri(&(0x7f0000000d40), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r9, 0xc01864b0, &(0x7f00000003c0)={0x0, 0x0, 0xa})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_SET_PIT2(r11, 0x8010aebb, 0x0)
r12 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r4, 0x3ba0, &(0x7f00000002c0)={0x48, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
read(r12, &(0x7f0000000100)=""/159, 0xfffffe5a)
r13 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r13, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)
ioctl$TIOCGPTPEER(r1, 0x5441, 0x8000000040)
r14 = openat$userio(0xffffffffffffff9c, &(0x7f00000000c0), 0x82000, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r14, &(0x7f0000000380)={0x2, 0x4}, 0x2)

25m8.032885833s ago: executing program 2 (id=2041):
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x7fffffffffffffff, 0x210000)
read$hiddev(r0, &(0x7f0000000080)=""/83, 0x53)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r1, 0x7dfff000)

25m7.825121204s ago: executing program 2 (id=2043):
r0 = dup(0xffffffffffffffff) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) (async)
ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f00000000c0)=0x100) (async)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x8600, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000280)={0x48, 0x2, 0x0, 0x0, 0x0, 0x0, <r3=>0x0, 0x1})
ioctl$IOMMU_GET_HW_INFO(r0, 0x3b8a, &(0x7f0000000100)={0x28, 0x0, r3, 0x56, &(0x7f0000000300)=""/86})
read(r2, &(0x7f00000001c0)=""/157, 0x9d)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r2, {0xb5c5}}, './file0\x00'})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000080)={0xffff1000, 0x18000})

25m7.672068621s ago: executing program 2 (id=2045):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f00000000c0)={0x6, "1f938a7b853b3a9b0b00000000000000008900", <r1=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000080)={0x1ff, "1f138a91b80f3795181800c70511603979e1ef3b3a9b0b8c7d6a2ef124708900", <r2=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r1, 0xc0303e03, &(0x7f0000000140)={"50edd24983fde74e78682dbc67d293c19050af5f39c0ce29436807917da2c17e", r2}) (async)
ioctl$SYNC_IOC_MERGE(r1, 0xc0303e03, &(0x7f0000000140)={"50edd24983fde74e78682dbc67d293c19050af5f39c0ce29436807917da2c17e", r2})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x200, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x181080, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r6, 0x3b81, &(0x7f0000000200)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r6, 0x3b88, &(0x7f00000002c0)={0xc, r7}) (async)
ioctl$IOMMU_VFIO_IOAS$SET(r6, 0x3b88, &(0x7f00000002c0)={0xc, r7})
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000240), 0x412000, 0x0) (async)
r8 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000240), 0x412000, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r6, 0x3ba0, &(0x7f0000000300)={0x48, 0x7, r8, 0x0, 0x10000, 0x0, 0x1, 0x37a4d2, 0x1d64f4}) (async)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r6, 0x3ba0, &(0x7f0000000300)={0x48, 0x7, r8, 0x0, 0x10000, 0x0, 0x1, 0x37a4d2, 0x1d64f4})
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r6, 0x3b72, &(0x7f0000000540)={0x18, 0x2, 0x19c9, 0xb})
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000001c0)={0x1, 0x0, [{0x487, 0x0, 0x5}]}) (async)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f00000001c0)={0x1, 0x0, [{0x487, 0x0, 0x5}]})
r9 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r9, &(0x7f0000000100)=""/159, 0xfffffe5a)
read(r9, &(0x7f0000000080)=""/119, 0x77)

25m6.722456169s ago: executing program 2 (id=2051):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000280)=0x10) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x3, 0x0, 0x100000, 0x1000, &(0x7f0000034000/0x1000)=nil}) (async)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000001c0)=0x20000401)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"]) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x4, 0x2, 0x5000, 0x1000, &(0x7f0000588000/0x1000)=nil}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
read$FUSE(r1, 0x0, 0x0) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, 0xffffffffffffffff, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) (async)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

25m6.268338251s ago: executing program 2 (id=2058):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000001c0)={0x1, 0x0, [{0xc001102c, 0x0, 0x1}]})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000000)={0x980912, 0x3})
ioctl$TUNATTACHFILTER(r2, 0x4020940d, &(0x7f0000000040)={0x0, 0x0})
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20181, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r8, 0x80045104, &(0x7f0000000040))
r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r9, 0x4068aea3, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000100)={0xffff1000, 0x4000, 0x1})
r10 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r10, 0x4601, &(0x7f0000000000)={0x400, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {0x10000000}})
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000080)={0x2000, 0x10000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f0000000180)={0x2, 0x5834d4dbb6893c4c})
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
r11 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r11, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

24m51.046747574s ago: executing program 32 (id=2058):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000001c0)={0x1, 0x0, [{0xc001102c, 0x0, 0x1}]})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000000)={0x980912, 0x3})
ioctl$TUNATTACHFILTER(r2, 0x4020940d, &(0x7f0000000040)={0x0, 0x0})
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20181, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r8, 0x80045104, &(0x7f0000000040))
r9 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r9, 0x4068aea3, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000100)={0xffff1000, 0x4000, 0x1})
r10 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r10, 0x4601, &(0x7f0000000000)={0x400, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {0x10000000}})
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000080)={0x2000, 0x10000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f0000000180)={0x2, 0x5834d4dbb6893c4c})
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
r11 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r11, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

15m16.726459765s ago: executing program 0 (id=6953):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x4b, 0x2, 0x0, "0ba7dfad1cfbb5a12e6a2bdee19988d940d2c1aebd746fc04a0026d174932d46"}) (async)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000789000/0x2000)=nil, 0x2000, 0x5a051feb1f984a15, 0x202812, r1, 0x7dfff000)

15m16.659454441s ago: executing program 0 (id=6954):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
write(r0, &(0x7f00000003c0)="f8ac0415396bbfbf67adbc9bcba497990f26c2d6cf293309ddf5ca485f563a1a4ecd1137096f6f228af2400d3e511b69b2dc3641cd34333c42afa69e889fd76c48882d1157b2bb840573e8f82a7b5da1b59caa386e8f60908c7b54f2b6f537fd0da9510442207686d6bb1b6798ad163de020d569a2f614433227eb4f1718ad4abb2317b0914bbddcd3e05b82750993dd62957e0485e9e5d5a4589d574085", 0x9e)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x2f)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x6, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x470880, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x2)
write$char_usb(r4, &(0x7f0000000240)="d74a54d63ce080823135695ad6c0182685eb8773903a5b130d3500b476603525b1af342d55090a2b7d795cc5f82aa30d38645230e88958aaa8ab2a871ec989aebf0234e9b2e83996a0a3d7a4181d05d5ebbbded088f4e78ad03090b6764f8886b2d2922e4f887f7c946d24fc86dad9c852099494988f730499fe6c9f5eef182c6e0f9a937575b5a94123e52176111c8310856bc41e6cb10bce56329c389e6c230d24b70ef6f6b98ed7788932", 0xac)
ioctl$HIDIOCGREPORTINFO(r3, 0xc00c4809, &(0x7f00000001c0)={0x1, 0x300, 0x4})
read$FUSE(r2, 0x0, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
ioctl$EVIOCGABS2F(r2, 0x8018456f, &(0x7f0000000480)=""/136)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
ioctl$BLKZEROOUT(r6, 0x127f, &(0x7f0000000200)={0x6000, 0x80600})

15m15.931599828s ago: executing program 0 (id=6960):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSF2(r1, 0x4b72, &(0x7f0000001fc0)={0x0, 0x0, 0x0, 0x0, 0x0, "ebeed602010000000000ef960200"})
r2 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r3, 0x7dfff000)

15m15.747075758s ago: executing program 0 (id=6962):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x8600, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000440), 0x5, 0x88000)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000480)=<r2=>0xffffffffffffffff)
close(r2)
read(r0, &(0x7f00000001c0)=""/157, 0x9d)

15m15.706795203s ago: executing program 0 (id=6963):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0xffffd000)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_debug_messages', 0x101, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000001c0))
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r5, &(0x7f0000000480)={0x2020}, 0x2020)
write$FUSE_DIRENT(r2, &(0x7f00000001c0)=ANY=[@ANYRESOCT], 0x200001d0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

15m15.109052706s ago: executing program 0 (id=6968):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f0000000180)={{@my=0x0}, 0x0, 0x1})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1})
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r2, 0x7dfff000)

14m59.643664021s ago: executing program 33 (id=6968):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f0000000180)={{@my=0x0}, 0x0, 0x1})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1})
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
r2 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r2, 0x7dfff000)

11m9.072635347s ago: executing program 1 (id=9024):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000002340)=""/188, 0xbc) (async)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000004440)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_DIRENT(r2, &(0x7f00000021c0)=ANY=[@ANYBLOB="32433ffc6263c9ed77b2eb9cccb70a3e9f0deb32d8f5bcb70bc3d092085a34ba8e8718e051d5e516d2522f8993d270cd15449b19213e16cef4d0f5e1fc26a8fbd3be50fe7ba52481428341218c63be624c8b97733a0b79ef395943b378c093cd3fd3bbd9c6b1a3c1936b68485634ff2f608700362bd6eeed4a2041e4b82efd112fae0847266794a3e5774429e48cadf294253842ab8c2c94fbb026a72c3cd1398b8f", @ANYRES64=r3], 0x10) (async)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, r3, {{0x2, 0x2, 0x7ff, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x3, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
read$FUSE(r1, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r6, &(0x7f0000000180)={0x0, 0x0, 0x3, 0xff}, 0x8)
mmap(&(0x7f0000580000/0x2000)=nil, 0x2000, 0x0, 0x810, r5, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) (async)
r7 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_SET_LEDBIT(r7, 0x40045569, 0xa) (async)
ioctl$UI_SET_EVBIT(r7, 0x40045564, 0x11)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) (async)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) (async)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x42280, 0x0)
close(r10)
ioctl$KVM_CHECK_EXTENSION(r11, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000100)={0x1fe, 0x3, 0x8080000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r10, 0x4020aed2, &(0x7f0000000040)={0x0, 0x399000, 0x8}) (async)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) (async)
pwritev(r8, &(0x7f0000001400)=[{&(0x7f00000001c0)="2b23dbc895797f448077d77a88ca", 0xe}, {&(0x7f00000002c0)="a90bafde478d017f928d2610ddcfc379", 0x10}], 0x2, 0x7, 0x58) (async)
ioctl$UI_DEV_SETUP(r7, 0x405c5503, &(0x7f0000000100)={{0x0, 0xdaa9}, 'syz0\x00'})

11m5.166247782s ago: executing program 1 (id=9034):
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000000)={0xc3b6, 0xad5, &(0x7f0000000440)="92676e", 0x0, 0x3})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x14, 0x6, 0x0, 0x0, 0x0, 0x0, 0x6c, 0x5, 0x8000000000000, 0x7f, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6], 0x1, 0x3c4210})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000380)={0x6, 0x0, [{0x20a, 0x0, 0x7fffffff}, {0xa07, 0x0, 0x3}, {0x649, 0x0, 0x800}, {0x3fc, 0x0, 0x7fff}, {0x486, 0x0, 0x8000}, {0x3a3, 0x0, 0x3}]})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r5, 0xc008ae05, &(0x7f0000000000)=""/35)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x8400ae8e, &(0x7f0000000140)=@x86={0xff, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd8})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000500)={[0x0, 0x100000000, 0x0, 0x0, 0x100000, 0xb, 0x401, 0x8000000, 0x7, 0x0, 0xfffffffffffffffe, 0x200, 0x2], 0x0, 0x200})
r7 = syz_open_dev$video4linux(&(0x7f0000000100), 0x10000, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xc0701, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0xc0189436, &(0x7f0000000000)={'wlan1\x00', @random='\rh\x00 \x00'})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$VIDIOC_ENUMSTD(r7, 0xc0585604, &(0x7f0000000080)={0x2, 0x0, "3127608efb75b4c827912445aead8b49f0a87e73a02eec2f"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x8600, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2800, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r11, 0x4008ae89, &(0x7f0000000280)={0x1, 0x0, [{0xd90, 0x0, 0x319}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r8, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r12=>r0, {0x4}}, './file0\x00'})
read(r12, &(0x7f00000002c0)=""/160, 0xa0)

11m4.654671531s ago: executing program 1 (id=9036):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x27, 0x39, 0x12, 0x1d, 0x9, 0x62, 0x5, 0x82, 0x1})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r1, 0x7dfff000)

11m4.413117986s ago: executing program 1 (id=9039):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x40000000, 0x880)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x5)
ioctl$KVM_SET_CPUID2(r5, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYBLOB="070000000000000007000000ffffffff"])
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000001c0)={r1, 0x3ff, {0x0, 0x0, 0x0, 0x666edb41, 0x4, 0x0, 0x0, 0x5, 0x0, "bb5f2305905940ac28933036a422ad3300edf5a0414380124e726fd8ad64296896b81644491f29157495938f03ae9eaf951ff956249a9fa8db7d855ab6026d4e", "cd603185e63ad5739ec326099834bb2dd44ce59c96abb18fc3e2ce0273fb9ec6d6bdb4d1920f4c19f3236b7ed36daf1d5ab204a5b94f90c1e67150fef5599280", "eb727867892570a731ec8e6c8ac94bf52d4e8686c11e11a9567c452ca5f36559", [0xa, 0x6]}})
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x123a02, 0x0)
pwritev(r6, &(0x7f0000000400), 0x0, 0x7, 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

11m3.24860946s ago: executing program 1 (id=9046):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$fb(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x100010, r1, 0x6f000)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000000580)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000029c0)={0x658, 0x0, r4, [{{0x0, 0x2, 0x8001, 0x46, 0xff, 0x2, {0x6, 0xfa9, 0xfffffffffffffff9, 0xfff, 0x2, 0x3, 0x4, 0x0, 0xed07, 0xa000, 0x8, r5, 0x0, 0x55fd, 0x80000001}}, {0x0, 0x3, 0x6, 0x5, 'vcan0\x00'}}, {{0x6, 0x0, 0x5, 0xffffffffffffffc0, 0x3, 0x200, {0x3, 0x2, 0x5, 0xffffffffffffff01, 0xf, 0x7, 0xffff, 0x2, 0xfffffe01, 0x3000, 0x2, r5, r6, 0x5, 0x4c18}}, {0x0, 0x10001, 0x8, 0xb, '%pB    \x00'}}, {{0x1, 0x0, 0xffffffff, 0x7, 0xf425, 0x2, {0x6, 0x7, 0x2, 0xf, 0xffffffffffffffff, 0x1, 0x2, 0x8, 0x9461, 0xe000, 0x7, r5, r6, 0x8000, 0x1ff8000}}, {0x1, 0xd0a9, 0xa, 0x9a5e, '/dev/cuse\x00'}}, {{0x6, 0x2, 0x5f, 0x4, 0x4, 0x1, {0x0, 0x7, 0x1000, 0xfffffffffffffff9, 0x8001, 0x0, 0x800, 0x80000000, 0xb83, 0xc000, 0x80000001, r5, r6, 0x28a, 0x7}}, {0x5, 0x4, 0x1, 0xa, '\x00'}}, {{0x5, 0x2, 0x8, 0x8001, 0xd, 0x6, {0x6, 0x184, 0x587, 0x8000, 0x8, 0x0, 0xffffffff, 0x6, 0x10, 0x2000, 0xb, r5, r6, 0x80000000, 0xb}}, {0x2, 0x8, 0x1, 0xa2, '('}}, {{0x2, 0x1, 0x9, 0x6, 0xfffffff8, 0x7fff, {0x5, 0x1, 0xc, 0xa, 0x6, 0x6, 0x3, 0x6, 0x7, 0x8000, 0x8, r5, r6, 0x5, 0x3}}, {0x3, 0x2, 0x1, 0x9, ','}}, {{0x6, 0x0, 0x5dd5, 0x3, 0x5, 0x81, {0x3, 0x100000001, 0x5, 0x2, 0x1, 0x2, 0x6, 0x69504f9e, 0x80000000, 0x2000, 0x6, r5, r6, 0x6, 0x5}}, {0x0, 0xfffffffffffffffc, 0x6, 0x4, '&\'.:&('}}, {{0x2, 0x1, 0x401, 0x5, 0x80, 0x4, {0x5, 0x404, 0x5, 0x4, 0x801, 0xff, 0x6, 0xd7a2, 0x7fff, 0x4000, 0x7f, 0x0, 0x0, 0x7fffffff, 0xc6}}, {0x4, 0x100000001, 0x4, 0xf4f, '\\--,'}}, {{0x5, 0x1, 0x7ff, 0x4, 0x3d, 0x7f, {0x6, 0x7, 0x5, 0x3, 0x59ec, 0x5, 0x4, 0xf6c, 0x80000000, 0x4000, 0x80, r5, r6, 0x6, 0x6a4a}}, {0x2, 0x54f, 0x8, 0x3ff, 'nl80211\x00'}}, {{0x5, 0x2, 0x2, 0x49f, 0x7fff, 0x65, {0x5, 0xbe4a, 0x707, 0x4b3, 0x0, 0x3, 0x10001, 0xfffff800, 0x6, 0x4000, 0x4b4cca3e, 0xee00, r6, 0x1, 0x62e2}}, {0x2, 0x101, 0x1, 0x3, '\xad'}}]}, 0x658)
ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000000200)={0x9, 0xffff, {0xffffffffffffffff}, {<r7=>0xee01}, 0xfff, 0x5})
r8 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
read$FUSE(r8, &(0x7f0000000580)={0x2020, 0x0, <r9=>0x0, <r10=>0x0, <r11=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r8, &(0x7f00000029c0)={0x658, 0x0, r9, [{{0x0, 0x2, 0x8001, 0x46, 0xff, 0x2, {0x6, 0xfa9, 0xfffffffffffffff9, 0xfff, 0x2, 0x3, 0x4, 0x0, 0xed07, 0xa000, 0x8, r10, 0x0, 0x55fd, 0x80000001}}, {0x0, 0x3, 0x6, 0x5, 'vcan0\x00'}}, {{0x6, 0x0, 0x5, 0xffffffffffffffc0, 0x3, 0x200, {0x3, 0x2, 0x5, 0xffffffffffffff01, 0xf, 0x7, 0xffff, 0x2, 0xfffffe01, 0x3000, 0x2, r10, r11, 0x5, 0x4c18}}, {0x0, 0x10001, 0x8, 0xb, '%pB    \x00'}}, {{0x1, 0x0, 0xffffffff, 0x7, 0xf425, 0x2, {0x6, 0x7, 0x2, 0xf, 0xffffffffffffffff, 0x1, 0x2, 0x8, 0x9461, 0xe000, 0x7, r10, r11, 0x8000, 0x1ff8000}}, {0x1, 0xd0a9, 0xa, 0x9a5e, '/dev/cuse\x00'}}, {{0x6, 0x2, 0x5f, 0x4, 0x4, 0x1, {0x0, 0x7, 0x1000, 0xfffffffffffffff9, 0x8001, 0x0, 0x800, 0x80000000, 0xb83, 0xc000, 0x80000001, r10, r11, 0x28a, 0x7}}, {0x5, 0x4, 0x1, 0xa, '\x00'}}, {{0x5, 0x2, 0x8, 0x8001, 0xd, 0x6, {0x6, 0x184, 0x587, 0x8000, 0x8, 0x0, 0xffffffff, 0x6, 0x10, 0x2000, 0xb, r10, r11, 0x80000000, 0xb}}, {0x2, 0x8, 0x1, 0xa2, '('}}, {{0x2, 0x1, 0x9, 0x6, 0xfffffff8, 0x7fff, {0x5, 0x1, 0xc, 0xa, 0x6, 0x6, 0x3, 0x6, 0x7, 0x8000, 0x8, r10, r11, 0x5, 0x3}}, {0x3, 0x2, 0x1, 0x9, ','}}, {{0x6, 0x0, 0x5dd5, 0x3, 0x5, 0x81, {0x3, 0x100000001, 0x5, 0x2, 0x1, 0x2, 0x6, 0x69504f9e, 0x80000000, 0x2000, 0x6, r10, r11, 0x6, 0x5}}, {0x0, 0xfffffffffffffffc, 0x6, 0x4, '&\'.:&('}}, {{0x2, 0x1, 0x401, 0x5, 0x80, 0x4, {0x5, 0x404, 0x5, 0x4, 0x801, 0xff, 0x6, 0xd7a2, 0x7fff, 0x4000, 0x7f, 0x0, 0x0, 0x7fffffff, 0xc6}}, {0x4, 0x100000001, 0x4, 0xf4f, '\\--,'}}, {{0x5, 0x1, 0x7ff, 0x4, 0x3d, 0x7f, {0x6, 0x7, 0x5, 0x3, 0x59ec, 0x5, 0x4, 0xf6c, 0x80000000, 0x4000, 0x80, r10, r11, 0x6, 0x6a4a}}, {0x2, 0x54f, 0x8, 0x3ff, 'nl80211\x00'}}, {{0x5, 0x2, 0x2, 0x49f, 0x7fff, 0x65, {0x5, 0xbe4a, 0x707, 0x4b3, 0x0, 0x3, 0x10001, 0xfffff800, 0x6, 0x4000, 0x4b4cca3e, 0xee00, r11, 0x1, 0x62e2}}, {0x2, 0x101, 0x1, 0x3, '\xad'}}]}, 0x658)
write$FUSE_CREATE_OPEN(r1, &(0x7f00000003c0)={0xa0, 0x0, r4, {{0x1, 0x0, 0x551, 0x2, 0x6, 0x3, {0x3, 0x7e54, 0x7, 0x2, 0x5, 0x0, 0xd, 0xffffffff, 0x8000, 0x4000, 0x3, r7, r11, 0x81, 0x7}}, {0x0, 0x8}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r12 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r13 = dup(r12)
r14 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r14, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r13, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r13, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000001c0), 0x101802, 0x0)

11m2.993709653s ago: executing program 1 (id=9047):
r0 = syz_open_dev$video(&(0x7f00000010c0), 0x8, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000001fc0)={0x2, @vbi={0x0, 0x0, 0x0, 0x38414261, [0xff]}})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f0000000180)={0x9, @raw_data="f7280f84e2003006c04be42f6e3e853505b6b96e3b34307c761559f33136a6177988526b8104db0081aca632e36ec78d61ce138d0736b769b39df5144d92338a1427d6383460aac7bff5383e8ee315c5731b7b7d0f9e65f4445a41d17fbffa07b33dc22fa607e29fdadb70a8a6d64548b227707acffeb86d58371033b769d6d1d0bfc0a803188066ffb17f421a2e24ab9cdc267ef88823bd7c1294fd6f2d3aeda3d970f1cf9203951da5f4f882d9484a9c7c74dee04d07569052e33ad229607e50c175fc78c71330"})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f00000000c0)={0x2, &(0x7f0000000000)=[{0x80}, {0x6}]})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)

10m47.847434964s ago: executing program 34 (id=9047):
r0 = syz_open_dev$video(&(0x7f00000010c0), 0x8, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000001fc0)={0x2, @vbi={0x0, 0x0, 0x0, 0x38414261, [0xff]}})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f0000000180)={0x9, @raw_data="f7280f84e2003006c04be42f6e3e853505b6b96e3b34307c761559f33136a6177988526b8104db0081aca632e36ec78d61ce138d0736b769b39df5144d92338a1427d6383460aac7bff5383e8ee315c5731b7b7d0f9e65f4445a41d17fbffa07b33dc22fa607e29fdadb70a8a6d64548b227707acffeb86d58371033b769d6d1d0bfc0a803188066ffb17f421a2e24ab9cdc267ef88823bd7c1294fd6f2d3aeda3d970f1cf9203951da5f4f882d9484a9c7c74dee04d07569052e33ad229607e50c175fc78c71330"})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f00000000c0)={0x2, &(0x7f0000000000)=[{0x80}, {0x6}]})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)

6m20.426637021s ago: executing program 3 (id=11115):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1e984a11, 0x202812, r0, 0x7dfff000)

6m20.217384409s ago: executing program 3 (id=11119):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000400)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x0) (async)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) (async)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000040))
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000400)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_START(r3, 0x54a0) (async)
ioctl$SNDRV_TIMER_IOCTL_START(r3, 0x54a0)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r5, 0x40045010, &(0x7f0000000040)=0x9)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000001f80), 0x2, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r6, &(0x7f0000000080)={0x64, 0x3, 0x0, {0x0, 0x43, 0x0, '/p{oc/sys/net/ipv4/vs/\b\x00re_tcp\x00r\x98c}\x83x\xd7\xb0{ol\xee\x87\xb443t\xbf\x8c\x105\xc0\xe0<\x9d\x16;\xe5I\xd1\xd9\xe7\x81\xacs\r'}}, 0x64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x600203, 0x0) (async)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x600203, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x121880, 0x0)
preadv(r9, &(0x7f0000000ac0)=[{0x0}, {&(0x7f0000000680)=""/190, 0xbe}], 0x2, 0x0, 0x7c) (async)
preadv(r9, &(0x7f0000000ac0)=[{0x0}, {&(0x7f0000000680)=""/190, 0xbe}], 0x2, 0x0, 0x7c)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r10, 0x8400ae8e, &(0x7f0000000140)=@x86={0xff, 0x0, 0x0, 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd8})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x456ae000)

