959ffd70e3c37434ee28faa50bcf1d02233d62450912d7e88b41e396fff91ffc794803f8b2904434dad714c634978db687b442ca8eb954564624a4aa26054955b4bfd7479abdcc471e7798403f162dd3d47d7c42055eaae47997c137e12a44ad6d0be1291fd494e250066f618662c9e9d958f2e9b34d46e33980793c7c7c46cb326bbd16db683789c7f3d41860502a8f74d902f0c9e938cc8b39a45c6f26e56a1810eaf8b6c318df0c6955e028e34808bae0860f471b18b9f64c3ed997bf84495b328a0cd04f95bd7a4e5b9d9488c48fb58ad1a3dd7820640a07da249a8af724d4", 0xee, 0x938}, {&(0x7f0000000640)="0f65aa3dc693467a1079a2710fec7e20d66bdf353bf8a8dfc841ab9ed199f61a491499452a50921666a4e3ab325cf6d85b42110a54a8fa1a48e4915a638eafc07b00a72a6af549becb36d00b80dfb0cfa9749a4c31046a360bce05a270eafc25c59aa7c655684b0760697358a15bd7be8967476fa87467037760daf5a1647cc77fdd738b794421ec1d9e944f3683483ab2e4eb81e201e1911ae830a87160113a4f5252ad714c38682b0fd04b9930c811dda1be1c4c20299faa9809ec531aad1b5edbe759d79a3ffa628bccba98b1129cb6a6f76b113817", 0xd7, 0x1000}, {&(0x7f0000000740)="45f15e7ff7f4278327330eea688c8fa51989caa324b3d5fecabc1864184301c9948683b4cc9ace0eb4599bc245e3a95258a280d96845e22b96cd648bd6177ac25d6dbb861a6fa3cc0692837849aa44bcf0f3ff0c7266e385f148568dfe181f0bf9ce4fdfd31ba945ba9b72fa05fd8d06f059560c597798438754439e0f38f73316ba2f855011ec7958a1e249096cf9e0a66606ffddfbea074877432de78d8f84d16495366572ccb1ca498073b1de", 0xae, 0x3}, {&(0x7f0000000800)="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", 0x1000}, {&(0x7f0000001800)="927d33f6fee52100c15e715b23baa045fae59e57c07c7821e712305096765f742f6c1bd3d0f2edcc7b88fab182ebc35cd9be538272de137b866e5faea2e564a10a876e4744cbbed788fafb32e6b4e364144024349137f83af1b37bf0b3405c57395beaa8b2e4e7aca4eff87d5de00c6b5b0a44805fa422e0a2156b3fb9bdfbec1424cfa6", 0x84, 0x4}, {&(0x7f00000018c0)="aead7a830d8187072d90c33cb8be80dc94fd993b3588f6c4bb5685f06b59c6aabe874f900e36e8293c7f448964fe063a4d1ca031dd7d74553513e372ce174b260609a380cea6847e7eb0e4eac919370ad3ad20e572c5a845815702a5d49b0a6097edc3e7fca43826d076193026fa5af92b8966dc5fb6d23c3083f2455fa867214eddac833c75bfdcb504491a229e3f5a4c9d6c4a50c1a1541b4f87be28600087b6aeffa13ee847eb7c5a8111071bc27b392fb05539f1f8828cead411093c8fb7a7750613008ff13b4b54c390e2579e135b5bba13591fffa7", 0xd8, 0xc2}], 0x2000, &(0x7f0000001a80)=ANY=[@ANYBLOB='huge=advise,huge=never,huge=always,nr_inodes=txe,nr_blocks=mpex\x0087,hash,subj_user=cpuacct.stat\x00,fowner<', @ANYRESDEC, @ANYBLOB=',obj_type=cpuacct.stat\x00,euid=', @ANYRESDEC=0x0, @ANYBLOB=',audit,smackfshat=net\a\x00\x00\x00\x00\x00\x00\x00\x00,\x00']) syz_mount_image$sysv(&(0x7f0000000380), &(0x7f0000000500)='./file0\x00', 0x18f, 0x1, &(0x7f0000001bc0)=[{&(0x7f0000001b80)="63f30ec6c80ff55a509d39fe7cfe64c2aa3c3e3bfa4deb", 0x17, 0xfffffffffffffc00}], 0x8000, &(0x7f0000001c00)={[{'hash'}, {'subj_user'}, {'&(\xa2'}], [{@fsmagic={'fsmagic', 0x3d, 0x100000000}}, {@permit_directio}, {@dont_hash}, {@subj_user={'subj_user', 0x3d, ':)'}}]}) r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r0, 0x89e7, 0x0) write(r0, &(0x7f0000001c80)="0f429ee4be9cd8754c450274d2496fa83b4046a641cda741a1bf18630096218c512d8002ffd2b15cd2036fde0202cbb105f6e5fb7138aa854338991472032eb2379524113c7255ac6708d1fd67ad7f78a2705b8fc0f65e2b8cadc9987bb4d0220317752311c9c20000000000000000ced001c8ff3a4193035a7a9e306a049629f42fe181186aed9cf792e646fb33645c72b58c1177eecc4771fd2898920d2431493ae491a3b60f6f7f165b5953059dfeb51916b3ebd82c3b5697aa1fedabc9fedd8f0bda5a7a0dae63f73f3873ae90981cc5aa7c914af3bcb36c710b0d0bcf6bbeb767d33d24e2e49d23b7", 0xeb) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0xfb]}) (async, rerun: 32) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/netlink\x00') syz_kvm_setup_cpu$x86(r4, r3, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000002c0)="66b822008ed0b8b50000000f23d80f21f835000000200f23f8f30f09c4e2019cf20f38cb0e3e0f300f22995a0fc7a903500000c4c2b1be6909", 0x39}], 0x1, 0x40, &(0x7f0000000340)=[@cr4={0x1, 0x240010}], 0x1) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:47 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x6c4304, 0x0) write$binfmt_misc(r2, &(0x7f00000002c0)={'syz1', "f8973c3351c10d9e6354dbd048903daf395556531f4144438913a064be4f993537d4fb8b050c1653195afbc9d97f"}, 0x32) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:47 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x12, 0x3fffff) 22:55:48 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:48 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3d, 0x3fffff) 22:55:48 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb880001000001000000017f00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb880001000001000000017f00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:48 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x289], 0x0, 0x2185}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:48 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x13, 0x3fffff) 22:55:48 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x6c4304, 0x0) write$binfmt_misc(r2, &(0x7f00000002c0)={'syz1', "f8973c3351c10d9e6354dbd048903daf395556531f4144438913a064be4f993537d4fb8b050c1653195afbc9d97f"}, 0x32) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:48 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x6c4304, 0x0) write$binfmt_misc(r2, &(0x7f00000002c0)={'syz1', "f8973c3351c10d9e6354dbd048903daf395556531f4144438913a064be4f993537d4fb8b050c1653195afbc9d97f"}, 0x32) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:48 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:48 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x289], 0x0, 0x2185}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x289], 0x0, 0x2185}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:48 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x14, 0x3fffff) 22:55:48 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb880001000001000000017f00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:48 executing program 1: openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.empty_time\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:48 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3e, 0x3fffff) 22:55:48 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:48 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x15, 0x3fffff) 22:55:48 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x41, 0x3fffff) [ 777.180631][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 777.180649][ T28] audit: type=1800 audit(1654383348.786:418): pid=8850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1174 res=0 errno=0 22:55:48 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000240)={0x3}) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = dup(r2) sendfile(r3, r1, &(0x7f00000001c0)=0x2, 0x9) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r3, 0xc01064c1, &(0x7f0000000200)={0x0, 0x1, 0xffffffffffffffff}) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r4, 0xf504, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:55:48 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x289], 0x0, 0x2185}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x289], 0x0, 0x2185}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:48 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x0, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:49 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x16, 0x3fffff) 22:55:49 executing program 1: openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.empty_time\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (rerun: 64) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (rerun: 32) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:49 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x42, 0x3fffff) 22:55:49 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="030000000000000000ff7f0000da62fd474543c310751b74eb88000100000100000000ff00000000c80b0000000000001d17c99bf6b5b3721b7b4057ea28a7e94b9ca2668057d1dc12ec9f3e01a2c42131bcda6499acffcc10badaa2a6c4c7e0bff948ceb0b2a5bf2af53c2cb8bc2f66431c64d9f21a8ad5489c56b8"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:55:49 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000240)={0x3}) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = dup(r2) sendfile(r3, r1, &(0x7f00000001c0)=0x2, 0x9) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r3, 0xc01064c1, &(0x7f0000000200)={0x0, 0x1, 0xffffffffffffffff}) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r4, 0xf504, 0x0) (async, rerun: 32) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:55:49 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x0, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) [ 777.713185][ T28] audit: type=1800 audit(1654383349.316:419): pid=8890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:55:49 executing program 1: openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.empty_time\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async, rerun: 64) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:49 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x43, 0x3fffff) 22:55:49 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x17, 0x3fffff) [ 777.738027][ T28] audit: type=1800 audit(1654383349.346:420): pid=8899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1164 res=0 errno=0 [ 777.939420][ T28] audit: type=1800 audit(1654383349.546:421): pid=8909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1162 res=0 errno=0 22:55:49 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000240)={0x3}) (async, rerun: 32) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (rerun: 32) r3 = dup(r2) sendfile(r3, r1, &(0x7f00000001c0)=0x2, 0x9) (async) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r3, 0xc01064c1, &(0x7f0000000200)={0x0, 0x1, 0xffffffffffffffff}) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r4, 0xf504, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:55:49 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x0, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:49 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="030000000000000000ff7f0000da62fd474543c310751b74eb88000100000100000000ff00000000c80b0000000000001d17c99bf6b5b3721b7b4057ea28a7e94b9ca2668057d1dc12ec9f3e01a2c42131bcda6499acffcc10badaa2a6c4c7e0bff948ceb0b2a5bf2af53c2cb8bc2f66431c64d9f21a8ad5489c56b8"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) (async) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) (async) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:55:49 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x44, 0x3fffff) 22:55:49 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:49 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000020000001afca24da62fd474543c310751b74eb88000100000100001801ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:49 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x18, 0x3fffff) [ 778.245324][ T28] audit: type=1800 audit(1654383349.846:422): pid=8939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1180 res=0 errno=0 22:55:50 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000020000001afca24da62fd474543c310751b74eb88000100000100001801ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000020000001afca24da62fd474543c310751b74eb88000100000100001801ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:55:50 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x0) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:50 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:50 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="030000000000000000ff7f0000da62fd474543c310751b74eb88000100000100000000ff00000000c80b0000000000001d17c99bf6b5b3721b7b4057ea28a7e94b9ca2668057d1dc12ec9f3e01a2c42131bcda6499acffcc10badaa2a6c4c7e0bff948ceb0b2a5bf2af53c2cb8bc2f66431c64d9f21a8ad5489c56b8"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="030000000000000000ff7f0000da62fd474543c310751b74eb88000100000100000000ff00000000c80b0000000000001d17c99bf6b5b3721b7b4057ea28a7e94b9ca2668057d1dc12ec9f3e01a2c42131bcda6499acffcc10badaa2a6c4c7e0bff948ceb0b2a5bf2af53c2cb8bc2f66431c64d9f21a8ad5489c56b8"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r2, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r3, 0x200002) (async) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) 22:55:50 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x45, 0x3fffff) 22:55:50 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x19, 0x3fffff) [ 778.655577][ T28] audit: type=1800 audit(1654383350.256:423): pid=8965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1173 res=0 errno=0 22:55:50 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000020000001afca24da62fd474543c310751b74eb88000100000100001801ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000020000001afca24da62fd474543c310751b74eb88000100000100001801ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:55:50 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x46, 0x3fffff) 22:55:50 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x0) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:50 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x1a, 0x3fffff) 22:55:50 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x1b, 0x3fffff) 22:55:50 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:50 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x0) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:50 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRES64=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:50 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x47, 0x3fffff) 22:55:50 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x1c, 0x3fffff) 22:55:50 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100003c050001ff00000000c80b0008000000001d17c99bf6c68129d38c3f2193bd22"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:50 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r0 = dup(0xffffffffffffffff) write$6lowpan_enable(r0, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:51 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRES64=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:51 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x1d, 0x3fffff) 22:55:51 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x48, 0x3fffff) 22:55:51 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f00000002c0)={0x0, 0x5, 0x528f, &(0x7f00000001c0)=0x6}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:51 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100003c050001ff00000000c80b0008000000001d17c99bf6c68129d38c3f2193bd22"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:51 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRES64=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:51 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x1e, 0x3fffff) 22:55:51 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r0 = dup(0xffffffffffffffff) write$6lowpan_enable(r0, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:51 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f00000002c0)={0x0, 0x5, 0x528f, &(0x7f00000001c0)=0x6}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:51 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x49, 0x3fffff) 22:55:51 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100003c050001ff00000000c80b0008000000001d17c99bf6c68129d38c3f2193bd22"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:51 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x3]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:51 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f00000002c0)={0x0, 0x5, 0x528f, &(0x7f00000001c0)=0x6}) (async, rerun: 32) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:51 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x284000, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:51 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r0 = dup(0xffffffffffffffff) write$6lowpan_enable(r0, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:51 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x21, 0x3fffff) 22:55:51 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x22, 0x3fffff) 22:55:51 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x3]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:51 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, &(0x7f00000001c0)) 22:55:51 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4a, 0x3fffff) 22:55:51 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) dup(r0) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:51 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x284000, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x284000, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:52 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x3]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:52 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) dup(r0) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:52 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x23, 0x3fffff) 22:55:52 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 64) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, &(0x7f00000001c0)) 22:55:52 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4b, 0x3fffff) 22:55:52 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, &(0x7f00000001c0)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, &(0x7f00000001c0)) (async) 22:55:52 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) dup(r0) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) r1 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r1, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:52 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, 0x0, 0x0) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:52 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r4 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x4200) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x7fff], 0x1, 0x800, 0x0, 0xffffffffffffffff}) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f00000003c0)=[@text16={0x10, &(0x7f0000000340)="0f01de0f01d1b84e008ec8440f20c066350a000000440f22c066b86382f0d70f23c00f21f8663502000a000f23f82e0f011ad9e866b8010000000f01c10f01c50f20c06635010000000f22c0", 0x4c}], 0x1, 0x10, &(0x7f0000000400), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:52 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x284000, 0x0) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:52 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, 0x0, 0x0) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:52 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4c, 0x3fffff) 22:55:52 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x24, 0x3fffff) 22:55:52 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x3, 0xff, 0x7, 0x8001, 0x7, 0xa5, 0x4, 0x9, 0x200], 0x9, 0x800, 0x0, 0xffffffffffffffff}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x1, 0xfce, 0xb44b, 0x5, 0x7, 0x9, 0x40, 0x81, 0x6, 0x3, 0x1, 0x5, 0x3, 0x8001, 0x1, 0x91e], 0x2, 0x500}) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0xf70) 22:55:52 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, 0x0, 0x0) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:52 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) r4 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x4200) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x7fff], 0x1, 0x800, 0x0, 0xffffffffffffffff}) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f00000003c0)=[@text16={0x10, &(0x7f0000000340)="0f01de0f01d1b84e008ec8440f20c066350a000000440f22c066b86382f0d70f23c00f21f8663502000a000f23f82e0f011ad9e866b8010000000f01c10f01c50f20c06635010000000f22c0", 0x4c}], 0x1, 0x10, &(0x7f0000000400), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:52 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b740100000001ff00000000c80b0000000000001d17c99bf6b5b3000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x56) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(0xffffffffffffffff, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x10000, 0x3, 0x5000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:52 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4d, 0x3fffff) [ 781.354430][ T28] audit: type=1800 audit(1654383352.956:424): pid=9182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1167 res=0 errno=0 22:55:53 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:53 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x25, 0x3fffff) 22:55:53 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4e, 0x3fffff) [ 781.529139][ T28] audit: type=1800 audit(1654383353.136:425): pid=9191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1144 res=0 errno=0 [ 781.573885][ T28] audit: type=1800 audit(1654383353.136:426): pid=9191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1144 res=0 errno=0 22:55:53 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) r4 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x4200) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x7fff], 0x1, 0x800, 0x0, 0xffffffffffffffff}) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f00000003c0)=[@text16={0x10, &(0x7f0000000340)="0f01de0f01d1b84e008ec8440f20c066350a000000440f22c066b86382f0d70f23c00f21f8663502000a000f23f82e0f011ad9e866b8010000000f01c10f01c50f20c06635010000000f22c0", 0x4c}], 0x1, 0x10, &(0x7f0000000400), 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:53 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d15c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:53 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4f, 0x3fffff) 22:55:53 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x26, 0x3fffff) 22:55:53 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b740100000001ff00000000c80b0000000000001d17c99bf6b5b3000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x56) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(0xffffffffffffffff, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x10000, 0x3, 0x5000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b740100000001ff00000000c80b0000000000001d17c99bf6b5b3000000000000"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async) creat(&(0x7f0000000100)='./bus\x00', 0x56) (async) fcntl$setstatus(r3, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r5, 0x200002) (async) sendfile(0xffffffffffffffff, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x10000, 0x3, 0x5000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:53 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (rerun: 64) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) (async, rerun: 32) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (rerun: 32) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x3, 0xff, 0x7, 0x8001, 0x7, 0xa5, 0x4, 0x9, 0x200], 0x9, 0x800, 0x0, 0xffffffffffffffff}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 64) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) (rerun: 64) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x1, 0xfce, 0xb44b, 0x5, 0x7, 0x9, 0x40, 0x81, 0x6, 0x3, 0x1, 0x5, 0x3, 0x8001, 0x1, 0x91e], 0x2, 0x500}) (async) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0xf70) 22:55:53 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d15c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 782.178403][ T28] audit: type=1800 audit(1654383353.786:427): pid=9226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:55:53 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x3, 0xff, 0x7, 0x8001, 0x7, 0xa5, 0x4, 0x9, 0x200], 0x9, 0x800, 0x0, 0xffffffffffffffff}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x1, 0xfce, 0xb44b, 0x5, 0x7, 0x9, 0x40, 0x81, 0x6, 0x3, 0x1, 0x5, 0x3, 0x8001, 0x1, 0x91e], 0x2, 0x500}) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0xf70) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r2, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r3, 0x200002) (async) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f0000000300)={&(0x7f00000002c0)=[0x3, 0xff, 0x7, 0x8001, 0x7, 0xa5, 0x4, 0x9, 0x200], 0x9, 0x800}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000340)={[0x1, 0xfce, 0xb44b, 0x5, 0x7, 0x9, 0x40, 0x81, 0x6, 0x3, 0x1, 0x5, 0x3, 0x8001, 0x1, 0x91e], 0x2, 0x500}) (async) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0xf70) (async) [ 782.250704][ T28] audit: type=1800 audit(1654383353.856:428): pid=9220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1149 res=0 errno=0 22:55:54 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) [ 782.254676][ T28] audit: type=1800 audit(1654383353.856:429): pid=9220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1149 res=0 errno=0 22:55:54 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d15c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:54 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x27, 0x3fffff) [ 782.464266][ T28] audit: type=1800 audit(1654383354.066:430): pid=9244 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:55:54 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x50, 0x3fffff) 22:55:54 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b740100000001ff00000000c80b0000000000001d17c99bf6b5b3000000000000"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x56) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(0xffffffffffffffff, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x10000, 0x3, 0x5000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:54 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r0, 0x89e7, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f00000001c0)={0x82d, {0x10, 0x9, 0x7ff, 0x1, 0x73f}}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r4, 0x4010ae74, &(0x7f00000002c0)={0x1, 0x1ff, 0x80}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:54 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88003b6f52fb692aecf79c84fd0100000100000001ff00000000c80b0000"]) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/rndis_wlan', 0x2, 0x42) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x3, 0x8, 0x0, 0x0, 0x0, 0x8, 0x100000000, 0x80000000000004ab, 0x0, 0x14f, 0x0, 0x0, 0x800000000000000, 0xfffffffffffffffd], 0x10000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:54 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x4000001, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:54 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x28, 0x3fffff) 22:55:54 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88003b6f52fb692aecf79c84fd0100000100000001ff00000000c80b0000"]) (async) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/rndis_wlan', 0x2, 0x42) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x3, 0x8, 0x0, 0x0, 0x0, 0x8, 0x100000000, 0x80000000000004ab, 0x0, 0x14f, 0x0, 0x0, 0x800000000000000, 0xfffffffffffffffd], 0x10000}) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 782.963661][ T28] audit: type=1800 audit(1654383354.566:431): pid=9271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1178 res=0 errno=0 22:55:54 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88003b6f52fb692aecf79c84fd0100000100000001ff00000000c80b0000"]) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/rndis_wlan', 0x2, 0x42) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x3, 0x8, 0x0, 0x0, 0x0, 0x8, 0x100000000, 0x80000000000004ab, 0x0, 0x14f, 0x0, 0x0, 0x800000000000000, 0xfffffffffffffffd], 0x10000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88003b6f52fb692aecf79c84fd0100000100000001ff00000000c80b0000"]) (async) openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/rndis_wlan', 0x2, 0x42) (async) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x3, 0x8, 0x0, 0x0, 0x0, 0x8, 0x100000000, 0x80000000000004ab, 0x0, 0x14f, 0x0, 0x0, 0x800000000000000, 0xfffffffffffffffd], 0x10000}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:55:54 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x51, 0x3fffff) 22:55:55 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:55 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x4000001, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300005d202d1c3f41e96d98e100000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:55 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r0, 0x89e7, 0x0) (async) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f00000001c0)={0x82d, {0x10, 0x9, 0x7ff, 0x1, 0x73f}}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async, rerun: 32) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) (async) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r4, 0x4010ae74, &(0x7f00000002c0)={0x1, 0x1ff, 0x80}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:55 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x29, 0x3fffff) 22:55:55 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x52, 0x3fffff) 22:55:55 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r0, 0x89e7, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f00000001c0)={0x82d, {0x10, 0x9, 0x7ff, 0x1, 0x73f}}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r4, 0x4010ae74, &(0x7f00000002c0)={0x1, 0x1ff, 0x80}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) syz_init_net_socket$ax25(0x3, 0x2, 0x0) (async) ioctl$SIOCAX25OPTRT(r0, 0x89e7, 0x0) (async) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f00000001c0)={0x82d, {0x10, 0x9, 0x7ff, 0x1, 0x73f}}) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r4, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r4, 0x4010ae74, &(0x7f00000002c0)={0x1, 0x1ff, 0x80}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:55:55 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x2a, 0x3fffff) [ 783.638230][ T28] audit: type=1800 audit(1654383355.246:432): pid=9328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:55:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300005d202d1c3f41e96d98e100000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:55 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x4000001, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:55 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb660001f9ff0000000001ff000000000b0000004500001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) readahead(r0, 0x7, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:55 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x53, 0x3fffff) 22:55:55 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, 0x0, &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:55 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c82b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000340)=[@text32={0x20, &(0x7f00000002c0)="0f01df0f1b5800660f7cad0a000000b9800000c00f3235000400000f30660f3881955777b246660f38805a080f5859d40f005e00b98f0200000f3266b8f2000f00d8", 0x42}], 0x1, 0x0, &(0x7f0000000380), 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x100, 0x30}, 0xc) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000380)={{0x1, 0x1, 0x18}, './bus\x00'}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:55 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300005d202d1c3f41e96d98e100000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:55 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x2b, 0x3fffff) 22:55:55 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb660001f9ff0000000001ff000000000b0000004500001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 32) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 64) readahead(r0, 0x7, 0x2) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:55 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x54, 0x3fffff) [ 784.354566][ T28] audit: type=1800 audit(1654383355.956:433): pid=9353 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1170 res=0 errno=0 22:55:56 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb660001f9ff0000000001ff000000000b0000004500001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) readahead(r0, 0x7, 0x2) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:56 executing program 1: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfb, 0xfff8000000000000, 0x0, 0x0, 0x6]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x28400, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r4, {0x1}}, './file0\x00'}) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r6, 0x89e7, 0x0) fcntl$dupfd(r5, 0x0, r6) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:56 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c82b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000340)=[@text32={0x20, &(0x7f00000002c0)="0f01df0f1b5800660f7cad0a000000b9800000c00f3235000400000f30660f3881955777b246660f38805a080f5859d40f005e00b98f0200000f3266b8f2000f00d8", 0x42}], 0x1, 0x0, &(0x7f0000000380), 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x100, 0x30}, 0xc) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000380)={{0x1, 0x1, 0x18}, './bus\x00'}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c82b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r3, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000340)=[@text32={0x20, &(0x7f00000002c0)="0f01df0f1b5800660f7cad0a000000b9800000c00f3235000400000f30660f3881955777b246660f38805a080f5859d40f005e00b98f0200000f3266b8f2000f00d8", 0x42}], 0x1, 0x0, &(0x7f0000000380), 0x0) (async) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x100, 0x30}, 0xc) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000380)={{0x1, 0x1, 0x18}, './bus\x00'}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) [ 784.620411][ T28] audit: type=1800 audit(1654383356.226:434): pid=9379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1184 res=0 errno=0 [ 784.718691][ T28] audit: type=1800 audit(1654383356.326:435): pid=9382 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1164 res=0 errno=0 22:55:56 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x2c, 0x3fffff) 22:55:56 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x55, 0x3fffff) 22:55:56 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, 0x0, &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:56 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 32) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c82b0000000000001d17c99bf6b5b3"]) (async, rerun: 32) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r3, r1, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000340)=[@text32={0x20, &(0x7f00000002c0)="0f01df0f1b5800660f7cad0a000000b9800000c00f3235000400000f30660f3881955777b246660f38805a080f5859d40f005e00b98f0200000f3266b8f2000f00d8", 0x42}], 0x1, 0x0, &(0x7f0000000380), 0x0) (async) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x100, 0x30}, 0xc) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000380)={{0x1, 0x1, 0x18}, './bus\x00'}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 64) 22:55:56 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000400)=ANY=[@ANYBLOB="030000000000751b74eb88000100000100000201ff00000000c80b0000000000001d17c99bf6b5b373e6722b64aabc0934fbfa9de9e2e82c5d16215de5ebeaea599a9a279167ccf4b187842f7196cccee5e01100cf9381cbb0599cad56f785341b543408624c3b3106c98f2171523de7f00cc8b12d057817c2ff076beb9293c2b2eb8f3a270342e9d2293e002c470c969e5d2776c93fd6a9adf34ba5e30571830bc2d47289fa95d9391e2dd7de2c3564f7cb9ebfb56f0abbf18e58e548c2b2c4f222b77f61d96c1df651e5d4bd915999c386523866cc44cea097f75aaba60c8dec2c3bc1a5f19ee06b2ec7d25a0e08bbfabf3bdd32e4047cfaeb8619fb8a5a8fbc43cb0332bd210ed4619b4e584c7a3256ec99d47baba483804adb7f7d4b95be24ed0ad49560867b257485a1f32746ebc9457e850874fca156ffdbad815b3e997d397e56f8174bac5a73c2d21dea610688c119c80d3c4430aba20de11240b8dc62b5155f6d68815667a3e551d0cb648a1b0e103ec378552e89b378e9f502063249f56466858f8261baebc82218b261415256a770d637e6ad75900ed72c09f188e9ff70b87381ff6bb71e188bf827c82dbba23b6bc0156c19b999b5254c670a6feb3205dcdcea77851b993785c2dbc3a87281aab6ed04b3abb7c15a87f8aca8a257593b8ef0793f47e1bb4990283871914e60074a046e3bfda0b0aa8087ab1dafbb682073cf2a007c16c9034af91bad44045f2a4e6b5818ca91c99ea582047736f09971d9fcf86d658c154bd56d704187b70d42af7580053edccee890c80171486102721f24e699d1567e302270564c530a23bdb1e3bc8bbc2868dd5411d8e399632a12"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x28400, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r4, {0x1}}, './file0\x00'}) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) (async) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r6, 0x89e7, 0x0) fcntl$dupfd(r5, 0x0, r6) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:56 executing program 1: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfb, 0xfff8000000000000, 0x0, 0x0, 0x6]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfb, 0xfff8000000000000, 0x0, 0x0, 0x6]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r3, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000140)) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:55:56 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x2d, 0x3fffff) 22:55:56 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x56, 0x3fffff) 22:55:56 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000002c0)={&(0x7f00000001c0)=[0x4, 0x800, 0x5], 0x3, 0x400}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 785.390787][ T28] audit: type=1800 audit(1654383356.996:436): pid=9412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:55:57 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x57, 0x3fffff) 22:55:57 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 32) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000400)=ANY=[@ANYBLOB="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"]) (rerun: 32) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x28400, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r4, {0x1}}, './file0\x00'}) (async) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) (async) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r6, 0x89e7, 0x0) (async, rerun: 32) fcntl$dupfd(r5, 0x0, r6) (async, rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32) 22:55:57 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000002c0)={&(0x7f00000001c0)=[0x4, 0x800, 0x5], 0x3, 0x400}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:57 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x2e, 0x3fffff) 22:55:57 executing program 1: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfb, 0xfff8000000000000, 0x0, 0x0, 0x6]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000140)) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:57 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, 0x0, &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:57 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000002c0)={&(0x7f00000001c0)=[0x4, 0x800, 0x5], 0x3, 0x400}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:55:57 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x58, 0x3fffff) 22:55:57 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x2f, 0x3fffff) 22:55:57 executing program 5: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_call\x00', r0}, 0x10) r1 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4800, @private}}, 0x80, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x400300}, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x2, &(0x7f0000000400)=@raw=[@cb_func={0x18, 0x1, 0x4, 0x0, 0x5}], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x1, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xb, 0x7, 0x3f}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x92d7]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:55:57 executing program 1: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x86481, 0x0) openat$cgroup_ro(r0, &(0x7f0000000300)='pids.current\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x80, 0x28) ioctl$KVM_NMI(r1, 0xae9a) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 786.258383][ T28] audit: type=1800 audit(1654383357.866:437): pid=9469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:55:58 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03080000000000000001afca24da62fd474543c310321b6ba715b02fc601b5de311e469bd5756c572b07000100000100000001ff000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, &(0x7f00000002c0)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:58 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x30, 0x3fffff) 22:55:58 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x59, 0x3fffff) 22:55:58 executing program 1: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x86481, 0x0) openat$cgroup_ro(r0, &(0x7f0000000300)='pids.current\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x80, 0x28) ioctl$KVM_NMI(r1, 0xae9a) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:55:58 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5a, 0x3fffff) 22:55:58 executing program 5: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_call\x00', r0}, 0x10) r1 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4800, @private}}, 0x80, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x400300}, 0x0) (async) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) (async) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) (async) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x2, &(0x7f0000000400)=@raw=[@cb_func={0x18, 0x1, 0x4, 0x0, 0x5}], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x1, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xb, 0x7, 0x3f}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000000ee0abef4f786b9ad02290000000001afca24dafd474543c310751b74eb88000100000100000001ff00000000c80b00000054c6cdbc1bc8c9c4173a7844238eb28f9229c5bfe75cc3e6c9b9fd9fe0f0baaaa65753962fcca529f04c50aaf3411471060823f70e2378c1ae4e01b26d5566cd5099f27636b67995cc0ff34181db7587126c1daea43eac5a094698432d8393c72100f0c36829e260173ba60c4e5750c40c8debe4373f3fa32185bf2d8ce4e87a16ed87232338680856b09cbdde407a93f0c8113321d8c199ac032da9ac221aa348d798ead6a48a873c4f7a4606ef1a0f6db3cde0d9bfdeb4214f86c84458d91475e210aafe72b8150ecf953b6c69d302d4220cb3a15b59dc"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x92d7]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:55:58 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, 0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:58 executing program 1: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x86481, 