6m19.90897364s ago: executing program 3 (id=11122):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"]) (async)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSLCKTRMIOS(r3, 0x542f, 0x0) (async)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000340)={{0x0, 0x0, 0xfffffffffffffe6d, {0xdddd0000, 0x10003f}}, "a9cbc4b723986beb2541731c8831607b6ee747534f2610e68420ac50bde6dad58d04aad3777f18b4f168b3950653ce1d7740b6225b60f102dea41282032f21c3f19760a59ad876506e4e939e80e92248edfd8137e41621c1a490cf3cbb0502fa6deb4cb0efa6bc813cca06ed4828bafa15d1afd8ac82b71d1a7b410eeac6a6f31e4995b05d3f93bf80a053ae74958ed42c6c4b4d0bcaa08d3e6025a166ac6f19973f974613e0d7ca520dd948ed23fcce9f475faa3e49d697324fa1b2cdfef7deb66a190e9185a90f5c54c88895af1a61f8c0722f0c0bf9835d8910449682cc5551ec995aec222238bb28f41ba7f99f93b785dd2d48cf389f27da125b9c3ec7f716d6b6b696a93e625f0e17b4ff3bac5eec8e2dd837254c16d8c9b2a773ac70b8dc7216980fcf1db0cd885a6f3379dfcca516b0b5771d3dfb2212fd569b8f6003dcf8478390e14a5bf73eb1a61a12ce20ea3f5fbd6d9a56a4adf6043190cc7d559e7773668d0498f6c7438917d204ed2ec53da03cc744619be3785cd8cddb678f8e90965f22242bb62fa3590dde45cacad3852a54154a90d7495cc4cfbd7baacc19604efd864cc76a7e867cd7403301f45a3ad20ed8edf412e4aae5f279eada88ee43a436dd3b1f37098b7d81759aff2d81e5593535d44035fdcbae0f45a7163c06b8ed7da27a03e266947d7f11d9e1600f1a88b99643a0b99abad360b8137415f7800f8a5a16ba306778733d5493cc73d0aacebe1cc4618847bd620034cb617c55e47ff8d8000f52c25a6b3e9272c297e6b30bed370dda4c2b56278893a4faefb28a87c40229d3f80814e128eedb7050465e1e00547a1b77ebaef78355d9867ce521138d63f147ec3de6cac38d9eeb1d167494466e00d97a32701117bbe0f95304970e632b9cf8ded044b3f1c01326095b422678d798a9c5f8ab05f4e6549639186723aa3d38927ed4ca94a9e6de3c4f5ce99d090389473455cb366c7dfcb43ebe60271a3693e80ae4948291753007f5032f518ffc832f3e819f3bdac1085a80cdd494cdcac4a874a14818b9dae534559c2c5a542a12949a22fddb9060e8a400f96512aa8eaaa6659932dc8852f5709a808604c2fda229c79933646e36255948baec6e0c2d4fbe056628157ba456603e5cb45761b5aa97c0daceb3e6d7a192d109847057cb4322c9c5e62403c921e9cebeca77d12c3ed05f5e131e3c00d9070618872ea8a1f05e4598c98739d3a9245e537ed992aa4eb8a571e4c7c0dc797f91e3258835f9db1b6501edaaf38c9fd4d718c743d30b6f1e480ce9408aa6b894055768738e3df843301d99b476ba8d30f6483022ad7fd50493e600700ef1b70c72f607feb0df9898b61a38f4f59d23779b7af4a5b5a0e7379877d8c875d1e47a9ddbac19208cd22e05f729a9175b9bf1c96618d63585204eb5ea29e0a0f17c12219fd51bc462dcff6d3ff73b64d2a5f7ebe6ebdefd841698e909cf1018a88afefc1802fc97c22a240f20ce6938ae6b2224f7ca311622695577f3e4cb8f7e87bcf5bcdcc5311815bab1499465f687903b4da5693c83cbe13ba3d94f413bbdf9886241fc1f0b9ea00e7b2d1c2fe29d8921c56919bbfa091d4542c590a18848256b7eca92114c5542356bb15e1cd59b28a5d5b86bb92c30e88ea6edc6efd3c685a7e9b840b61f445bb57d670d3dbba61da442fcdabd4c14b9dd6543aafca5bea6ca16c00bbdc0999cec79272dfd1de86bea7d830ec2deaa339c2fc57d6490ee7cf3bb4e6cb4b8dcaa4279bef0af601f96dc25a3cf926eb6c5eb9529a266e1a9d96fbb5e0ffeb472d40e3853f42d69e725d2dd570b531779a09a5f945a2dce4ddd898be60b9d38f3c305f942f8f8a3ee992de01a0d6b3db1a4174b770681d2470edd2319a9b9d04d3cadd67583a313c071f809c89134b2b714cb2d7247d4d6b5d794302e9408e946bf1cadc767a8ae918a6608f7d2dbb2d825e949c823ac6bda0c46dea864c83222f3c7f7ec020f3a6445f3762dfaae5a28c3857053b2548d11c9b9f4af5366b43012e35d14ba139085493e95ad24bcc92b835f3c72ff762fcbe3d04ee2051e959a9e680f51425d5eeeedd99767fccda20b44bbbac6989e1d6f70f030c2530b83923fbf27fbf24f62ff7a5619b39b338e165dcf66faf6092edd19216fdacfb8eb80bd7d8a7767f538c3021e20f498c8e456bc32af1157b5988950caf1c478047f132c01f53c12929f030e9d78c284e64a521350d72748ef214c05f4c8d2e47384c3cd29c99a2df1abb2e8ff5a363a488feb119e8ad5e3c39a4f24449d00b3772090b499e2c65b50a3e6ce7f1e2f2bac0ae5e58147d1d6887617ca38d12b1cc9a5e3ee47539f40179136698acd9b9e20a4f85335dcb19d4ba4a05bcd84b27a9f1897ab8f67abf78ba3ce4d87b37c129562d33bb0836c8fe830c068e7c8b6728ed585258c7d82b5c407d0532bf5ba60cfb0a6e6f3aa44bdf3bb7ac389023c3db4395c3875a3496d85640d423775d8ac0c4c3ab1831bdd785a5ca0ba2073bdf6970e4b63718944603ab32b83d7c73af090c3a941561a76f08e2235e1ea8a0b721cd6a73466664c411c33fd1a3e46e580c77034cb09ac38b6d1824f642d3354e827b6ddc0ca15c3bd7192882eaece388d428282c859fed7d280e5d81cd0252c149154e2038a3f2535781dc81d7221278c21ee819fb913fc8d97e96f3dbbf0b2cd63a0ceeadec43fca7a760f45aa53de97597b4afb3abf5921125e9f148da377556e6de1a62aab6055b10c1698649515e62c572d62d901ae7fcd417b627db64785fbdc21f0e978eb143d7abb2771de9a912466fb6e6f55a12f209e131732d45a8293f1a36ddddfad54f857016e3ab7fceb97ddfde1a8c8569dfa972ec636e7c93e603d5e1d0e98d6f109dfa6df50ce987abfc291aba0e488ba8f0596fbd1bacd58862b611250a85cd34e7d100f785286d815281b62ef2dfeea5e8ba4ee4a019af0ff59b0f4f3049f8718d0fca57de1cf88763d13ad26c50cccec4faba99d899ef079c3400052d065cc0a44e8f73dc5bef5f8681015b29c96dacd026d920f369a2b0c341b8295f5268e2d9bf80df2d9ea1017b5b41ec2060c2fecc67c040e7c37521b6d6174c4d4ed4accc5479f6fc4ddc0e45a7f8030ff8e23f000315a3565498d07bd0cc6459f5cff23b40ffb80ace2f48fe0c1a337bb4f748bb8c057089de5cd727b278b45d84a8f7df9f898b3cef2ec319b032f888c4953bfe141c8e4b67ab3f95fa133790ea17b27be21c9478da70641265045e81e28229a4dc15f59c2f18b1b9c082d1154bc9565508fc9419912b48f3b1271609006399a844f6ccedb6323ada63d3e0b340fd07cf9e3b98b1d193bd76796c2a185366b25468017d28371d8792eb42304961bc9c1f4ef4025d2814837dacc9f1d777bfeddb30eca1cacd9f5b6619c4000252ecdabf7107dff264046c111c6f5767e3486c37ec175f52bd3460a7ad49e35bb729ba76e2fa5e117c49b750000005e0abf56340740b81ea37c5df26b7c885cc5da412cf4e9932e2561aa7945945dcba0677786c9ea9b9aee47d73454df82048f021b30a817606c96415c22e1e908316f84aae52e050e31176408d35ef33091618df7d38d22bd2b626dc138f423c32362878c8f6538dcf0b96c4298668d4bb35773c952bbebd4778c964b0eae8eac9bef3469ea5da890377c500ea027180f5308585cd7941c7e3305c32d610de49b5c1acce6c285d88a99dcebb2b5972a276d416abf25b44c1712a43d3e30005a1535553e779c0f72ff519d2407214c02e7020ca479e93c3fb2b867ad73e69ba10e92f329cd54c4c80d227d0710cf384fd9a39d444053afce6d1e93b47137843d149e888bd868b1b2179c1fdd8291d15724db10a756300209ae4a2ed91788fe9f980af1bb00d05a8fe1a020fe4bba91fb487c8ea674a6739067a0a86b7f2a4fc141f6c864f065fc6e5effdb5a1f1d063c6888626e13ced52f3669677dad96da1cfff7d700e9f6f74131b8ac0f4fb6c8d5fd675b1ed6001bba7dd0e95567a6d06fe28e756609821312f4725c5909c6353ad385e57fb162e2f65b5e2a0100aaa356a19b9c5c183d195d0134adb8bc8d03415daafd95f3a5e44f201741e22dd905dc12469664040ce714a5d9042f58db392d6c6af1eaa4c82cd9b4996252b44334be627708463ffe52a80d8d1c8a5b1a23f9c68144c4a6c6387e542b3cb9de7765faf05fda086986d3c6a1f0906b2ea0eba741abb9514ccd57f2d8ea1d67145c5d71749b560f85093ecc265a24239078253fa0bd39bf67f8e1d78f07e167c05d808771c7b0146af368e8859273ef76f9feedf7fc69640b5e95a25076c477338e31cc9a7348b8a31a0f8d4dd9e6c46f18126279c5d1192ddee08a7057195689954b26a19dcfd2a59febb6556c18c18abc85527372919196b29a737f8bb3b97bebaf3e6c43099064e067f12772c2333be19dd4e803289430a660d68963a26ff1b1c8c664c0318a2558dec140d984837a936651906ab960b6bff8bc8b32704f3e0769e6c85c9f5bd50270bc1030ea71f2db5c43116bd0641ed31ab6db12514aec68febe59e04d2b872c9fc2173017ee6e75a18d6832c9992d1ed2ead9452dce9b2efa01dc97ea31ee5c3f5743760f2589615f45738140d0f8c148f1858d0897094a34727493e607132bc1eefa0d0ff236f9ac5a2a0f0bf06719c1d5061846e427fa36138c808741ccbd10ad3f6f54470804e656a8ab1a9ee9a523bed87cb2fd4d6db8aa6d6b80d1e9886dc12b915665101b9094a22f444379182f5356fed797ebd97ec6493bd681f69321f9735ae6d3d6822818c7cfb21c5f3a0f9d5b8ef070c916fe9ccbbf04128a27e7928e3572f125b986c52ec0de078b40135b922a2feb294b0349df06d1c3e2c9d2ed2ee88b7a1673423c6baedb51beb8f8cb1b3b986d1b9632fedfaec8e9a237311beb89cb0dd7efaa5b68537641d06b7cbfda581344c87452b4d3fe96cea6143378c4dd7586a9d55c666cce828ef91a35f3f0a5c9c369bd20c1bc7cc77fcf316a567fa21863b12c43faf3b9588dce4caa151937c6ee699cf49dba041775773ae062c69783758513a178bf46d2d40e24afe8975dd768a466755af2ffbb9fa728724a18fc9f427672ad5867a72ae8caca60fcc90cf817c291a2025b5243ae36e200b5e5c9ee4e90eac775c3b29fe1df8c35716f37d11961084fc28b0f8855376ec85d7741535f88db7977629dd832f06bb258e9a88cfc8671df2763fd9383a777f768c7aaecb9a7af9e76bb719767767c3d5178e2a10765c6b2ae80753f403125a9203ede6ed44eb96a1a010842f88f020dbb7f8df8bcbea0b60f1b99dd9b9aae2dbc995edc8ed82ec5e21e8d5e4d8d9fd0bfab342db38d12bb24c20c2a579069d74624db16bb9ec501312d8de0e653e9e74668d0ed05ccb0eb99db410c0000000fc246302635630b295ccf849e45944a25baa7f4651fa37f147e0fa977c0304e7cf25fa78260ca03abe8dc32cfb461f019f7d82194a98daae521ec4eaf3e138bb95b09d8ff2f106febcc126743abc8f8b707cd2cae1548c6fe54f64bf46c9ff03975e0c37eda3d485ff76ea5ae71fa5a2ca0d9293ea0cd4186e6e2e26fc2ba5e2cdde9400d9c1717058157a8410c9cd7ca4e679f41d8932576e7b292f28dfb9775b0ac5eb5788a8ddf797e32919e7a41c305af2e4e37eb4d5600", "1acd2077949cf1f27e1e764566e4cffaa168dcad09bfe7c84a06d9db78a4e8f0504116608cffa736ae4427d04f27d39e5de80f8935f281bc483252d1c4e0dff576831d8505d3cf34ddc4f4760b53ec5182b54b352dea1b5975eea9b6bffd5b66524559c7c3e9981d7a0ff5ffe6814c923871db66426d98286aec1debc56864a4b29ee5cb46989af08546d6d1a5d9da45db7d8abea1d392d0c668cc040da5d129ddbbe6a95a7d9e51a13328ea3fbd9ac81f03914ed9d1d2b72c234093a351f7294556996ca5459d796cb4127a9aed8e0cca398d1b5af6eae257d02db91a61d49a5677ee9c8caf1855edd2c25b9b3a9a5174d2193108e5e87d781780d9506a890687c80c429f3a46028ed71364c4b8d3b2380b38d2cf7e447dee058f556dcae2627e49dfd316d169d382f2b6775233157f57c7be54b105e2493e140ad97ecf9c12df8f0db9a973d0ef9197ebbdebc5e822ee06852a408560c7f19c65ab8527edc9ec1d6378f2c748f7e84d1d6e98de8abab3e0e42a866e1ec5d00822b124a98d77e9c8dbb3ac6648afe409b21e1cf2f5458a0588cd11af6887f552f6c16a801abf2594eb9a80e704b8053573f661dd29706e71060b630272037144b33d684f66128950510d4138785418f726eb7c7f84c7dda646b3647d673122f95ef89c863c3d4adec4477664cfe911683f19862cc918451f70a6a359dbc66b3599c0af91858ebe13c253a6e9a96758955fdfd1be103777812339e3786484a25b18994ba69b4275f26a64afb9be5219061d94d7c472236f1a20a9217d70abab15182c5f04c6080d535e34045d6497c1c8a2ea53fc022eb159d0d1be59a21f277ce441f3c5cb03ef0e7e1ac63177dfe567e2cb9055228f32c9ca6d38d99093fdc129951380cedafcca40712a2da5cc0af8d872d8f848ea5ff95210a52d2390e236da76fffce86cc8a78a8ea0e1e4464ceac9021556d29d7470ca19849b417aa6aee032f3bd437cb5c839c9f5fb20ec1367449abfb5e19f8365b7947bda60e34136e2eb53e0243766c2718d4bfe6eec77f8ca04d177cc17bad59d651a08349651de6d4dbf5856a6d42cc8cb2441ab7dfa9420d87d4a5aa5914f619b2478a0d68a98280231c8e7558d11eec87e80f2d039b5d6b287d9b3667b020dc45b999b162247bf38f5ac5fc99b5eb6ac5939d35d7d6e71b366f9553ada2784671aecdbdcaf42a2f254dc0289f7be9c6f0c045b30f63ae1a8fac778030f27e04e980bae66e474bc4f9572b8a0d8119ce13ea2ad1285b3397bc929ff26a2ba1ef2760c77e3e114d15742740b27796cb2fc84761db427cdf3c63be71fd6734ed2cb1300a8d5e2b1964f2a0320bfbad8e9bce0cd9329c8c41d79107d77f65c99f3c03813c1f0f5351869434c2ccb685f1863fac38a44ecf354ffde4926ae3cee90833db386633e6dba3585ec36f1aca6701d4d1fc13ac1c5d4cf2ae8c8c418da372bce96451dc2add28828e45ce3f6e35da3d49dcdb8ceb084a581b68fc5fcd4c45246e6b215ca98ae7239c317fe45404984292a83ac7e62614665bec4a5e80b055a0635003e93172e2045ec88144d9d7a2b50c45333720e2273b165147a0b1af77fe87089fe8c0fd32c4e950aedf6798c9007575dc86c02089414089527baf9bbbe5eaf4d58289de0987f8f310d7900ef2350daa438ac83ff255344a2bc814a3e7055269544310b0fe78b07eb0ee5f16899fc8bdf8e3cc47d27a44c93528885452195706091eaf15930f9df5874c19d0a1deedde0cbe9cda7f0618c378bc4ba6fbe911d546c7bc76954fcc6b5ef56c77d306421f9d24e0770cf8b578aaa6276bff4b98e9968e9a1f8c78c6d647d8c52a42d27ee8359840747913e0983e049ad77d87e35800eeeb19cd786a5edf6886e610f51b4d2290d959c7fe906dad2d3e2a5648c5ec0d48becaf209fbb6599d1b0d6299cb2b2fad3b3efac6ba0911a63ae399fa3f19adecc9b10533c99bba28bf9e37600db41c2b463c25b0602fb86ef043ee72aa26e7f102c3afe4073d1318671a514f8320dcbc699514792d5c90c34fe6809102cb6537a4e76530256cd997a1dba4a75b1578c7f12b409af040afa35c54001a4abf1c402f91413995ced6b64256684c34283e644246d235af905fa2edf8f802a65c1c1e0ba24ea656cb3b1f876b6f335aed27c3a6e8da53b1b9c283d299390310df6dc84e5569ad3ac1744824b329fc24cb8612c061b09440464c1168012dc40e8df788f9c708bde6bd4eb3f6111729b08796d0243b07a21ac542ae418f19ec3d7171197c8ca216b20f786784400f2834d98819a5fbbd909677f7d7309dca5c0e2cf74a8a53c1791c78488fec0520d3c71a9698e5040920acc5eb7764f4c295cb2f00b5a62d5fc1e1d0040c639886712ad4fece171739fbc0519b93c8bccac49f871a0e2f5ba97331be916aaae29b8cd646028629cc227b916d1d8b4729da3baffb0e39b533e039eb9f10073c156485902745ec60b8d281b2f84a8651fe4c533119bab8424bcecb28c067ffb1e03e05bcf9d6d44dfe0782e072934fc36e70b1acbf30387495618ac2729811aa6c2901b109b33a0010cfbe666fe9fcac86cc81023dda253863714e89c78265e219d00ba20b3c846368dd21816f699a6af20a290f075f4346b98ad40d69caaf2614856c0bdaa661907975679f5cb5afd3738ba811db58123922647476de50ccf17360393433b547bf0377b2115a7cd357699d043bd80981a2a28c638f7c2e725d85f9edd2fdcfea1f7e2bf02f9f0d4236c9d14c6d382dad99192125b219eea6a13b5685efcf34454d2a12537c5354dc5e34ecda968422cc472f0fec174b95cd298e89e7efbc164465dae45059a40e104b1a980ebc781848b0109ce9cec600b190a34dcf741dd6145d56c4ec27c983a7d6328130c122217bbbb33e2cffba1a352b6805dbd715772153b53051db7215f475ba8673b0dd59e2db414a658d3d262c5304d300b930921c7c0a9910eed96a705eea2c8657be193836a20f23fcbc8ef105ca25551626caf63c511d3c9dcffd9d485f27a63b6992e4b6fa26b02903a4da52fd7fa06397fe2883f9b6a4cac2ffb8ce1f476ec72bccaf0ec7b16e6f601e72f46e835d9bc2a82dccaa449728d22a7ff17772276f54073c66b184de0fa7f681823dcb7603a20aa94b76a9b7adb9f11f447b8764b2d719bea91ea32edbb4d340d18f18b3f53d1d07d0405facb202c30ac1ec145516e071cc71c59cc6205db061a8c19bb2d3ab463f6fea1c6d3b5a69d96e5b67ed569e1c04cff6c9f69ab9343e9a71bf6776d3b84b47de2ecf9a0d45515ef5a3b5c6d55f2c6543ef2bf0eb795219da3026ab06c9ba9bbdc30d5dc7c3782a9f58141a63f8d4683ad5c1d156c92c508cefd9702e9267263e34ff96800c425f768bd204466f4f9badabdfaf35e1a8096150e8afeea3a30586b89d1002f041612f8e81de4dcd268bf538307c4d28d1d2ae1af979f3b02017ebe942cdc8fa7964fe978254eb15fed7478e4200e381409486d37e0205c597b5ec19243ab547da051dee03f18e079af60dcb2095fe86f292a4b4bba8682ed8b220c0b48958882aaa7e93448bfecebfba6ca3ef28e0752080cbc9f752d6da814a9dc5bc552d9fe73b8a1df8eb0158df58810fce8719f11b04c4e157ac8ae3692f825a4569ff859273775c45eb999fff7a47ca461b2fda6edfe8ed8371ed29c4f7499448cfff0bc47ca1d8fc9eb35f79db389781c36e89541b686edc21f088463b2d26fd9b650eaf5ed1cda0f00040000000000009b0c527ba655252f77b77c2f4cc0f7741c52a57629fe511c5f9c17ee44fec35da363f5356343037b2705a393115062719e6bd87bbff2472a7833be6d2270fe5ff4cc9f0439a53adb91fe1520ff4841c120e80c99fcc2d0ee794fa8c91dc9c4227ef9f9ac784ce41abefa69b84acb285e385b74501ea137be765172d90738f201497cb7c992dcc2f17341c9b6a0ef3dcb14350669802e3295b5a133142df7bc5645bbf222d2da033ee4cc4f225f248ad88782945869c29943eb6498c87c2b125fb2d4067118c2b417308a1703fd9f48c48ee2a9c5af44df473e3b99b8a941fc4967060b4960864bc97e4f2bf53e7a5c2ec3d47e7bf8345b56a4df5f84d0523c1b6cf9399110e393474b3ece22c4923f531ff12242d5e2b293846a7ed06e3e7f062cb173431a2b680188fb46d2cb74d4a0d9dae59e2be485aabbb54c26406e6e77de3031e049bd8a49139fa62151716a665fb9f1966cf6c57f4185f7cffbbc43341f3b69a3ae0a4dcfd9b37f0035a69ac552830f0ca56069c8f69162280bced2ec30c6789f32cd38d7f97953f0989b65cf90f01206b20b0111a3d22f3d2f85104b03283f4fd7b80e53f20f1c91d5bf3b67aac25c4300b3191c1f5d7bb0fe112deac0f6acbea3b57c20c5d8f0bad48873a7e7347ead5a4d0b73041c86bdcd3b91d6cbe0ebb5824fb90cb4e74f439505074f236679c4ea4015fbdf0c44b4063b62cdced485cbca0eae2404da7158a974b7dc14c5207107d5424de14a35739f68f3f151c6de20d0ad19d06521baf26ab2cb7ff7e8f83d60a9f554367f99fa5c44910b886e1c9c2418a7a4b33f19fff9af4724c7c8251ffc24cc4464b8804b6704bc0572b23498ec92263d37bdb54490f3316087c5b192a20027ad6cf1a2c3fef8043e2847b8734fa8dc91ce992474796e3f71580841379279f8b10ab8e6766196fb5a9b2ff44cabece6930fb9f32e867047313410c13b11a8a788a29ad93a5b9ae1b960a46fd48fe5cdd7168815c67b267065453547cb60db74f37238b2f7f3c78abc249ffe118a1d3e7eb5cdd326ad0a07a50bd24a6be4b5e56fade7fb7c3b515b4d0b16884c9eee7ef9c82f2ea4d89113e950622cee8e63519a899da3ee83bcd369b01b373934bbed73d8f94e3312e72d82d3fb8b8e65b0f5580cffda633467fc3285023159c3ac7273a46275d874b87254df07ea15d0806f4b8312c4e95235cab31e015a3603906c188233db45dea658dcf694f5097a9e26aba8b58e248210fa5e12fa08cbbe0a01afa9b2c36d38d298dd180ee6e358d45397471bc064e2e8e51da189e98bf41cc30b50b0d937e8cbfc5b138dc66143716b27190689efebcaa5676c9eb370465f77803b219b0ee1f65f343d70b01435f9adc46979b121944e13a02cbdd47a9898b26d6cc5294a9358971bad37a6b01d8b2ee251e50b02acbd560bcd4a212124f308d87eca79d13c77b90510675989ffb70a9d5643df2db6067bd4e0fd21d0a40b84177279587777f763bb9e2fc99186402ff1905eb61b6ea3bef862beb10ede1fbca93f5b426f683bb72099ffc61c99d8a7527fe9167b13d786402864d2b4237fa47426f46b6d5e0911de793f73610b46de4e62b8a67aaed298a9a2d5b5c5b7936f8bcc62a8f9d64d8ff1470a386974b35f382f42ad1fb2c9de214b35aa0afcff7806d7601ab9142a0dade5c7a9e6b0c16027c4d0fc413ba5d16f0d4826b3f469afa6e5ce4a19e21d2a2c2c1e3055706d0ce371dee59a06e534887cf5e300bd118b7c5e8eee2a8fd4bf6ca96df566f49049bd25533c8ae08eb2334ba183529c041f3d9b45139173f3ee8b1b8f8633c9cb7caa735805d56b1e3119a97f3ce86ecd8f21256c0a5a54266cc00927c881ac18fef64f25704b3f01b4885a9c4053aec5bfe5be638563267548cacbad2a95c3c48e6a913bd87ec0c489c236214b650a17d27081ae8def0d27c0d6a25553601875192d11c9e3ef2a3273c1f9b079"}) (async)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) (async, rerun: 32)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 32)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000280)={0x81, 0x0, 0x1}) (async)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000040)=@x86={0x3, 0x15, 0x2, 0x0, 0x2, 0x2, 0x1e, 0xfe, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x34, '\x00', 0x40, 0x80000000})
dup(r7)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r10, 0xc008ae88, &(0x7f00000003c0)=ANY=[@ANYBLOB="0100000000000008924c9e01000000000000100000000000"])
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r11=>0x0], 0x1}) (async)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r4, 0xc01064c8, &(0x7f00000001c0)={0x9, 0x0, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0]})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000380)={0x0, 0x1, &(0x7f0000000200)=[r12], 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r11], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000040)}) (async)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040))
r13 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r14 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
ioctl$EVIOCGRAB(r14, 0x40044590, &(0x7f00000001c0)) (async, rerun: 32)
read(r13, &(0x7f0000000100)=""/159, 0xfffffe5a) (async, rerun: 32)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)