0x0) openat$cgroup_ro(r0, &(0x7f0000000300)='pids.current\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x80, 0x28) ioctl$KVM_NMI(r1, 0xae9a) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:55:58 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03080000000000000001afca24da62fd474543c310321b6ba715b02fc601b5de311e469bd5756c572b07000100000100000001ff000000"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, &(0x7f00000002c0)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:58 executing program 5: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_call\x00', r0}, 0x10) r1 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4800, @private}}, 0x80, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x400300}, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x2, &(0x7f0000000400)=@raw=[@cb_func={0x18, 0x1, 0x4, 0x0, 0x5}], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x1, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xb, 0x7, 0x3f}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x92d7]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_call\x00', r0}, 0x10) (async) socket$kcm(0x21, 0x2, 0x2) (async) sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4800, @private}}, 0x80, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0x400300}, 0x0) (async) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r2, 0x200002) (async) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x2, &(0x7f0000000400)=@raw=[@cb_func={0x18, 0x1, 0x4, 0x0, 0x5}], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x1, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0xb, 0x7, 0x3f}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}, 0x80) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x92d7]}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) 22:55:58 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x31, 0x3fffff) 22:55:58 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5b, 0x3fffff) 22:55:58 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03080000000000000001afca24da62fd474543c310321b6ba715b02fc601b5de311e469bd5756c572b07000100000100000001ff000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, &(0x7f00000002c0)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:55:58 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46900) r1 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r1, 0x200002) sendfile(r0, r1, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745430658c3ff751b74eb8800010000010001ff000000001752d22a8fd150a76f8b0fee4f6dc80b0000000000001d17c99bf6b5b30000e6f1266e952dd8398035a127bd95fa0337bc99653c"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000002c0)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:55:58 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x32, 0x3fffff) 22:55:59 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5c, 0x3fffff) [ 787.369164][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 787.369180][ T28] audit: type=1800 audit(1654383358.976:440): pid=9538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1169 res=0 errno=0 22:55:59 executing program 5: ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) socketpair(0x1d, 0x5, 0x200000, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00042bbd7000ffdbdf254200000008000300238c7f6bc3dc59302bb74ad6308f128a8e2cb19b530c5c0317ddfb5ef503ca6695fcaa12f61c9097939eeea39e453d64133394945a28906b4d82d43a1b90a9cc3fbdc3810486becd598da3bc1eb7ff91fd16557823c03057a40da3a4208a054be09bc40325d9ff7d4a1984739203217fb8d3cfb7236127e6495ef233832a6c273d65ed90566be053d4bbd1c5b13442bd047643ee95587e7bc3d301672621f1ecdd51297a0b2cad10d5fd147b0d2c595f6683ffb96adcfb1c0ff9", @ANYRES32=r4, @ANYBLOB="0a000600a9aa51cdbfa900000a0006005050505050500000"], 0x34}, 0x1, 0x0, 0x0, 0xd0}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/268]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 22:55:59 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="bc8384fa2d77a4f93428ea5a4b22fc4ffb6f97d69aca34c1bca3e2f361506551c2a7767fe369193ca6bcc54f71915db822a58b9873431ac6a919f060530dc121614ea1eb36685a6633f0ab6d56c166a71eafb1857167fc486c5a4f0c02582c9295c68dec91c86cf10cf15f34b95b4e8788295fea8c", @ANYRES64=r0, @ANYRES64, @ANYBLOB="97fb76b27c374fcfc5acb9637fca052f7fccfc79b99f0d0f781dd8586ade5ca27c445c80497acab81379ee1dfba321834f5e152233260ee57c2ee710856a71b0ffba1a48ddde6613e245960086fbbc0d2e65733dab21f259d90c07ab92f38b52506c55d7c30457ed84f1a6ec88717e2b38c7b1a0aadc8014fc757648e1f0e90da25c1bd693c3959ea3af70a58c5d3397fee7d311a3f89253656a30c3517ee33612feb6013969669a1d92e6382a307f9423a9d8dc91e760b6e25e56ec47cd7974dab067cd017a972c1bd063cd082ee0842d0ca337b565a019593f54870df73ad5aba3ff5e350563ff1f747667be03abc07f5c1f646a32d684b575a6b9eb52720e5af791808870a9ebc40a8aeb24d1a8429e2d74009d740a7531a0929b5544eac7c57b5344561d6cb8a4642ce588f0815b1a587efa6d598d565a5add7d061acad96cb03ba5e024cca400f4985e51cda7cf0979b067265daa6f4526d12483e6fdb003e3f49ccd85ab1759e29ab0c6a989feba592ad3d2c2bde5ed49598417a663a438f406d92ba7b7f1536b642b061567be7addf7872e1a07402ba61dbd0e3f84406034dca4522d9b12ad704d439361697ba6ab112391afb44d83fe3403e87814e548ab3e15c8c447292cff9edcbe429648fa7aa6b2b83b203058b436a93da12733a6070c429a7fab0e0eed0156618ad4197fea91f8f48a030883a413531f4cb38aeedea092e34ffad254668ec174f6fa41be16f334ed3d1ec832b0de219fb5073311314fa14b397f16dcec08a2619c5db40f1108b6a6df5d00cfa2cbe7419b5e86fb1e0c1ae8ac3fafc7b2e3e766d123f76ca71f75ec0228b1aaaf79e3e617fb3fcb7f2b2c9f762c701bfe8a51ee89157d7c005cad3cdb942435323b058f234b054317d9744e9d7ad05edc675527382ab2034d173a003a8c331f3b7bea9678c567799525d565942eea85c2a7a4b8ca4cb2a5d47287c64586741eb51cdf371eb3bae8fb82d427e99d383f29eabd7566a44dacfa4be9f149d9449fa24780cda74f39a4165039764edac4e0c95ac2077139261a7919af3b2cd310783fb153d545c1e71735ebcb615a25219b6add3d839fe1d733c6ba32794306dd31ab52d58fee6bd4f126e3f4af856a3a99967ee64f80393440b5680407eb53d9553074159a9c7209580f703ebb09df7c74460989eaed5cdde21a82774dbe31f4246d6cce39d8df7deffe28a7e696edecbb359a9eb48f5a9a6c3f7fc9a1a9eb5e11ae9adf96d850dbf8d045b3cba89339886117c4f5117e655ec11246cedbf3d42b3c596d70f21197633ef2f75fccde8d28b799ccb73e48cfe029fc4b321003731057e62b8ab67b50969971400c715ce057b966e288c01d6e1313cf5496e4ce8a8299ae0164d80bdc41b3d37790a93a2daf04ce4e953466ca169b9d7e547d8e056afe8668028cb2995af61d6cddd63f8180c68244b43ec1679228587d7b16a8a91fcf6ec5b697852a8271db83f6c16d33ddd08711182636654e97d89b30cfb6c2efcf3fbc8877b4df3c4df80383b2f961c75787d59f6eb6f1f3e90764c8bf126321879929d59e774abb83ad65c64891855bb22fe0c534199e93e23216e5055f209d9a563a53bbc36bcbbce1cb0221bfc74b1950fc7cf38d60ed0086eb9328a963db5349595f549779836adcfaf20d8aba860e24c03f93e97d3e82b4dffa887d893da29b80e4b37d134f0c559bc25f811f729aa9d4b4a033f850f347ad1ba196921292bff506d4c66185ec881df110b52d67e9efd6398e8a0e2a59edd4b11cdd59682bee64c75b9bdf5f3c710313826714c711a23f334f3e576ecc7ee3b1634b5e369da6ba6268f8aa6315fc8067184fe8d20a8ce32c5ae43124ce5acdcccf050dd6255055b9675fda7c9fd14ee90a93968c4992472ec19dce5956fd332f57c272a178aa5c1b6056cd27dfb469bfeee0adcdfec51cc8b775ab1176b527a9cd25c230ae88bfce30080bc476d7e19b4f3ff8b61c80a6bb8df0042134c0e8b656fa15f8bf2fea98eefce56f5d3e42f572a41da9e4dd3347bc327a9306e12ab92401ae28f2dc5d981f11d87b67299a76e77539bed8404f0f3e4dea53cfd6f645adbe93ce0c7a3fad057b2cc896a71255afda1ff42a56b50784392523973256f9e5e5e069c0575fc84b26ee4c1c504da190aa051101f7a6a20f2a7c085b87a31317f5776bad3d2cf5ae9fd5f1df0c8b550e44a2179c7f2e7b80d60bbd336a936435a3d181810bf0bb373726e5f845ea7607fcb511a474e5891f327576191e26cb780ffe9412b295d3e05bf7c577c3da0a6ed8433823bc5e9adcc8e9f6805d30806797ff7d3bc47bb44de1f81cedf9abe816010392b8bfa0e5049657a39c1207b152122fc7f6d8091d6f6c2c511937449bafb7c16c7f94cf594fdff0cf77c1070107d5c6a5430db3d2bf07eefd406ba8724ba95d6158d3a292b2bda4bbae7e0fa0d60813d31513940ad2aa19a6359ad817057509ad1e08f6323a65682d4e823a3afe12b5733d84b6099ffebd8fff92256383a06bee8d8096f3b2c8657101fc4bd51f1ae7a8ac81dc59202279895ef74a03953767121482f2cc29a7f0c8398c272ceca15635d691860341e15cf745515ba419620abb7057457f4645617fd3ccf707536065e0ff083b4025fe91b1e71c32a8328cd7103751e5e41138cac4435a743d55cc0ee0dede1fc793862cfef300c448cf4f6a090a1ef0d6997f05c677bbc67bed24d728e30d780844de13f775ebfc1245e89e785a3d06cbbb3ec5834e4c679b5e22583a17dbaf30af1d06d084e180f5e1b5a3c46b5fd66a476a1864b2681576980eda0be917a1d29bbe821b9390195ee0cebe2f54bbce21fad6cb4e661e502e121a6dc8dc09a1e42f20d5c56c9077addf1cbc9a5070cc723c1992c471294c4a6532c95ecbeb19b6048b44cc9b9b73324a58d8c0e9fc901ba70a76485f553cf7c22805748d532ff748556f87704be2d6070c95818c8b990a3d6704f42a9b4a4189facccb12d01f90a634927ed0206e88b2597266d8a5aa4a6ba207ed398b30499eaaf7854d64479484e72aaad1ceb08382f8e4aa600d59a09d9e435f688665faeba1d1eb15fbda270dbf65fe0c6232cd78a2357b9cc897973aba552c159bb77421447db12bef10e727b2033c462856d673a15a7cf676768cf89813872db461e88ce032df89e614244b3f87065e5e502c779ba093ca89fda669f2621f2e9b426c700f96b5085ed93e8e2727e486abb900e6d487ec5dab62f0c41fef4d8773917e83a5c200a703438b7a2a16d3301a9c97f4c29321316d7dcc73a947f24aaa3c493b5e2ceed37d0663c6c1b1abe2386d416ccbd5247c84866a5db083bd09aa86e1e9bd80d20643953808fbf6048750ffcee1f4e8594ca9c3d2590ba6937a1bf68da29a021fe7b4ffca6de42c66e4838fc68106bd0c073f30703b75b06337f8fb9d24d82ebb3ce6109b81fa9689b1c42a7f5df65d42425b7b206d6e3f38ca0369862edd823584d709bd96cc6b3c494744e900f954b40311d4221ff1774697ba66aca38182385b163d091225970687f2fc3138f6ea3dfe79bcada35106ffc224d93d504ec383a1439241847cead70a2aad87540f88f0f20e29947d53aa7631ed4617223f0e9ec80ddb120dcbef742e08687233266a2d5f7d6e8af6938fc93b459034a5cece7c39d240188af5c4db8364081c17fa8d81aaa29f0139910f18c933677f5cda94b22d1d69b58b3376ef4e805865fea657d043d2b6d1519abf682ed39a6400ab53b444665fc85d9dd7412fed4e41e67b5aeb1b78d0a7d5e32d8bbb217b51ef867a4a60373779c6abfc20ae19cf02a9b95aba47d5f14e0286eec124fb05b47929c2701362ec215500ed1058398c1bdfa0445bdb2f22745f9eb9a5c77a91e294f87ea2184aa55809499b4815483ee8a5882be246b4b6dba85684ff8decece8d30ae10038d8a1ca6d094f1261f4f252e085ca5f4c38daccfbdaa9ff73c19fcfcbd1c0b3e003f550478090f09f88c4b9b87dbc05153e99d4aa21521d2890f1f5536606f31474a2b9ca7e99ed278b7107cf466298063678a90bed15f376c5d0792baeaf95df83e02d28617695c382334e54e3c7f15d900e2dd47b80fd62e0ffdb0bc0a6fed4865e30fb686eef82ca6a8e2793cc8421c232d371a59022eb6c368a9f13692d6922dc9668878f0fc42862e81cc4aaf7cfe6a29429496806cb34fbb9bf298c60fddd0efa49f98a751224c9e7a862830e19d634452cfb94672c4fc62eb6e1c02c10dafa8f588c049e28574012e9520585e149bbe1cdbaacd24110e663c1d34368c9565038d53fe035c3b86c49df304c245bb3f90f39ac411a16cb7a203063bb4f3755f571996716f247b7aba0c82086c4c4b4251542bec728ab0634673a3ab5171b5348acf94128da0f25c129ec3ea3046dd021460bd17d5b1201c9c15693c903dc9878fd26f5c41f1e244c2589b49fa2a408185d81d3d8a883099a568e62828fff39a21cf9c4efaf06cb53330275ee067c421155c38b31a93513ff0f5df510065761dbbdc936801387f3884e842d9414cf08231628779f58432ba8bfc2b176d715389b2dc8a038b786249afa6016facf32b3ae5f950861b949ac88ca92fb16c875799f92e3043dc4557a90adaa10cddba5e082cf738618c0c0a4a83098639d65bd19c2828ccada5bec1113901d1b8d8b3dbaa452bec4000431c96ce573a1a05f8648d54f0f26bd9a53a3e75ac174be967e59c9550f520cde6dd89a409947c29f0e6a0d2f5edd07dc71e9eed9ef661dfbccd22ef0037e41b5c7fc0e9433ce3edcdc0f9b8e4f5ae4df500453a94720f2163bb76574d7cff538e1bdf418f74a687fa5995860de12c3773047c352d34a6798ce990d4d3d4ce1173ff7c1a6990969027a1efcdbd35c785834a61ace55bf8e163dcf0be6aade29f6d9586db4fc33c27398b0354c779e0d63db767afca289a2d467236670a8489e9b978500a5ba0715cf5691e3aac803f8e483b33bb05d5f80388aa74d1037742728308b052fc0133e36fd8176ea560295dce9238cc5f4435b6c4b5fadeccbf5d0a68fe8cad2b9a97c8b684bb4ee4b493a1329fbb01548f6b0ba36ba8e014ba48ee9e91ad19d3c81a0ce7178e922e114f13535aeea83929ecca3e8ca4cdbe90bb048ed574db0ad33cee6521c0a042fe3b4056e3345edc480f29a90d61ed43b9075faabca24830c02702a6c3128fedbeec23cf08c5ebd387d0e2c33cbaf9b1ea63a6e7d65aefe8d896282eb1645078f6526f13d0021ade53d0dd7d29c6408ac51b88a5afd6871611fc36aafb5cd31dc6ffe471b257ef6689bd6667bb00eb71f4f46906c75cd085f2519a20e0a3f5f3497f8a467eab8031ba80d921267e6a735faac2df783c399a66d66d79965641646b788ae1cb8d9895c54270d3e21979e62f65bd90891e24f766b1b70a4e78c768d04ad57ca29e22be9b479ae3e17ab49f6ad0283c0b1c543115ebe2634d54d72058868e3647ac77bae095d45aef3485da8fad4b1d9dede83e72f038abdab4cd9a5c4669d5a00e76acc3abf0ca1f76ec9c930e8e5cedb19b98f65e078e265252efbf82ac89d9224e6f8ca99ee8435873851e8cd2f148accf704fa1c1d9741fa0d792683ab586c3f9e64ab852e5519064985d01beeed4b95547b241aeae66e2ab3639031088eada6b0925436ff221529a500d1a7df050f3e7541d01a7c00d410edc9e2c777d730c8a153c6bde73b1c577dac16af379c2891520c85aa88b00e42b903ae53", @ANYBLOB="5118593584a3a7a44c0ff570ae6107896dd5", @ANYRESOCT=r0, @ANYRESHEX, @ANYRES16=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={&(0x7f00000002c0)=[0xd8f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x153, 0x1, 0xffffffff, 0x0, 0x0, 0x8, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x401], 0x0, 0x2a89c0}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$UFFDIO_WRITEPROTECT(r5, 0xc018aa06, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x3}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 787.637177][ T28] audit: type=1800 audit(1654383359.246:441): pid=9547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1184 res=0 errno=0 [ 787.748108][ T9556] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 787.758485][ T9556] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 22:55:59 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, 0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:55:59 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x33, 0x3fffff) 22:55:59 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46900) r1 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r1, 0x200002) sendfile(r0, r1, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745430658c3ff751b74eb8800010000010001ff000000001752d22a8fd150a76f8b0fee4f6dc80b0000000000001d17c99bf6b5b30000e6f1266e952dd8398035a127bd95fa0337bc99653c"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000002c0)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r0, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r1, 0x200002) (async) sendfile(r0, r1, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745430658c3ff751b74eb8800010000010001ff000000001752d22a8fd150a76f8b0fee4f6dc80b0000000000001d17c99bf6b5b30000e6f1266e952dd8398035a127bd95fa0337bc99653c"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000002c0)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) 22:55:59 executing program 5: ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) socketpair(0x1d, 0x5, 0x200000, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00042bbd7000ffdbdf254200000008000300238c7f6bc3dc59302bb74ad6308f128a8e2cb19b530c5c0317ddfb5ef503ca6695fcaa12f61c9097939eeea39e453d64133394945a28906b4d82d43a1b90a9cc3fbdc3810486becd598da3bc1eb7ff91fd16557823c03057a40da3a4208a054be09bc40325d9ff7d4a1984739203217fb8d3cfb7236127e6495ef233832a6c273d65ed90566be053d4bbd1c5b13442bd047643ee95587e7bc3d301672621f1ecdd51297a0b2cad10d5fd147b0d2c595f6683ffb96adcfb1c0ff9", @ANYRES32=r4, @ANYBLOB="0a000600a9aa51cdbfa900000a0006005050505050500000"], 0x34}, 0x1, 0x0, 0x0, 0xd0}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/268]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ftruncate(0xffffffffffffffff, 0x200002) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (async) socketpair(0x1d, 0x5, 0x200000, &(0x7f0000000000)) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) (async) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) (async) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan1\x00'}) (async) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00042bbd7000ffdbdf254200000008000300238c7f6bc3dc59302bb74ad6308f128a8e2cb19b530c5c0317ddfb5ef503ca6695fcaa12f61c9097939eeea39e453d64133394945a28906b4d82d43a1b90a9cc3fbdc3810486becd598da3bc1eb7ff91fd16557823c03057a40da3a4208a054be09bc40325d9ff7d4a1984739203217fb8d3cfb7236127e6495ef233832a6c273d65ed90566be053d4bbd1c5b13442bd047643ee95587e7bc3d301672621f1ecdd51297a0b2cad10d5fd147b0d2c595f6683ffb96adcfb1c0ff9", @ANYRES32=r4, @ANYBLOB="0a000600a9aa51cdbfa900000a0006005050505050500000"], 0x34}, 0x1, 0x0, 0x0, 0xd0}, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000580)=ANY=[@ANYBLOB="07000000000000000001afca24da62fd474543c310ff00000000c80b8edbff77e4fa3038974d0000000000001d17c99bf6b5b3857c6a97367ac22d79769afa36bc9540b985649ee23fc092c38a2218937453d0ba2d10aa7c3caa52b117577407a9916845343c6876880d73bab2974f564be1a8cae2afcdf5a27354d8670b1ab23d2ec8a017696ade2641b9877b22577030e3036f06ddbe5a554326a85911201379fc0f09df9cf88439a3d9e91c1db17238436d8c19d42e770125e03ea083e84dff78dde46956b63bfc96891037a01924a0c12a34b709ba42e8bc1fcc98afe3afa0c41836485544d424099dcdaa4330cae4640601e7e15b19a8cb6f18273600"/268]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) 22:55:59 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5d, 0x3fffff) 22:55:59 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="bc8384fa2d77a4f93428ea5a4b22fc4ffb6f97d69aca34c1bca3e2f361506551c2a7767fe369193ca6bcc54f71915db822a58b9873431ac6a919f060530dc121614ea1eb36685a6633f0ab6d56c166a71eafb1857167fc486c5a4f0c02582c9295c68dec91c86cf10cf15f34b95b4e8788295fea8c", @ANYRES64=r0, @ANYRES64, @ANYBLOB="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", @ANYBLOB="5118593584a3a7a44c0ff570ae6107896dd5", @ANYRESOCT=r0, @ANYRESHEX, @ANYRES16=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={&(0x7f00000002c0)=[0xd8f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x153, 0x1, 0xffffffff, 0x0, 0x0, 0x8, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x401], 0x0, 0x2a89c0}) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) ftruncate(0xffffffffffffffff, 0x200002) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) ioctl$UFFDIO_WRITEPROTECT(r5, 0xc018aa06, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x3}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 788.061680][ T28] audit: type=1800 audit(1654383359.666:442): pid=9561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1178 res=0 errno=0 22:55:59 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="bc8384fa2d77a4f93428ea5a4b22fc4ffb6f97d69aca34c1bca3e2f361506551c2a7767fe369193ca6bcc54f71915db822a58b9873431ac6a919f060530dc121614ea1eb36685a6633f0ab6d56c166a71eafb1857167fc486c5a4f0c02582c9295c68dec91c86cf10cf15f34b95b4e8788295fea8c", @ANYRES64=r0, @ANYRES64, @ANYBLOB="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", @ANYBLOB="5118593584a3a7a44c0ff570ae6107896dd5", @ANYRESOCT=r0, @ANYRESHEX, @ANYRES16=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={&(0x7f00000002c0)=[0xd8f]}) (async, rerun: 64) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x153, 0x1, 0xffffffff, 0x0, 0x0, 0x8, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x401], 0x0, 0x2a89c0}) (async, rerun: 32) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) (async) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) ftruncate(0xffffffffffffffff, 0x200002) (async, rerun: 64) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (rerun: 64) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$UFFDIO_WRITEPROTECT(r5, 0xc018aa06, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x3}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:00 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5e, 0x3fffff) 22:56:00 executing program 5: ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (async) socketpair(0x1d, 0x5, 0x200000, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) (async) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00042bbd7000ffdbdf254200000008000300238c7f6bc3dc59302bb74ad6308f128a8e2cb19b530c5c0317ddfb5ef503ca6695fcaa12f61c9097939eeea39e453d64133394945a28906b4d82d43a1b90a9cc3fbdc3810486becd598da3bc1eb7ff91fd16557823c03057a40da3a4208a054be09bc40325d9ff7d4a1984739203217fb8d3cfb7236127e6495ef233832a6c273d65ed90566be053d4bbd1c5b13442bd047643ee95587e7bc3d301672621f1ecdd51297a0b2cad10d5fd147b0d2c595f6683ffb96adcfb1c0ff9", @ANYRES32=r4, @ANYBLOB="0a000600a9aa51cdbfa900000a0006005050505050500000"], 0x34}, 0x1, 0x0, 0x0, 0xd0}, 0x0) (async, rerun: 32) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 32) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/268]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 22:56:00 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x34, 0x3fffff) 22:56:00 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46900) (async) r1 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r1, 0x200002) (async) sendfile(r0, r1, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745430658c3ff751b74eb8800010000010001ff000000001752d22a8fd150a76f8b0fee4f6dc80b0000000000001d17c99bf6b5b30000e6f1266e952dd8398035a127bd95fa0337bc99653c"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000002c0)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 788.591046][ T28] audit: type=1800 audit(1654383360.196:443): pid=9612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1178 res=0 errno=0 22:56:00 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x50400, 0x100) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) llistxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)=""/211, 0xd3) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:00 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, 0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:00 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4048ae9b, &(0x7f00000002c0)={0x20000, 0x0, [0x100000000, 0x9, 0x7fff, 0x3, 0x2, 0x2, 0x8000000000000001, 0xffff]}) 22:56:00 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5f, 0x3fffff) 22:56:00 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x35, 0x3fffff) 22:56:00 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) write$binfmt_script(r0, &(0x7f00000002c0)={'#! ', './file0', [{0x20, '}'}, {0x20, 'cpuacct.stat\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, 'cpuacct.stat\x00'}, {0x20, '#*@'}, {0x20, 'cpuacct.stat\x00'}], 0xa, "4f5b70241f2187ee511fcc3addda31274c8e030c85b3f3fdc94d0e93daaf6476bb588ed89bcbab2b171d7604a578b5d9ddfb9dd5b93ab01a911517dc9438d9b00dfded45acd29ef0f124a92fc079a024add9d49c8e814da06d22cfdc97509fa44e3ccbc7c4473ff8753ba0f38f087be94f2df6366304612571de32f121c40b6441b7c556b6a3a61337adfc70ca0528fd3a8ebf7dcd79a67b3017fc4ccead2fc6f156cabb577f723d727c0dfdc9fbf6cd0d8b740e29b124a2d8e5225cff7df730b7a67b788a64e092f248301c0ad7ba76cbb04455b0d0c29b03e1d26d032adf8071bdde4bc74285bc742a9f7b12ae684ccb42"}, 0x137) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:00 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x50400, 0x100) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) llistxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)=""/211, 0xd3) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:00 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x36, 0x3fffff) 22:56:00 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x60, 0x3fffff) 22:56:00 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4048ae9b, &(0x7f00000002c0)={0x20000, 0x0, [0x100000000, 0x9, 0x7fff, 0x3, 0x2, 0x2, 0x8000000000000001, 0xffff]}) 22:56:00 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) write$binfmt_script(r0, &(0x7f00000002c0)={'#! ', './file0', [{0x20, '}'}, {0x20, 'cpuacct.stat\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, 'cpuacct.stat\x00'}, {0x20, '#*@'}, {0x20, 'cpuacct.stat\x00'}], 0xa, "4f5b70241f2187ee511fcc3addda31274c8e030c85b3f3fdc94d0e93daaf6476bb588ed89bcbab2b171d7604a578b5d9ddfb9dd5b93ab01a911517dc9438d9b00dfded45acd29ef0f124a92fc079a024add9d49c8e814da06d22cfdc97509fa44e3ccbc7c4473ff8753ba0f38f087be94f2df6366304612571de32f121c40b6441b7c556b6a3a61337adfc70ca0528fd3a8ebf7dcd79a67b3017fc4ccead2fc6f156cabb577f723d727c0dfdc9fbf6cd0d8b740e29b124a2d8e5225cff7df730b7a67b788a64e092f248301c0ad7ba76cbb04455b0d0c29b03e1d26d032adf8071bdde4bc74285bc742a9f7b12ae684ccb42"}, 0x137) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:01 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x50400, 0x100) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) llistxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)=""/211, 0xd3) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) open(&(0x7f00000001c0)='./file0\x00', 0x50400, 0x100) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) llistxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)=""/211, 0xd3) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:01 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x37, 0x3fffff) 22:56:01 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:01 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4048ae9b, &(0x7f00000002c0)={0x20000, 0x0, [0x100000000, 0x9, 0x7fff, 0x3, 0x2, 0x2, 0x8000000000000001, 0xffff]}) 22:56:01 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x61, 0x3fffff) 22:56:01 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) write$binfmt_script(r0, &(0x7f00000002c0)={'#! ', './file0', [{0x20, '}'}, {0x20, 'cpuacct.stat\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, 'cpuacct.stat\x00'}, {0x20, '#*@'}, {0x20, 'cpuacct.stat\x00'}], 0xa, "4f5b70241f2187ee511fcc3addda31274c8e030c85b3f3fdc94d0e93daaf6476bb588ed89bcbab2b171d7604a578b5d9ddfb9dd5b93ab01a911517dc9438d9b00dfded45acd29ef0f124a92fc079a024add9d49c8e814da06d22cfdc97509fa44e3ccbc7c4473ff8753ba0f38f087be94f2df6366304612571de32f121c40b6441b7c556b6a3a61337adfc70ca0528fd3a8ebf7dcd79a67b3017fc4ccead2fc6f156cabb577f723d727c0dfdc9fbf6cd0d8b740e29b124a2d8e5225cff7df730b7a67b788a64e092f248301c0ad7ba76cbb04455b0d0c29b03e1d26d032adf8071bdde4bc74285bc742a9f7b12ae684ccb42"}, 0x137) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:01 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x38, 0x3fffff) 22:56:01 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000023001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], 0x10000}) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f00000001c0)={0x0, 0xfffffffffffffff9, 0x7}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:01 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x800080}}, './file0\x00'}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0xac, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7f, 0x47}}}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x15, 0x13, [{0x48}, {0x16, 0x1}, {0x18}, {0x52}, {0x1b}, {0x1b}, {0x6c}, {0x6, 0x1}, {0x6, 0x1}, {0xc}, {0x12, 0x1}, {0x1b, 0x1}, {0x5, 0x1}, {0x30}, {0x36}, {0x48}, {0x18}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x5}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x39, 0xbe, "41b4fb5fbe223c9699cd3dc31f753c7bed4edd35e633f1296f6dc058df7ee4e8811748abc79bdead00c7f4b464ddd5ad8e8aa45db0"}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xfffd}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x1f, 0xa2}}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x4}]}, 0xac}, 0x1, 0x0, 0x0, 0x90}, 0x4004) getsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000002c0)=""/175, &(0x7f0000000380)=0xaf) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101040, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) write$cgroup_subtree(r3, &(0x7f0000000540)={[{0x2b, 'cpu'}, {0x2d, 'memory'}]}, 0xd) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 790.038840][ T28] audit: type=1800 audit(1654383361.646:444): pid=9707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:01 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x39, 0x3fffff) 22:56:01 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000023001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], 0x10000}) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f00000001c0)={0x0, 0xfffffffffffffff9, 0x7}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:01 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x62, 0x3fffff) 22:56:01 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:02 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x800080}}, './file0\x00'}) (async) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) (async) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (async) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0xac, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7f, 0x47}}}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x15, 0x13, [{0x48}, {0x16, 0x1}, {0x18}, {0x52}, {0x1b}, {0x1b}, {0x6c}, {0x6, 0x1}, {0x6, 0x1}, {0xc}, {0x12, 0x1}, {0x1b, 0x1}, {0x5, 0x1}, {0x30}, {0x36}, {0x48}, {0x18}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x5}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x39, 0xbe, "41b4fb5fbe223c9699cd3dc31f753c7bed4edd35e633f1296f6dc058df7ee4e8811748abc79bdead00c7f4b464ddd5ad8e8aa45db0"}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xfffd}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x1f, 0xa2}}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x4}]}, 0xac}, 0x1, 0x0, 0x0, 0x90}, 0x4004) (async) getsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000002c0)=""/175, &(0x7f0000000380)=0xaf) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101040, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) write$cgroup_subtree(r3, &(0x7f0000000540)={[{0x2b, 'cpu'}, {0x2d, 'memory'}]}, 0xd) (async) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 790.579877][ T28] audit: type=1800 audit(1654383362.186:445): pid=9729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1173 res=0 errno=0 22:56:02 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:02 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000023001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], 0x10000}) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f00000001c0)={0x0, 0xfffffffffffffff9, 0x7}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000023001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], 0x10000}) (async) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f00000001c0)={0x0, 0xfffffffffffffff9, 0x7}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:02 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x63, 0x3fffff) 22:56:02 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3a, 0x3fffff) 22:56:02 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x800080}}, './file0\x00'}) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) (async) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) (async) sendfile(r2, r3, 0x0, 0x80001d00c0d2) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0xac, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7f, 0x47}}}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x15, 0x13, [{0x48}, {0x16, 0x1}, {0x18}, {0x52}, {0x1b}, {0x1b}, {0x6c}, {0x6, 0x1}, {0x6, 0x1}, {0xc}, {0x12, 0x1}, {0x1b, 0x1}, {0x5, 0x1}, {0x30}, {0x36}, {0x48}, {0x18}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x5}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x39, 0xbe, "41b4fb5fbe223c9699cd3dc31f753c7bed4edd35e633f1296f6dc058df7ee4e8811748abc79bdead00c7f4b464ddd5ad8e8aa45db0"}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xfffd}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x1f, 0xa2}}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x4}]}, 0xac}, 0x1, 0x0, 0x0, 0x90}, 0x4004) getsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000002c0)=""/175, &(0x7f0000000380)=0xaf) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101040, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) write$cgroup_subtree(r3, &(0x7f0000000540)={[{0x2b, 'cpu'}, {0x2d, 'memory'}]}, 0xd) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 22:56:02 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 790.828857][ T28] audit: type=1800 audit(1654383362.436:446): pid=9743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1179 res=0 errno=0 22:56:02 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:02 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3b, 0x3fffff) 22:56:02 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$RTC_PIE_OFF(r3, 0x7006) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:02 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3c, 0x3fffff) 22:56:02 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x64, 0x3fffff) 22:56:02 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000001c0)={0x2, 0x4, 0x4}) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:03 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 32) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$RTC_PIE_OFF(r3, 0x7006) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b000000f6b5b300000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3d, 0x3fffff) 22:56:03 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000001c0)={0x2, 0x4, 0x4}) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x65, 0x3fffff) 22:56:03 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x66, 0x3fffff) 22:56:03 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b000000f6b5b300000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000001c0)={0x2, 0x4, 0x4}) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x3e, 0x3fffff) 22:56:03 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$RTC_PIE_OFF(r3, 0x7006) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:03 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000540)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x1], 0x0, 0x10}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f00000001c0)=0x6) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r6, 0x89e7, 0x0) close_range(r4, r6, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f00000002c0)={0x0, 0x3, 0x10}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:04 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:04 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90, 0x0], 0x2}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:04 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x67, 0x3fffff) 22:56:04 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b000000f6b5b300000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:04 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000540)=ANY=[@ANYBLOB="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"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 64) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x1], 0x0, 0x10}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) (async, rerun: 32) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f00000001c0)=0x6) (rerun: 32) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r6, 0x89e7, 0x0) (async) close_range(r4, r6, 0x0) (async) ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f00000002c0)={0x0, 0x3, 0x10}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:04 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x41, 0x3fffff) 22:56:04 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000540)=ANY=[@ANYBLOB="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"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x1], 0x0, 0x10}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f00000001c0)=0x6) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r6, 0x89e7, 0x0) (async) close_range(r4, r6, 0x0) (async) ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f00000002c0)={0x0, 0x3, 0x10}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:04 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90, 0x0], 0x2}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:04 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000024da0009000001000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f00000002c0)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:04 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x68, 0x3fffff) 22:56:04 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745d4128a4c1aa1cd114e98cea643c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:04 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 32) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 32) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90, 0x0], 0x2}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:05 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:05 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x42, 0x3fffff) 22:56:05 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000024da0009000001000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f00000002c0)) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:05 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x69, 0x3fffff) 22:56:05 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745d4128a4c1aa1cd114e98cea643c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745d4128a4c1aa1cd114e98cea643c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:05 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb00000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:05 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000024da0009000001000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f00000002c0)) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000024da0009000001000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f00000002c0)) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:05 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x43, 0x3fffff) 22:56:05 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb00000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:05 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r4, 0xae80, 0x0) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46900) ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f00000002c0)) 22:56:05 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6a, 0x3fffff) 22:56:05 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x44, 0x3fffff) [ 794.131331][ T28] audit: type=1800 audit(1654383365.736:447): pid=9938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1179 res=0 errno=0 22:56:06 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:06 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745d4128a4c1aa1cd114e98cea643c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd4745d4128a4c1aa1cd114e98cea643c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:06 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb00000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:06 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) (async) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46900) (async) ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f00000002c0)) 22:56:06 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x45, 0x3fffff) 22:56:06 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6b, 0x3fffff) 22:56:06 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) (async) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46900) (async) ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f00000002c0)) 22:56:06 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$xdp(0x2c, 0x3, 0x0) dup3(r0, r3, 0x80000) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) sendfile(r5, r6, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:06 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001aff300da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17009bf6b5b31a5c5dca52f2e5093723d67d822d59c37d3e182d6616c9d79523cc5e384b94e8752e511d75b155f66e316fcf5cf4216b5f74e6d822ffd4bec3cf04b548b9c71277910a48921798e38920d125e176f6dee9eb99681296badbfffef64238ecd0f81278e026b31c9a01a95910d8e3214cb3e692a782c658e393806db11a5949af0b97a47d6189ae1a6ba619313961d16c3d30e5d86800"/219]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:06 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x46, 0x3fffff) [ 794.731166][ T28] audit: type=1800 audit(1654383366.336:448): pid=9984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 [ 794.773370][ T28] audit: type=1800 audit(1654383366.376:449): pid=9981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1184 res=0 errno=0 22:56:06 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6c, 0x3fffff) 22:56:06 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r4 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r4, 0x89e7, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, {0x88ab, 0x3}}, './file0\x00'}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:06 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:06 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001aff300da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17009bf6b5b31a5c5dca52f2e5093723d67d822d59c37d3e182d6616c9d79523cc5e384b94e8752e511d75b155f66e316fcf5cf4216b5f74e6d822ffd4bec3cf04b548b9c71277910a48921798e38920d125e176f6dee9eb99681296badbfffef64238ecd0f81278e026b31c9a01a95910d8e3214cb3e692a782c658e393806db11a5949af0b97a47d6189ae1a6ba619313961d16c3d30e5d86800"/219]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:06 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x47, 0x3fffff) 22:56:06 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) r3 = socket$xdp(0x2c, 0x3, 0x0) dup3(r0, r3, 0x80000) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 64) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) (async) sendfile(r5, r6, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:06 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6d, 0x3fffff) 22:56:06 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) r3 = socket$xdp(0x2c, 0x3, 0x0) dup3(r0, r3, 0x80000) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) (async) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) (async) sendfile(r5, r6, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:06 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff}) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) r4 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r4, 0x89e7, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, {0x88ab, 0x3}}, './file0\x00'}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:07 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(r1, r2, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000000afca24da6201484543c310751b74eb90ae0100000001ff21000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) openat$cgroup_procs(r0, &(0x7f00000001c0)='cgroup.threads\x00', 0x2, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:07 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001aff300da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17009bf6b5b31a5c5dca52f2e5093723d67d822d59c37d3e182d6616c9d79523cc5e384b94e8752e511d75b155f66e316fcf5cf4216b5f74e6d822ffd4bec3cf04b548b9c71277910a48921798e38920d125e176f6dee9eb99681296badbfffef64238ecd0f81278e026b31c9a01a95910d8e3214cb3e692a782c658e393806db11a5949af0b97a47d6189ae1a6ba619313961d16c3d30e5d86800"/219]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:07 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff}) (async, rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) r4 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) (rerun: 64) ioctl$SIOCAX25OPTRT(r4, 0x89e7, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, r4, {0x88ab, 0x3}}, './file0\x00'}) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:07 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x48, 0x3fffff) [ 795.636195][ T28] audit: type=1800 audit(1654383367.246:450): pid=10042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1168 res=0 errno=0 22:56:07 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x11, 0x800000003, 0x0) bind(r3, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001400210100000000000000000a000000", @ANYRES32=r4, @ANYBLOB="140002000000000000000000000000ffff00000000000000008220e1f5114f174804f5ccccf1aea2feb68667ca8a26b3030521cdcd7f9f426b72a4065420c83be97e641f88e511ada3d2164101d5824fc299801c44abd61a6dbc46e71df761c1723ff7a267cf7468c5d7b1f56e85aafe1050afa7d2e9e64fd01bdd942fde824ea0203d1cbe08334fcb99e75c3f20cb"], 0x40}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=@bridge_delvlan={0x48, 0x71, 0x1, 0x70bd28, 0x25dfdbfd, {0x7, 0x0, 0x0, r4}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x11}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0xd3a}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x13}}}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x4000009) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 795.844969][T10054] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. 