6m19.710988219s ago: executing program 3 (id=11123):
write$char_usb(0xffffffffffffffff, &(0x7f00000003c0)="e5f31934385267adb606dd8f8734bce07da028d55934a0", 0x17)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x8000, 0x5, 0x7, 0x1, 0x9, 0x3, 0xbf, 0xb8, 0x3, 0xf, 0x5, 0x6}, {0x804, 0x5, 0x1, 0x5, 0x7, 0x2, 0xff, 0x5, 0x9, 0x4, 0xb, 0x7f, 0x3}, {0x4, 0x6, 0x38, 0x6, 0x84, 0x7, 0x0, 0x50, 0x2, 0x70, 0x3, 0xa, 0x400000000006}], 0xffffffff})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0xa8002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000003000700020000000000"])
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r6, 0x40405514, &(0x7f0000000a80)={0x1, 0x0, 0x0, 0x0, 'syz0\x00'})
r7 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r7, 0x40405515, &(0x7f0000000440)={{0x1, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff3, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x8000000000000000, 0x4, 0x40, 0x20, 0x0, 0x0, 0x2004c9, 0x7000, 0x0, 0x800000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x5, 0x2], 0xffff1000})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
r9 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r10 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000640)=[<r11=>0x0], 0x0, 0x0, 0x0, 0x1})
r12 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x101100)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r12, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r13=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r12, 0xc06864a1, &(0x7f0000000440)={0x0, 0x0, r13, <r14=>0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r9, 0xc01864b0, &(0x7f0000000080)={r11, r14})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r9, 0xc01864b0, &(0x7f0000000180)={r13, r14, 0x1})
write$sndseq(r8, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r15 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$apparmor_current(r15, &(0x7f0000000040)=ANY=[@ANYBLOB='ngeprofile :'], 0x10)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)

6m19.130381362s ago: executing program 3 (id=11127):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xd72685a0)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000009f000040"])
read$FUSE(r1, 0x0, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
ioctl$BLKZEROOUT(r6, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

6m18.073932851s ago: executing program 3 (id=11133):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
write$dsp(r0, &(0x7f0000002000)='`', 0x88020)
r1 = dup(0xffffffffffffffff)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r5, 0xc06864b8, &(0x7f0000000000)={0x0, 0x40, 0x3f, 0x30315559, 0x0, [], [], [], [0x2]})
r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000200)={[{0x2b, 'blkio'}, {0x2d, 'freezer'}, {0x2b, 'io'}, {0x2d, 'rdma'}, {0x2b, 'freezer'}]}, 0x23)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f00000001c0)=@x86={0x1, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x8, 0x6, 0x2, 0x0, 0x6, 0x6, 0xe2, 0x1, 0x29, 0x0, '\x00', 0x10, 0x6})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r2, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r3, 0x0, 0x97, 0x8000000})
ioctl$IOMMU_VFIO_IOAS$GET(r2, 0x3b88, &(0x7f0000000080)={0xc, <r8=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000000c0)={0x28, 0x4, r8, 0x0, &(0x7f000098d000/0x1000)=nil, 0x1000, 0x3})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r3})
read(r6, &(0x7f0000000240)=""/161, 0xa1)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0) (async)
write$dsp(r0, &(0x7f0000002000)='`', 0x88020) (async)
dup(0xffffffffffffffff) (async)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc}) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0) (async)
ioctl$DRM_IOCTL_MODE_ADDFB2(r5, 0xc06864b8, &(0x7f0000000000)={0x0, 0x40, 0x3f, 0x30315559, 0x0, [], [], [], [0x2]}) (async)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
write$cgroup_subtree(r1, &(0x7f0000000200)={[{0x2b, 'blkio'}, {0x2d, 'freezer'}, {0x2b, 'io'}, {0x2d, 'rdma'}, {0x2b, 'freezer'}]}, 0x23) (async)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f00000001c0)=@x86={0x1, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x8, 0x6, 0x2, 0x0, 0x6, 0x6, 0xe2, 0x1, 0x29, 0x0, '\x00', 0x10, 0x6}) (async)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r2, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r3, 0x0, 0x97, 0x8000000}) (async)
ioctl$IOMMU_VFIO_IOAS$GET(r2, 0x3b88, &(0x7f0000000080)={0xc}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000000c0)={0x28, 0x4, r8, 0x0, &(0x7f000098d000/0x1000)=nil, 0x1000, 0x3}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r3}) (async)
read(r6, &(0x7f0000000240)=""/161, 0xa1) (async)

6m2.892259548s ago: executing program 35 (id=11133):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
write$dsp(r0, &(0x7f0000002000)='`', 0x88020)
r1 = dup(0xffffffffffffffff)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r5, 0xc06864b8, &(0x7f0000000000)={0x0, 0x40, 0x3f, 0x30315559, 0x0, [], [], [], [0x2]})
r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000200)={[{0x2b, 'blkio'}, {0x2d, 'freezer'}, {0x2b, 'io'}, {0x2d, 'rdma'}, {0x2b, 'freezer'}]}, 0x23)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f00000001c0)=@x86={0x1, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x8, 0x6, 0x2, 0x0, 0x6, 0x6, 0xe2, 0x1, 0x29, 0x0, '\x00', 0x10, 0x6})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r2, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r3, 0x0, 0x97, 0x8000000})
ioctl$IOMMU_VFIO_IOAS$GET(r2, 0x3b88, &(0x7f0000000080)={0xc, <r8=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000000c0)={0x28, 0x4, r8, 0x0, &(0x7f000098d000/0x1000)=nil, 0x1000, 0x3})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r3})
read(r6, &(0x7f0000000240)=""/161, 0xa1)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0) (async)
write$dsp(r0, &(0x7f0000002000)='`', 0x88020) (async)
dup(0xffffffffffffffff) (async)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc}) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0) (async)
ioctl$DRM_IOCTL_MODE_ADDFB2(r5, 0xc06864b8, &(0x7f0000000000)={0x0, 0x40, 0x3f, 0x30315559, 0x0, [], [], [], [0x2]}) (async)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
write$cgroup_subtree(r1, &(0x7f0000000200)={[{0x2b, 'blkio'}, {0x2d, 'freezer'}, {0x2b, 'io'}, {0x2d, 'rdma'}, {0x2b, 'freezer'}]}, 0x23) (async)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f00000001c0)=@x86={0x1, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x8, 0x6, 0x2, 0x0, 0x6, 0x6, 0xe2, 0x1, 0x29, 0x0, '\x00', 0x10, 0x6}) (async)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r2, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r3, 0x0, 0x97, 0x8000000}) (async)
ioctl$IOMMU_VFIO_IOAS$GET(r2, 0x3b88, &(0x7f0000000080)={0xc}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000000c0)={0x28, 0x4, r8, 0x0, &(0x7f000098d000/0x1000)=nil, 0x1000, 0x3}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r3, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r3}) (async)
read(r6, &(0x7f0000000240)=""/161, 0xa1) (async)

45.296329883s ago: executing program 4 (id=13701):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x1, 0x0)
r2 = syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205647, &(0x7f0000000000)={0x980000, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f907, 0x0, '\x00', @p_u8=0x0}})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000140)={{0x5, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]})
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r3, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

45.004825483s ago: executing program 4 (id=13703):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000000080)={0x1, 0x10, 0xfa00, {&(0x7f0000000000), r4}}, 0x18) (async)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x3, 0x0, 0x717e387b, 0x40, "1ae34e0626788a22b2fb12dab240794233a5bd", 0x4, 0x2})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000000)=0x15) (async)
ioctl$TCSETS(r5, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"}) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000000c0)=0xf9)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000001c0)=0x9) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000280)=0xb3) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000100)=0x9) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000180)=0x1)
r6 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x1}) (async)
r7 = syz_open_dev$loop(&(0x7f0000000000), 0x1, 0x4a00)
ioctl$BLKTRACETEARDOWN(r7, 0x1268, 0x0) (async)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
read$FUSE(r1, 0x0, 0x0) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async)
r8 = openat$cgroup_ro(r1, &(0x7f00000001c0)='cgroup.stat\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000240)={<r9=>0xffffffffffffffff}, 0x106, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r8, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000200), r9, 0x0, 0x1, 0x4}}, 0x20)

42.855876131s ago: executing program 4 (id=13713):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r0, 0x560f, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r1, 0x40101286, 0x0)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r3 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0xd)
r4 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r5 = dup(r4)
write$UHID_INPUT(r5, 0x0, 0x0)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r7, 0x0)
read$FUSE(r7, &(0x7f00000003c0)={0x2020, 0x0, <r8=>0x0}, 0x2020)
r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r11, 0x4008ae89, &(0x7f0000000180)={0x1, 0x0, [{0x9e, 0x0, 0x4}]})
ioctl$NS_GET_OWNER_UID(r2, 0xb704, &(0x7f00000001c0)=<r12=>0x0)
write$FUSE_ATTR(r5, &(0x7f0000000200)={0x78, 0xfffffffffffffff5, r8, {0x7a16, 0x80000000, 0x0, {0x3, 0xfb, 0xd, 0x1000, 0x6, 0x9, 0x9, 0x4, 0x6, 0x4000, 0x7, r12, 0xffffffffffffffff, 0x6}}}, 0x78)
ioctl$BLKZEROOUT(r7, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

42.533002638s ago: executing program 4 (id=13715):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000180)={0x1f, @time={0xe9, 0x8}, 0xfd, {}, 0x0, 0x2})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000002080)={0xf, {"a2e3ad21e08eeb661b5d370987f70e06d038e7ff7fc6e5539b0d650e8b089b3f353b6c090890e0878f0e1ac6e7049b3b46959b649a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07410936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c554336909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f6777478bc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15ffffffffffffffff1243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5dc29a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f6435f7590000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9a53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f423500c7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02da93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d0300000000000000b378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d678746383074c6bc1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b3c7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0da42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9cc8036cbd65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x1000}}, 0x1006)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"])
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000300)=0x2)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000180))
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000040)=0x2)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000240))
ioctl$VT_WAITACTIVE(r4, 0x5607)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000002c0)=0x7, 0xfffffd86)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x1)
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r1, 0x40101286, 0x0)
r8 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r8, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r8, 0x0, 0x0)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r10 = dup(r9)
ioctl$BLKZEROOUT(r10, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

39.607156177s ago: executing program 4 (id=13727):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f00000003c0))
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
write$ppp(r1, &(0x7f00000001c0)="b3ba072016a41e4e5a1a0a056b90cb923e8bc19299968b8ac26bce8525ebb783644ac31d2a3146b4d3b69a72251d430a1b64979e8775a8082336f9ae147180c9dadccd0b09dcbd2103866213ce463502ce8af894c091478e42a6a8de972548bf7aa1433a0343e4b07fda1d87bfba1ef24b1b329a890112bf6d3bab51a8f1cde72993b5c71c3d3e54a16df91d27493fe8653b73b43cfbdd91daa5b8dafebf4372ab0a", 0xa2)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

18.936263984s ago: executing program 4 (id=13730):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = syz_open_dev$loop(&(0x7f00000007c0), 0x0, 0xa280)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000840)={r3, 0x49, {0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x9, 0x0, 0x1, 0x1e, 0x0, "87796604080cf776445f30a0ea6496395672f7fb61b0e4e889106194067eb0de2c897623e66505b5d4ec293e64528b44e4a37b22969dc52f369c285392815fcd", "2510a4ac70d94e19946ee8c7845bc1ada2409a751949273a03ab4c9479f6893f662705155db5bbd604503d8dce2cf95a450b0e2fafec7921e1df1058d9bbdcc8", "527c1a7b81d981ac12166127d2d123462edc951352203a2f4aaa63ff9fbc57d5"}})
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff}, 0x13f}}, 0x2f)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @empty}, r5}}, 0x48)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000080), r5, 0x0, 0x1, 0x4}}, 0x20)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000001c0)={[0x9, 0xfffffffffffffffe, 0x994, 0x3, 0xf8a, 0xfffffffb, 0x3, 0x1, 0x7ff, 0x83, 0x4, 0x7, 0x3, 0x4, 0x80, 0x800], 0xdddd1000, 0x2000})

18.437061485s ago: executing program 5 (id=13847):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_INIT(r0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f0000000400))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sysvipc/sem\x00', 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, 0x930, 0x0, 0x11, r3, 0x0)
r4 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r4, &(0x7f0000000100)=""/159, 0xfffffe5a)
r5 = syz_open_dev$loop(&(0x7f00000007c0), 0x0, 0xa280)
r6 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x1c0002, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0xc)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000000840)={r7, 0x49, {0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x9, 0x0, 0x1, 0x1e, 0x0, "87796604080cf776445f30a0ea6496395672f7fb61b0e4e889106194067eb0de2c897623e66505b5d4ec293e64528b44e4a37b22969dc52f369c285392815fcd", "2510a4ac70d94e19946ee8c7845bc1ada2409a751949273a03ab4c9479f6893f662705155db5bbd604503d8dce2cf95a450b0e2fafec7921e1df1058d9bbdcc8", "527c1a7b81d981ac12166127d2d123462edc951352203a2f4aaa63ff9fbc57d5"}})
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0xb, 0x40090, r6, 0xe07c1000)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000005, 0x3032, 0xffffffffffffffff, 0x0)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r8, 0xc0a85320, &(0x7f00000000c0)={0x80})
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x200, 0x0, 'queue1\x00', 0xfffffffe})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r9, 0x40605346, &(0x7f0000000200)={0x0, 0x0, {0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x3}})
ioctl$BLKOPENZONE(r4, 0x40101286, 0x0)
r10 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r10, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r10, 0x0, 0x0)
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x802, 0x0)
r11 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r12 = dup(r11)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r12, 0x0)

17.991977222s ago: executing program 5 (id=13851):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000200)=ANY=[@ANYBLOB="020000000000000004000040"])
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x10000000000000cf, 0x0, [{}]})
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r4, 0x0, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r6 = dup(r5)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
close(r4)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r6, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

17.893136894s ago: executing program 7 (id=13852):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0)
write$vga_arbiter(r3, &(0x7f0000000000)=@unlock_all, 0xb)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x2, 0x5, 0x0, 0x4002004c4, 0x1000, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2], 0x8080000, 0x1144})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x8000, 0x210000}) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x8000, 0x210000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0x2f)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
r8 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
preadv(r8, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007) (async)
preadv(r8, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)

17.699431201s ago: executing program 7 (id=13853):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x65a})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
close(r2)
close(0x4)

17.435157863s ago: executing program 5 (id=13854):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000140)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r2, 0x7a5, &(0x7f0000000200))
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5)
ioctl$KVM_SET_CPUID2(r3, 0x4048aecb, &(0x7f00000000c0)=ANY=[@ANYBLOB="070000000000000007000000ffffffff"])
r4 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r4, 0x40405514, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x0, 'syz0\x00'})
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r4, 0x40405515, &(0x7f0000000140)={0x6, 0x0, 0x0, 0x0, 'syz1\x00'})
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r5, &(0x7f0000000100)=""/159, 0xfffffe5a)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r6, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

17.381158267s ago: executing program 7 (id=13855):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x3000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

17.133057156s ago: executing program 7 (id=13857):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x141202, 0x0)
write$vga_arbiter(r1, &(0x7f00000000c0)=@other={'lock', ' ', 'mem'}, 0x9)
write$vga_arbiter(r1, &(0x7f00000006c0)=@other={'unlock', ' ', 'none'}, 0xc)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800008604"])
ioctl$FBIOPUT_CON2FBMAP(r3, 0x4610, &(0x7f0000000000)={0x37, 0x1})

17.122742657s ago: executing program 5 (id=13858):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x0, 0xfe, 0x8, 0x3, 0x6, 0x20, 0x40, 0x1, 0x0, 0x8, 0x0, 0xfd, 0xc0, 0x40, 0x4, 0x3}})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x1, 0x3, 0x0, 0x5, 0x0, 0x0, 0x6b, 0x0, 0x80000001, 0x80000000000000, 0x0, 0x9, 0x0, 0x0, 0x0, 0xffff], 0x1, 0x345210}) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000000c0)={0x4, 0x102000}) (async)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
read(r0, &(0x7f0000000100)=""/154, 0x9a) (async)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000280)={0x5, 0x0, [{0x80000001, 0x80000000, 0x2, 0x10001, 0xffffff81, 0x1, 0x9}, {0x80000001, 0x7, 0x0, 0x6, 0xffa7, 0x1, 0x8001}, {0xb, 0x0, 0x4, 0x6, 0x8, 0xffffffff, 0x2}, {0x80000008, 0x8000000, 0x2, 0x7, 0x7, 0x2, 0x9}, {0xd, 0xa2, 0x2, 0x5, 0x0, 0x0, 0x5}]})

16.956930089s ago: executing program 7 (id=13859):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0) (async)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000140)) (async)
ioctl$PPPIOCNEWUNIT(r1, 0x4004743b, 0x0) (async)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000000)={0x0, 0x8, &(0x7f00000010c0)="f39561fc17b7f981"}) (async)
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000001280)={0x0, 0xec6, 0x0, {0x0, 0x6}, {0x100, 0x2}, @period={0x5b, 0x1, 0x2, 0x31c, 0x1, {0x8, 0x3ff, 0x3, 0x3}, 0x4, &(0x7f0000001240)=[0x8, 0x8, 0x4, 0x400]}}) (async)
write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x2250) (async)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000d00)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_UNMAP$ALL(r2, 0x3b86, &(0x7f0000000d40)={0x18, r3, 0x3})
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x5)
r5 = dup(r4)
ioctl$SIOCSIFHWADDR(r5, 0x8925, &(0x7f0000002640)={'team_slave_0\x00', @random="76f64c34b99d"})
r6 = openat$cgroup_ro(r5, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r6, &(0x7f0000000000), 0x2a979d) (async)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000000)=@usbdevfs_driver={0x5bd82297, 0x2, &(0x7f0000000080)="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"}) (async)
r7 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r7, 0x7dfff000)
ioctl$SCSI_IOCTL_PROBE_HOST(r6, 0x5385, &(0x7f0000001080)={0xab, ""/171}) (async)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x85, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcd6, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r10, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000000000001000000000000000000000000000000001b0300ff"]) (async)
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008504"])

16.730733842s ago: executing program 6 (id=13860):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = syz_open_dev$video4linux(&(0x7f0000000080), 0xff, 0x0)
ioctl$VIDIOC_EXPBUF(r1, 0xc038563b, &(0x7f00000000c0)={0x2})
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r0, 0x7dfff000)

16.639938541s ago: executing program 6 (id=13861):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18}, './file0\x00'})
read$FUSE(r1, &(0x7f00000003c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
r4 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
read$FUSE(r4, &(0x7f0000005e40)={0x2020, 0x0, <r5=>0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
write$FUSE_ATTR(r4, &(0x7f0000005340)={0x78, 0x0, r5, {0x2000000007, 0x400, 0x0, {0x6, 0xfffe000000000000, 0xfffffffffffffffb, 0xff, 0x694, 0x3, 0x7f, 0x9, 0x800, 0x2000, 0x2, r6, r7, 0xb, 0x8, 0x1000000}}}, 0x78)
read$FUSE(r1, &(0x7f0000002400)={0x2020, 0x0, 0x0, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r1, &(0x7f00000001c0)={0xa0, 0xffffffffffffffda, r3, {{0x3, 0x0, 0xcc, 0x6, 0x8, 0x2, {0x2, 0x8000000000000001, 0x9c06, 0x8001, 0x9, 0x1, 0x1ff, 0x4, 0x9, 0xc000, 0x401, r6, r8, 0x1, 0x6e0c}}, {0x0, 0x1}}}, 0xa0)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000004440)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x10000, 0x6bf, 0x8, 0x1, {0x40006, 0x2, 0x8, 0x4, 0x0, 0xfffffffffffffff7, 0x101, 0x0, 0xe, 0xb000, 0x10001, 0x0, r8, 0x1, 0x3}}, {0x0, 0x18}}}, 0xa0)
r9 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r10=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r9, &(0x7f0000000340)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0, r10, 0x0, 0x4}}, 0x20)
read$FUSE(r1, 0x0, 0x0)
r11 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x20200, 0x0)
read$sequencer(0xffffffffffffffff, &(0x7f0000004500)=""/194, 0xc2)
r12 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r12, 0x2285, &(0x7f0000000140)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0, 0x0})
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r15, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB='\t\x00'/14])
r16 = dup(r11)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f00000002c0)={[0x3, 0x0, 0xb1f, 0x8001000000000000, 0x4, 0xc5d5, 0x2, 0x468, 0x7, 0x401, 0x1, 0x7, 0x1ff, 0x7, 0x5705, 0x6], 0xdddd1000, 0x80})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r16, 0x0)
ioctl$BLKZEROOUT(r16, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

16.493144306s ago: executing program 7 (id=13862):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$nci(r0, 0x0, 0x0)
read(0xffffffffffffffff, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000040)={0x0, 0xf303, 0x10000})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000d00), 0x2, 0x0)
ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000d40)={0xa, @pix_mp={0x0, 0x0, 0x34565348, 0x0, 0x0, [{}, {}, {}, {}, {0x0, 0x5}]}})
ioctl$int_in(r1, 0x40000000af01, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x4c1, 0x0)
ioctl$TCSBRKP(r3, 0x5425, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, 0xfffffffffffffffe)
ioctl$BLKOPENZONE(0xffffffffffffffff, 0x40101286, &(0x7f0000000000)={0x4, 0x4})

16.493024784s ago: executing program 5 (id=13863):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000000)={0x6, 0x1, 0x8, 0x68d8, 0xff, 0x8001})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

16.327473826s ago: executing program 5 (id=13864):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x401c5820, &(0x7f0000000080)={'bridge_slave_1\x00', @remote})
r4 = dup(r2)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f000052f000/0x1000)=nil, 0x1000, 0x1000006, 0x10, r4, 0x83d71000)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