22:56:07 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:07 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6e, 0x3fffff) 22:56:07 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) (async) r3 = socket(0x11, 0x800000003, 0x0) bind(r3, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001400210100000000000000000a000000", @ANYRES32=r4, @ANYBLOB="140002000000000000000000000000ffff00000000000000008220e1f5114f174804f5ccccf1aea2feb68667ca8a26b3030521cdcd7f9f426b72a4065420c83be97e641f88e511ada3d2164101d5824fc299801c44abd61a6dbc46e71df761c1723ff7a267cf7468c5d7b1f56e85aafe1050afa7d2e9e64fd01bdd942fde824ea0203d1cbe08334fcb99e75c3f20cb"], 0x40}}, 0x0) (async) sendmsg$nl_route(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=@bridge_delvlan={0x48, 0x71, 0x1, 0x70bd28, 0x25dfdbfd, {0x7, 0x0, 0x0, r4}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x11}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0xd3a}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x13}}}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x4000009) (async, rerun: 64) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (rerun: 64) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (rerun: 64) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) 22:56:07 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x49, 0x3fffff) 22:56:07 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da63fd474543c310001b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) preadv(r0, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f00000002c0)=""/146, 0x92}, {&(0x7f0000000380)=""/115, 0x73}, {&(0x7f0000000400)=""/248, 0xf8}], 0x4, 0xfffffffd, 0x6) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x20) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:07 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(r1, r2, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000000afca24da6201484543c310751b74eb90ae0100000001ff21000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) openat$cgroup_procs(r0, &(0x7f00000001c0)='cgroup.threads\x00', 0x2, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r1, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r2, 0x200002) (async) sendfile(r1, r2, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000000afca24da6201484543c310751b74eb90ae0100000001ff21000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) openat$cgroup_procs(r0, &(0x7f00000001c0)='cgroup.threads\x00', 0x2, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) [ 796.245015][T10066] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 796.257809][ T28] audit: type=1800 audit(1654383367.866:451): pid=10070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:08 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(r1, r2, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000000afca24da6201484543c310751b74eb90ae0100000001ff21000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async, rerun: 64) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (rerun: 64) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) openat$cgroup_procs(r0, &(0x7f00000001c0)='cgroup.threads\x00', 0x2, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:08 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da63fd474543c310001b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) preadv(r0, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f00000002c0)=""/146, 0x92}, {&(0x7f0000000380)=""/115, 0x73}, {&(0x7f0000000400)=""/248, 0xf8}], 0x4, 0xfffffffd, 0x6) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x20) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da63fd474543c310001b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) preadv(r0, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f00000002c0)=""/146, 0x92}, {&(0x7f0000000380)=""/115, 0x73}, {&(0x7f0000000400)=""/248, 0xf8}], 0x4, 0xfffffffd, 0x6) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x20) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:08 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6f, 0x3fffff) [ 796.520347][ T28] audit: type=1800 audit(1654383368.126:452): pid=10087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:56:08 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) (async) r3 = socket(0x11, 0x800000003, 0x0) bind(r3, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) (async) getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001400210100000000000000000a000000", @ANYRES32=r4, @ANYBLOB="140002000000000000000000000000ffff00000000000000008220e1f5114f174804f5ccccf1aea2feb68667ca8a26b3030521cdcd7f9f426b72a4065420c83be97e641f88e511ada3d2164101d5824fc299801c44abd61a6dbc46e71df761c1723ff7a267cf7468c5d7b1f56e85aafe1050afa7d2e9e64fd01bdd942fde824ea0203d1cbe08334fcb99e75c3f20cb"], 0x40}}, 0x0) (async) sendmsg$nl_route(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=@bridge_delvlan={0x48, 0x71, 0x1, 0x70bd28, 0x25dfdbfd, {0x7, 0x0, 0x0, r4}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x11}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0xd3a}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_CMD={0x8, 0x2, 0x13}}}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x4000009) (async) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) 22:56:08 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4a, 0x3fffff) 22:56:08 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(r1, r2, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 796.713755][T10111] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 796.827932][ T28] audit: type=1800 audit(1654383368.436:453): pid=10118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:56:08 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040), 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:08 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f00000001c0)=ANY=[]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x8b, 0x3, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x5]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:08 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da63fd474543c310001b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 32) preadv(r0, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f00000002c0)=""/146, 0x92}, {&(0x7f0000000380)=""/115, 0x73}, {&(0x7f0000000400)=""/248, 0xf8}], 0x4, 0xfffffffd, 0x6) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 64) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async, rerun: 64) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x20) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:08 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4b, 0x3fffff) 22:56:08 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x70, 0x3fffff) 22:56:08 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000002c0)={0x7, 0x0, [{0x212, 0x0, 0x8}, {0x286, 0x0, 0xf5}, {0x200, 0x0, 0x7a8d}, {0x980, 0x0, 0x6de}, {0x850, 0x0, 0x7}, {0xa7c}, {0x22e, 0x0, 0x8}]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:08 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x46900) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) (async) sendfile(r1, r2, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:08 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4c, 0x3fffff) 22:56:09 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f00000001c0)=ANY=[]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x8b, 0x3, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x5]}) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:09 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x71, 0x3fffff) [ 797.489086][ T28] audit: type=1800 audit(1654383369.096:454): pid=10146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:56:09 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000002c0)={0x7, 0x0, [{0x212, 0x0, 0x8}, {0x286, 0x0, 0xf5}, {0x200, 0x0, 0x7a8d}, {0x980, 0x0, 0x6de}, {0x850, 0x0, 0x7}, {0xa7c}, {0x22e, 0x0, 0x8}]}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:09 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x72, 0x3fffff) 22:56:09 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:09 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x46900) (async) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) (async) sendfile(r1, r2, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:09 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f00000001c0)=ANY=[]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 64) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x8b, 0x3, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x5]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:09 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4d, 0x3fffff) 22:56:09 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000002c0)={0x7, 0x0, [{0x212, 0x0, 0x8}, {0x286, 0x0, 0xf5}, {0x200, 0x0, 0x7a8d}, {0x980, 0x0, 0x6de}, {0x850, 0x0, 0x7}, {0xa7c}, {0x22e, 0x0, 0x8}]}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000002c0)={0x7, 0x0, [{0x212, 0x0, 0x8}, {0x286, 0x0, 0xf5}, {0x200, 0x0, 0x7a8d}, {0x980, 0x0, 0x6de}, {0x850, 0x0, 0x7}, {0xa7c}, {0x22e, 0x0, 0x8}]}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:09 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x73, 0x3fffff) [ 798.002808][ T28] audit: type=1800 audit(1654383369.606:455): pid=10182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1178 res=0 errno=0 22:56:09 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:09 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000700)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@text32={0x20, &(0x7f00000001c0)="0fc71b0f78363e660f3880360f0091004000000f2282640f072ef00829c4c2e13abcf1d9a30000660f3833c8c4c3457810c4", 0x32}], 0x1, 0x0, &(0x7f0000000300)=[@efer={0x2, 0x400}], 0x1) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x8, 0xfb, 0x1000000000, 0x0, 0x0, 0x20000000000000, 0x8b8], 0x0, 0x80001}) ioctl$KVM_CAP_HYPERV_SYNIC(r4, 0x4068aea3, &(0x7f0000000340)) ioctl$KVM_RUN(r5, 0xae80, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='memory.events\x00', 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:09 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:09 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xe4, 0x0, 0x10, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x4000040) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) fgetxattr(r1, &(0x7f0000000440)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000480)=""/16, 0x10) 22:56:09 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x74, 0x3fffff) 22:56:09 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x75, 0x3fffff) 22:56:10 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:10 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4e, 0x3fffff) [ 798.402246][ T28] audit: type=1800 audit(1654383370.006:456): pid=10226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1168 res=0 errno=0 22:56:10 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x76, 0x3fffff) 22:56:10 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xe4, 0x0, 0x10, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x4000040) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) fgetxattr(r1, &(0x7f0000000440)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000480)=""/16, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xe4, 0x0, 0x10, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x4000040) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) fgetxattr(r1, &(0x7f0000000440)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000480)=""/16, 0x10) (async) 22:56:10 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:10 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000700)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) (async) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) (async) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@text32={0x20, &(0x7f00000001c0)="0fc71b0f78363e660f3880360f0091004000000f2282640f072ef00829c4c2e13abcf1d9a30000660f3833c8c4c3457810c4", 0x32}], 0x1, 0x0, &(0x7f0000000300)=[@efer={0x2, 0x400}], 0x1) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x8, 0xfb, 0x1000000000, 0x0, 0x0, 0x20000000000000, 0x8b8], 0x0, 0x80001}) ioctl$KVM_CAP_HYPERV_SYNIC(r4, 0x4068aea3, &(0x7f0000000340)) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='memory.events\x00', 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:10 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x4f, 0x3fffff) 22:56:10 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x77, 0x3fffff) 22:56:10 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:10 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x4040, 0x0) fcntl$setpipe(r0, 0x407, 0x2) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:10 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 64) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 32) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xe4, 0x0, 0x10, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x4000040) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) fgetxattr(r1, &(0x7f0000000440)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000480)=""/16, 0x10) 22:56:10 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x50, 0x3fffff) 22:56:10 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x78, 0x3fffff) 22:56:10 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000700)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x46900) r3 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r3, 0x200002) sendfile(r2, r3, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@text32={0x20, &(0x7f00000001c0)="0fc71b0f78363e660f3880360f0091004000000f2282640f072ef00829c4c2e13abcf1d9a30000660f3833c8c4c3457810c4", 0x32}], 0x1, 0x0, &(0x7f0000000300)=[@efer={0x2, 0x400}], 0x1) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x8, 0xfb, 0x1000000000, 0x0, 0x0, 0x20000000000000, 0x8b8], 0x0, 0x80001}) ioctl$KVM_CAP_HYPERV_SYNIC(r4, 0x4068aea3, &(0x7f0000000340)) ioctl$KVM_RUN(r5, 0xae80, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='memory.events\x00', 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000700)=ANY=[@ANYBLOB="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"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r2, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r3, 0x200002) (async) sendfile(r2, r3, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@text32={0x20, &(0x7f00000001c0)="0fc71b0f78363e660f3880360f0091004000000f2282640f072ef00829c4c2e13abcf1d9a30000660f3833c8c4c3457810c4", 0x32}], 0x1, 0x0, &(0x7f0000000300)=[@efer={0x2, 0x400}], 0x1) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x8, 0xfb, 0x1000000000, 0x0, 0x0, 0x20000000000000, 0x8b8], 0x0, 0x80001}) (async) ioctl$KVM_CAP_HYPERV_SYNIC(r4, 0x4068aea3, &(0x7f0000000340)) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='memory.events\x00', 0x0, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) 22:56:10 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000000840)={&(0x7f00000002c0)=@l2, 0x80, &(0x7f0000000880)=[{&(0x7f0000000340)=""/248, 0xf8}, {&(0x7f0000000900)=""/102400, 0x19000}, {&(0x7f0000000440)=""/74, 0x4a}, {&(0x7f00000001c0)=""/26, 0x1a}, {&(0x7f0000000500)=""/44, 0x2c}, {&(0x7f0000000540)=""/166, 0xa6}, {&(0x7f0000000600)=""/210, 0xd2}], 0x7, &(0x7f0000019900)=""/173, 0xad}, 0x12042) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r0, {0x80000000}}, './file0\x00'}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000700)={[0x1, 0xd13, 0xffffffff80000000, 0x40, 0x6, 0x7, 0x19, 0x3e01, 0x9, 0x1ff, 0x7, 0x3f, 0x39, 0x8000000000000001, 0x2, 0x8f43], 0x10000}) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 799.371749][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 799.371761][ T28] audit: type=1800 audit(1654383370.976:458): pid=10285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1160 res=0 errno=0 22:56:11 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x4040, 0x0) fcntl$setpipe(r0, 0x407, 0x2) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async, rerun: 32) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:11 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x51, 0x3fffff) 22:56:11 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x79, 0x3fffff) 22:56:11 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x4040, 0x0) fcntl$setpipe(r0, 0x407, 0x2) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x4040, 0x0) (async) fcntl$setpipe(r0, 0x407, 0x2) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:11 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000000840)={&(0x7f00000002c0)=@l2, 0x80, &(0x7f0000000880)=[{&(0x7f0000000340)=""/248, 0xf8}, {&(0x7f0000000900)=""/102400, 0x19000}, {&(0x7f0000000440)=""/74, 0x4a}, {&(0x7f00000001c0)=""/26, 0x1a}, {&(0x7f0000000500)=""/44, 0x2c}, {&(0x7f0000000540)=""/166, 0xa6}, {&(0x7f0000000600)=""/210, 0xd2}], 0x7, &(0x7f0000019900)=""/173, 0xad}, 0x12042) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 32) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r0, {0x80000000}}, './file0\x00'}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000700)={[0x1, 0xd13, 0xffffffff80000000, 0x40, 0x6, 0x7, 0x19, 0x3e01, 0x9, 0x1ff, 0x7, 0x3f, 0x39, 0x8000000000000001, 0x2, 0x8f43], 0x10000}) (async, rerun: 64) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) (async, rerun: 64) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:11 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:11 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x52, 0x3fffff) 22:56:11 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74e488000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x2003, 0x1000, &(0x7f0000001000/0x1000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000002c0)={0x4, 0x101000}) 22:56:11 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7a, 0x3fffff) 22:56:11 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000004272518b892c098b247f4b9df75143c310eb88000100000100000001ff00"/52]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) mmap$qrtrtun(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x300000b, 0x20010, r0, 0xbb) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:11 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000000840)={&(0x7f00000002c0)=@l2, 0x80, &(0x7f0000000880)=[{&(0x7f0000000340)=""/248, 0xf8}, {&(0x7f0000000900)=""/102400, 0x19000}, {&(0x7f0000000440)=""/74, 0x4a}, {&(0x7f00000001c0)=""/26, 0x1a}, {&(0x7f0000000500)=""/44, 0x2c}, {&(0x7f0000000540)=""/166, 0xa6}, {&(0x7f0000000600)=""/210, 0xd2}], 0x7, &(0x7f0000019900)=""/173, 0xad}, 0x12042) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r0, {0x80000000}}, './file0\x00'}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000700)={[0x1, 0xd13, 0xffffffff80000000, 0x40, 0x6, 0x7, 0x19, 0x3e01, 0x9, 0x1ff, 0x7, 0x3f, 0x39, 0x8000000000000001, 0x2, 0x8f43], 0x10000}) (async, rerun: 64) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) (async, rerun: 64) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:11 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7b, 0x3fffff) [ 800.170076][ T28] audit: type=1800 audit(1654383371.776:459): pid=10348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:11 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x53, 0x3fffff) 22:56:11 executing program 1: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001340f40b9ca6960681968c7345d2f0c09000100000100000001ff0000000000afac000008000000000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000005080)=[@textreal={0x8, &(0x7f00000087c0)="66b82c4000000f23d00f21f86635000000020f23f866660f73d70b66b80f0000000f23d80f21f86635000000800f23f8ba2000ece4d50f793eff00660fc6940a00bb0f005bf2b80d008ec066b9bb0900000f32", 0x53}], 0x1, 0x20, &(0x7f0000008680), 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000004f40)='/proc/tty/drivers\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000085c0)=[@text32={0x20, &(0x7f0000008580)="3ef466da8ac2030000360f35b99e0300000f32b9800000c00f3235001000000f30660f3825d5ffe29c0fc7990e0000002e660ff5f7", 0x35}], 0x1, 0x27, &(0x7f0000008600)=[@cstype0={0x4, 0xb}, @efer={0x2, 0x1}], 0x2) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x88c41, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000001680)={r5}) ioctl$sock_netrom_SIOCDELRT(r6, 0x890c, &(0x7f00000016c0)={0x0, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={'rose', 0x0}, 0x7, 'syz1\x00', @bcast, 0x80, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) sendmsg$qrtr(r5, &(0x7f0000001640)={&(0x7f00000002c0)={0x2a, 0x1, 0x2}, 0xc, &(0x7f0000001540)=[{&(0x7f0000000300)="a1cf13d8a8cfd61a25e3a1ca7b7ac5e4ccffbd6041ce9c25cc2468721895485d7519a3a7306989e0d24c4242007184678ec9c6e897e077173bfc7f61fd38b71d632592e52baba75491704ebb375aa07a9d966bba", 0x54}, {&(0x7f0000000380)="02249601da012e6d8f9541635e448d81b1d399a4161a380901647b2624683c91767d12232b5b376a2a23e4615ecb40e25d03f531c4ee1e54c72eb33c8853d0d65ffa8688d0edd870d8f22fd814673f51bc1c3ff839f37dda9145e3a80467ff637e6c3827d2524904c440834adcdab875bd14b23e0029c380ba6c2f48952b7fb59e4b716a45e01f4f611326473de16f50b9f9d9bcae3dadb35320042a62756866e70662671d93ffa39648d9c391dfd2ac9335e672edbe75516bd165239775b6f4a7e4518d4a7bb9404d8a3ddbc18c83dc1ef4981c97721cc12ca810bebe574896136478d02f14d0d5fe0bd5c1", 0xec}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="8b89473746918a47438680a563e57b750657502356148410102aa9323b0304b02d5a6f5234e7edef187ac2fe69ec383fbdc791c7bea0e4fcebc6183b9b794aa0fb2833626f3c952bff2ab353182a60c49389c34f50f4f18dee53c5d20d6e97c8730c9bbbe58b31cdd435250327203ced0f8790c002854a3a68e3887281c3ade922bab544b3fbab2f1f25837edca8d6cb4fd23a5811fc06c00cfdf15c7fb7e3d6da883c353699", 0xa6}], 0x4, &(0x7f0000001580)=[{0x30, 0x84, 0x9, "78378781d02e4e3f00f187c96e69504cf239376cacc9970a83a14a38e8"}, {0x90, 0x117, 0x5, "675b13c0c3bf4d9bc97db33f29b2aae25b875b3bf938b1c3c9e52ea33a41602400a27cd48892338427d22d15742e92eb8c97c95bf573bbbcb019ad410781d438ad13f4bbbd80fd0bb48cf5e8f2ff8ee668fbf209b925beaea1554f252b727f3c24eeb2dc66c1d3f8d86356461d2ff743fce5b6d2ac4c7071791af8cf1ecfdb58"}], 0xc0, 0x4000}, 0x38) ioctl$KVM_RUN(r3, 0xae80, 0x0) recvmmsg(r2, &(0x7f0000008340)=[{{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000001740)=""/110, 0x6e}, {&(0x7f00000017c0)=""/202, 0xca}, {&(0x7f00000018c0)=""/60, 0x3c}], 0x3, &(0x7f0000001940)=""/4096, 0x1000}}, {{&(0x7f0000002940)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000003d80)=[{&(0x7f0000008680)=""/169, 0xa9}, {&(0x7f0000002a80)=""/110, 0x6e}, {&(0x7f0000002b00)=""/119, 0x77}, {&(0x7f0000002b80)=""/29, 0x1d}, {&(0x7f0000002bc0)=""/125, 0x7d}, {&(0x7f0000002c40)=""/4096, 0x1000}, {&(0x7f0000003c40)=""/72, 0x48}, {&(0x7f0000003cc0)=""/191, 0xbf}], 0x8, &(0x7f0000003e00)=""/120, 0x78}, 0x2}, {{&(0x7f0000003e80)=@generic, 0x80, &(0x7f0000008740)=[{&(0x7f0000003f00)=""/4096, 0x1000}, {&(0x7f0000004f00)=""/43, 0x2b}, {&(0x7f0000004f40)}, {&(0x7f0000004f80)=""/92, 0x5c}, {&(0x7f0000005000)=""/119, 0x77}, {&(0x7f00000029c0)=""/172, 0xac}], 0x6, &(0x7f0000005100)=""/8, 0x8}, 0x3}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000005140)=""/49, 0x31}, {&(0x7f0000005180)=""/34, 0x22}, {&(0x7f00000051c0)=""/162, 0xa2}], 0x3, &(0x7f00000052c0)=""/35, 0x23}, 0x3}, {{&(0x7f0000005300)=@caif, 0x80, &(0x7f0000005400)=[{&(0x7f0000005380)=""/125, 0x7d}], 0x1, &(0x7f0000005440)=""/252, 0xfc}, 0x9}, {{&(0x7f0000005540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000005700)=[{&(0x7f00000055c0)=""/196, 0xc4}, {&(0x7f00000056c0)=""/23, 0x17}], 0x2}, 0x5}, {{&(0x7f0000005740)=@alg, 0x80, &(0x7f00000058c0)=[{&(0x7f00000057c0)=""/236, 0xec}], 0x1, &(0x7f0000005900)=""/14, 0xe}, 0x6}, {{&(0x7f0000005940)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000007e00)=[{&(0x7f00000059c0)=""/252, 0xfc}, {&(0x7f0000005ac0)=""/4096, 0x1000}, {&(0x7f0000006ac0)=""/50, 0x32}, {&(0x7f0000006b00)=""/213, 0xd5}, {&(0x7f0000006c00)=""/233, 0xe9}, {&(0x7f0000006d00)=""/223, 0xdf}, {&(0x7f0000006e00)=""/4096, 0x1000}], 0x7, &(0x7f0000007e80)=""/114, 0x72}, 0x400}, {{&(0x7f0000007f00)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, &(0x7f0000008240)=[{&(0x7f0000007f80)=""/234, 0xea}, {&(0x7f0000008080)=""/135, 0x87}, {&(0x7f0000008140)=""/222, 0xde}], 0x3, &(0x7f0000008280)=""/160, 0xa0}, 0x2}], 0x9, 0x12040, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:12 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000004272518b892c098b247f4b9df75143c310eb88000100000100000001ff00"/52]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) mmap$qrtrtun(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x300000b, 0x20010, r0, 0xbb) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:12 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74e488000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(0xffffffffffffffff, 0x200002) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x2003, 0x1000, &(0x7f0000001000/0x1000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000002c0)={0x4, 0x101000}) 22:56:12 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7c, 0x3fffff) [ 800.702114][ T28] audit: type=1800 audit(1654383372.306:460): pid=10374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1168 res=0 errno=0 22:56:12 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:12 executing program 1: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001340f40b9ca6960681968c7345d2f0c09000100000100000001ff0000000000afac000008000000000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ftruncate(0xffffffffffffffff, 0x200002) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000005080)=[@textreal={0x8, &(0x7f00000087c0)="66b82c4000000f23d00f21f86635000000020f23f866660f73d70b66b80f0000000f23d80f21f86635000000800f23f8ba2000ece4d50f793eff00660fc6940a00bb0f005bf2b80d008ec066b9bb0900000f32", 0x53}], 0x1, 0x20, &(0x7f0000008680), 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000004f40)='/proc/tty/drivers\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000085c0)=[@text32={0x20, &(0x7f0000008580)="3ef466da8ac2030000360f35b99e0300000f32b9800000c00f3235001000000f30660f3825d5ffe29c0fc7990e0000002e660ff5f7", 0x35}], 0x1, 0x27, &(0x7f0000008600)=[@cstype0={0x4, 0xb}, @efer={0x2, 0x1}], 0x2) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 32) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x88c41, 0x0) (rerun: 32) ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000001680)={r5}) ioctl$sock_netrom_SIOCDELRT(r6, 0x890c, &(0x7f00000016c0)={0x0, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={'rose', 0x0}, 0x7, 'syz1\x00', @bcast, 0x80, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) (async) sendmsg$qrtr(r5, &(0x7f0000001640)={&(0x7f00000002c0)={0x2a, 0x1, 0x2}, 0xc, &(0x7f0000001540)=[{&(0x7f0000000300)="a1cf13d8a8cfd61a25e3a1ca7b7ac5e4ccffbd6041ce9c25cc2468721895485d7519a3a7306989e0d24c4242007184678ec9c6e897e077173bfc7f61fd38b71d632592e52baba75491704ebb375aa07a9d966bba", 0x54}, {&(0x7f0000000380)="02249601da012e6d8f9541635e448d81b1d399a4161a380901647b2624683c91767d12232b5b376a2a23e4615ecb40e25d03f531c4ee1e54c72eb33c8853d0d65ffa8688d0edd870d8f22fd814673f51bc1c3ff839f37dda9145e3a80467ff637e6c3827d2524904c440834adcdab875bd14b23e0029c380ba6c2f48952b7fb59e4b716a45e01f4f611326473de16f50b9f9d9bcae3dadb35320042a62756866e70662671d93ffa39648d9c391dfd2ac9335e672edbe75516bd165239775b6f4a7e4518d4a7bb9404d8a3ddbc18c83dc1ef4981c97721cc12ca810bebe574896136478d02f14d0d5fe0bd5c1", 0xec}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="8b89473746918a47438680a563e57b750657502356148410102aa9323b0304b02d5a6f5234e7edef187ac2fe69ec383fbdc791c7bea0e4fcebc6183b9b794aa0fb2833626f3c952bff2ab353182a60c49389c34f50f4f18dee53c5d20d6e97c8730c9bbbe58b31cdd435250327203ced0f8790c002854a3a68e3887281c3ade922bab544b3fbab2f1f25837edca8d6cb4fd23a5811fc06c00cfdf15c7fb7e3d6da883c353699", 0xa6}], 0x4, &(0x7f0000001580)=[{0x30, 0x84, 0x9, "78378781d02e4e3f00f187c96e69504cf239376cacc9970a83a14a38e8"}, {0x90, 0x117, 0x5, "675b13c0c3bf4d9bc97db33f29b2aae25b875b3bf938b1c3c9e52ea33a41602400a27cd48892338427d22d15742e92eb8c97c95bf573bbbcb019ad410781d438ad13f4bbbd80fd0bb48cf5e8f2ff8ee668fbf209b925beaea1554f252b727f3c24eeb2dc66c1d3f8d86356461d2ff743fce5b6d2ac4c7071791af8cf1ecfdb58"}], 0xc0, 0x4000}, 0x38) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) recvmmsg(r2, &(0x7f0000008340)=[{{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000001740)=""/110, 0x6e}, {&(0x7f00000017c0)=""/202, 0xca}, {&(0x7f00000018c0)=""/60, 0x3c}], 0x3, &(0x7f0000001940)=""/4096, 0x1000}}, {{&(0x7f0000002940)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000003d80)=[{&(0x7f0000008680)=""/169, 0xa9}, {&(0x7f0000002a80)=""/110, 0x6e}, {&(0x7f0000002b00)=""/119, 0x77}, {&(0x7f0000002b80)=""/29, 0x1d}, {&(0x7f0000002bc0)=""/125, 0x7d}, {&(0x7f0000002c40)=""/4096, 0x1000}, {&(0x7f0000003c40)=""/72, 0x48}, {&(0x7f0000003cc0)=""/191, 0xbf}], 0x8, &(0x7f0000003e00)=""/120, 0x78}, 0x2}, {{&(0x7f0000003e80)=@generic, 0x80, &(0x7f0000008740)=[{&(0x7f0000003f00)=""/4096, 0x1000}, {&(0x7f0000004f00)=""/43, 0x2b}, {&(0x7f0000004f40)}, {&(0x7f0000004f80)=""/92, 0x5c}, {&(0x7f0000005000)=""/119, 0x77}, {&(0x7f00000029c0)=""/172, 0xac}], 0x6, &(0x7f0000005100)=""/8, 0x8}, 0x3}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000005140)=""/49, 0x31}, {&(0x7f0000005180)=""/34, 0x22}, {&(0x7f00000051c0)=""/162, 0xa2}], 0x3, &(0x7f00000052c0)=""/35, 0x23}, 0x3}, {{&(0x7f0000005300)=@caif, 0x80, &(0x7f0000005400)=[{&(0x7f0000005380)=""/125, 0x7d}], 0x1, &(0x7f0000005440)=""/252, 0xfc}, 0x9}, {{&(0x7f0000005540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000005700)=[{&(0x7f00000055c0)=""/196, 0xc4}, {&(0x7f00000056c0)=""/23, 0x17}], 0x2}, 0x5}, {{&(0x7f0000005740)=@alg, 0x80, &(0x7f00000058c0)=[{&(0x7f00000057c0)=""/236, 0xec}], 0x1, &(0x7f0000005900)=""/14, 0xe}, 0x6}, {{&(0x7f0000005940)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000007e00)=[{&(0x7f00000059c0)=""/252, 0xfc}, {&(0x7f0000005ac0)=""/4096, 0x1000}, {&(0x7f0000006ac0)=""/50, 0x32}, {&(0x7f0000006b00)=""/213, 0xd5}, {&(0x7f0000006c00)=""/233, 0xe9}, {&(0x7f0000006d00)=""/223, 0xdf}, {&(0x7f0000006e00)=""/4096, 0x1000}], 0x7, &(0x7f0000007e80)=""/114, 0x72}, 0x400}, {{&(0x7f0000007f00)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, &(0x7f0000008240)=[{&(0x7f0000007f80)=""/234, 0xea}, {&(0x7f0000008080)=""/135, 0x87}, {&(0x7f0000008140)=""/222, 0xde}], 0x3, &(0x7f0000008280)=""/160, 0xa0}, 0x2}], 0x9, 0x12040, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:12 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000004272518b892c098b247f4b9df75143c310eb88000100000100000001ff00"/52]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) mmap$qrtrtun(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x300000b, 0x20010, r0, 0xbb) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:12 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x54, 0x3fffff) 22:56:12 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74e488000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff) (async) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(0xffffffffffffffff, 0x200002) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x2003, 0x1000, &(0x7f0000001000/0x1000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000002c0)={0x4, 0x101000}) 22:56:12 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7d, 0x3fffff) 22:56:12 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000500)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write$binfmt_elf64(r1, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x0, 0x7f, 0x80, 0x7a6, 0x2, 0x6, 0x7f, 0x329, 0x40, 0x81, 0x7, 0x6, 0x38, 0x2, 0x7, 0x200, 0x200}, [{0x60000000, 0x400, 0x3ff, 0x7, 0x9, 0xb1, 0x3, 0x8}], "45efefcee3bbd50150e56feeafad59b4c69c5b19ff883619148d6e50f61157bb4430fc705dd539ea69bb93413f702fd21636631910f54373743d2cfc02a7ab8211f31fdef883ff0577a101d18a56b73287d9898955e4769a060591e4f5d84f07f07fb93c5582e8bd859c72cb80288ce70ca71f2d15151bff46d4da84ba47d312515aa1548d79b447752160fe57f7f3fdf36746217cf785d2e391b6edb6d5708f84fa73364f3a111146944645688653ba52cadc84", ['\x00']}, 0x22c) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$PPPIOCCONNECT(r1, 0x4004743a, &(0x7f00000001c0)) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x200008, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:12 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7e, 0x3fffff) 22:56:12 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x55, 0x3fffff) 22:56:12 executing program 1: ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001340f40b9ca6960681968c7345d2f0c09000100000100000001ff0000000000afac000008000000000000000000"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) ftruncate(0xffffffffffffffff, 0x200002) (async) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000005080)=[@textreal={0x8, &(0x7f00000087c0)="66b82c4000000f23d00f21f86635000000020f23f866660f73d70b66b80f0000000f23d80f21f86635000000800f23f8ba2000ece4d50f793eff00660fc6940a00bb0f005bf2b80d008ec066b9bb0900000f32", 0x53}], 0x1, 0x20, &(0x7f0000008680), 0x0) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000004f40)='/proc/tty/drivers\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000085c0)=[@text32={0x20, &(0x7f0000008580)="3ef466da8ac2030000360f35b99e0300000f32b9800000c00f3235001000000f30660f3825d5ffe29c0fc7990e0000002e660ff5f7", 0x35}], 0x1, 0x27, &(0x7f0000008600)=[@cstype0={0x4, 0xb}, @efer={0x2, 0x1}], 0x2) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x88c41, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000001680)={r5}) ioctl$sock_netrom_SIOCDELRT(r6, 0x890c, &(0x7f00000016c0)={0x0, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={'rose', 0x0}, 0x7, 'syz1\x00', @bcast, 0x80, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) (async) sendmsg$qrtr(r5, &(0x7f0000001640)={&(0x7f00000002c0)={0x2a, 0x1, 0x2}, 0xc, &(0x7f0000001540)=[{&(0x7f0000000300)="a1cf13d8a8cfd61a25e3a1ca7b7ac5e4ccffbd6041ce9c25cc2468721895485d7519a3a7306989e0d24c4242007184678ec9c6e897e077173bfc7f61fd38b71d632592e52baba75491704ebb375aa07a9d966bba", 0x54}, {&(0x7f0000000380)="02249601da012e6d8f9541635e448d81b1d399a4161a380901647b2624683c91767d12232b5b376a2a23e4615ecb40e25d03f531c4ee1e54c72eb33c8853d0d65ffa8688d0edd870d8f22fd814673f51bc1c3ff839f37dda9145e3a80467ff637e6c3827d2524904c440834adcdab875bd14b23e0029c380ba6c2f48952b7fb59e4b716a45e01f4f611326473de16f50b9f9d9bcae3dadb35320042a62756866e70662671d93ffa39648d9c391dfd2ac9335e672edbe75516bd165239775b6f4a7e4518d4a7bb9404d8a3ddbc18c83dc1ef4981c97721cc12ca810bebe574896136478d02f14d0d5fe0bd5c1", 0xec}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="8b89473746918a47438680a563e57b750657502356148410102aa9323b0304b02d5a6f5234e7edef187ac2fe69ec383fbdc791c7bea0e4fcebc6183b9b794aa0fb2833626f3c952bff2ab353182a60c49389c34f50f4f18dee53c5d20d6e97c8730c9bbbe58b31cdd435250327203ced0f8790c002854a3a68e3887281c3ade922bab544b3fbab2f1f25837edca8d6cb4fd23a5811fc06c00cfdf15c7fb7e3d6da883c353699", 0xa6}], 0x4, &(0x7f0000001580)=[{0x30, 0x84, 0x9, "78378781d02e4e3f00f187c96e69504cf239376cacc9970a83a14a38e8"}, {0x90, 0x117, 0x5, "675b13c0c3bf4d9bc97db33f29b2aae25b875b3bf938b1c3c9e52ea33a41602400a27cd48892338427d22d15742e92eb8c97c95bf573bbbcb019ad410781d438ad13f4bbbd80fd0bb48cf5e8f2ff8ee668fbf209b925beaea1554f252b727f3c24eeb2dc66c1d3f8d86356461d2ff743fce5b6d2ac4c7071791af8cf1ecfdb58"}], 0xc0, 0x4000}, 0x38) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) recvmmsg(r2, &(0x7f0000008340)=[{{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000001740)=""/110, 0x6e}, {&(0x7f00000017c0)=""/202, 0xca}, {&(0x7f00000018c0)=""/60, 0x3c}], 0x3, &(0x7f0000001940)=""/4096, 0x1000}}, {{&(0x7f0000002940)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000003d80)=[{&(0x7f0000008680)=""/169, 0xa9}, {&(0x7f0000002a80)=""/110, 0x6e}, {&(0x7f0000002b00)=""/119, 0x77}, {&(0x7f0000002b80)=""/29, 0x1d}, {&(0x7f0000002bc0)=""/125, 0x7d}, {&(0x7f0000002c40)=""/4096, 0x1000}, {&(0x7f0000003c40)=""/72, 0x48}, {&(0x7f0000003cc0)=""/191, 0xbf}], 0x8, &(0x7f0000003e00)=""/120, 0x78}, 0x2}, {{&(0x7f0000003e80)=@generic, 0x80, &(0x7f0000008740)=[{&(0x7f0000003f00)=""/4096, 0x1000}, {&(0x7f0000004f00)=""/43, 0x2b}, {&(0x7f0000004f40)}, {&(0x7f0000004f80)=""/92, 0x5c}, {&(0x7f0000005000)=""/119, 0x77}, {&(0x7f00000029c0)=""/172, 0xac}], 0x6, &(0x7f0000005100)=""/8, 0x8}, 0x3}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000005140)=""/49, 0x31}, {&(0x7f0000005180)=""/34, 0x22}, {&(0x7f00000051c0)=""/162, 0xa2}], 0x3, &(0x7f00000052c0)=""/35, 0x23}, 0x3}, {{&(0x7f0000005300)=@caif, 0x80, &(0x7f0000005400)=[{&(0x7f0000005380)=""/125, 0x7d}], 0x1, &(0x7f0000005440)=""/252, 0xfc}, 0x9}, {{&(0x7f0000005540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000005700)=[{&(0x7f00000055c0)=""/196, 0xc4}, {&(0x7f00000056c0)=""/23, 0x17}], 0x2}, 0x5}, {{&(0x7f0000005740)=@alg, 0x80, &(0x7f00000058c0)=[{&(0x7f00000057c0)=""/236, 0xec}], 0x1, &(0x7f0000005900)=""/14, 0xe}, 0x6}, {{&(0x7f0000005940)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000007e00)=[{&(0x7f00000059c0)=""/252, 0xfc}, {&(0x7f0000005ac0)=""/4096, 0x1000}, {&(0x7f0000006ac0)=""/50, 0x32}, {&(0x7f0000006b00)=""/213, 0xd5}, {&(0x7f0000006c00)=""/233, 0xe9}, {&(0x7f0000006d00)=""/223, 0xdf}, {&(0x7f0000006e00)=""/4096, 0x1000}], 0x7, &(0x7f0000007e80)=""/114, 0x72}, 0x400}, {{&(0x7f0000007f00)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, &(0x7f0000008240)=[{&(0x7f0000007f80)=""/234, 0xea}, {&(0x7f0000008080)=""/135, 0x87}, {&(0x7f0000008140)=""/222, 0xde}], 0x3, &(0x7f0000008280)=""/160, 0xa0}, 0x2}], 0x9, 0x12040, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:12 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write$binfmt_misc(r0, &(0x7f00000002c0)={'syz0', "1d36b4ca56bb171fee073a8eaaba74ea5b3c55df394fa0392b3dc1c11dc2223086945c5a347fad5dff5eb61077ddcf71f28bb60d7e88967d53f1dc1ef27ac5d3427af5e8b12b49f17fdb4bb4c7bfa07c168511d81571a2ae7c3ccd9878b69f7840912a0dd3a7ae4dfa4ed9b74685f474dd9b2f5c74fbebcf69280bbc692982ca22b98af25febde840510a0cfcc4dde4e143d8da0f73355b02aa15973acb012832f0f0fee56f47c3c156732be2bdaf37c7bf00a958f79a5ec75ca341f8c77c6bd4aecefa669caaa7262c9aa15048935a9"}, 0xd4) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:13 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000500)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write$binfmt_elf64(r1, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x0, 0x7f, 0x80, 0x7a6, 0x2, 0x6, 0x7f, 0x329, 0x40, 0x81, 0x7, 0x6, 0x38, 0x2, 0x7, 0x200, 0x200}, [{0x60000000, 0x400, 0x3ff, 0x7, 0x9, 0xb1, 0x3, 0x8}], "45efefcee3bbd50150e56feeafad59b4c69c5b19ff883619148d6e50f61157bb4430fc705dd539ea69bb93413f702fd21636631910f54373743d2cfc02a7ab8211f31fdef883ff0577a101d18a56b73287d9898955e4769a060591e4f5d84f07f07fb93c5582e8bd859c72cb80288ce70ca71f2d15151bff46d4da84ba47d312515aa1548d79b447752160fe57f7f3fdf36746217cf785d2e391b6edb6d5708f84fa73364f3a111146944645688653ba52cadc84", ['\x00']}, 0x22c) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$PPPIOCCONNECT(r1, 0x4004743a, &(0x7f00000001c0)) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x200008, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000500)) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write$binfmt_elf64(r1, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x0, 0x7f, 0x80, 0x7a6, 0x2, 0x6, 0x7f, 0x329, 0x40, 0x81, 0x7, 0x6, 0x38, 0x2, 0x7, 0x200, 0x200}, [{0x60000000, 0x400, 0x3ff, 0x7, 0x9, 0xb1, 0x3, 0x8}], "45efefcee3bbd50150e56feeafad59b4c69c5b19ff883619148d6e50f61157bb4430fc705dd539ea69bb93413f702fd21636631910f54373743d2cfc02a7ab8211f31fdef883ff0577a101d18a56b73287d9898955e4769a060591e4f5d84f07f07fb93c5582e8bd859c72cb80288ce70ca71f2d15151bff46d4da84ba47d312515aa1548d79b447752160fe57f7f3fdf36746217cf785d2e391b6edb6d5708f84fa73364f3a111146944645688653ba52cadc84", ['\x00']}, 0x22c) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$PPPIOCCONNECT(r1, 0x4004743a, &(0x7f00000001c0)) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x200008, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) 22:56:13 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:13 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x82, 0x3fffff) 22:56:13 