15.468207905s ago: executing program 6 (id=13865):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000080)=0x2)
ioctl$DRM_IOCTL_AGP_ENABLE(r1, 0x40086432, &(0x7f00000000c0)=0x75)
ioctl$RTC_AIE_ON(r1, 0x7001)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000100)=0x1)
ioctl$F2FS_IOC_DECOMPRESS_FILE(r1, 0xf517, 0x0)
ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f0000000140)=0x2010440)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0x7)
ioctl$PPPIOCSMRRU(r1, 0x4004743b, &(0x7f00000001c0)=0x9)
write$uinput_user_dev(r1, &(0x7f0000000200)={'syz1\x00', {0x1, 0x8, 0xc48, 0x4}, 0x46, [0x9, 0x7f, 0xb622f920, 0xfffffffc, 0x0, 0x8, 0x8, 0x1, 0x1, 0x1b, 0x3ff, 0x1, 0x8, 0x0, 0x6, 0x8, 0x2, 0x1ff, 0x80, 0x6, 0x100, 0x40, 0x6, 0x9, 0x180, 0x3, 0xffff, 0x81, 0x5, 0x0, 0xffffffff, 0x6, 0xf, 0x1, 0x0, 0xfffffffc, 0x3, 0x4, 0x583f, 0x1, 0xff, 0x6e, 0x2, 0x0, 0x5, 0x80000000, 0x3, 0xa, 0xf, 0x10, 0xffff, 0x6c, 0x1, 0x10, 0x2, 0x8, 0x129, 0x9, 0x10, 0x3, 0x9, 0xfffffffb, 0x10, 0x7], [0x7a, 0x1ff, 0x80000000, 0x401, 0x7, 0x9, 0x48, 0x9, 0xffff, 0xde9, 0xaf, 0x4, 0x2, 0x230, 0x4, 0x380, 0x86, 0x8, 0x1, 0x10001, 0xcb, 0x200, 0x0, 0x8, 0x2, 0x6, 0x6, 0x6, 0xff, 0xfffffe00, 0x8, 0xffffffff, 0xb, 0x10, 0x7fff, 0x0, 0x1ff, 0x0, 0xfffffff7, 0xa43, 0x4, 0x3, 0x80000001, 0x4b4b, 0x0, 0x7f, 0x1ff, 0xe, 0xffffffff, 0x5, 0xffffffff, 0x10, 0x4, 0x2, 0x400, 0x7, 0x7fff, 0x80000000, 0x6, 0x9, 0xa1a, 0x2, 0x2, 0x6], [0xe52f, 0x3, 0xfffffff7, 0x8, 0x1, 0x7, 0x9, 0x6, 0x7, 0x7, 0x6, 0x0, 0x6, 0x101, 0x2b, 0x80000001, 0x4, 0x9, 0x3, 0xffffff01, 0xb20, 0x200, 0xfffffff8, 0x0, 0x1, 0xe, 0xffffffff, 0x5, 0x8, 0x9, 0x9, 0x5, 0xa, 0x1ff, 0x8, 0x3, 0x3, 0x2, 0x949e, 0x2, 0xfff, 0x0, 0x4, 0x0, 0x1, 0x0, 0x5, 0x800, 0x977, 0x7, 0x100, 0x8, 0x2, 0xc, 0x6, 0x6, 0x7, 0x3, 0x4, 0x3, 0x2, 0xffffff21, 0x672, 0x9], [0x80000000, 0x0, 0x518edfcb, 0x7, 0x101, 0x1, 0x2, 0x6, 0xffff, 0x2, 0xb, 0x0, 0x8, 0x8, 0xfffffff9, 0x3, 0x400, 0x5f, 0x9e7c, 0xf, 0x2, 0x2, 0x0, 0x400, 0x1000, 0x0, 0x4, 0x5, 0x9, 0x1, 0x6, 0x3, 0x6f, 0x1, 0x6, 0x1, 0x3, 0x8, 0x2, 0x2, 0x6c54, 0x8, 0x40, 0xc, 0x5e7, 0x7f, 0x37d8, 0x4, 0x78e, 0x9, 0xb, 0x0, 0x5, 0x4, 0x4, 0x2, 0x80, 0xfffff000, 0x1, 0x8, 0x2, 0xab6, 0x7fff, 0xfffffff1]}, 0x45c)
ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000006c0)={0x3, r1})
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x19)
ioctl$FS_IOC_GETFSSYSFSPATH(r0, 0x80811501, &(0x7f0000000740)={0x80})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000800)=[@dead_binder_done, @acquire], 0x1000, 0x0, &(0x7f0000000840)="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"})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r1, 0x3b87, &(0x7f0000001880)={0x18})
ioctl$IOMMU_VFIO_IOAS$CLEAR(r1, 0x3b88, &(0x7f00000018c0)={0xc})
ioctl$IOMMU_VFIO_SET_IOMMU(r1, 0x3b66, 0x1)
ioctl$IOMMU_VFIO_IOAS$GET(r1, 0x3b88, &(0x7f0000001900)={0xc, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r1, 0x3ba0, &(0x7f0000001940)={0x48, 0x2, r4})
ioctl$F2FS_IOC_GET_COMPRESS_OPTION(r1, 0x8002f515, &(0x7f00000019c0))
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000001a00)={{0x1, 0x1, 0x18, <r5=>r1, {0x8, 0x4}}, './file0\x00'})
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001a40), 0x8403, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000001a80)={0x2020, 0x0, <r7=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000003ac0)={{0x1, 0x1, 0x18, r1, {0xffffffffffffffff, <r8=>0xee01}}, './file0\x00'})
write$FUSE_STATX(r6, &(0x7f0000003b00)={0x130, 0xfffffffffffffff5, r7, {0x9, 0x8, 0x0, '\x00', {0x0, 0x80000000, 0x8, 0x9, 0x0, r8, 0x2000, '\x00', 0x5, 0xdfe, 0x0, 0x0, {0x6, 0x5}, {0x4, 0x8}, {0x401, 0x7}, {0x44bb, 0x7}, 0x80000000, 0x2, 0x0, 0xfffffffc}}}, 0x130)
pwritev(r5, &(0x7f0000006100)=[{&(0x7f0000003c40)="e58d590316fa4bde74a12590e33b1a3a32f1726d7e2295edf627ac71bba29ae6ff6bdd820e7e894190c33c2f64782a3fd734ea05b845f856bf2d1a9e6e1144c06ec9e04d63f92a88079af7e9c58b192b2bcefab2f1f7143bd46520c67986165b05f0bb", 0x63}, {&(0x7f0000003cc0)="f79c3359a722de1c891678db1a1cbfd428f255d7bd9628ed35bdb6597da1a928a5c3a2b85ae8403adaa8d857e29e7ca9f1427a505be3e394a9b3ed17274ef852ea200367084b05f45b1e52ed0247ff13693d1202b94dda9aa7cf681e375a418b7f6314cedb7109d3a152a36920ac52028addf30ae460779a7f80095c880c5cf8802f5809a67584f63ec689331eaf1ec635402d213b7a9108a5eb45700468431ad5f1521b8c50e6bc9865c8cbaa0f1dfaa58446c3ecdc586ecc5e44f631b22eccc0ce4c8cc903eeca42635fcac5bdaaedbe666a", 0xd3}, {&(0x7f0000003dc0)="307601ffa3bf9069601eca1a94b41f1de53091452f7fddb696a80ab0f37dd29b41be895a92baf4cadab360e5c08a2b5be4032e5df6a8a0355d39e2e5ead228cdd52eceec3030d85e74951e04a385a9b78db740ad9571e39e0dd6ecd97c0bb842eeae615e8b8f5e1c46435655fa3c462480521fa1cb4eae13d614b5c84cbd3c7c276160b388713588c17e3367784adb56e906fdd6707736c933e1e3123d7883890f12bb7cf88e5f0a9514747fbc7888e798f6cdde0eac8f8bfe0599a4f400f0511617a9a36a686c900a992905294c448e7ce6295a7026b24e09", 0xd9}, {&(0x7f0000003ec0)="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", 0x1000}, {&(0x7f0000004ec0)="0b4b4b7403d946a5361fe43a06d2c213d3c8b60a38453c6495b84f25864e4700c8237386dcff9c4004163e10442ae39af299c6041b3e38cb85078b1eabd850724378f9b1722d78971d5eaf2e1cc6f8af4135ebd3dc6dd587b6ae56c7ecaaeb1fb026a0ad70f6f3cd358f52b27155fd6d6ed2d8a3b661507e386b6814c824750e2efb02adc3fd89ed6bee1ca5f3dbad", 0x8f}, {&(0x7f0000004f80)="a9", 0x1}, {&(0x7f0000004fc0)="d3b99d75a848c51b6bb69989c7cd58576fad5389459ab2c9751bc9896abd4753267df67b4d35", 0x26}, {&(0x7f0000005000)="ea6ca0c2ad0016592462a840f236e7aa9faddd788963afc6ed1bb6c5baef0c86de9f96dbffb5a801939079af3f4d3476386ea391c84d96e7b746f6b5ed8e53bca04dccbdf8257e7a47ab27017d9842808ad49a74a02b8922f0fc4a4b139929999b1e43e55ad7b1a87c43ec8d5eb996cf123e4ae262261a40cd64e73a96f72d9229ebb24f52bc6a00e4fabea9f8e340fe7a98f5b69f1b5fbdf1321475854ba9bca8ccd1340ec48a9028d877afa769dc53ae2fe1a6f22b953903eeb351478b54d43d92d16fe79fe59b49441fae0e9af5e25285a990088553e86566d185009f417c3c4177d5c07b8f05b836e8a44b7ac073a407", 0xf2}, {&(0x7f0000005100)="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", 0x1000}], 0x9, 0x989c, 0x5)

15.352994991s ago: executing program 6 (id=13866):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x5, 0x20002)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000040)="2bc01c84257ac19aea463975c32519eae296c26cce4f8b162e5c589629c24a66a748944b0258f5f568da47bf2c967c2ddca71f57e2ab03ba17a197ba67d88c27386ede8cc5c4114d2dc6be9006d0b6263ab61d5f8c91e3d4feb43fc366601512fc444431b0821135c94edcaf01c22e040d19b9f1baeeda7d69da9fb4389a13f6e234c776176f1b17507ae8acbc46f41b00dd69850126822f99fa7ef07de08a35010b3895cb59b4e2aaf78e0a34ae5d1562a5359d43d07da04ba9c892a8572f147fadd86a1084c83ae1fa1dda5511f7bdff6f917aa338896aff2cf76986bd2e4e2c57198576a3f35ec5df93eb9485d9a5048fe1b320ded373b5cb2fdb4966dba5")
r1 = dup2(r0, r0)
mmap$usbfs(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x3000009, 0x40010, r1, 0x7fffffff)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000140)={0x1, [0x5]})
ioctl$BLKRASET(r1, 0x1262, &(0x7f0000000180)=0x8)
r2 = syz_open_dev$evdev(&(0x7f00000001c0), 0x3, 0x10840)
ioctl$EVIOCGID(r2, 0x80084502, &(0x7f0000000200)=""/2)
write$char_usb(r1, &(0x7f0000000240)="d86e59dbcc9c0d9a8ed78eeecfc00a114878379ff4d9c9d67da32cb88a2ca8ff10ef27c47b447ede8c82c4713180a6edb2f90b250e908159ea7ff9658f09e90fc9bbc9147434d5cc7b20672afcf37041932c15a2ec3ac127267f6d4e79617657287eda47f822184e2429be95a528f2af9e2a24586e3a7e59bcde443737f31c414865ca283ea488bdfd8241a129f33fd6fdcdfc5d95eb5c3ba2a352e1fa16191374da3a0a079efd543547a57d320ce565f552480d27", 0xb5)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000300)={0x10000, 0x0, 0xeeef0000, 0x2000, &(0x7f0000003000/0x2000)=nil})
ioctl$SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000340)={'nr0\x00'})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000380)={0xeeee8000, 0xeeee0000, 0x3, 0x1, 0x1})
r4 = syz_open_dev$evdev(&(0x7f00000003c0), 0xed, 0x109101)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x882, 0x0)
ioctl$USBDEVFS_SETINTERFACE(0xffffffffffffffff, 0x80085504, &(0x7f0000000440)={0x9, 0x9})
write$UHID_CREATE2(r1, &(0x7f0000000480)={0xb, {'syz1\x00', 'syz1\x00', 'syz1\x00', 0x3, 0x1791, 0x81, 0x8, 0x6, 0x86, "21f6bf"}}, 0x11b)
r5 = openat$full(0xffffffffffffff9c, &(0x7f00000005c0), 0x7805a3c19b1e45db, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, &(0x7f0000000600)={0x3, 0x4})
ioctl$FS_IOC_GETFLAGS(r4, 0x80086601, &(0x7f0000000640))
ioctl$PIO_UNISCRNMAP(r1, 0x4b6a, &(0x7f0000000680)="9f26ef2cbaa6f62585783256085c88c559433c6b7b3ad87c34ff880560838c244add3820dc05be9e64806f2a39d7cc0cb3f1044efb167a79cc3058f0c55cca3e43ae79078d43aa0da4899ed67da98535d97842fc74d55dd231c7753113297484e146fe6b822194c8281f66b9f20cdc6321f4b6b1ebb981745f21b67691dce05c2dd62ee3d9ade868cd91fc865a93c282e0dfce4424bbe9a0e8318a")
ioctl$NS_GET_PARENT(r5, 0xb702, 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000740), 0x5b1901, 0x0)
ioctl$PPPIOCSCOMPRESS(r6, 0x4010744d)
r7 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f0000000800)={0x0, 0x0, <r8=>0x0, 0x0, 0x0, 0x4, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000840)={r8, 0x7, 0x8d46, 0x3, 0x1, [], [0x8, 0xe8, 0xe, 0x1], [0x0, 0xff, 0x1, 0xdec4], [0x0, 0xa, 0xb, 0x8000000000000001]})
pwritev(r6, &(0x7f0000000a40)=[{&(0x7f00000008c0)="1fdb54951eee64ba32326507fef348177ab928f1bfd45a947b72f76d2260d51d0f928e23a8245c9b476db9b46c291328a91fc81c4a1d25143f804c4985f041362c8356eebef0b2ba121d80cac4682efb5830488da145262c2129c43e0aa3a837528ea98b0d6e25f6a6aa98d3a58cd4709c103a6bd15aa0d6573cc96794531d91a8012d662811f210fe47df6e51edd7a87b4d9dda6bea9ca7213624e7ab70a86d4379b2ceb67dd155268ca951318670e13f87b6ef6cc5e1a949dcf9fa2b938a801243f44541262ac890d002764edecadb5a90a30e948996564e383b97c2", 0xdd}, {&(0x7f00000009c0)="32ab59fc6ca938501b2c663a38f335992588c2403f3f6f716ad56ca62ec2eb039638de71398cd4a80ae7ebcbbc08521faa5033455b7ab8a3fde1ac6c95429d56bb", 0x41}], 0x2, 0x2e, 0xfff)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)

15.339715658s ago: executing program 6 (id=13867):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x86000, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000700), 0x28800)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r3, 0x404c534a, &(0x7f0000000740)={0x0, 0x7ff, 0x6})
close(0x5)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000040)={0xa1b, "c7080000000000000009a0721972dd40cb00000000000800"})
r4 = syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)={0x98f903, 0xd, '\x00', @ptr=0x7fffffffffffffff}})
close(r2)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x86000, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082) (async)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) (async)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000700), 0x28800) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r3, 0x404c534a, &(0x7f0000000740)={0x0, 0x7ff, 0x6}) (async)
close(0x5) (async)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000040)={0xa1b, "c7080000000000000009a0721972dd40cb00000000000800"}) (async)
syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2) (async)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)={0x98f903, 0xd, '\x00', @ptr=0x7fffffffffffffff}}) (async)
close(r2) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000) (async)

15.09165109s ago: executing program 6 (id=13868):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r2, 0x80204705, 0x20000000)
read$FUSE(r1, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000001580)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000001540)={<r5=>0xffffffffffffffff}, 0x2, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f00000019c0)={0x14, 0x88, 0xfa00, {r5, 0x1c, 0x0, @in6={0xa, 0x4e24, 0x40ad6ed0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}}}, 0x90)
r6 = dup(r3)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_open_dev$video(&(0x7f00000010c0), 0x8, 0x0)
ioctl$VIDIOC_CROPCAP(r10, 0xc02c563a, &(0x7f00000000c0)={0xa, {0xffffffff, 0x1e7, 0x1000, 0x16}, {0x7, 0x6, 0x9, 0x1}, {0xfffffdfd, 0x3}})
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r11, 0xc040aed5, &(0x7f0000000240)={0x0, 0x107000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r6, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

1.053140217s ago: executing program 36 (id=13864):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x401c5820, &(0x7f0000000080)={'bridge_slave_1\x00', @remote})
r4 = dup(r2)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f000052f000/0x1000)=nil, 0x1000, 0x1000006, 0x10, r4, 0x83d71000)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

1.008732665s ago: executing program 37 (id=13862):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$nci(r0, 0x0, 0x0)
read(0xffffffffffffffff, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000040)={0x0, 0xf303, 0x10000})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000d00), 0x2, 0x0)
ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000d40)={0xa, @pix_mp={0x0, 0x0, 0x34565348, 0x0, 0x0, [{}, {}, {}, {}, {0x0, 0x5}]}})
ioctl$int_in(r1, 0x40000000af01, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x4c1, 0x0)
ioctl$TCSBRKP(r3, 0x5425, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, 0xfffffffffffffffe)
ioctl$BLKOPENZONE(0xffffffffffffffff, 0x40101286, &(0x7f0000000000)={0x4, 0x4})

0s ago: executing program 38 (id=13868):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r2, 0x80204705, 0x20000000)
read$FUSE(r1, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000001580)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000001540)={<r5=>0xffffffffffffffff}, 0x2, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f00000019c0)={0x14, 0x88, 0xfa00, {r5, 0x1c, 0x0, @in6={0xa, 0x4e24, 0x40ad6ed0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}}}, 0x90)
r6 = dup(r3)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_open_dev$video(&(0x7f00000010c0), 0x8, 0x0)
ioctl$VIDIOC_CROPCAP(r10, 0xc02c563a, &(0x7f00000000c0)={0xa, {0xffffffff, 0x1e7, 0x1000, 0x16}, {0x7, 0x6, 0x9, 0x1}, {0xfffffdfd, 0x3}})
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r11, 0xc040aed5, &(0x7f0000000240)={0x0, 0x107000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r6, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r6, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

kernel console output (not intermixed with test programs):

412.859283][T10967] Sensor A: Horizontal Flip: true
[ 1412.868441][T10967] Sensor A: Brightness: 255
[ 1412.877637][T10967] Sensor A: Contrast: 128
[ 1412.898607][T10967] Sensor A: Hue: 3
[ 1412.910341][T10967] Sensor A: Saturation: 0
[ 1412.920649][T10967] Sensor A: ==================  END STATUS  ==================
[ 1414.376969][T11011] input: syz1 as /devices/virtual/input/input366
[ 1414.880160][T11039] kvm: user requested TSC rate below hardware speed
[ 1416.199019][T11110] ALSA: mixer_oss: invalid index 100000
[ 1416.216452][T11097] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1416.340396][T11106] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1417.527661][T11186] random: crng reseeded on system resumption
[ 1419.658038][T11251] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1420.684653][T11287] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1422.979266][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1422.986756][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1422.996207][    C1] sd 0:0:1:0: [sda] tag#1360 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 1423.006681][    C1] sd 0:0:1:0: [sda] tag#1360 CDB: Read(6) 08 00 00 00 85 f0
[ 1423.545683][T11420] syz.5.10877: attempt to access beyond end of device
[ 1423.545683][T11420] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1424.044143][T11447] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1425.850086][T11498] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1425.863739][   T36] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1425.907234][   T30] audit: type=1400 audit(1750396802.120:53): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A21D01A0B978D2F2F262D2A83D1 pid=11497 comm="syz.6.10892"
[ 1425.948748][   T30] audit: type=1400 audit(1750396802.140:54): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name="/dev/kvm" pid=11497 comm="syz.6.10892"
[ 1426.631443][T11527] binder: 11526:11527 ioctl 40046205 0 returned -22
[ 1427.852874][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1429.308143][T11742] program syz.5.10914 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1429.348409][T11742] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1430.245774][T11782] usb usb1: check_ctrlrecip: process 11782 (syz.4.10926) requesting ep 01 but needs 81
[ 1430.261428][T11782] usb usb1: usbfs: process 11782 (syz.4.10926) did not claim interface 0 before use
[ 1430.392074][T11784] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1431.891445][T11836] misc userio: The device must be registered before sending interrupts
[ 1431.900628][T11836] misc userio: No port type given on /dev/userio
[ 1432.099457][T11841] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1435.032688][T11993] sp0: Synchronizing with TNC
[ 1437.874787][T12155] syz.6.10993: attempt to access beyond end of device
[ 1437.874787][T12155] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1438.553851][T12195] vivid-000: disconnect
[ 1438.585552][T12195] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1439.006366][T12194] vivid-000: reconnect
[ 1439.025501][T12219] dlm: no local IP address has been set
[ 1439.034548][T12219] dlm: cannot start dlm midcomms -107
[ 1439.218848][T12226] input: syz1 as /devices/virtual/input/input371
[ 1439.825160][T12257] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1439.846083][T12257] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1439.855265][T12257] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1440.018508][T12277] binder: 12276:12277 ioctl c00c620f 0 returned -14
[ 1440.272189][T12294] CUSE: DEVNAME unspecified
[ 1440.351416][T12298] kvm_intel: kvm [12295]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xff
[ 1440.441713][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.461982][T12305] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1440.479992][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.507832][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.517049][T12305] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1440.542342][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.571859][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.606551][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.629268][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.645216][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.660065][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.679381][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.701169][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.708847][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.716522][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.724811][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.732245][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.741895][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.749539][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.758778][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.766402][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.776088][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.784382][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.791783][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.802157][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.827128][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.836096][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.843819][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.851376][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.859022][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.876912][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.905389][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.931158][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.957831][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1440.969277][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.000932][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.008994][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.041479][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.055814][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.071561][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.087019][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.105012][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.120847][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.157617][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.172060][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.184222][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.191745][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.209723][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.222783][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.240416][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.250526][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.268339][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.278465][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.293693][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.305715][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.323009][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.343213][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.361703][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.372100][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.381197][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.393988][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.401530][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.414921][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.422396][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.431509][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.441340][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.458816][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.466524][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.474221][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.481722][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.490943][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.498692][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.525287][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.542781][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.560413][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.571111][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.580494][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.590936][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.599129][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.607386][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.618240][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.648473][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.662800][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.671750][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.680098][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.697852][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.705525][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.717528][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.726470][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.738392][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.746971][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.758200][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.766088][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.782459][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.790212][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.798060][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.806752][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.814897][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.822402][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.830323][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.838131][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.846329][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.855970][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.863746][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.871317][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.879095][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.887069][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.894743][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.902303][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.910048][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.918089][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.942786][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.956216][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.969696][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.979400][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.986968][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1441.994622][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.002689][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.010871][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.024841][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.032477][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.041020][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.048842][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.056649][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.092781][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.110346][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.122945][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.140502][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.147980][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.162769][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.180341][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.197916][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.215512][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.242928][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.250379][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.262780][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.280346][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.292775][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.303018][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.320618][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.328072][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.346651][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.359569][   T43] hid-generic 0009:00D0:0003.0015: unknown main item tag 0x0
[ 1442.379083][   T43] hid-generic 0009:00D0:0003.0015: hidraw0: <UNKNOWN> HID v100.00 Device [syz0] on syz0
[ 1442.509601][T12355] fido_id[12355]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1443.189424][T12389] random: crng reseeded on system resumption
[ 1443.936980][T12415] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1445.015236][T12462] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1445.929308][T12495] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1445.936891][T12495] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1445.962119][T12490] loop6: detected capacity change from 0 to 4
[ 1446.144906][T12515] vivid-000: disconnect
[ 1447.086065][T12512] vivid-000: reconnect
[ 1448.192630][T12588] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1448.913875][T12615] syz.6.11090: attempt to access beyond end of device
[ 1448.913875][T12615] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1450.269858][T12680] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1450.419066][T12694] CUSE: info not properly terminated
[ 1452.651046][   T30] audit: type=1400 audit(1750396828.860:55): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=12761 comm="syz.3.11123"
[ 1453.899131][T12811] block device autoloading is deprecated and will be removed.
[ 1453.926134][T12811] syz.6.11130: attempt to access beyond end of device
[ 1453.926134][T12811] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1454.261173][T12833] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1454.736945][T12852] Invalid logical block size (2)
[ 1455.333356][   T30] audit: type=1400 audit(1750396831.540:56): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=12882 comm="syz.6.11143"
[ 1455.970065][T12896] dlm: non-version read from control device 2
[ 1456.006140][T12896] dlm: non-version read from control device 159
[ 1457.029805][T12951] mkiss: ax0: crc mode is auto.
[ 1458.482893][T13010] input: syz1 as /devices/virtual/input/input377
[ 1460.025648][T13060] loop6: detected capacity change from 0 to 63
[ 1460.043818][T32335] buffer_io_error: 28 callbacks suppressed
[ 1460.043834][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.068262][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.076511][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.085218][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.093780][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.101807][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.110229][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.118639][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.130557][T32335] ldm_validate_partition_table(): Disk read failed.
[ 1460.137557][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.145731][T32335] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1460.153880][T32335] Dev loop6: unable to read RDB block 0
[ 1460.159693][T32335]  loop6: unable to read partition table
[ 1460.167151][T13060] ldm_validate_partition_table(): Disk read failed.
[ 1460.174753][T13060] Dev loop6: unable to read RDB block 0
[ 1460.182436][T13060]  loop6: unable to read partition table
[ 1460.197302][T13060] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[ 1460.254923][T13074] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1460.284558][T13074] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1460.319904][T13067] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[ 1460.336087][ T5208] ldm_validate_partition_table(): Disk read failed.
[ 1460.353736][ T5208] Dev loop6: unable to read RDB block 0
[ 1460.359734][ T5208]  loop6: unable to read partition table
[ 1460.378818][T13092] PM: Enabling pm_trace changes system date and time during resume.
[ 1460.378818][T13092] PM: Correct system time has to be restored manually after resume.
[ 1461.558509][T13130] input: syz1 as /devices/virtual/input/input379
[ 1462.074482][T13148] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1464.094599][T13230] misc userio: The device must be registered before sending interrupts
[ 1465.843666][T13303] sp0: Synchronizing with TNC
[ 1468.533612][T13402] vivid-002: disconnect
[ 1468.539485][T13402] binder: 13400:13402 ioctl c0306201 200000000640 returned -22
[ 1468.639837][T13408] binder: 13404:13408 ioctl 50009403 200000000200 returned -22
[ 1469.392139][T13400] vivid-002: reconnect
[ 1469.832800][T18283] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1469.841534][T18283] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1469.853931][T18283] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1469.861932][T18283] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1469.870361][T18283] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1469.937438][ T1892] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1469.947602][ T1892] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1469.963144][ T1892] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1469.978032][ T1892] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1469.999120][ T1892] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1470.110457][   T36] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1470.320933][T18283] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1470.329899][T18283] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1470.340167][T18283] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1470.350528][T18283] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1470.359658][T18283] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1470.745345][   T36] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1471.314518][   T36] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1471.509087][T13593] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1471.729957][   T36] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1472.096072][T18283] Bluetooth: hci3: command tx timeout
[ 1472.099160][T13674] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1472.414413][T18283] Bluetooth: hci1: command tx timeout
[ 1472.485200][   T36] bridge_slave_1: left allmulticast mode
[ 1472.501088][   T36] bridge_slave_1: left promiscuous mode
[ 1472.523064][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1472.708143][T13833] binder: 13832:13833 ioctl c0306201 200000000200 returned -11
[ 1472.725241][   T36] bridge_slave_0: left allmulticast mode
[ 1472.736931][   T36] bridge_slave_0: left promiscuous mode
[ 1472.751188][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1473.171414][T13864] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1473.516642][T13888] binder: 13885:13888 ioctl c00c620f 0 returned -14
[ 1473.660665][T13891] Scaler: =================  START STATUS  =================
[ 1473.672782][T13891] Scaler: ==================  END STATUS  ==================
[ 1474.176716][T18283] Bluetooth: hci3: command tx timeout
[ 1474.493029][ T1892] Bluetooth: hci1: command tx timeout
[ 1474.794261][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1474.883200][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1474.935040][   T36] bond0 (unregistering): Released all slaves
[ 1475.026896][T13530] chnl_net:caif_netlink_parms(): no params data found
[ 1475.039285][T13568] chnl_net:caif_netlink_parms(): no params data found
[ 1475.356752][T13944] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1476.072564][T14021] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1476.215700][T13530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1476.242925][T13530] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1476.250172][T13530] bridge_slave_0: entered allmulticast mode
[ 1476.269912][ T1892] Bluetooth: hci3: command tx timeout
[ 1476.281915][T13530] bridge_slave_0: entered promiscuous mode
[ 1476.454004][T13530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1476.461186][T13530] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1476.473010][T13530] bridge_slave_1: entered allmulticast mode
[ 1476.481205][T13530] bridge_slave_1: entered promiscuous mode
[ 1476.582746][ T1892] Bluetooth: hci1: command tx timeout
[ 1477.233280][T14046] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1477.239234][T14046] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 1477.283092][   T36] hsr_slave_0: left promiscuous mode
[ 1477.333902][   T36] hsr_slave_1: left promiscuous mode
[ 1477.340012][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1477.350198][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1477.390496][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1477.390526][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1477.424391][T14046] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1477.436155][T14046] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[ 1477.497561][   T36] veth1_macvtap: left promiscuous mode
[ 1477.503897][   T36] veth0_macvtap: left promiscuous mode
[ 1477.509615][   T36] veth1_vlan: left promiscuous mode
[ 1477.515081][   T36] veth0_vlan: left promiscuous mode
[ 1478.149420][T14166] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1478.168989][T14166] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1478.188659][T14166] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1478.880346][ T1169] Bluetooth: hci4: Frame reassembly failed (-90)
[ 1478.887156][T14184] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1480.225026][   T36] team0 (unregistering): Port device team_slave_1 removed
[ 1480.424478][   T36] team0 (unregistering): Port device team_slave_0 removed
[ 1480.893118][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1480.899776][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1481.147288][T14196] iommufd_mock iommufd_mock3: Adding to iommu group 3
[ 1482.218963][T14216] iommufd_mock iommufd_mock3: Adding to iommu group 3
[ 1482.275348][T14223] ALSA: seq fatal error: cannot create timer (-22)
[ 1482.324731][T14226] vivid-004: =================  START STATUS  =================
[ 1482.332402][T14226] vivid-004: Radio HW Seek Mode: Bounded
[ 1482.338826][T14226] vivid-004: Radio Programmable HW Seek: false
[ 1482.349858][T14226] vivid-004: RDS Rx I/O Mode: Block I/O
[ 1482.355528][T14226] vivid-004: Generate RBDS Instead of RDS: false
[ 1482.361892][T14226] vivid-004: RDS Reception: true
[ 1482.367213][T14226] vivid-004: RDS Program Type: 0 inactive
[ 1482.374138][T14226] vivid-004: RDS PS Name:  inactive
[ 1482.379403][T14226] vivid-004: RDS Radio Text:  inactive
[ 1482.385135][T14226] vivid-004: RDS Traffic Announcement: false inactive
[ 1482.391959][T14226] vivid-004: RDS Traffic Program: false inactive
[ 1482.398625][T14226] vivid-004: RDS Music: false inactive
[ 1482.404692][T14226] vivid-004: ==================  END STATUS  ==================
[ 1482.995361][T13568] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1483.002588][T13568] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1483.022931][T13568] bridge_slave_0: entered allmulticast mode
[ 1483.034736][T13568] bridge_slave_0: entered promiscuous mode
[ 1483.050098][T13568] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1483.057361][T13568] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1483.067570][T13568] bridge_slave_1: entered allmulticast mode
[ 1483.075300][T13568] bridge_slave_1: entered promiscuous mode
[ 1483.091732][T13530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1483.453315][T13530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1483.575358][T13568] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1483.681331][T13530] team0: Port device team_slave_0 added
[ 1483.695957][T13530] team0: Port device team_slave_1 added
[ 1483.699069][T13568] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1483.905415][T13530] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1483.905433][T13530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1483.905473][T13530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1483.907413][T13530] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1483.907426][T13530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1483.907463][T13530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1484.026649][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1484.172277][T13568] team0: Port device team_slave_0 added
[ 1484.421086][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.442317][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.465681][T13568] team0: Port device team_slave_1 added
[ 1484.817736][T14431] binder: 14416:14431 ioctl c0306201 200000000300 returned -22
[ 1484.854457][T14431] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1485.107150][T13530] hsr_slave_0: entered promiscuous mode
[ 1485.121273][T13530] hsr_slave_1: entered promiscuous mode
[ 1485.139425][T13530] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1485.176974][T13530] Cannot create hsr debugfs directory
[ 1485.186746][T13568] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1485.206903][T13568] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.250301][T13568] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1485.450898][T13568] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1485.461493][T13568] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.510266][T13568] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1486.071310][T13568] hsr_slave_0: entered promiscuous mode
[ 1486.081113][T13568] hsr_slave_1: entered promiscuous mode
[ 1486.093769][T13568] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1486.111532][T13568] Cannot create hsr debugfs directory
[ 1486.401863][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1486.857113][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1487.301301][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1487.454562][T14656] ttyS ttyS3: ldisc open failed (-12), clearing slot 3
[ 1487.707828][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1488.411326][T13530] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1488.491745][T13530] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1488.636808][   T36] bridge_slave_1: left allmulticast mode
[ 1488.642590][   T36] bridge_slave_1: left promiscuous mode
[ 1488.657322][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1488.733977][   T36] bridge_slave_0: left allmulticast mode
[ 1488.739763][   T36] bridge_slave_0: left promiscuous mode
[ 1488.753540][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1489.394351][T14763] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1489.616241][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1489.623261][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1489.926245][T14880] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1490.007376][T14878] loop6: detected capacity change from 0 to 524287999
[ 1490.200849][T14892] binder: 14891:14892 ioctl c00c6211 0 returned -14
[ 1490.813848][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1490.913523][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1491.009336][   T36] bond0 (unregistering): Released all slaves
[ 1491.056703][T13530] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1491.570247][T14924] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1491.714569][T13530] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1492.356175][T18283] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1492.365995][T18283] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1492.373997][T18283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1492.381973][T18283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1492.389780][T18283] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1492.445874][ T1892] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1492.454258][ T1892] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1492.461605][ T1892] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1492.479391][ T1892] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1492.490566][ T1892] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1492.594768][T14983] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1493.273457][   T36] hsr_slave_0: left promiscuous mode
[ 1493.327072][   T36] hsr_slave_1: left promiscuous mode
[ 1493.335300][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1493.343482][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1493.373631][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1493.381070][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1493.478163][   T36] veth1_macvtap: left promiscuous mode
[ 1493.495243][   T36] veth0_macvtap: left promiscuous mode
[ 1493.500940][   T36] veth1_vlan: left promiscuous mode
[ 1493.507777][   T36] veth0_vlan: left promiscuous mode
[ 1494.582860][T18283] Bluetooth: hci0: command tx timeout
[ 1495.783718][   T36] team0 (unregistering): Port device team_slave_1 removed
[ 1496.044533][   T36] team0 (unregistering): Port device team_slave_0 removed
[ 1496.652967][T18283] Bluetooth: hci0: command tx timeout
[ 1498.401450][T15025] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1498.410055][T15025] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1498.616637][T13568] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1498.655390][T13568] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1498.721922][T13568] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1498.825433][T13568] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1499.134361][T13530] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1499.166982][T14943] chnl_net:caif_netlink_parms(): no params data found
[ 1499.340864][T13530] 8021q: adding VLAN 0 to HW filter on device team0
[ 1499.496946][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1499.504149][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1499.595505][T14943] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1499.608132][T14943] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1499.618775][T14943] bridge_slave_0: entered allmulticast mode
[ 1499.627916][T14943] bridge_slave_0: entered promiscuous mode
[ 1499.635787][T14943] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1499.646180][T14943] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1499.654577][T14943] bridge_slave_1: entered allmulticast mode
[ 1499.662416][T14943] bridge_slave_1: entered promiscuous mode
[ 1499.926218][ T5020] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1499.933431][ T5020] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1499.965906][T14943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1500.054689][T13568] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1500.073058][T14943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1500.376225][T14943] team0: Port device team_slave_0 added
[ 1500.824483][T14943] team0: Port device team_slave_1 added
[ 1501.071075][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1501.346258][T14943] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1501.353372][T14943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1501.379501][T14943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1501.395248][T14943] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1501.402204][T14943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1501.428721][T14943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1501.585472][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1501.657755][T13530] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1501.678496][T13568] 8021q: adding VLAN 0 to HW filter on device team0
[ 1501.954923][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1502.107684][T14943] hsr_slave_0: entered promiscuous mode
[ 1502.115466][T14943] hsr_slave_1: entered promiscuous mode
[ 1502.122225][T14943] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1502.130680][T14943] Cannot create hsr debugfs directory
[ 1502.326406][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1502.540438][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1502.547606][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1502.678261][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1502.685468][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1502.796981][T13530] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1503.128712][T15500] input: syz1 as /devices/virtual/input/input383
[ 1503.313746][   T12] bridge_slave_1: left allmulticast mode
[ 1503.319439][   T12] bridge_slave_1: left promiscuous mode
[ 1503.326940][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1503.476368][   T12] bridge_slave_0: left allmulticast mode
[ 1503.492782][   T12] bridge_slave_0: left promiscuous mode
[ 1503.498580][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1505.323829][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1505.424355][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1505.504666][   T12] bond0 (unregistering): Released all slaves
[ 1506.161493][T15567] syz.6.11361: attempt to access beyond end of device
[ 1506.161493][T15567] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1506.373571][T13568] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1506.387911][T13530] veth0_vlan: entered promiscuous mode
[ 1506.388755][T15577] input: syz0 as /devices/virtual/input/input384
[ 1506.421233][T13530] veth1_vlan: entered promiscuous mode
[ 1506.444944][T15577] binder: 15576:15577 ioctl c018620b 9999999999999999 returned -14
[ 1506.625196][T15595] input: syz1 as /devices/virtual/input/input385
[ 1506.642842][   T12] hsr_slave_0: left promiscuous mode
[ 1506.667813][T15595] usb usb1: usbfs: process 15595 (syz.6.11364) did not claim interface 0 before use
[ 1506.683887][   T12] hsr_slave_1: left promiscuous mode
[ 1506.697964][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1506.707399][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1506.743661][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1506.751080][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1506.859849][   T12] veth1_macvtap: left promiscuous mode
[ 1506.865538][   T12] veth0_macvtap: left promiscuous mode
[ 1506.871282][   T12] veth1_vlan: left promiscuous mode
[ 1506.879638][   T12] veth0_vlan: left promiscuous mode
[ 1509.253924][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1509.503437][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1511.978937][T14943] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1512.010795][T13530] veth0_macvtap: entered promiscuous mode
[ 1512.053138][T13530] veth1_macvtap: entered promiscuous mode
[ 1512.064923][T14943] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1512.100813][T14943] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1512.178189][T14943] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1512.256234][T13530] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1512.277249][T13530] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1512.374872][T13530] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1512.401269][T13530] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1512.422891][T13530] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1512.431614][T13530] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1512.632362][T13568] veth0_vlan: entered promiscuous mode
[ 1512.787372][T13568] veth1_vlan: entered promiscuous mode
[ 1512.932038][ T1169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1512.947723][ T1169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1513.018943][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1513.036573][T14943] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1513.057066][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1513.129909][T14943] 8021q: adding VLAN 0 to HW filter on device team0
[ 1513.157864][T13568] veth0_macvtap: entered promiscuous mode
[ 1513.219054][T13568] veth1_macvtap: entered promiscuous mode