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x56, 0x3fffff) 22:56:13 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = socket$inet_udplite(0x2, 0x2, 0x88) sendfile(r1, r0, &(0x7f00000002c0)=0x7, 0x1) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000001c0)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:13 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write$binfmt_misc(r0, &(0x7f00000002c0)={'syz0', "1d36b4ca56bb171fee073a8eaaba74ea5b3c55df394fa0392b3dc1c11dc2223086945c5a347fad5dff5eb61077ddcf71f28bb60d7e88967d53f1dc1ef27ac5d3427af5e8b12b49f17fdb4bb4c7bfa07c168511d81571a2ae7c3ccd9878b69f7840912a0dd3a7ae4dfa4ed9b74685f474dd9b2f5c74fbebcf69280bbc692982ca22b98af25febde840510a0cfcc4dde4e143d8da0f73355b02aa15973acb012832f0f0fee56f47c3c156732be2bdaf37c7bf00a958f79a5ec75ca341f8c77c6bd4aecefa669caaa7262c9aa15048935a9"}, 0xd4) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:13 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000500)) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write$binfmt_elf64(r1, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x0, 0x7f, 0x80, 0x7a6, 0x2, 0x6, 0x7f, 0x329, 0x40, 0x81, 0x7, 0x6, 0x38, 0x2, 0x7, 0x200, 0x200}, [{0x60000000, 0x400, 0x3ff, 0x7, 0x9, 0xb1, 0x3, 0x8}], "45efefcee3bbd50150e56feeafad59b4c69c5b19ff883619148d6e50f61157bb4430fc705dd539ea69bb93413f702fd21636631910f54373743d2cfc02a7ab8211f31fdef883ff0577a101d18a56b73287d9898955e4769a060591e4f5d84f07f07fb93c5582e8bd859c72cb80288ce70ca71f2d15151bff46d4da84ba47d312515aa1548d79b447752160fe57f7f3fdf36746217cf785d2e391b6edb6d5708f84fa73364f3a111146944645688653ba52cadc84", ['\x00']}, 0x22c) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$PPPIOCCONNECT(r1, 0x4004743a, &(0x7f00000001c0)) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x200008, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:13 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write$binfmt_misc(r0, &(0x7f00000002c0)={'syz0', "1d36b4ca56bb171fee073a8eaaba74ea5b3c55df394fa0392b3dc1c11dc2223086945c5a347fad5dff5eb61077ddcf71f28bb60d7e88967d53f1dc1ef27ac5d3427af5e8b12b49f17fdb4bb4c7bfa07c168511d81571a2ae7c3ccd9878b69f7840912a0dd3a7ae4dfa4ed9b74685f474dd9b2f5c74fbebcf69280bbc692982ca22b98af25febde840510a0cfcc4dde4e143d8da0f73355b02aa15973acb012832f0f0fee56f47c3c156732be2bdaf37c7bf00a958f79a5ec75ca341f8c77c6bd4aecefa669caaa7262c9aa15048935a9"}, 0xd4) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:13 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x401, 0x3, 0x1000, 0xff, 0x6ac, 0xb9c0, 0x97f, 0x9, 0x8000000000000001, 0x8, 0x3fffffff8000000, 0x6, 0x7fff, 0x0, 0x7f, 0x7], 0x5000, 0x200000}) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:13 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310711b74eb88000100cf0f660a1c81bf58faf1dfbd14759d9a8b8e00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0xac8cd000) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:13 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = socket$inet_udplite(0x2, 0x2, 0x88) sendfile(r1, r0, &(0x7f00000002c0)=0x7, 0x1) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000001c0)) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:13 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x57, 0x3fffff) 22:56:13 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x83, 0x3fffff) [ 802.181602][ T28] audit: type=1800 audit(1654383373.786:461): pid=10465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1158 res=0 errno=0 22:56:14 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:14 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = socket$inet_udplite(0x2, 0x2, 0x88) sendfile(r1, r0, &(0x7f00000002c0)=0x7, 0x1) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000001c0)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) socket$inet_udplite(0x2, 0x2, 0x88) (async) sendfile(r1, r0, &(0x7f00000002c0)=0x7, 0x1) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f00000001c0)) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) 22:56:14 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310711b74eb88000100cf0f660a1c81bf58faf1dfbd14759d9a8b8e00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0xac8cd000) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310711b74eb88000100cf0f660a1c81bf58faf1dfbd14759d9a8b8e00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000180)) (async) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0xac8cd000) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:14 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x58, 0x3fffff) 22:56:14 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x84, 0x3fffff) 22:56:14 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) (async, rerun: 64) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (rerun: 64) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x401, 0x3, 0x1000, 0xff, 0x6ac, 0xb9c0, 0x97f, 0x9, 0x8000000000000001, 0x8, 0x3fffffff8000000, 0x6, 0x7fff, 0x0, 0x7f, 0x7], 0x5000, 0x200000}) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:14 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 32) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) (rerun: 32) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async, rerun: 64) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x401, 0x3, 0x1000, 0xff, 0x6ac, 0xb9c0, 0x97f, 0x9, 0x8000000000000001, 0x8, 0x3fffffff8000000, 0x6, 0x7fff, 0x0, 0x7f, 0x7], 0x5000, 0x200000}) (async, rerun: 64) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:14 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x85, 0x3fffff) 22:56:14 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da624543c310751b74eb88000100001100000001ff00000000c80b0000000000f41c17c99bf6b5b30000070cf402de50c4d02855cdfd0c5095a318792cb4635320a50d78a4d8b4dd61fcaaebb6c65094aa078b7c8ca80d73c6cc6587ae0c245bff1ec03249ce0a40754af11885587e3a8040f44d3bc32e245928de62aeb65259cc69bd94160123c1c2e43110c010b10d7b1a24568df5cc629e5c5d29407dd3d8fd00"/184]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r2, 0x7aa, &(0x7f00000001c0)={{@my=0x0, 0x80}, 0x9, 0x9}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x20de27c3, 0x0, 0x0, 0x0, 0x0, 0x7]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x2710, 0x1, 0x3000, 0x1000, &(0x7f0000000000/0x1000)=nil}) 22:56:14 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x59, 0x3fffff) 22:56:14 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310711b74eb88000100cf0f660a1c81bf58faf1dfbd14759d9a8b8e00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x12, r3, 0xac8cd000) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:14 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000fe00afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b00000000f5001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f00000002c0)="1b08c44179d7e767460fe33fc4e17c5bc2420f01c2420f01f8410f0666ba2100b0e4ee650f01c2640f380622", 0x2c}], 0x1, 0x22, &(0x7f0000000340)=[@vmwrite={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x100}, @efer={0x2, 0x8002}], 0x2) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 803.201076][ T28] audit: type=1800 audit(1654383374.806:462): pid=10531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1179 res=0 errno=0 22:56:15 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:15 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0), r3) sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xb0, r4, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x20}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x30, 0xc}}]}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x80}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4d}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x5c040}, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:15 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x86, 0x3fffff) 22:56:15 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da624543c310751b74eb88000100001100000001ff00000000c80b0000000000f41c17c99bf6b5b30000070cf402de50c4d02855cdfd0c5095a318792cb4635320a50d78a4d8b4dd61fcaaebb6c65094aa078b7c8ca80d73c6cc6587ae0c245bff1ec03249ce0a40754af11885587e3a8040f44d3bc32e245928de62aeb65259cc69bd94160123c1c2e43110c010b10d7b1a24568df5cc629e5c5d29407dd3d8fd00"/184]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r2, 0x7aa, &(0x7f00000001c0)={{@my=0x0, 0x80}, 0x9, 0x9}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x20de27c3, 0x0, 0x0, 0x0, 0x0, 0x7]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x2710, 0x1, 0x3000, 0x1000, &(0x7f0000000000/0x1000)=nil}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da624543c310751b74eb88000100001100000001ff00000000c80b0000000000f41c17c99bf6b5b30000070cf402de50c4d02855cdfd0c5095a318792cb4635320a50d78a4d8b4dd61fcaaebb6c65094aa078b7c8ca80d73c6cc6587ae0c245bff1ec03249ce0a40754af11885587e3a8040f44d3bc32e245928de62aeb65259cc69bd94160123c1c2e43110c010b10d7b1a24568df5cc629e5c5d29407dd3d8fd00"/184]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r2, 0x7aa, &(0x7f00000001c0)={{@my=0x0, 0x80}, 0x9, 0x9}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x20de27c3, 0x0, 0x0, 0x0, 0x0, 0x7]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SMI(r3, 0xaeb7) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x2710, 0x1, 0x3000, 0x1000, &(0x7f0000000000/0x1000)=nil}) (async) 22:56:15 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5a, 0x3fffff) 22:56:15 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000fe00afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b00000000f5001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 64) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'}) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) (async) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f00000002c0)="1b08c44179d7e767460fe33fc4e17c5bc2420f01c2420f01f8410f0666ba2100b0e4ee650f01c2640f380622", 0x2c}], 0x1, 0x22, &(0x7f0000000340)=[@vmwrite={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x100}, @efer={0x2, 0x8002}], 0x2) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 32) ioctl$KVM_RUN(r6, 0xae80, 0x0) (rerun: 32) ioctl$KVM_RUN(r6, 0xae80, 0x0) [ 803.750256][ T28] audit: type=1800 audit(1654383375.356:463): pid=10550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1165 res=0 errno=0 22:56:15 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0), r3) sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xb0, r4, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x20}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x30, 0xc}}]}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x80}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4d}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x5c040}, 0x0) (async) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:15 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x87, 0x3fffff) 22:56:15 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000fe00afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b00000000f5001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f00000002c0)="1b08c44179d7e767460fe33fc4e17c5bc2420f01c2420f01f8410f0666ba2100b0e4ee650f01c2640f380622", 0x2c}], 0x1, 0x22, &(0x7f0000000340)=[@vmwrite={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x100}, @efer={0x2, 0x8002}], 0x2) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000fe00afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b00000000f5001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0x7}}, './file0\x00'}) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r4, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f00000002c0)="1b08c44179d7e767460fe33fc4e17c5bc2420f01c2420f01f8410f0666ba2100b0e4ee650f01c2640f380622", 0x2c}], 0x1, 0x22, &(0x7f0000000340)=[@vmwrite={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x100}, @efer={0x2, 0x8002}], 0x2) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) [ 804.045337][ T28] audit: type=1800 audit(1654383375.646:464): pid=10575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:56:15 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5b, 0x3fffff) 22:56:15 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da624543c310751b74eb88000100001100000001ff00000000c80b0000000000f41c17c99bf6b5b30000070cf402de50c4d02855cdfd0c5095a318792cb4635320a50d78a4d8b4dd61fcaaebb6c65094aa078b7c8ca80d73c6cc6587ae0c245bff1ec03249ce0a40754af11885587e3a8040f44d3bc32e245928de62aeb65259cc69bd94160123c1c2e43110c010b10d7b1a24568df5cc629e5c5d29407dd3d8fd00"/184]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r2, 0x7aa, &(0x7f00000001c0)={{@my=0x0, 0x80}, 0x9, 0x9}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x20de27c3, 0x0, 0x0, 0x0, 0x0, 0x7]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SMI(r3, 0xaeb7) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x2710, 0x1, 0x3000, 0x1000, &(0x7f0000000000/0x1000)=nil}) 22:56:15 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0), r3) sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xb0, r4, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x20}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x30, 0xc}}]}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x80}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4d}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x5c040}, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0), r3) (async) sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xb0, r4, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x20}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x30, 0xc}}]}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x80}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4d}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x5c040}, 0x0) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) 22:56:16 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:16 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x88, 0x3fffff) 22:56:16 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:16 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f00000001c0)={0x2, 0x4, 0xe0, &(0x7f00000002c0)=""/224}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:16 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5c, 0x3fffff) 22:56:16 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x8000}}, './file0\x00'}) sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r4, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x8, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x6, 0x3c}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:16 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x8000}}, './file0\x00'}) sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r4, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x8, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x6, 0x3c}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:16 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f00000001c0)={0x2, 0x4, 0xe0, &(0x7f00000002c0)=""/224}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:16 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x8000}}, './file0\x00'}) sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r4, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x8, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x6, 0x3c}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:16 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x200000, 0x1, 0x0, 0x80000000000000, 0x8, 0xfb, 0x0, 0x0, 0x2, 0x0, 0x80000000, 0x0, 0x0, 0x1], 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:16 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x89, 0x3fffff) 22:56:16 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5d, 0x3fffff) 22:56:17 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, 0x0, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:17 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f00000001c0)={0x2, 0x4, 0xe0, &(0x7f00000002c0)=""/224}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f00000001c0)={0x2, 0x4, 0xe0, &(0x7f00000002c0)=""/224}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:17 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:17 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x200000, 0x1, 0x0, 0x80000000000000, 0x8, 0xfb, 0x0, 0x0, 0x2, 0x0, 0x80000000, 0x0, 0x0, 0x1], 0x2}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:17 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5e, 0x3fffff) 22:56:17 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x8a, 0x3fffff) 22:56:17 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x200000, 0x1, 0x0, 0x80000000000000, 0x8, 0xfb, 0x0, 0x0, 0x2, 0x0, 0x80000000, 0x0, 0x0, 0x1], 0x2}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:17 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x8b, 0x3fffff) 22:56:17 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x5f, 0x3fffff) 22:56:17 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x1c0800}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f00000001c0)={'macvlan0\x00'}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:17 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:17 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000000000000000000000000810500000000000000601237ca24da62fd474543c310751b74eb8800010000010000000100000000001d17c99bf6b5b30000000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:18 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, 0x0, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:18 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x8c, 0x3fffff) 22:56:18 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x60, 0x3fffff) 22:56:18 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x1c0800}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f00000001c0)={'macvlan0\x00'}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:18 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000000000000000000000000810500000000000000601237ca24da62fd474543c310751b74eb8800010000010000000100000000001d17c99bf6b5b30000000000000000"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:18 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000002a0000000001afca24da6241d1be438854074ab7c65901ff000000ff7f36ea00000000001d17c99bf6b5b300000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x88) r3 = syz_mount_image$jffs2(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x80000000, 0x7, &(0x7f0000000780)=[{&(0x7f0000000340)="f62fcd6ccc7a62c4ba235378dc9b23736b3a87a7b5d1d33e50a6afe40b1155920d95a39259dc73785607f6397a0220cf1cc068d054da16798642b762e78dee7c2cbf3dd4e01033054a743f5f3d87a9f7f2272ee85d4b89c405711829e54286345dab1cb9c8bb5eea06edcb163cdb600f60c2722f0297a00f0617f2a0da95380201449589580453cb1336f178559ccabf53854ac37110d6a51658f044", 0x9c, 0x3}, {&(0x7f0000000400)="580a8d3bd7e6028adaa74cc6995bd5bd3f92e9929f1d805595a6597948801dda4de18ab94bbeabe2fbc5104129f018f9af5d4c1baddac2d0ed0215a52e132c6a3540450b27f580e1ac6bfd7af767fa0ddf09bed771a09058609fe16b1ac15e279933d87197d4a9927ff8223ca89df01e5f4a0be1fd591df2246f9d0e96a051e382e91336a365a0954545c9e15492c17dff3f21f2ed75839efa784db88cc1820e2bba7f5b391dd5af1578a3", 0xab, 0xd0c}, {&(0x7f00000004c0)="a13e115ea41038b347656a58782e07d97d3014ea2a7019f0ea0083206534747cb93ec32181f33356cd180aef6383716428d13a907d0efc5e16f2bdc3ed99761a19de775ffd160fda5ae635eff655bef7d09496b7a30f9378605b3866202256a32133cb51741078d5dcab2e304630599ed991daa3fc3273caf293f38717dc137bdfb93c15652f58936d49c444", 0x8c, 0x1f}, {&(0x7f0000000580)="f78b59a1b3c826493dce8b5f4f86ddfba130635f368d6b68af21da7d1bfaf598a218663a514b08f3785e81810163dfd2c34cf4712a96605f5a867d2fb1fa3a7b1ca358248c8e6891f42fd77b4d2993827bdf6f76ccebef482bf248d77316002530448adfab1b481bbddf14a276abfc00f5f96cf8f1acaf2afcfc8b97515b6265d680ab", 0x83}, {&(0x7f0000000640), 0x0, 0x800}, {&(0x7f0000000680), 0x0, 0x8000}, {&(0x7f00000006c0)="bf11e8f51045b95afcf55426e9d873bfb85d88deaf13f2f3659cebda43b1fb97ceaaaa206453b6bf3b9db9d24c0e64d754a147bcd506aee088511aacbd075420e8ddb58d27219768b0ecd8e53c6da16049c8f9ade0a9cd44d7c8accdf4d7881170e16646f2ef2e8dbacb2253c0cf0e08b4f8c3e30e1c9ec82f55bbd3e1737e53cb0a63455111b8a3eef7fdba0c4baafa98b4799a9c4f8a3efb92aeba6e2555d50217cc3fac45db98d48e1e62428f0fbda7a2", 0xb2}], 0x4, &(0x7f0000000840)={[{}, {@compr_lzo}, {@rp_size={'rp_size', 0x3d, 0xfffffffffffffff8}}], [{@measure}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x10}}, {@obj_user={'obj_user', 0x3d, 'v|#+!'