[ 1513.248325][ T1169] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1513.255528][ T1169] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1513.333132][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1513.340372][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1513.431071][T13568] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1513.528661][T13568] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1513.590306][T13568] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.602367][T13568] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.623725][T13568] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1513.632475][T13568] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1514.248749][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1514.271766][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1514.370606][   T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1514.384387][   T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1514.392111][T14943] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1515.251436][T14943] veth0_vlan: entered promiscuous mode
[ 1515.259175][T14943] veth1_vlan: entered promiscuous mode
[ 1515.347552][T14943] veth0_macvtap: entered promiscuous mode
[ 1515.355983][T14943] veth1_macvtap: entered promiscuous mode
[ 1515.404947][T14943] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1515.418226][T14943] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1515.428060][T14943] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.428095][T14943] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.428122][T14943] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.428147][T14943] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.702367][   T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1515.702389][   T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1515.800115][T16969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1515.800137][T16969] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1516.022583][T15846] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1516.025703][T15846] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1516.028497][T15846] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1516.031135][T15846] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1516.275204][T15878] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=io+mem:owns=io+mem
[ 1516.931726][T15904] input: syz1 as /devices/virtual/input/input387
[ 1517.209474][T15925] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1517.598981][T15961] usb usb8: usbfs: process 15961 (syz.5.11392) did not claim interface 0 before use
[ 1518.779044][T16022] input: syz1 as /devices/virtual/input/input389
[ 1518.920510][T16043] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1519.438614][T16074] sp0: Synchronizing with TNC
[ 1520.960067][T16172] QAT: Invalid ioctl 4735
[ 1523.500582][T16296] Sensor A: =================  START STATUS  =================
[ 1523.579299][T16296] Sensor A: Test Pattern: Horizontal 100% Colorbar
[ 1523.618447][T16296] Sensor A: Show Information: None
[ 1523.652771][T16296] Sensor A: Vertical Flip: false
[ 1523.704390][T16296] Sensor A: Horizontal Flip: true
[ 1523.737476][T16296] Sensor A: Brightness: 255
[ 1523.742038][T16296] Sensor A: Contrast: 128
[ 1523.756558][T16296] Sensor A: Hue: 3
[ 1523.792550][T16296] Sensor A: Saturation: 0
[ 1523.849159][T16296] Sensor A: ==================  END STATUS  ==================
[ 1524.221793][T22154] hid-generic 0000:0000:0000.0016: item fetching failed at offset 0/1
[ 1524.275982][T22154] hid-generic 0000:0000:0000.0016: probe with driver hid-generic failed with error -22
[ 1524.893243][T16372] blktrace: Concurrent blktraces are not allowed on sg0
[ 1525.151004][ T1892] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1525.160379][ T1892] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1525.172254][ T1892] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1525.185165][ T1892] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1525.194941][ T1892] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1525.249295][T18283] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1525.257489][T18283] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1525.265417][T18283] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1525.274196][T18283] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1525.286861][T18283] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1525.893799][T16461] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1525.996971][T14887] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1526.295842][T14887] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1526.324061][T16430] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1526.330082][T16430] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1526.558717][T14887] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1527.105164][T14887] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1527.311538][T16542] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1527.364182][T16538] snd_dummy snd_dummy.0: control 1:0:0:syz0:254 is already present
[ 1527.832113][T16382] chnl_net:caif_netlink_parms(): no params data found
[ 1528.051445][T14887] bridge_slave_1: left allmulticast mode
[ 1528.051468][T14887] bridge_slave_1: left promiscuous mode
[ 1528.051655][T14887] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1528.134712][T14887] bridge_slave_0: left allmulticast mode
[ 1528.152818][T14887] bridge_slave_0: left promiscuous mode
[ 1528.158609][T14887] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1528.605196][T16677] loop4: detected capacity change from 0 to 524255232
[ 1529.267722][T16702] input: syz0 as /devices/virtual/input/input391
[ 1529.620573][T16717] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1530.293561][T14887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1530.373287][T14887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1530.414788][T14887] bond0 (unregistering): Released all slaves
[ 1531.149474][T16382] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1531.160272][T16382] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1531.168050][T16382] bridge_slave_0: entered allmulticast mode
[ 1531.211654][T16382] bridge_slave_0: entered promiscuous mode
[ 1531.427469][T16382] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1531.449959][T16382] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1531.467726][T16382] bridge_slave_1: entered allmulticast mode
[ 1531.491831][T16382] bridge_slave_1: entered promiscuous mode
[ 1531.807150][T14887] hsr_slave_0: left promiscuous mode
[ 1531.868611][T14887] hsr_slave_1: left promiscuous mode
[ 1531.903936][T14887] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1531.911384][T14887] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1531.995419][T14887] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1532.013966][T14887] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1532.139810][T14887] veth1_macvtap: left promiscuous mode
[ 1532.145451][T14887] veth0_macvtap: left promiscuous mode
[ 1532.151137][T14887] veth1_vlan: left promiscuous mode
[ 1532.173179][T14887] veth0_vlan: left promiscuous mode
[ 1532.206951][T16987] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1534.534345][T14887] team0 (unregistering): Port device team_slave_1 removed
[ 1534.753532][T14887] team0 (unregistering): Port device team_slave_0 removed
[ 1537.639997][T16382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1537.695296][T16382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1537.764413][T17045] CUSE: info not properly terminated
[ 1538.056401][T16382] team0: Port device team_slave_0 added
[ 1538.095346][T16382] team0: Port device team_slave_1 added
[ 1538.409344][T16382] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1538.427926][T16382] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1538.465460][T16382] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1538.490880][T17131] qrtr: Invalid version 0
[ 1538.591404][T16382] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1538.607228][T16382] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1538.636276][T16382] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1538.975254][T16382] hsr_slave_0: entered promiscuous mode
[ 1538.987138][T16382] hsr_slave_1: entered promiscuous mode
[ 1538.993141][T17179] random: crng reseeded on system resumption
[ 1539.013557][T16382] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1539.021139][T16382] Cannot create hsr debugfs directory
[ 1539.489825][T17235] ubi31: attaching mtd0
[ 1539.520637][T17235] ubi31: scanning is finished
[ 1539.686992][T17235] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1539.706507][T17235] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1539.725283][T17235] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1539.747533][T17235] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1539.779968][T17264] program syz.4.11512 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1539.791127][T17235] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1539.807928][T17235] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1539.844905][T17235] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 748834740
[ 1539.858809][T17271] program syz.4.11512 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1539.888976][T17235] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1539.956800][T17261] ubi31: background thread "ubi_bgt31d" started, PID 17261
[ 1539.967099][T17271] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1541.604033][T17353] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1541.656580][T17356] input: syz1 as /devices/virtual/input/input392
[ 1541.891594][T16382] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1541.937259][T16382] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1541.996925][T16382] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1542.149665][T16382] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1542.687747][T17417] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1542.703330][T16382] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1542.740946][T16382] 8021q: adding VLAN 0 to HW filter on device team0
[ 1542.776462][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1542.783691][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1542.968695][T17428] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1543.148207][T16969] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1543.155416][T16969] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1543.772230][T16382] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1544.273309][T17495] autofs4:pid:17495:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[ 1544.655362][T16382] veth0_vlan: entered promiscuous mode
[ 1544.673402][T17508] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1544.701984][T16382] veth1_vlan: entered promiscuous mode
[ 1544.799166][T16382] veth0_macvtap: entered promiscuous mode
[ 1544.847127][T16382] veth1_macvtap: entered promiscuous mode
[ 1544.924869][T16382] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1544.960047][T16382] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1545.001203][T16382] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1545.034655][T16382] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1545.074986][T16382] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1545.104845][T16382] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1545.459745][T16969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1545.503297][T16969] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1545.594368][T16969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1545.602231][T16969] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1545.863329][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1545.869674][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.339012][   T30] audit: type=1400 audit(1750396922.540:57): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=17607 comm="syz.6.11549"
[ 1547.288213][T17659] input: syz1 as /devices/virtual/input/input393
[ 1547.918732][T17710] loop6: detected capacity change from 0 to 63
[ 1547.951234][T17026] buffer_io_error: 48 callbacks suppressed
[ 1547.951249][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1547.974453][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1547.982406][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1547.996805][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.011783][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.027270][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.061457][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.079773][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.088742][T17026] ldm_validate_partition_table(): Disk read failed.
[ 1548.099267][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.111187][T17026] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1548.125820][T17026] Dev loop6: unable to read RDB block 0
[ 1548.131885][T17026]  loop6: unable to read partition table
[ 1548.267757][T17748] blktrace: Concurrent blktraces are not allowed on sg0
[ 1549.897149][T17839] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1550.251882][T17857] binder: 17853:17857 ioctl c0306201 2000000003c0 returned -14
[ 1550.924169][   T30] audit: type=1800 audit(1750396927.140:58): pid=17881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.11594" name="memory.events" dev="tmpfs" ino=335 res=0 errno=0
[ 1550.945473][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1553.039925][T17988] input: syz0 as /devices/virtual/input/input395
[ 1553.089790][T17992] binder: 17983:17992 ioctl c0306201 200000000100 returned -22
[ 1554.248690][T18115] CUSE: unknown device info "MzP�´Ã{UÀÞÒ—ýEÞsª¹Z$cw#¤/…fƒ}Ù”Ðb,Q«[{æ•Æ®$
[ 1554.248690][T18115] Ç4&I:#5o6Ÿ3”ÑŽ.l%¤žwC
[ 1554.248690][T18115] Ž?"
[ 1554.342927][T18115] CUSE: unknown device info "v…2‰.7’õ¸Ë‚þ ®Ñ*5®¸Óì•SEAy û…	¿`?e`þŠl6Ý¡ÐÙéQ0V84ÜŽ{c"áKüü^÷vaOÖ�M Œ××Ê8æf1¨\.dž6�á(3´iË¿­›ƒfω11,kb­°îz›Ö‰"�NXjª}˜	ß~
ïwu/¾KÈ9Ê.²Ðrù¯×¤©"
[ 1554.389953][T18120] program syz.6.11623 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1554.436164][T18115] CUSE: DEVNAME unspecified
[ 1554.457856][T18124] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1555.299961][T18176] snd_dummy snd_dummy.0: control 1:254:0:syz0:32 is already present
[ 1555.677399][T18196] program syz.6.11634 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1556.595112][T18250] binder: 18248:18250 ioctl c00c620f 0 returned -14
[ 1557.721418][T18302] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1557.875225][T18312] binder: 18311:18312 ioctl c0306201 200000000100 returned -14
[ 1558.074166][T18320] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1558.404507][T18337] QAT: failed to copy from user.
[ 1558.856851][T18368] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1558.930262][T18372] AppArmor: change_hat: Invalid input ''
[ 1559.599375][T18420] kvm: kvm [18419]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010003) = 0x1000811f5ff0a
[ 1559.661353][T18420] syz.6.11673: attempt to access beyond end of device
[ 1559.661353][T18420] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1559.864725][T18440] can0: slcan on ptm0.
[ 1560.293256][T18440] can0 (unregistered): slcan off ptm0.
[ 1560.417543][T18486] Context (ID=0x1) not attached to queue pair (handle=0x1:0x0)
[ 1560.769933][T18506] usb usb8: usbfs: process 18506 (syz.6.11684) did not claim interface 0 before use
[ 1563.154125][   T36] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1564.991424][T18843] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1565.154596][T18853] binder: 18852:18853 ioctl 400c620e 2000000000c0 returned -22
[ 1565.212987][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1565.219676][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1565.553190][T18876] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1565.769915][T18896] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1566.418369][T18936] [U] 
[ 1567.503243][T19015] kvm: apic: phys broadcast and lowest prio
[ 1569.364824][T19108] dlm: Unknown command passed to DLM device : 0
[ 1569.364824][T19108] 
[ 1569.505694][T19113] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1569.770636][T19132] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1570.165412][T19147] kvm: kvm [19146]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x4400000000000001
[ 1573.232394][T19322] binder: 19317:19322 ioctl c018620c 200000000000 returned -1
[ 1575.052817][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1575.052908][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1576.801023][T19553] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1577.152963][T19570] syz.5.11849: attempt to access beyond end of device
[ 1577.152963][T19570] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1577.571310][T19588] syz.7.11853: attempt to access beyond end of device
[ 1577.571310][T19588] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1578.915725][T19728] input: syz0 as /devices/virtual/input/input399
[ 1579.910266][T19864] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1581.192736][T19931] mkiss: ax0: crc mode is auto.
[ 1581.285649][T19924] input: syz0 as /devices/virtual/input/input400
[ 1581.332792][T19947] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1582.175899][T20062] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1583.087029][T20142] input: syz0 as /devices/virtual/input/input401
[ 1583.380789][T20154] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_tx_wq": -EINTR
[ 1584.615977][T20216] QAT: Device 253 not found
[ 1586.022477][T20307] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1586.290246][T20324] No buffer was provided with the request
[ 1587.896743][T20410] binder: 20408:20410 ioctl c018620b 9999999999999999 returned -14
[ 1587.929809][T20410] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1588.616821][T20451] loop6: detected capacity change from 0 to 524287999
[ 1590.053010][ T5020] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1592.093010][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1592.094156][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1592.151957][T20625] random: crng reseeded on system resumption
[ 1592.235844][T20625] Restarting kernel threads ...
[ 1592.263407][T20625] Done restarting kernel threads.
[ 1594.304483][T20717] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1594.608013][T20552] hid (null): invalid report_count 31315
[ 1594.614619][T20552] hid (null): invalid report_size -1845994034
[ 1594.627815][T20552] hid-generic 0008:000B:0F77.0017: unknown main item tag 0x1
[ 1594.635705][T20552] hid-generic 0008:000B:0F77.0017: invalid report_count 31315
[ 1594.639448][   T30] audit: type=1400 audit(1750396970.850:59): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=20738 comm="syz.6.12040"
[ 1594.643446][T20552] hid-generic 0008:000B:0F77.0017: item 0 2 1 9 parsing failed
[ 1594.671976][T20552] hid-generic 0008:000B:0F77.0017: probe with driver hid-generic failed with error -22
[ 1594.697135][T20736] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1596.247503][T20802] usb usb1: check_ctrlrecip: process 20802 (syz.4.12050) requesting ep 01 but needs 81
[ 1596.266569][T20802] usb usb1: usbfs: process 20802 (syz.4.12050) did not claim interface 0 before use
[ 1596.941192][T20849] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1597.717735][T20887] syz.7.12070: attempt to access beyond end of device
[ 1597.717735][T20887] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1597.809123][T20894] input: syz1 as /devices/virtual/input/input403
[ 1598.279665][T20928] QAT: Device 7 not found
[ 1598.295016][T20931] QAT: Invalid ioctl -1060596699
[ 1598.462764][T20936] loop6: detected capacity change from 0 to 524287999
[ 1598.510866][T20942] binder: 20940:20942 ioctl 400c620e 9999999999999999 returned -14
[ 1598.544029][    C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 20 prio class 0
[ 1598.544063][    C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 20 prio class 0
[ 1598.544271][    C0] I/O error, dev loop6, sector 2560 op 0x1:(WRITE) flags 0x8800 phys_seg 12 prio class 0
[ 1598.544298][    C0] I/O error, dev loop6, sector 2560 op 0x1:(WRITE) flags 0x8800 phys_seg 12 prio class 0
[ 1598.556042][T20936] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1598.616449][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1598.699628][T20943] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1599.304318][T20987] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1600.355512][T21050] QAT: Invalid ioctl 1074033169
[ 1600.653042][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1600.659843][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1601.986754][T21119] program syz.5.12107 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1602.021714][T21119] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1603.190047][T21160] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1603.575891][T21181] tty tty2: ldisc open failed (-12), clearing slot 1
[ 1605.140501][T21243] input: syz1 as /devices/virtual/input/input405
[ 1605.318822][T21260] input: syz1 as /devices/virtual/input/input406
[ 1606.636609][   T30] audit: type=1800 audit(1750396982.850:60): pid=21327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.12143" name="dmabuf" dev="dmabuf" ino=64 res=0 errno=0
[ 1607.299509][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.305909][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.831426][T21366] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1609.018707][T21434] binder: 21433:21434 ioctl c0306201 200000000540 returned -14
[ 1609.294830][T21453] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1609.349143][T21457] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1613.380186][T21739] binder: 21738:21739 ioctl c018620c 200000000380 returned -22
[ 1613.586543][T21749] kvm_intel: kvm [21748]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xff
[ 1615.937938][T21866] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1616.051253][T21859] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1616.675585][T21894] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1616.696486][T21894] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1617.519767][T21949] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1617.578499][T21953] binder: 21951:21953 ioctl c0306201 200000000100 returned -22
[ 1617.621035][T21958] CUSE: info not properly terminated
[ 1619.311238][T22027] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1619.339520][T22027] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1619.379210][T22027] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1619.456849][T22027] iommufd_mock iommufd_mock3: Adding to iommu group 3
[ 1619.463220][T22027] iommufd_mock iommufd_mock4: Adding to iommu group 4
[ 1620.713628][T22108] input: syz0 as /devices/virtual/input/input407
[ 1621.969474][T22177] input: syz1 as /devices/virtual/input/input408
[ 1622.714969][T22210] syz.4.12286: attempt to access beyond end of device
[ 1622.714969][T22210] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1623.082270][T22227] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1623.125182][T22227] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1624.583027][T22274] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1624.645369][T22281] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1625.085577][T22302] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1625.099322][T22301] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1627.261131][T22385] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1628.270327][T22477] sp0: Synchronizing with TNC
[ 1628.403237][T22485] syz.7.12327: attempt to access beyond end of device
[ 1628.403237][T22485] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1630.258957][T22566] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1630.669136][T22591] input: syz0 as /devices/virtual/input/input411
[ 1634.189580][T22894] misc userio: Begin command sent, but we're already running
[ 1634.615554][T22921] input: syz0 as /devices/virtual/input/input413
[ 1634.847844][T22936] misc userio: No port type given on /dev/userio
[ 1634.856263][T22939] misc userio: The device must be registered before sending interrupts
[ 1634.866394][T22935] misc userio: The device must be registered before sending interrupts
[ 1635.219510][T22961] random: crng reseeded on system resumption
[ 1635.600789][T22990] ALSA: seq fatal error: cannot create timer (-22)
[ 1637.414978][T23078] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1637.829150][T23091] kvm: kvm [23086]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x4000000000000001
[ 1637.842443][T23091] vivid-001: disconnect
[ 1637.944367][T23086] vivid-001: reconnect
[ 1638.036253][T23119] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1638.692837][T23175] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1640.558253][T23369] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1640.814343][T23394] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1641.470787][T23442] cgroup: fork rejected by pids controller in /syz7
[ 1641.489669][T23442] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1643.031210][T18283] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1643.041037][ T5020] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1643.062847][T18283] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1643.070978][T18283] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1643.083108][T18283] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1643.101409][T18283] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1643.141239][ T1892] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1643.163182][ T1892] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1643.173129][ T1892] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1643.189963][ T1892] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1643.199863][ T1892] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1643.337828][ T5020] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1643.610053][ T5020] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1643.885215][ T5020] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1643.920686][T23570] syz.4.12465: attempt to access beyond end of device
[ 1643.920686][T23570] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1644.355971][T23510] chnl_net:caif_netlink_parms(): no params data found
[ 1644.940175][ T5020] bridge_slave_1: left allmulticast mode
[ 1644.947844][ T5020] bridge_slave_1: left promiscuous mode
[ 1644.954403][ T5020] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1645.064623][ T5020] bridge_slave_0: left allmulticast mode
[ 1645.064647][ T5020] bridge_slave_0: left promiscuous mode
[ 1645.064850][ T5020] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1645.306582][T18283] Bluetooth: hci3: command tx timeout
[ 1646.020035][T23739] Falling back ldisc for ptm0.
[ 1646.197192][T23786] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1647.146175][T23823] program syz.6.12483 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1647.205692][T23826] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1647.294374][ T5020] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1647.373653][T18283] Bluetooth: hci3: command tx timeout
[ 1647.373858][ T5020] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1647.435360][ T5020] bond0 (unregistering): Released all slaves
[ 1647.682538][T23510] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1647.698726][T23510] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1647.708433][T23510] bridge_slave_0: entered allmulticast mode
[ 1647.724448][T23510] bridge_slave_0: entered promiscuous mode
[ 1647.752468][T23874] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1647.753912][T23510] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1647.768955][T23510] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1647.776373][T23510] bridge_slave_1: entered allmulticast mode
[ 1647.790370][T23510] bridge_slave_1: entered promiscuous mode
[ 1647.801643][T23874] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1648.210418][T23510] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1648.223020][T23510] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1648.324275][T23796] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1648.330253][T23796] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[ 1648.412217][T23510] team0: Port device team_slave_0 added
[ 1648.421827][T23510] team0: Port device team_slave_1 added
[ 1648.817405][T23510] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1648.830759][T23510] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1648.866158][T23510] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1649.088341][T23510] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1649.095511][T23510] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1649.122019][T23510] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1649.353171][ T5020] hsr_slave_0: left promiscuous mode
[ 1649.393357][ T5020] hsr_slave_1: left promiscuous mode
[ 1649.399423][ T5020] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1649.410369][ T5020] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1649.447580][ T5020] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1649.458618][ T5020] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1649.577297][ T5020] veth1_macvtap: left promiscuous mode
[ 1649.583965][ T5020] veth0_macvtap: left promiscuous mode
[ 1649.589705][ T5020] veth1_vlan: left promiscuous mode
[ 1649.598060][ T5020] veth0_vlan: left promiscuous mode
[ 1649.609307][T24038] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1652.173538][ T5020] team0 (unregistering): Port device team_slave_1 removed
[ 1652.393240][ T5020] team0 (unregistering): Port device team_slave_0 removed
[ 1655.127900][T24120] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1655.360895][T23510] hsr_slave_0: entered promiscuous mode
[ 1655.361851][T23510] hsr_slave_1: entered promiscuous mode
[ 1655.362501][T23510] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1655.362560][T23510] Cannot create hsr debugfs directory
[ 1655.583199][T24150] ALSA: seq fatal error: cannot create timer (-22)
[ 1655.715805][T24168] ALSA: seq fatal error: cannot create timer (-22)
[ 1657.872044][   T36] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1657.950839][T24307] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1658.765671][T23510] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1658.858433][T23510] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1658.897525][T23510] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1658.949290][T23510] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1659.151488][T23510] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1659.197598][T23510] 8021q: adding VLAN 0 to HW filter on device team0
[ 1659.234280][ T5020] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1659.241448][ T5020] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1659.276722][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1659.283925][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1659.505316][T23510] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1659.516675][T23510] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1659.922242][T23510] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1659.933606][T18283] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1659.934019][ T1892] Bluetooth: hci4: command 0x1003 tx timeout
[ 1659.987863][   T30] audit: type=1400 audit(1750397036.200:61): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=24405 comm="syz.6.12532"
[ 1660.891430][T23510] veth0_vlan: entered promiscuous mode
[ 1660.948019][T23510] veth1_vlan: entered promiscuous mode
[ 1661.027403][T23510] veth0_macvtap: entered promiscuous mode
[ 1661.060812][T23510] veth1_macvtap: entered promiscuous mode
[ 1661.130660][T23510] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1661.367953][T23510] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1661.427919][T23510] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1661.452911][T23510] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1661.463246][T23510] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1661.471970][T23510] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1661.777931][T23665] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1661.815520][T23665] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1661.905545][T23665] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1661.932382][T23665] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1662.197665][T24531] input: syz0 as /devices/virtual/input/input415
[ 1662.219973][T24531] input: failed to attach handler leds to device input415, error: -6
[ 1662.328222][T24543] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1662.664104][T24564] syz.6.12549: attempt to access beyond end of device
[ 1662.664104][T24564] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1663.850252][T24620] snd_dummy snd_dummy.0: control 1:254:0:syz0:32 is already present
[ 1664.415461][T24665] program syz.7.12561 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1664.672695][T24682] input: syz1 as /devices/virtual/input/input417
[ 1665.162085][T24710] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1665.487426][T24728] input: syz0 as /devices/virtual/input/input418
[ 1666.163692][T24761] tap0: tun_chr_ioctl cmd 1074025677
[ 1666.171422][T24761] tap0: linktype set to 774
[ 1666.603158][T24784] binder: 24781:24784 ioctl c00c620f 0 returned -14
[ 1667.371007][T24784] binder: 24781:24784 ioctl c0306201 200000001680 returned -14
[ 1667.527681][T24819] can0: slcan on ttyS3.
[ 1667.533674][T24822] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1667.785453][T24819] can0 (unregistered): slcan off ttyS3.
[ 1667.969716][T24854] loop6: detected capacity change from 0 to 4
[ 1668.039471][    C1] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[ 1668.048965][    C1] buffer_io_error: 16 callbacks suppressed
[ 1668.048981][    C1] Buffer I/O error on dev loop6, logical block 0, lost async page write
[ 1668.742092][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1668.749349][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1670.339410][T25017] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1671.432440][T25088] binder: 25087:25088 ioctl c00c620f 0 returned -14
[ 1671.512018][T25094] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1671.670055][   T30] audit: type=1800 audit(1750397047.880:62): pid=25109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.12637" name="dmabuf" dev="dmabuf" ino=68 res=0 errno=0
[ 1672.844521][T25179] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1673.457843][T25208] blktrace: Concurrent blktraces are not allowed on nullb0
[ 1673.636321][T25216] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1675.878332][T25441] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1676.825671][T25574] kvm: kvm [25552]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000009) = 0xfff
[ 1677.096561][T25616] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1677.315674][T25628] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1677.385158][T25637] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1678.073766][T25685] loop6: detected capacity change from 0 to 524287487
[ 1678.081994][T25685] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1678.101806][T25685] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1678.122832][T25685] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1678.138742][T25685] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1678.193000][T25695] loop6: detected capacity change from 524287487 to 0
[ 1678.200753][T25685] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1678.230076][T25685] ldm_validate_partition_table(): Disk read failed.
[ 1678.243841][T25699] usb usb1: usbfs: process 25699 (syz.5.12703) did not claim interface 0 before use
[ 1678.253381][T25685] Dev loop6: unable to read RDB block 0
[ 1678.258961][T25685]  loop6: unable to read partition table
[ 1678.275091][T25685] loop6: partition table beyond EOD, truncated
[ 1678.281644][T25685] loop_reread_partitions: partition scan of loop6 (™^L‹¦øíA;åó§Èb»ö@’†�Ö”:B‚w¾<ØÈgønf.-Ó‘†³.àië�í>^.¾dDd—Â) failed (rc=-5)
[ 1678.600348][T25733] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1679.267077][T25767] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1679.890677][T25797] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1679.932152][T25811] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1680.310341][T25837] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1680.438291][T25844] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1680.616593][T25851] syz.5.12727: attempt to access beyond end of device
[ 1680.616593][T25851] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1680.720196][T25858] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1681.557451][T25911] kvm: user requested TSC rate below hardware speed
[ 1681.650770][T25925] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1681.852857][T18283] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1681.859707][ T1892] Bluetooth: hci4: command 0x1003 tx timeout
[ 1682.084899][T25952] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1682.230241][T25961] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1682.301645][T25964] iommufd_mock iommufd_mock2: Adding to iommu group 2
[ 1683.406586][T26027] random: crng reseeded on system resumption
[ 1684.074126][T26077] syz.4.12760: attempt to access beyond end of device
[ 1684.074126][T26077] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1686.196429][T26175] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1686.240237][T26182] sp0: Synchronizing with TNC
[ 1687.882930][T26278] dlm: no locking on control device
[ 1688.243582][T26298] random: crng reseeded on system resumption
[ 1688.404819][T26306] input: syz1 as /devices/virtual/input/input425
[ 1688.473265][T26318] loop6: detected capacity change from 0 to 524287999
[ 1688.497835][    C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 2 prio class 0
[ 1688.507321][    C0] Buffer I/O error on dev loop6, logical block 0, lost async page write
[ 1688.513896][T26306] binder: BC_ACQUIRE_RESULT not supported
[ 1688.515763][    C0] Buffer I/O error on dev loop6, logical block 1, lost async page write
[ 1688.541004][T26306] binder: 26300:26306 ioctl c0306201 200000000580 returned -22
[ 1689.077989][T26357] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[ 1689.279132][T26369] input: syz0 as /devices/virtual/input/input426
[ 1689.734815][   T36] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1689.755123][T26399] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1689.758765][T26394] sp0: Synchronizing with TNC
[ 1691.116356][T26605] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1691.172316][T26605] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1691.774993][T18283] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1691.924409][T26654] [U] ^R
[ 1692.137655][T26675] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1692.953323][T26737] binder: 26735:26737 ioctl c0306201 200000000640 returned -22
[ 1693.594305][T26775] sp0: Synchronizing with TNC
[ 1694.128537][T26815] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1694.456510][T26826] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1694.709493][T26848] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1695.372986][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1695.380274][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1696.000222][T26900] can0: slcan on ptm0.
[ 1697.005156][T26895] can0 (unregistered): slcan off ptm0.
[ 1698.402405][T27027] program syz.4.12910 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1698.638802][T27043] input: syz1 as /devices/virtual/input/input429
[ 1699.506560][T27083] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1699.735371][T27100] blktrace: Concurrent blktraces are not allowed on sg0
[ 1700.017053][T27114] binder: 27113:27114 ioctl 4018620d 0 returned -22
[ 1700.249818][T27120] input: syz0 as /devices/virtual/input/input430
[ 1700.535868][T27152] input: syz1 as /devices/virtual/input/input431
[ 1700.542268][T27152] input: failed to attach handler leds to device input431, error: -6
[ 1700.663825][T27152] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1700.670215][T17132] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1701.262416][T22154] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[ 1701.276738][T22154] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[ 1701.284713][T22154] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[ 1701.292135][T22154] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[ 1701.301638][T22154] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[ 1701.330663][T22154] hid-generic 0000:0000:0000.0018: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1702.134938][T27242] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1702.732787][T18283] Bluetooth: hci4: command 0xfc11 tx timeout
[ 1702.739431][ T1892] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[ 1703.029102][T27283] random: crng reseeded on system resumption
[ 1703.406497][T27298] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1703.424864][T27298] binder: 27297:27298 ioctl c0306201 200000002800 returned -11
[ 1703.540279][T27305] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1704.221160][   T30] audit: type=1400 audit(1750397080.430:63): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=5D9625292F2F2E212D pid=27349 comm="syz.7.12971"
[ 1704.508793][T27358] syz.7.12973: attempt to access beyond end of device
[ 1704.508793][T27358] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1704.749174][T27374] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1706.208140][T27444] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1706.278308][   T30] audit: type=1800 audit(1750397082.490:64): pid=27454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.12992" name="file0" dev="tmpfs" ino=1897 res=0 errno=0
[ 1707.400614][T27520] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1708.568932][T27599] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1709.086090][T27624] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1709.337750][T27642] vivid-000: disconnect
[ 1709.475464][T27641] vivid-000: reconnect
[ 1710.098064][T27671] input: syz0 as /devices/virtual/input/input433
[ 1710.352412][T27691] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1711.977546][ T1783] hid-generic 004E:000A:0004.0019: unknown main item tag 0x6
[ 1711.994383][ T1783] hid-generic 004E:000A:0004.0019: ignoring exceeding usage max
[ 1712.006422][ T1783] hid-generic 004E:000A:0004.0019: unknown main item tag 0x7
[ 1712.016497][ T1783] hid-generic 004E:000A:0004.0019: unknown main item tag 0x2
[ 1712.033786][ T1783] hid-generic 004E:000A:0004.0019: unknown main item tag 0x6
[ 1712.045894][ T1783] hid-generic 004E:000A:0004.0019: item fetching failed at offset 56/60
[ 1712.064711][ T1783] hid-generic 004E:000A:0004.0019: probe with driver hid-generic failed with error -22
[ 1713.079869][T27967] random: crng reseeded on system resumption
[ 1713.377001][T27985] syz.5.13072: attempt to access beyond end of device
[ 1713.377001][T27985] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1713.589904][T27997] loop8: detected capacity change from 0 to 7
[ 1713.614526][T27997] Dev loop8: unable to read RDB block 7
[ 1713.620226][T27997]  loop8: unable to read partition table
[ 1713.629382][T27997] loop8: partition table beyond EOD, truncated
[ 1713.650384][T27997] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[ 1713.677677][T28004] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1714.090605][T28036] syz.5.13081: attempt to access beyond end of device
[ 1714.090605][T28036] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1714.808386][T28080] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1715.071438][T28088] input: syz1 as /devices/virtual/input/input437
[ 1715.254621][T28099] mkiss: ax0: crc mode is auto.
[ 1717.165855][T28192] binder: 28191:28192 ioctl c0306201 2000000001c0 returned -22
[ 1717.182532][T28192] loop6: detected capacity change from 0 to 63
[ 1717.191704][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.200858][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.210022][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.218374][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.231029][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.235416][T28194] input: syz0 as /devices/virtual/input/input440
[ 1717.240026][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.258500][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.267420][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.276705][T24288] ldm_validate_partition_table(): Disk read failed.
[ 1717.283825][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.291831][T24288] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1717.300775][T24288] Dev loop6: unable to read RDB block 0
[ 1717.307143][T24288]  loop6: unable to read partition table
[ 1717.322420][T28192] ldm_validate_partition_table(): Disk read failed.
[ 1717.329875][T28192] Dev loop6: unable to read RDB block 0
[ 1717.337005][T28192]  loop6: unable to read partition table
[ 1717.343390][T28192] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[ 1717.366179][ T5208] ldm_validate_partition_table(): Disk read failed.
[ 1717.374766][ T5208] Dev loop6: unable to read RDB block 0
[ 1717.380865][ T5208]  loop6: unable to read partition table
[ 1718.692406][T28278] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1719.115994][T28309] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1719.148476][T28309] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1719.412369][T28335] binder: 28327:28335 ioctl c0306201 2000000002c0 returned -14
[ 1719.510520][T28343] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1720.192124][T28388] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1721.303214][T28486] sg_write: data in/out 989/10 bytes for SCSI command 0x3a-- guessing data in;
[ 1721.303214][T28486]    program syz.7.13163 not setting count and/or reply_len properly
[ 1721.558114][ T1169] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1721.558389][T18283] Bluetooth: hci4: Received unexpected HCI Event 0x00
[ 1723.613104][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1723.614669][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1724.361719][T28635] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1724.473843][T28648] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1724.580098][T28658] QAT: Invalid ioctl 21531
[ 1724.780548][T28668] input: syz1 as /devices/virtual/input/input443
[ 1725.439032][T28697] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1725.834080][T28730] mkiss: ax0: crc mode is auto.
[ 1726.174006][T28746] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1726.502278][T28777] Attempt to restore checkpoint with obsolete wellknown handles
[ 1726.802014][T28804] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1728.005784][T28877] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1728.008902][T28874] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1728.515493][T28911] vim2m vim2m.0: vidioc_s_fmt queue busy
[ 1728.526194][T28911] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1728.545866][T28911] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1729.186360][T28943] input: syz1 as /devices/virtual/input/input444
[ 1729.209776][T28943] kvm: kvm [28942]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010001) = 0x200000000400
[ 1729.235383][T28958] sd 0:0:1:0: device reset
[ 1730.177846][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.191918][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1730.550630][T29037] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1731.825448][T29107] binder: 29103:29107 ioctl 40046205 0 returned -22
[ 1731.930200][T29120] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1731.955955][T29121] syz.4.13292: attempt to access beyond end of device
[ 1731.955955][T29121] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1732.234149][T29138] program syz.6.13296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1732.395277][T29148] input: syz1 as /devices/virtual/input/input447
[ 1735.103202][T29198] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1736.329242][T29278] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1737.672959][T29348] sp0: Synchronizing with TNC
[ 1738.585407][T29397] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1739.298482][T29459] binder: 29454:29459 ioctl c0306201 200000000080 returned -14
[ 1739.345240][T29459] binder: 29454:29459 ioctl c0306201 200000000540 returned -14
[ 1739.521404][T29452] [U] 
[ 1739.740735][T29487] syz.6.13370: attempt to access beyond end of device
[ 1739.740735][T29487] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1739.849532][T29491] tap0: tun_chr_ioctl cmd 1074025677
[ 1739.855210][T29491] tap0: linktype set to 774
[ 1740.398916][T29531] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[ 1740.463818][T17132] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1740.723530][T29552] i2c i2c-0: Invalid block write size 34
[ 1740.996073][T29569] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1741.201242][T29584] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1742.075801][T29644] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1742.241765][T29658] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1742.250816][T29658] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1742.413080][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1742.420232][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1742.623844][T29689] loop4: detected capacity change from 0 to 7
[ 1742.642719][T29689] Dev loop4: unable to read RDB block 7
[ 1742.648389][T29689]  loop4: unable to read partition table
[ 1742.662903][T29689] loop4: partition table beyond EOD, truncated
[ 1742.674745][    C1] I/O error, dev loop4, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[ 1742.682656][T29689] loop_reread_partitions: partition scan of loop4 (3Ÿ¾‚³˜) failed (rc=-5)
[ 1742.684198][    C1] buffer_io_error: 43 callbacks suppressed
[ 1742.684211][    C1] Buffer I/O error on dev loop4, logical block 0, lost async page write
[ 1746.151914][T29900] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1746.862025][T29954] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1747.717391][T30006] binder: 30005:30006 ioctl c018620c 200000000140 returned -1
[ 1747.878574][T30017] input: syz0 as /devices/virtual/input/input450
[ 1748.101791][T30040] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1750.949253][T30206] binder: 30205:30206 ioctl c0046209 0 returned -22
[ 1750.996810][T30206] syz.6.13501: attempt to access beyond end of device
[ 1750.996810][T30206] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1752.086990][T30276] dlm: plock device version mismatch: kernel (1.2.0), user (1986356271.2037675055.13139)
[ 1752.685995][T30309] syz.4.13520: attempt to access beyond end of device
[ 1752.685995][T30309] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1752.719088][T30320] syz.4.13520: attempt to access beyond end of device
[ 1752.719088][T30320] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1752.953697][T30339] cgroup: fork rejected by pids controller in /syz6
[ 1754.550219][   T66] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1754.623941][T18283] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1754.637838][T18283] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1754.654293][T18283] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1754.665345][T18283] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1754.676491][T18283] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1754.708214][ T1892] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1754.728297][ T1892] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1754.736036][ T1892] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1754.746573][ T1892] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1754.754514][ T1892] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1754.925146][   T66] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1755.239277][   T66] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1755.654775][   T66] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1756.271978][T30516] chnl_net:caif_netlink_parms(): no params data found
[ 1756.326369][   T66] bridge_slave_1: left allmulticast mode
[ 1756.342655][   T66] bridge_slave_1: left promiscuous mode
[ 1756.351964][   T66] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1756.454820][   T66] bridge_slave_0: left allmulticast mode
[ 1756.470707][   T66] bridge_slave_0: left promiscuous mode
[ 1756.477826][   T66] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1756.817588][ T1892] Bluetooth: hci2: command tx timeout
[ 1758.593621][   T66] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1758.673314][   T66] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1758.716047][   T66] bond0 (unregistering): Released all slaves
[ 1758.893064][ T1892] Bluetooth: hci2: command tx timeout
[ 1759.198556][T30752] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1759.227489][T30752] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1760.286441][T30516] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1760.302818][T30516] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1760.320246][T30516] bridge_slave_0: entered allmulticast mode
[ 1760.342124][T30516] bridge_slave_0: entered promiscuous mode
[ 1760.442977][T30918] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1760.443963][T18283] Bluetooth: hci4: unexpected event 0x04 length: 0 < 10
[ 1760.457579][T30918] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1760.470843][T21454] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1760.480293][T21454] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1760.491514][T21454] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1760.522830][   T66] hsr_slave_0: left promiscuous mode
[ 1760.562897][   T66] hsr_slave_1: left promiscuous mode
[ 1760.568759][   T66] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1760.577367][   T66] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1760.637217][   T66] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1760.661095][   T66] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1760.770450][   T66] veth1_macvtap: left promiscuous mode
[ 1760.786551][   T66] veth0_macvtap: left promiscuous mode
[ 1760.792239][   T66] veth1_vlan: left promiscuous mode
[ 1760.799567][   T66] veth0_vlan: left promiscuous mode
[ 1761.535854][T30965] binder: 30964:30965 ioctl c0046209 0 returned -22
[ 1761.656540][T30972] random: crng reseeded on system resumption
[ 1762.492748][ T1892] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1762.503040][T18283] Bluetooth: hci4: command 0x1003 tx timeout
[ 1762.624534][T30993] CUSE: zero length info key specified
[ 1763.225077][   T66] team0 (unregistering): Port device team_slave_1 removed
[ 1763.433567][   T66] team0 (unregistering): Port device team_slave_0 removed
[ 1765.829429][T30516] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1765.840692][T30516] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1765.849012][T30516] bridge_slave_1: entered allmulticast mode
[ 1765.857572][T30516] bridge_slave_1: entered promiscuous mode
[ 1766.081663][T30516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1766.192358][T30516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1766.615851][T30516] team0: Port device team_slave_0 added
[ 1766.651617][T30516] team0: Port device team_slave_1 added
[ 1766.986125][T30516] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1767.001309][T30516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1767.037773][T30516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1767.285390][T30516] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1767.306373][T30516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1767.332948][T30516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1767.569324][T30516] hsr_slave_0: entered promiscuous mode
[ 1767.587422][T30516] hsr_slave_1: entered promiscuous mode
[ 1767.603487][T30516] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1767.617018][T30516] Cannot create hsr debugfs directory
[ 1768.935809][T31367] sp0: Synchronizing with TNC
[ 1768.955177][T31366] [U] è
[ 1769.888509][T30516] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1769.974560][T30516] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1770.069351][T30516] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1770.127299][T30516] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1770.412248][T30516] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1770.523439][T30516] 8021q: adding VLAN 0 to HW filter on device team0
[ 1770.565931][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1770.573144][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1770.622517][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1770.629742][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1770.708984][T30516] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1771.125328][T30516] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1771.724374][T30516] veth0_vlan: entered promiscuous mode
[ 1771.758443][T30516] veth1_vlan: entered promiscuous mode
[ 1771.851686][T30516] veth0_macvtap: entered promiscuous mode
[ 1771.871943][T30516] veth1_macvtap: entered promiscuous mode
[ 1771.923994][T30516] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1771.998570][T30516] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1772.035028][T30516] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.061334][T30516] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.085009][T30516] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.115858][T30516] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1772.480894][T23665] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1772.517756][T23665] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1773.085869][T31629] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1773.940502][T21454] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1774.341005][T21454] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1774.522288][T18283] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1774.532958][T18283] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1774.547299][T18283] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1774.579438][T18283] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1774.588033][T18283] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1774.601316][ T1892] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1774.621738][ T1892] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1774.638579][ T1892] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1774.670468][ T1892] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1774.678876][ T1892] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1774.706712][T21454] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1774.969393][T21454] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1775.230642][T31724] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1775.851575][T31676] chnl_net:caif_netlink_parms(): no params data found
[ 1775.889545][T21454] bridge_slave_1: left allmulticast mode
[ 1775.897028][T21454] bridge_slave_1: left promiscuous mode
[ 1775.910975][T21454] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1776.004078][T21454] bridge_slave_0: left allmulticast mode
[ 1776.009767][T21454] bridge_slave_0: left promiscuous mode
[ 1776.018743][T21454] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1776.049407][T31741] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1776.055541][T31741] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1776.559641][T31923] binder: 31921:31923 ioctl c018620c 200000000140 returned -1
[ 1776.694119][T31931] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1778.097014][T21454] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1778.183372][T21454] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1778.226056][T21454] bond0 (unregistering): Released all slaves
[ 1778.561271][T31984] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1779.111032][T31676] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1779.122003][T31676] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1779.130776][T31676] bridge_slave_0: entered allmulticast mode
[ 1779.140092][T31676] bridge_slave_0: entered promiscuous mode
[ 1779.369513][T31676] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1779.394737][T31676] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1779.406487][T31676] bridge_slave_1: entered allmulticast mode
[ 1779.444252][T31676] bridge_slave_1: entered promiscuous mode
[ 1779.557465][T32061] syz.4.13678: attempt to access beyond end of device
[ 1779.557465][T32061] nbd0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1780.151716][T31676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1780.204144][T31676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1780.415199][T21454] hsr_slave_0: left promiscuous mode
[ 1780.454367][T21454] hsr_slave_1: left promiscuous mode
[ 1780.468224][T21454] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1780.476550][T32111] input: syz1 as /devices/virtual/input/input454
[ 1780.490552][T21454] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1780.573088][T21454] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1780.580563][T21454] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1780.736163][T21454] veth1_macvtap: left promiscuous mode
[ 1780.741759][T21454] veth0_macvtap: left promiscuous mode
[ 1780.762322][T21454] veth1_vlan: left promiscuous mode
[ 1780.774037][T21454] veth0_vlan: left promiscuous mode
[ 1781.185818][T32143] vim2m vim2m.0: Fourcc format (0x56595559) invalid.
[ 1783.283958][T21454] team0 (unregistering): Port device team_slave_1 removed
[ 1783.524533][T21454] team0 (unregistering): Port device team_slave_0 removed
[ 1786.257398][T31676] team0: Port device team_slave_0 added
[ 1786.285641][T31676] team0: Port device team_slave_1 added
[ 1786.426883][T32231] input: syz1 as /devices/virtual/input/input455
[ 1786.437331][T32227] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1786.448484][T32230] iommufd_mock iommufd_mock1: Adding to iommu group 1
[ 1786.584792][T31676] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1786.591780][T31676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1786.617685][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1786.688460][T31676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1786.709951][T31676] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1786.735097][T31676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1786.806181][T31676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1787.021725][T32300] sd 0:0:1:0: device reset
[ 1787.186050][T31676] hsr_slave_0: entered promiscuous mode
[ 1787.213787][T31676] hsr_slave_1: entered promiscuous mode
[ 1787.220129][T31676] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1787.243836][T31676] Cannot create hsr debugfs directory
[ 1787.285435][T23665] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1787.941591][T32391] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1789.297008][T18283] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1789.297022][ T1892] Bluetooth: hci4: command 0x1003 tx timeout
[ 1789.915771][T31676] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1789.993992][ T5020] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1790.021241][T31676] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1790.201949][T31676] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1790.257502][T31676] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1790.565828][T31676] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1790.615221][T31676] 8021q: adding VLAN 0 to HW filter on device team0
[ 1790.641987][   T66] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1790.649223][   T66] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1790.703982][T21454] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1790.711144][T21454] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1791.140323][T31676] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1791.624041][T32717] input: syz0 as /devices/virtual/input/input459
[ 1791.630943][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1791.637356][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1791.737358][T31676] veth0_vlan: entered promiscuous mode
[ 1791.760894][T31676] veth1_vlan: entered promiscuous mode
[ 1791.852895][T31676] veth0_macvtap: entered promiscuous mode
[ 1791.883985][T31676] veth1_macvtap: entered promiscuous mode
[ 1791.936601][T31676] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1791.959288][T31676] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1791.985944][T31676] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.012800][T31676] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.012895][ T1892] Bluetooth: hci4: command 0x1003 tx timeout
[ 1792.021497][T31676] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.021525][T31676] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1792.048348][T18283] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1792.458382][ T5020] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1792.481222][ T5020] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1792.586807][ T5020] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1792.604218][ T5020] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1793.563103][  T353] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1793.630767][  T363] kvm: user requested TSC rate below hardware speed
[ 1793.683592][ T1892] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1793.695579][ T1892] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1793.710082][ T1892] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1793.721302][ T1892] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1793.740361][ T1892] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1794.328841][  T416] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1794.515903][T21454] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1795.016321][T21454] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1795.398499][T21454] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1795.606005][T21454] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1795.773347][ T1892] Bluetooth: hci0: command tx timeout
[ 1795.914934][T21454] bridge_slave_1: left allmulticast mode
[ 1795.920719][T21454] bridge_slave_1: left promiscuous mode
[ 1795.928319][T21454] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1796.015223][T21454] bridge_slave_0: left allmulticast mode
[ 1796.020991][T21454] bridge_slave_0: left promiscuous mode
[ 1796.026850][T21454] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1796.892944][  T403] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 1796.899151][  T403] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[ 1797.280226][  T524] input: syz0 as /devices/virtual/input/input460
[ 1797.531671][  T537] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1798.015752][T21454] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1798.123514][T21454] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1798.184618][T21454] bond0 (unregistering): Released all slaves
[ 1798.639461][  T366] chnl_net:caif_netlink_parms(): no params data found
[ 1799.542942][  T366] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1799.550157][  T366] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1799.570857][  T366] bridge_slave_0: entered allmulticast mode
[ 1799.586263][  T366] bridge_slave_0: entered promiscuous mode
[ 1799.610310][  T366] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1799.620290][  T366] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1799.631961][  T366] bridge_slave_1: entered allmulticast mode
[ 1799.645042][  T366] bridge_slave_1: entered promiscuous mode
[ 1799.862929][T21454] hsr_slave_0: left promiscuous mode
[ 1799.902861][T21454] hsr_slave_1: left promiscuous mode
[ 1799.909503][T21454] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1799.917371][T21454] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1799.963754][T21454] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1799.971238][T21454] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1800.101935][T21454] veth1_macvtap: left promiscuous mode
[ 1800.107596][T21454] veth0_macvtap: left promiscuous mode
[ 1800.118740][T21454] veth1_vlan: left promiscuous mode
[ 1800.126202][T21454] veth0_vlan: left promiscuous mode
[ 1801.349948][  T822] i2c i2c-0: Invalid block write size 34
[ 1802.524144][T21454] team0 (unregistering): Port device team_slave_1 removed
[ 1802.745219][T21454] team0 (unregistering): Port device team_slave_0 removed
[ 1805.538908][  T366] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1805.790036][  T366] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1805.993729][  T955] sg_write: data in/out 989/10 bytes for SCSI command 0x3a-- guessing data in;
[ 1805.993729][  T955]    program syz.5.13792 not setting count and/or reply_len properly
[ 1806.006933][  T366] team0: Port device team_slave_0 added
[ 1806.042714][  T366] team0: Port device team_slave_1 added
[ 1806.308882][  T366] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1806.318110][  T366] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1806.357719][  T366] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1806.433469][  T366] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1806.443308][  T366] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1806.469193][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1806.521838][  T366] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1806.908385][  T366] hsr_slave_0: entered promiscuous mode
[ 1806.943414][  T366] hsr_slave_1: entered promiscuous mode
[ 1806.963354][  T366] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1807.003494][  T366] Cannot create hsr debugfs directory
[ 1808.145112][ T1178] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1809.147894][ T1267] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1809.418788][  T366] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1809.455681][T17414] hid-generic 0000:0000:0000.001A: item fetching failed at offset 0/1
[ 1809.482152][T17414] hid-generic 0000:0000:0000.001A: probe with driver hid-generic failed with error -22
[ 1809.496537][ T1313] binder: 1312:1313 ioctl 40046205 0 returned -22
[ 1809.746508][  T366] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1809.810489][  T366] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1809.866242][  T366] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1810.077914][  T366] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1810.168635][  T366] 8021q: adding VLAN 0 to HW filter on device team0
[ 1810.199519][ T5020] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1810.206759][ T5020] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1810.259846][T21454] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1810.267060][T21454] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1810.297793][ T1353] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1810.330467][ T1353] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1810.859586][  T366] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1811.623998][  T366] veth0_vlan: entered promiscuous mode
[ 1811.640744][  T366] veth1_vlan: entered promiscuous mode
[ 1811.748637][  T366] veth0_macvtap: entered promiscuous mode
[ 1811.818170][  T366] veth1_macvtap: entered promiscuous mode
[ 1811.857521][  T366] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1811.893292][  T366] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1811.914651][  T366] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1811.935459][  T366] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1811.963010][  T366] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1812.002931][  T366] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1812.403188][ T1169] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1812.443919][ T1169] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1812.518368][ T1490] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1812.853424][ T1511] dlm: no locking on control device
[ 1813.989897][ T5020] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1814.348493][ T5020] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1814.360531][ T1593] kvm: kvm [1585]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000004)
[ 1814.495690][T18283] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1814.504925][T18283] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1814.513795][T18283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1814.522205][T18283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1814.529956][T18283] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1814.565380][ T1892] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1814.573196][ T1892] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1814.580550][ T1892] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1814.593495][ T1892] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1814.603149][ T1892] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1814.865736][ T5020] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1814.885346][ T1655] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1814.963793][ T1655] can0: slcan on ptm0.
[ 1815.118776][ T5020] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1815.283666][ T1654] can0 (unregistered): slcan off ptm0.
[ 1815.702108][ T1597] chnl_net:caif_netlink_parms(): no params data found
[ 1815.765062][ T5020] bridge_slave_1: left allmulticast mode
[ 1815.792634][ T5020] bridge_slave_1: left promiscuous mode
[ 1815.803062][ T5020] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1815.842260][ T1822] CUSE: info not properly terminated
[ 1815.877689][ T5020] bridge_slave_0: left allmulticast mode
[ 1815.890936][ T5020] bridge_slave_0: left promiscuous mode
[ 1815.900961][ T5020] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1816.652867][T18283] Bluetooth: hci0: command tx timeout
[ 1817.863409][ T5020] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1817.943189][ T5020] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1817.984524][ T5020] bond0 (unregistering): Released all slaves
[ 1818.070581][ T1829] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1818.082869][ T1829] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1818.534181][ T1597] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1818.541335][ T1597] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1818.549051][ T1597] bridge_slave_0: entered allmulticast mode
[ 1818.557978][ T1597] bridge_slave_0: entered promiscuous mode
[ 1818.567172][ T1597] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1818.575965][ T1597] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1818.583195][ T1597] bridge_slave_1: entered allmulticast mode
[ 1818.590169][ T1597] bridge_slave_1: entered promiscuous mode
[ 1818.807425][ T1597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1818.820498][ T1597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1819.028739][ T1597] team0: Port device team_slave_0 added
[ 1819.038251][ T1597] team0: Port device team_slave_1 added
[ 1819.366471][ T1597] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1819.373706][ T1597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1819.400646][ T1597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1819.416451][ T1597] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1819.423620][ T1597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1819.449793][ T1597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1819.703825][ T1597] hsr_slave_0: entered promiscuous mode
[ 1819.710116][ T1597] hsr_slave_1: entered promiscuous mode
[ 1819.716687][ T1597] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1819.724352][ T1597] Cannot create hsr debugfs directory
[ 1821.159102][ T1597] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1821.216446][ T1597] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1821.263213][ T1597] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1821.296302][ T1597] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1821.432032][ T1597] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1821.470259][ T1597] 8021q: adding VLAN 0 to HW filter on device team0
[ 1821.492101][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1821.499277][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1821.526087][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1821.533256][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1821.813875][ T1597] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1822.006552][ T1597] veth0_vlan: entered promiscuous mode
[ 1822.023181][ T1597] veth1_vlan: entered promiscuous mode
[ 1822.050906][ T1597] veth0_macvtap: entered promiscuous mode
[ 1822.060686][ T1597] veth1_macvtap: entered promiscuous mode
[ 1822.078180][ T1597] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1822.092095][ T1597] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1822.105382][ T1597] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1822.116263][ T1597] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1822.126361][ T1597] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1822.135753][ T1597] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1853.056928][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.063440][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1914.498848][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1914.508207][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1968.892864][   T31] INFO: task kworker/1:2:3590 blocked for more than 143 seconds.
[ 1968.900726][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1968.915185][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1968.924865][   T31] task:kworker/1:2     state:D stack:23064 pid:3590  tgid:3590  ppid:2      task_flags:0x4208060 flags:0x00004000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1968.937048][   T31] Workqueue: events rfkill_global_led_trigger_worker
[ 1968.944103][   T31] Call Trace:
[ 1968.947407][   T31]  <TASK>
[ 1968.950357][   T31]  __schedule+0x16f5/0x4d00
[ 1968.966971][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1968.972381][   T31]  ? schedule+0x165/0x360
[ 1968.992524][   T31]  ? __pfx___schedule+0x10/0x10
[ 1968.997431][   T31]  ? schedule+0x91/0x360
[ 1969.001694][   T31]  schedule+0x165/0x360
[ 1969.012705][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1969.018196][   T31]  __mutex_lock+0x724/0xe80
[ 1969.023128][   T31]  ? look_up_lock_class+0x74/0x170
[ 1969.028270][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1969.038554][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[ 1969.045059][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1969.050113][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1969.063284][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1969.069036][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[ 1969.075786][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1969.081525][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1969.087172][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1969.094060][   T31]  worker_thread+0x8a0/0xda0
[ 1969.098671][   T31]  kthread+0x70e/0x8a0
[ 1969.102782][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1969.107895][   T31]  ? __pfx_kthread+0x10/0x10
[ 1969.112580][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1969.117788][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1969.123014][   T31]  ? __pfx_kthread+0x10/0x10
[ 1969.127610][   T31]  ret_from_fork+0x3f9/0x770
[ 1969.132182][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1969.137562][   T31]  ? __switch_to_asm+0x39/0x70
[ 1969.142342][   T31]  ? __switch_to_asm+0x33/0x70
[ 1969.147199][   T31]  ? __pfx_kthread+0x10/0x10
[ 1969.151798][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1969.156666][   T31]  </TASK>
[ 1969.159726][   T31] INFO: task kworker/u8:9:5020 blocked for more than 143 seconds.
[ 1969.167706][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1969.175380][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1969.184096][   T31] task:kworker/u8:9    state:D stack:21688 pid:5020  tgid:5020  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1969.196148][   T31] Workqueue: netns cleanup_net
[ 1969.200932][   T31] Call Trace:
[ 1969.204274][   T31]  <TASK>
[ 1969.207222][   T31]  __schedule+0x16f5/0x4d00
[ 1969.211753][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1969.216741][   T31]  ? schedule+0x165/0x360
[ 1969.221151][   T31]  ? __pfx___schedule+0x10/0x10
[ 1969.226063][   T31]  ? schedule+0x91/0x360
[ 1969.230338][   T31]  schedule+0x165/0x360
[ 1969.234521][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1969.239987][   T31]  __mutex_lock+0x724/0xe80
[ 1969.244534][   T31]  ? kobject_put+0x43f/0x480
[ 1969.249132][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1969.253840][   T31]  ? rfkill_unregister+0xc8/0x220
[ 1969.258871][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1969.263955][   T31]  ? __pfx_device_del+0x10/0x10
[ 1969.268816][   T31]  rfkill_unregister+0xc8/0x220
[ 1969.273734][   T31]  wiphy_unregister+0x238/0xae0
[ 1969.278594][   T31]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[ 1969.284521][   T31]  ? __pfx_wiphy_unregister+0x10/0x10
[ 1969.289896][   T31]  ? kasan_quarantine_put+0xdd/0x220
[ 1969.295292][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1969.300511][   T31]  ? kfree+0x18e/0x440
[ 1969.304619][   T31]  ieee80211_unregister_hw+0x1e2/0x2c0
[ 1969.310091][   T31]  mac80211_hwsim_del_radio+0x275/0x460
[ 1969.315714][   T31]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[ 1969.321809][   T31]  hwsim_exit_net+0x584/0x640
[ 1969.326542][   T31]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1969.331745][   T31]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[ 1969.337586][   T31]  ops_undo_list+0x49a/0x990
[ 1969.342186][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1969.347360][   T31]  cleanup_net+0x4c5/0x800
[ 1969.351789][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1969.356770][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1969.361977][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1969.367719][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1969.373466][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1969.379016][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1969.385090][   T31]  worker_thread+0x8a0/0xda0
[ 1969.389708][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1969.396074][   T31]  ? __kthread_parkme+0x7b/0x200
[ 1969.401008][   T31]  kthread+0x70e/0x8a0
[ 1969.405124][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1969.410240][   T31]  ? __pfx_kthread+0x10/0x10
[ 1969.414871][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1969.420078][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1969.425319][   T31]  ? __pfx_kthread+0x10/0x10
[ 1969.429918][   T31]  ret_from_fork+0x3f9/0x770
[ 1969.434563][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1969.439694][   T31]  ? __switch_to_asm+0x39/0x70
[ 1969.444511][   T31]  ? __switch_to_asm+0x33/0x70
[ 1969.449291][   T31]  ? __pfx_kthread+0x10/0x10
[ 1969.454240][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1969.459048][   T31]  </TASK>
[ 1969.462132][   T31] INFO: task syz-executor:1597 blocked for more than 143 seconds.
[ 1969.477473][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1969.485176][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1969.494050][   T31] task:syz-executor    state:D stack:21960 pid:1597  tgid:1597  ppid:1      task_flags:0x400140 flags:0x00004004
[ 1969.506021][   T31] Call Trace:
[ 1969.509306][   T31]  <TASK>
[ 1969.512224][   T31]  __schedule+0x16f5/0x4d00
[ 1969.516801][   T31]  ? __kasan_slab_free+0x62/0x70
[ 1969.521751][   T31]  ? security_file_open+0xb1/0x270
[ 1969.526884][   T31]  ? do_dentry_open+0x35e/0x1970
[ 1969.531824][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1969.537165][   T31]  ? schedule+0x165/0x360
[ 1969.541519][   T31]  ? __pfx___schedule+0x10/0x10
[ 1969.546475][   T31]  ? schedule+0x91/0x360
[ 1969.550731][   T31]  schedule+0x165/0x360
[ 1969.554992][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1969.560462][   T31]  __mutex_lock+0x724/0xe80
[ 1969.565021][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1969.569715][   T31]  ? misc_open+0x51/0x330
[ 1969.574192][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1969.579278][   T31]  misc_open+0x51/0x330
[ 1969.583531][   T31]  chrdev_open+0x4cc/0x5e0
[ 1969.587972][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1969.593018][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1969.597970][   T31]  do_dentry_open+0xdf3/0x1970
[ 1969.602787][   T31]  vfs_open+0x3b/0x340
[ 1969.606858][   T31]  ? path_openat+0x2ecd/0x3830
[ 1969.611609][   T31]  path_openat+0x2ee5/0x3830
[ 1969.616303][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1969.621175][   T31]  ? do_syscall_64+0xfa/0x3b0
[ 1969.625885][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1969.630827][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1969.636975][   T31]  do_filp_open+0x1fa/0x410
[ 1969.641487][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1969.646363][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1969.651406][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1969.656334][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1969.660681][   T31]  do_sys_openat2+0x121/0x1c0
[ 1969.665409][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1969.670608][   T31]  ? fput_close_sync+0x119/0x200
[ 1969.675641][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[ 1969.680937][   T31]  __x64_sys_openat+0x138/0x170
[ 1969.685819][   T31]  do_syscall_64+0xfa/0x3b0
[ 1969.690325][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1969.695794][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1969.701879][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1969.706717][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1969.712703][   T31] RIP: 0033:0x7fc21fb8d290
[ 1969.717128][   T31] RSP: 002b:00007ffcae2c9400 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1969.725573][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fc21fb8d290
[ 1969.733640][   T31] RDX: 0000000000000002 RSI: 00007fc21fc115b1 RDI: 00000000ffffff9c
[ 1969.741616][   T31] RBP: 00007fc21fc115b1 R08: 0000000000000000 R09: 0000000000000000
[ 1969.749602][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008
[ 1969.757657][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1969.765704][   T31]  </TASK>
[ 1969.768746][   T31] INFO: task syz.7.13862:1812 blocked for more than 144 seconds.
[ 1969.777418][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1969.785113][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1969.793833][   T31] task:syz.7.13862     state:D stack:26760 pid:1812  tgid:1807  ppid:23510  task_flags:0x400040 flags:0x00004006
[ 1969.805805][   T31] Call Trace:
[ 1969.809085][   T31]  <TASK>
[ 1969.812004][   T31]  __schedule+0x16f5/0x4d00
[ 1969.816566][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1969.821435][   T31]  ? schedule+0x165/0x360
[ 1969.825825][   T31]  ? __pfx___schedule+0x10/0x10
[ 1969.830715][   T31]  ? schedule+0x91/0x360
[ 1969.835033][   T31]  schedule+0x165/0x360
[ 1969.839210][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1969.844708][   T31]  __mutex_lock+0x724/0xe80
[ 1969.849215][   T31]  ? kobject_put+0x43f/0x480
[ 1969.853842][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1969.858534][   T31]  ? rfkill_unregister+0xc8/0x220
[ 1969.863623][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1969.868663][   T31]  ? __pfx_device_del+0x10/0x10
[ 1969.873588][   T31]  rfkill_unregister+0xc8/0x220
[ 1969.878530][   T31]  nfc_unregister_device+0x96/0x2a0
[ 1969.883768][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[ 1969.889498][   T31]  virtual_ncidev_close+0x56/0x90
[ 1969.894570][   T31]  __fput+0x44c/0xa70
[ 1969.898563][   T31]  task_work_run+0x1d1/0x260
[ 1969.903210][   T31]  ? __pfx_task_work_run+0x10/0x10
[ 1969.908339][   T31]  get_signal+0x11ed/0x1340
[ 1969.912874][   T31]  ? task_work_add+0x377/0x420
[ 1969.917664][   T31]  ? __pfx_vfs_read+0x10/0x10
[ 1969.922357][   T31]  arch_do_signal_or_restart+0x9a/0x750
[ 1969.927927][   T31]  ? __pfx___fput_deferred+0x10/0x10
[ 1969.933668][   T31]  ? __fget_files+0x2a/0x420
[ 1969.938357][   T31]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1969.944605][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[ 1969.950083][   T31]  exit_to_user_mode_loop+0x75/0x110
[ 1969.955430][   T31]  do_syscall_64+0x2bd/0x3b0
[ 1969.960024][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1969.965263][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1969.971334][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1969.976057][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1969.981953][   T31] RIP: 0033:0x7faa9878e929
[ 1969.986387][   T31] RSP: 002b:00007faa996c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1969.994852][   T31] RAX: fffffffffffffff2 RBX: 00007faa989b5fa0 RCX: 00007faa9878e929
[ 1970.002882][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1970.010858][   T31] RBP: 00007faa98810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1970.019104][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1970.027113][   T31] R13: 0000000000000000 R14: 00007faa989b5fa0 R15: 00007ffe7fffa038
[ 1970.035164][   T31]  </TASK>
[ 1970.038194][   T31] INFO: task syz.5.13864:1829 blocked for more than 144 seconds.
[ 1970.045956][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1970.053671][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1970.062335][   T31] task:syz.5.13864     state:D stack:26784 pid:1829  tgid:1826  ppid:13568  task_flags:0x400040 flags:0x00004006
[ 1970.074278][   T31] Call Trace:
[ 1970.077567][   T31]  <TASK>
[ 1970.080502][   T31]  __schedule+0x16f5/0x4d00
[ 1970.085076][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1970.089950][   T31]  ? schedule+0x165/0x360
[ 1970.094355][   T31]  ? __pfx___schedule+0x10/0x10
[ 1970.099221][   T31]  ? schedule+0x91/0x360
[ 1970.103522][   T31]  schedule+0x165/0x360
[ 1970.107691][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1970.113209][   T31]  __mutex_lock+0x724/0xe80
[ 1970.117714][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1970.122589][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1970.127297][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[ 1970.132655][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1970.137691][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1970.142940][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1970.148843][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1970.155215][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 1970.160946][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[ 1970.166100][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 1970.171827][   T31]  rfkill_set_block+0x1cf/0x440
[ 1970.177039][   T31]  rfkill_fop_write+0x44b/0x570
[ 1970.181909][   T31]  ? common_file_perm+0x199/0x200
[ 1970.186983][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[ 1970.192361][   T31]  ? security_kernfs_init_security+0x250/0x290
[ 1970.198566][   T31]  ? rw_verify_area+0x258/0x650
[ 1970.203474][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[ 1970.208856][   T31]  vfs_write+0x27b/0xa90
[ 1970.213153][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 1970.217932][   T31]  ? __fget_files+0x2a/0x420
[ 1970.222579][   T31]  ? __fget_files+0x2a/0x420
[ 1970.227176][   T31]  ? __fget_files+0x3a0/0x420
[ 1970.231840][   T31]  ? __fget_files+0x2a/0x420
[ 1970.236463][   T31]  ksys_write+0x145/0x250
[ 1970.240800][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 1970.245689][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1970.250461][   T31]  ? do_syscall_64+0xbe/0x3b0
[ 1970.255245][   T31]  do_syscall_64+0xfa/0x3b0
[ 1970.259807][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1970.265063][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.271136][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1970.275838][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.281732][   T31] RIP: 0033:0x7fe62f98e929
[ 1970.286179][   T31] RSP: 002b:00007fe630753038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1970.294633][   T31] RAX: ffffffffffffffda RBX: 00007fe62fbb6080 RCX: 00007fe62f98e929
[ 1970.302635][   T31] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000008
[ 1970.310606][   T31] RBP: 00007fe62fa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1970.318596][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1970.326592][   T31] R13: 0000000000000000 R14: 00007fe62fbb6080 R15: 00007ffdc6b075b8
[ 1970.334684][   T31]  </TASK>
[ 1970.337741][   T31] INFO: task syz.6.13868:1852 blocked for more than 144 seconds.
[ 1970.345505][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1970.353176][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1970.361840][   T31] task:syz.6.13868     state:D stack:26504 pid:1852  tgid:1850  ppid:31676  task_flags:0x400140 flags:0x00004004
[ 1970.373788][   T31] Call Trace:
[ 1970.377070][   T31]  <TASK>
[ 1970.379995][   T31]  __schedule+0x16f5/0x4d00
[ 1970.384575][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1970.389435][   T31]  ? schedule+0x165/0x360
[ 1970.393792][   T31]  ? __pfx___schedule+0x10/0x10
[ 1970.398662][   T31]  ? schedule+0x91/0x360
[ 1970.402976][   T31]  schedule+0x165/0x360
[ 1970.407143][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1970.412636][   T31]  __mutex_lock+0x724/0xe80
[ 1970.417145][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1970.421806][   T31]  ? rfkill_fop_open+0x12d/0x820
[ 1970.426764][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1970.431794][   T31]  ? __raw_spin_lock_init+0x45/0x100
[ 1970.437105][   T31]  ? __init_waitqueue_head+0xa9/0x150
[ 1970.442525][   T31]  rfkill_fop_open+0x12d/0x820
[ 1970.447301][   T31]  ? __pfx_rfkill_fop_open+0x10/0x10
[ 1970.452621][   T31]  misc_open+0x2bc/0x330
[ 1970.456875][   T31]  chrdev_open+0x4cc/0x5e0
[ 1970.461282][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1970.466273][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1970.471232][   T31]  do_dentry_open+0xdf3/0x1970
[ 1970.476079][   T31]  vfs_open+0x3b/0x340
[ 1970.480154][   T31]  ? path_openat+0x2ecd/0x3830
[ 1970.484972][   T31]  path_openat+0x2ee5/0x3830
[ 1970.489569][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1970.494752][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1970.499713][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.506248][   T31]  do_filp_open+0x1fa/0x410
[ 1970.510770][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1970.515667][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1970.520708][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1970.525619][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1970.529962][   T31]  do_sys_openat2+0x121/0x1c0
[ 1970.534669][   T31]  ? __se_sys_futex+0x36f/0x400
[ 1970.539528][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1970.544763][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1970.549533][   T31]  __x64_sys_openat+0x138/0x170
[ 1970.554422][   T31]  do_syscall_64+0xfa/0x3b0
[ 1970.558933][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1970.564232][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.570304][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1970.575206][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.581127][   T31] RIP: 0033:0x7ff47a98e929
[ 1970.585723][   T31] RSP: 002b:00007ff47b87a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1970.594477][   T31] RAX: ffffffffffffffda RBX: 00007ff47abb6080 RCX: 00007ff47a98e929
[ 1970.602707][   T31] RDX: 0000000000000801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1970.610692][   T31] RBP: 00007ff47aa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1970.618964][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1970.626980][   T31] R13: 0000000000000000 R14: 00007ff47abb6080 R15: 00007ffca6526b38
[ 1970.635032][   T31]  </TASK>
[ 1970.638148][   T31] INFO: task syz.6.13868:1853 blocked for more than 145 seconds.
[ 1970.645889][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1970.653565][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1970.662228][   T31] task:syz.6.13868     state:D stack:28328 pid:1853  tgid:1850  ppid:31676  task_flags:0x400040 flags:0x00004004
[ 1970.674181][   T31] Call Trace:
[ 1970.677468][   T31]  <TASK>
[ 1970.680400][   T31]  __schedule+0x16f5/0x4d00
[ 1970.684956][   T31]  ? __kasan_slab_free+0x62/0x70
[ 1970.689905][   T31]  ? security_file_open+0xb1/0x270
[ 1970.695056][   T31]  ? do_dentry_open+0x35e/0x1970
[ 1970.699995][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1970.704903][   T31]  ? schedule+0x165/0x360
[ 1970.709251][   T31]  ? __pfx___schedule+0x10/0x10
[ 1970.714166][   T31]  ? schedule+0x91/0x360
[ 1970.718418][   T31]  schedule+0x165/0x360
[ 1970.722619][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1970.728094][   T31]  __mutex_lock+0x724/0xe80
[ 1970.732708][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1970.737403][   T31]  ? misc_open+0x51/0x330
[ 1970.741752][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1970.747419][   T31]  misc_open+0x51/0x330
[ 1970.751594][   T31]  chrdev_open+0x4cc/0x5e0
[ 1970.756062][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1970.761022][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1970.765994][   T31]  do_dentry_open+0xdf3/0x1970
[ 1970.770774][   T31]  vfs_open+0x3b/0x340
[ 1970.774884][   T31]  ? path_openat+0x2ecd/0x3830
[ 1970.779656][   T31]  path_openat+0x2ee5/0x3830
[ 1970.784269][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1970.789143][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1970.794114][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.800193][   T31]  do_filp_open+0x1fa/0x410
[ 1970.804729][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1970.809582][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1970.816062][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1970.820947][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1970.825318][   T31]  do_sys_openat2+0x121/0x1c0
[ 1970.829977][   T31]  ? __se_sys_futex+0x36f/0x400
[ 1970.834864][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1970.840066][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1970.844884][   T31]  __x64_sys_openat+0x138/0x170
[ 1970.849740][   T31]  do_syscall_64+0xfa/0x3b0
[ 1970.854283][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1970.859499][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.865617][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1970.870306][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1970.876246][   T31] RIP: 0033:0x7ff47a98e929
[ 1970.880663][   T31] RSP: 002b:00007ff47b859038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1970.889121][   T31] RAX: ffffffffffffffda RBX: 00007ff47abb6160 RCX: 00007ff47a98e929
[ 1970.897119][   T31] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[ 1970.905130][   T31] RBP: 00007ff47aa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1970.913138][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1970.921092][   T31] R13: 0000000000000000 R14: 00007ff47abb6160 R15: 00007ffca6526b38
[ 1970.929103][   T31]  </TASK>
[ 1970.932158][   T31] 
[ 1970.932158][   T31] Showing all locks held in the system:
[ 1970.939921][   T31] 1 lock held by khungtaskd/31:
[ 1970.944799][   T31]  #0: ffffffff8e33eda0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1970.954755][   T31] 3 locks held by kworker/1:2/3590:
[ 1970.959953][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1970.970982][   T31]  #1: ffffc9000d11fbc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1970.984895][   T31]  #2: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[ 1970.996320][   T31] 2 locks held by getty/5597:
[ 1971.001005][   T31]  #0: ffff888030a520a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1971.010828][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 1971.021035][   T31] 4 locks held by kworker/u8:9/5020:
[ 1971.026355][   T31]  #0: ffff88801b6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1971.037299][   T31]  #1: ffffc90003547bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1971.047894][   T31]  #2: ffffffff8f7159d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 1971.057232][   T31]  #3: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[ 1971.067388][   T31] 1 lock held by syz-executor/1597:
[ 1971.072660][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.081141][   T31] 2 locks held by syz.7.13862/1812:
[ 1971.086356][   T31]  #0: ffff888031516100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[ 1971.096163][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[ 1971.106321][   T31] 2 locks held by syz.5.13864/1829:
[ 1971.111514][   T31]  #0: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x191/0x570
[ 1971.121630][   T31]  #1: ffff888031516100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[ 1971.131347][   T31] 2 locks held by syz.6.13868/1852:
[ 1971.136607][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.145129][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_open+0x12d/0x820
[ 1971.155224][   T31] 1 lock held by syz.6.13868/1853:
[ 1971.160339][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.168878][   T31] 1 lock held by syz-executor/2195:
[ 1971.174112][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.182634][   T31] 1 lock held by syz-executor/2196:
[ 1971.187827][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.196303][   T31] 1 lock held by syz-executor/2198:
[ 1971.201496][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.209977][   T31] 1 lock held by syz-executor/2221:
[ 1971.215366][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.223912][   T31] 1 lock held by syz-executor/2224:
[ 1971.229111][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.237574][   T31] 1 lock held by syz-executor/2225:
[ 1971.242816][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.251282][   T31] 1 lock held by syz-executor/2227:
[ 1971.256507][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.265012][   T31] 1 lock held by syz-executor/2247:
[ 1971.270186][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.278674][   T31] 1 lock held by syz-executor/2251:
[ 1971.283968][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.292443][   T31] 1 lock held by syz-executor/2253:
[ 1971.297936][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.306470][   T31] 1 lock held by syz-executor/2255:
[ 1971.311661][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1971.320161][   T31] 
[ 1971.322667][   T31] =============================================
[ 1971.322667][   T31] 
[ 1971.331081][   T31] NMI backtrace for cpu 1
[ 1971.331091][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1971.331103][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1971.331109][   T31] Call Trace:
[ 1971.331114][   T31]  <TASK>
[ 1971.331119][   T31]  dump_stack_lvl+0x189/0x250
[ 1971.331133][   T31]  ? __wake_up_klogd+0xd9/0x110
[ 1971.331148][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1971.331159][   T31]  ? __pfx__printk+0x10/0x10
[ 1971.331176][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1971.331191][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1971.331202][   T31]  ? _printk+0xcf/0x120
[ 1971.331215][   T31]  ? __pfx__printk+0x10/0x10
[ 1971.331226][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1971.331242][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1971.331257][   T31]  watchdog+0xfee/0x1030
[ 1971.331267][   T31]  ? watchdog+0x1de/0x1030
[ 1971.331279][   T31]  kthread+0x70e/0x8a0
[ 1971.331294][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1971.331303][   T31]  ? __pfx_kthread+0x10/0x10
[ 1971.331316][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1971.331330][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1971.331344][   T31]  ? __pfx_kthread+0x10/0x10
[ 1971.331357][   T31]  ret_from_fork+0x3f9/0x770
[ 1971.331368][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1971.331381][   T31]  ? __switch_to_asm+0x39/0x70
[ 1971.331392][   T31]  ? __switch_to_asm+0x33/0x70
[ 1971.331403][   T31]  ? __pfx_kthread+0x10/0x10
[ 1971.331416][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1971.331434][   T31]  </TASK>
[ 1971.331439][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1971.487961][    C0] NMI backtrace for cpu 0
[ 1971.487976][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1971.487995][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1971.488005][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1971.488030][    C0] Code: cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d e3 09 1b 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[ 1971.488044][    C0] RSP: 0018:ffffffff8e007d80 EFLAGS: 000002c6
[ 1971.488058][    C0] RAX: ac924d7b9cb56200 RBX: ffffffff81979d58 RCX: ac924d7b9cb56200
[ 1971.488070][    C0] RDX: 0000000000000001 RSI: ffffffff8da4c121 RDI: ffffffff8be41880
[ 1971.488081][    C0] RBP: ffffffff8e007ea8 R08: ffff8880b8632f5b R09: 1ffff110170c65eb
[ 1971.488093][    C0] R10: dffffc0000000000 R11: ffffed10170c65ec R12: ffffffff8fc232f0
[ 1971.488104][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1c12a50
[ 1971.488115][    C0] FS:  0000000000000000(0000) GS:ffff888125a1c000(0000) knlGS:0000000000000000
[ 1971.488128][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1971.488139][    C0] CR2: 0000561729d06000 CR3: 000000000e138000 CR4: 00000000003526f0
[ 1971.488153][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000800
[ 1971.488162][    C0] DR3: 0000000100000001 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1971.488173][    C0] Call Trace:
[ 1971.488184][    C0]  <TASK>
[ 1971.488190][    C0]  default_idle+0x13/0x20
[ 1971.488206][    C0]  default_idle_call+0x74/0xb0
[ 1971.488221][    C0]  do_idle+0x1e8/0x510
[ 1971.488240][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1971.488262][    C0]  cpu_startup_entry+0x44/0x60
[ 1971.488278][    C0]  rest_init+0x2de/0x300
[ 1971.488293][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[ 1971.488314][    C0]  start_kernel+0x47d/0x500
[ 1971.488331][    C0]  x86_64_start_reservations+0x24/0x30
[ 1971.488350][    C0]  x86_64_start_kernel+0x143/0x1c0
[ 1971.488369][    C0]  common_startup_64+0x13e/0x147
[ 1971.488393][    C0]  </TASK>
[ 1971.488996][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1971.693043][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1971.704820][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1971.714855][   T31] Call Trace:
[ 1971.718117][   T31]  <TASK>
[ 1971.721028][   T31]  dump_stack_lvl+0x99/0x250
[ 1971.725604][   T31]  ? __asan_memcpy+0x40/0x70
[ 1971.730172][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1971.735347][   T31]  ? __pfx__printk+0x10/0x10
[ 1971.739919][   T31]  panic+0x2db/0x790
[ 1971.743793][   T31]  ? __pfx_panic+0x10/0x10
[ 1971.748183][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[ 1971.753968][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1971.759342][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[ 1971.765489][   T31]  watchdog+0x102d/0x1030
[ 1971.769803][   T31]  ? watchdog+0x1de/0x1030
[ 1971.774203][   T31]  kthread+0x70e/0x8a0
[ 1971.778258][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1971.782914][   T31]  ? __pfx_kthread+0x10/0x10
[ 1971.787487][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1971.792668][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1971.797847][   T31]  ? __pfx_kthread+0x10/0x10
[ 1971.802416][   T31]  ret_from_fork+0x3f9/0x770
[ 1971.806987][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1971.812077][   T31]  ? __switch_to_asm+0x39/0x70
[ 1971.816834][   T31]  ? __switch_to_asm+0x33/0x70
[ 1971.821593][   T31]  ? __pfx_kthread+0x10/0x10
[ 1971.826167][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1971.830920][   T31]  </TASK>
[ 1971.834217][   T31] Kernel Offset: disabled
[ 1971.838535][   T31] Rebooting in 86400 seconds..