}}]}) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000008c0)={{r3}, 0x0, 0x2, 0x2}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:18 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x8d, 0x3fffff) 22:56:18 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x1c0800}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f00000001c0)={'macvlan0\x00'}) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x1c0800}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f00000001c0)={'macvlan0\x00'}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:18 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000000000000000000000000810500000000000000601237ca24da62fd474543c310751b74eb8800010000010000000100000000001d17c99bf6b5b30000000000000000"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000000000000000000000000810500000000000000601237ca24da62fd474543c310751b74eb8800010000010000000100000000001d17c99bf6b5b30000000000000000"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:18 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x8e, 0x3fffff) 22:56:18 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000002a0000000001afca24da6241d1be438854074ab7c65901ff000000ff7f36ea00000000001d17c99bf6b5b300000000000000"]) (async, rerun: 32) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 32) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x88) (async) r3 = syz_mount_image$jffs2(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x80000000, 0x7, &(0x7f0000000780)=[{&(0x7f0000000340)="f62fcd6ccc7a62c4ba235378dc9b23736b3a87a7b5d1d33e50a6afe40b1155920d95a39259dc73785607f6397a0220cf1cc068d054da16798642b762e78dee7c2cbf3dd4e01033054a743f5f3d87a9f7f2272ee85d4b89c405711829e54286345dab1cb9c8bb5eea06edcb163cdb600f60c2722f0297a00f0617f2a0da95380201449589580453cb1336f178559ccabf53854ac37110d6a51658f044", 0x9c, 0x3}, {&(0x7f0000000400)="580a8d3bd7e6028adaa74cc6995bd5bd3f92e9929f1d805595a6597948801dda4de18ab94bbeabe2fbc5104129f018f9af5d4c1baddac2d0ed0215a52e132c6a3540450b27f580e1ac6bfd7af767fa0ddf09bed771a09058609fe16b1ac15e279933d87197d4a9927ff8223ca89df01e5f4a0be1fd591df2246f9d0e96a051e382e91336a365a0954545c9e15492c17dff3f21f2ed75839efa784db88cc1820e2bba7f5b391dd5af1578a3", 0xab, 0xd0c}, {&(0x7f00000004c0)="a13e115ea41038b347656a58782e07d97d3014ea2a7019f0ea0083206534747cb93ec32181f33356cd180aef6383716428d13a907d0efc5e16f2bdc3ed99761a19de775ffd160fda5ae635eff655bef7d09496b7a30f9378605b3866202256a32133cb51741078d5dcab2e304630599ed991daa3fc3273caf293f38717dc137bdfb93c15652f58936d49c444", 0x8c, 0x1f}, {&(0x7f0000000580)="f78b59a1b3c826493dce8b5f4f86ddfba130635f368d6b68af21da7d1bfaf598a218663a514b08f3785e81810163dfd2c34cf4712a96605f5a867d2fb1fa3a7b1ca358248c8e6891f42fd77b4d2993827bdf6f76ccebef482bf248d77316002530448adfab1b481bbddf14a276abfc00f5f96cf8f1acaf2afcfc8b97515b6265d680ab", 0x83}, {&(0x7f0000000640), 0x0, 0x800}, {&(0x7f0000000680), 0x0, 0x8000}, {&(0x7f00000006c0)="bf11e8f51045b95afcf55426e9d873bfb85d88deaf13f2f3659cebda43b1fb97ceaaaa206453b6bf3b9db9d24c0e64d754a147bcd506aee088511aacbd075420e8ddb58d27219768b0ecd8e53c6da16049c8f9ade0a9cd44d7c8accdf4d7881170e16646f2ef2e8dbacb2253c0cf0e08b4f8c3e30e1c9ec82f55bbd3e1737e53cb0a63455111b8a3eef7fdba0c4baafa98b4799a9c4f8a3efb92aeba6e2555d50217cc3fac45db98d48e1e62428f0fbda7a2", 0xb2}], 0x4, &(0x7f0000000840)={[{}, {@compr_lzo}, {@rp_size={'rp_size', 0x3d, 0xfffffffffffffff8}}], [{@measure}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x10}}, {@obj_user={'obj_user', 0x3d, 'v|#+!'}}]}) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000008c0)={{r3}, 0x0, 0x2, 0x2}) (async, rerun: 64) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:18 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x61, 0x3fffff) 22:56:18 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, 0x0, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:18 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xb4, r6, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_RULES={0x70, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xe0}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xf0dd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x81}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xc6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7f02}]}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4040055}, 0x8000) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x2, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x6, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:18 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="030000e7ffffffffff00afca24da62fd474543c310751b74eb8800010000f85618b2f1b1c6d30000c872bf00000000001d17c99bf6b5b3ea129fe95e1d81ee167516f562711ad4b1b56bb61ae5e99a823d74c067d40e7931fb4fc98c9b01966640401f"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x4001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) pwrite64(r2, &(0x7f00000002c0)="d259e7882c7f35005573071b82ba61053ff1c8234594a6b23f847f7490f8f7b7b9a2a699756bab2394963db8890fe336a4d32fd4d6f01db007ad3c7551912c599cf3bb6214d29fb8d71050122e9fd0b6dfac2b161ad6f318ca6306e5f08898c3840f754a95ed2e2f2dc0a38af597616409eed668a5a17c82f26b1097314628961af961466235a64cbf4e144a30d21692e103e17bc9541628839bb26e921659d3cc0eeaaad18fde3f7728810b07001a0b5531c1348b5be41dd01a807b11deed516b50ec57ee1b25aac0637d352814d8cee59ed477a8191e", 0xd7, 0xcf0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) lseek(r5, 0x5, 0x0) 22:56:18 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x8f, 0x3fffff) 22:56:18 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x62, 0x3fffff) 22:56:19 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000002a0000000001afca24da6241d1be438854074ab7c65901ff000000ff7f36ea00000000001d17c99bf6b5b300000000000000"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x88) (async) r3 = syz_mount_image$jffs2(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x80000000, 0x7, &(0x7f0000000780)=[{&(0x7f0000000340)="f62fcd6ccc7a62c4ba235378dc9b23736b3a87a7b5d1d33e50a6afe40b1155920d95a39259dc73785607f6397a0220cf1cc068d054da16798642b762e78dee7c2cbf3dd4e01033054a743f5f3d87a9f7f2272ee85d4b89c405711829e54286345dab1cb9c8bb5eea06edcb163cdb600f60c2722f0297a00f0617f2a0da95380201449589580453cb1336f178559ccabf53854ac37110d6a51658f044", 0x9c, 0x3}, {&(0x7f0000000400)="580a8d3bd7e6028adaa74cc6995bd5bd3f92e9929f1d805595a6597948801dda4de18ab94bbeabe2fbc5104129f018f9af5d4c1baddac2d0ed0215a52e132c6a3540450b27f580e1ac6bfd7af767fa0ddf09bed771a09058609fe16b1ac15e279933d87197d4a9927ff8223ca89df01e5f4a0be1fd591df2246f9d0e96a051e382e91336a365a0954545c9e15492c17dff3f21f2ed75839efa784db88cc1820e2bba7f5b391dd5af1578a3", 0xab, 0xd0c}, {&(0x7f00000004c0)="a13e115ea41038b347656a58782e07d97d3014ea2a7019f0ea0083206534747cb93ec32181f33356cd180aef6383716428d13a907d0efc5e16f2bdc3ed99761a19de775ffd160fda5ae635eff655bef7d09496b7a30f9378605b3866202256a32133cb51741078d5dcab2e304630599ed991daa3fc3273caf293f38717dc137bdfb93c15652f58936d49c444", 0x8c, 0x1f}, {&(0x7f0000000580)="f78b59a1b3c826493dce8b5f4f86ddfba130635f368d6b68af21da7d1bfaf598a218663a514b08f3785e81810163dfd2c34cf4712a96605f5a867d2fb1fa3a7b1ca358248c8e6891f42fd77b4d2993827bdf6f76ccebef482bf248d77316002530448adfab1b481bbddf14a276abfc00f5f96cf8f1acaf2afcfc8b97515b6265d680ab", 0x83}, {&(0x7f0000000640), 0x0, 0x800}, {&(0x7f0000000680), 0x0, 0x8000}, {&(0x7f00000006c0)="bf11e8f51045b95afcf55426e9d873bfb85d88deaf13f2f3659cebda43b1fb97ceaaaa206453b6bf3b9db9d24c0e64d754a147bcd506aee088511aacbd075420e8ddb58d27219768b0ecd8e53c6da16049c8f9ade0a9cd44d7c8accdf4d7881170e16646f2ef2e8dbacb2253c0cf0e08b4f8c3e30e1c9ec82f55bbd3e1737e53cb0a63455111b8a3eef7fdba0c4baafa98b4799a9c4f8a3efb92aeba6e2555d50217cc3fac45db98d48e1e62428f0fbda7a2", 0xb2}], 0x4, &(0x7f0000000840)={[{}, {@compr_lzo}, {@rp_size={'rp_size', 0x3d, 0xfffffffffffffff8}}], [{@measure}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0x10}}, {@obj_user={'obj_user', 0x3d, 'v|#+!'}}]}) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000008c0)={{r3}, 0x0, 0x2, 0x2}) (async) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:19 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="030000e7ffffffffff00afca24da62fd474543c310751b74eb8800010000f85618b2f1b1c6d30000c872bf00000000001d17c99bf6b5b3ea129fe95e1d81ee167516f562711ad4b1b56bb61ae5e99a823d74c067d40e7931fb4fc98c9b01966640401f"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x4001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) pwrite64(r2, &(0x7f00000002c0)="d259e7882c7f35005573071b82ba61053ff1c8234594a6b23f847f7490f8f7b7b9a2a699756bab2394963db8890fe336a4d32fd4d6f01db007ad3c7551912c599cf3bb6214d29fb8d71050122e9fd0b6dfac2b161ad6f318ca6306e5f08898c3840f754a95ed2e2f2dc0a38af597616409eed668a5a17c82f26b1097314628961af961466235a64cbf4e144a30d21692e103e17bc9541628839bb26e921659d3cc0eeaaad18fde3f7728810b07001a0b5531c1348b5be41dd01a807b11deed516b50ec57ee1b25aac0637d352814d8cee59ed477a8191e", 0xd7, 0xcf0) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) r5 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) lseek(r5, 0x5, 0x0) [ 807.395291][ T28] audit: type=1800 audit(1654383378.996:465): pid=10793 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1180 res=0 errno=0 22:56:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f00000001c0)={0x54c9, 0x0, 0x1000, 0x400}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:19 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$nl_generic(0x10, 0x3, 0x10) (async) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) (async) sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xb4, r6, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_RULES={0x70, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xe0}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xf0dd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x81}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xc6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7f02}]}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4040055}, 0x8000) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x2, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x6, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32) 22:56:19 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x63, 0x3fffff) 22:56:19 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="030000e7ffffffffff00afca24da62fd474543c310751b74eb8800010000f85618b2f1b1c6d30000c872bf00000000001d17c99bf6b5b3ea129fe95e1d81ee167516f562711ad4b1b56bb61ae5e99a823d74c067d40e7931fb4fc98c9b01966640401f"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x4001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) pwrite64(r2, &(0x7f00000002c0)="d259e7882c7f35005573071b82ba61053ff1c8234594a6b23f847f7490f8f7b7b9a2a699756bab2394963db8890fe336a4d32fd4d6f01db007ad3c7551912c599cf3bb6214d29fb8d71050122e9fd0b6dfac2b161ad6f318ca6306e5f08898c3840f754a95ed2e2f2dc0a38af597616409eed668a5a17c82f26b1097314628961af961466235a64cbf4e144a30d21692e103e17bc9541628839bb26e921659d3cc0eeaaad18fde3f7728810b07001a0b5531c1348b5be41dd01a807b11deed516b50ec57ee1b25aac0637d352814d8cee59ed477a8191e", 0xd7, 0xcf0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) lseek(r5, 0x5, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="030000e7ffffffffff00afca24da62fd474543c310751b74eb8800010000f85618b2f1b1c6d30000c872bf00000000001d17c99bf6b5b3ea129fe95e1d81ee167516f562711ad4b1b56bb61ae5e99a823d74c067d40e7931fb4fc98c9b01966640401f"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x4001, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) syz_init_net_socket$ax25(0x3, 0x2, 0x0) (async) pwrite64(r2, &(0x7f00000002c0)="d259e7882c7f35005573071b82ba61053ff1c8234594a6b23f847f7490f8f7b7b9a2a699756bab2394963db8890fe336a4d32fd4d6f01db007ad3c7551912c599cf3bb6214d29fb8d71050122e9fd0b6dfac2b161ad6f318ca6306e5f08898c3840f754a95ed2e2f2dc0a38af597616409eed668a5a17c82f26b1097314628961af961466235a64cbf4e144a30d21692e103e17bc9541628839bb26e921659d3cc0eeaaad18fde3f7728810b07001a0b5531c1348b5be41dd01a807b11deed516b50ec57ee1b25aac0637d352814d8cee59ed477a8191e", 0xd7, 0xcf0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) (async) lseek(r5, 0x5, 0x0) (async) 22:56:19 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$nl_generic(0x10, 0x3, 0x10) (async) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]]}, 0x24}}, 0x0) (async) sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xb4, r6, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_RULES={0x70, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xe0}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xf0dd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x81}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xc6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7f02}]}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4040055}, 0x8000) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x2, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x6, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 807.734088][ T28] audit: type=1800 audit(1654383379.336:466): pid=10829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1179 res=0 errno=0 [ 807.830847][ T28] audit: type=1800 audit(1654383379.436:467): pid=10833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1179 res=0 errno=0 22:56:19 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:19 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x90, 0x3fffff) 22:56:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async, rerun: 32) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 32) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 64) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f00000001c0)={0x54c9, 0x0, 0x1000, 0x400}) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32) 22:56:19 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = openat$cgroup_procs(r3, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000002c0)={0x0, 0x9cb9, 0x3}) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000001b00)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000700)={{}, 0x0, 0xc, @unused=[0x2, 0xd7cd, 0x101, 0x1], @devid=r6}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001700)={r6, 0x7, 0x4}) ioctl$BTRFS_IOC_DEV_REPLACE(r4, 0xca289435, &(0x7f00000006c0)={0x3, 0x80000001, @start={r7, 0x1, "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", "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"}, [0x80000000, 0x6, 0x81, 0x4, 0xfffffffffffffffc, 0x0, 0x4, 0x6be, 0x7fffffffffffffff, 0x7, 0x5, 0x8, 0x6, 0x8, 0x7fffffffffffffff, 0x200, 0x7, 0x101, 0x9, 0x7, 0x3, 0x9, 0x101, 0x3, 0x7, 0xffff, 0x5, 0x3, 0x77, 0x60, 0x2a66, 0x8000000000000000, 0xaf2, 0x10001, 0xffffffffffffffff, 0x3, 0x3f, 0x7f, 0x8, 0x5, 0x6, 0x200, 0x202, 0x5, 0x7, 0x8000, 0x88de, 0xfffffffffffffffd, 0x8000000000000001, 0x6, 0x4, 0x8000, 0x7, 0x0, 0x3, 0xb4, 0x1, 0xe44d, 0x9, 0x3, 0x5, 0x6, 0x400, 0x8000]}) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000001100)={r0, 0x800, 0x8, r0}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x10001, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) 22:56:19 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x64, 0x3fffff) 22:56:19 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) sendfile(r0, r0, &(0x7f0000000180)=0x9, 0xfffffffffffff34c) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000010c0)={{}, r4, 0x8, @unused=[0x0, 0x2, 0xbb1, 0x61f], @subvolid}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000140)={"e1f8da515bcffca0f32334c7cfd56e36", r4, 0x0, {0xfd, 0x400}, {0xfff, 0x81e0}, 0x9, [0x9, 0x800, 0x0, 0x0, 0x6, 0x0, 0x4, 0xfa, 0x2, 0x8, 0x0, 0x6c2, 0x5, 0x2, 0x0, 0x7]}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000640)={{}, r4, 0x38, @unused=[0x80000003, 0x0, 0xeeec, 0xc8], @devid}) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000580)={0x0, r1, 0x8001, 0x2, 0x3f}) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000400)=0x2) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f00000001c0)={0x54c9, 0x0, 0x1000, 0x400}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 808.367908][ T1230] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.367959][ T1230] ieee802154 phy1 wpan1: encryption failed: -22 22:56:20 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) sendfile(r0, r0, &(0x7f0000000180)=0x9, 0xfffffffffffff34c) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="03bdb4f8ff00000010000001afca24da62fd751b74eb88000100000100000001ff00000000c80b0000000000002017c99bf6b5b3a7d814cedd78084543879b4d00075a9b2d5b356d7738eae1d46a2c571ed95be4065106615f04fe3b301fad5040b3e2fc0ceff198760239b96d8c0fa2d7a6f2738123bd11c44f5f6b64bcfda8ac3c38db25ee99c3825569235d71b485c2a1777e118532dea2b4d0e27e36b8c98f216fdf512efdc509598bd824403ec7e2af6e0953b04df48f14c3c7ac39edd3f1571edc66bde71a395f4728560bd879896dd607ad089319c66c7aeadbe8251740fc7f052fd17845ddffecfbfd937dfcedd7499fd2fb3c7516290dc75f19bddb9e47fdf5bd6dd79d70df8ba522a8a1308a"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000010c0)={{}, r4, 0x8, @unused=[0x0, 0x2, 0xbb1, 0x61f], @subvolid}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000140)={"e1f8da515bcffca0f32334c7cfd56e36", r4, 0x0, {0xfd, 0x400}, {0xfff, 0x81e0}, 0x9, [0x9, 0x800, 0x0, 0x0, 0x6, 0x0, 0x4, 0xfa, 0x2, 0x8, 0x0, 0x6c2, 0x5, 0x2, 0x0, 0x7]}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000640)={{}, r4, 0x38, @unused=[0x80000003, 0x0, 0xeeec, 0xc8], @devid}) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000580)={0x0, r1, 0x8001, 0x2, 0x3f}) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000400)=0x2) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) sendfile(r0, r0, &(0x7f0000000180)=0x9, 0xfffffffffffff34c) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="03bdb4f8ff00000010000001afca24da62fd751b74eb88000100000100000001ff00000000c80b0000000000002017c99bf6b5b3a7d814cedd78084543879b4d00075a9b2d5b356d7738eae1d46a2c571ed95be4065106615f04fe3b301fad5040b3e2fc0ceff198760239b96d8c0fa2d7a6f2738123bd11c44f5f6b64bcfda8ac3c38db25ee99c3825569235d71b485c2a1777e118532dea2b4d0e27e36b8c98f216fdf512efdc509598bd824403ec7e2af6e0953b04df48f14c3c7ac39edd3f1571edc66bde71a395f4728560bd879896dd607ad089319c66c7aeadbe8251740fc7f052fd17845ddffecfbfd937dfcedd7499fd2fb3c7516290dc75f19bddb9e47fdf5bd6dd79d70df8ba522a8a1308a"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) socket$inet_tcp(0x2, 0x1, 0x0) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001640)) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000010c0)={{}, r4, 0x8, @unused=[0x0, 0x2, 0xbb1, 0x61f], @subvolid}) (async) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000140)={"e1f8da515bcffca0f32334c7cfd56e36", r4, 0x0, {0xfd, 0x400}, {0xfff, 0x81e0}, 0x9, [0x9, 0x800, 0x0, 0x0, 0x6, 0x0, 0x4, 0xfa, 0x2, 0x8, 0x0, 0x6c2, 0x5, 0x2, 0x0, 0x7]}) (async) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000640)={{}, r4, 0x38, @unused=[0x80000003, 0x0, 0xeeec, 0xc8], @devid}) (async) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000580)={0x0, r1, 0x8001, 0x2, 0x3f}) (async) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000400)=0x2) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) 22:56:20 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = openat$cgroup_procs(r3, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) (async) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000002c0)={0x0, 0x9cb9, 0x3}) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000001b00)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000700)={{}, 0x0, 0xc, @unused=[0x2, 0xd7cd, 0x101, 0x1], @devid=r6}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001700)={r6, 0x7, 0x4}) ioctl$BTRFS_IOC_DEV_REPLACE(r4, 0xca289435, &(0x7f00000006c0)={0x3, 0x80000001, @start={r7, 0x1, "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", "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"}, [0x80000000, 0x6, 0x81, 0x4, 0xfffffffffffffffc, 0x0, 0x4, 0x6be, 0x7fffffffffffffff, 0x7, 0x5, 0x8, 0x6, 0x8, 0x7fffffffffffffff, 0x200, 0x7, 0x101, 0x9, 0x7, 0x3, 0x9, 0x101, 0x3, 0x7, 0xffff, 0x5, 0x3, 0x77, 0x60, 0x2a66, 0x8000000000000000, 0xaf2, 0x10001, 0xffffffffffffffff, 0x3, 0x3f, 0x7f, 0x8, 0x5, 0x6, 0x200, 0x202, 0x5, 0x7, 0x8000, 0x88de, 0xfffffffffffffffd, 0x8000000000000001, 0x6, 0x4, 0x8000, 0x7, 0x0, 0x3, 0xb4, 0x1, 0xe44d, 0x9, 0x3, 0x5, 0x6, 0x400, 0x8000]}) (async) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000001100)={r0, 0x800, 0x8, r0}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x10001, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) 22:56:20 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x65, 0x3fffff) 22:56:20 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x91, 0x3fffff) 22:56:20 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000001c0)={0x2, 'geneve0\x00', {0x8}, 0x6}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_CAP_DISABLE_QUIRKS(r3, 0x4068aea3, &(0x7f00000002c0)={0x74, 0x0, 0x1d}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:20 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:20 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = openat$cgroup_procs(r3, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000002c0)={0x0, 0x9cb9, 0x3}) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000001b00)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000700)={{}, 0x0, 0xc, @unused=[0x2, 0xd7cd, 0x101, 0x1], @devid=r6}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001700)={r6, 0x7, 0x4}) ioctl$BTRFS_IOC_DEV_REPLACE(r4, 0xca289435, &(0x7f00000006c0)={0x3, 0x80000001, @start={r7, 0x1, "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", "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"}, [0x80000000, 0x6, 0x81, 0x4, 0xfffffffffffffffc, 0x0, 0x4, 0x6be, 0x7fffffffffffffff, 0x7, 0x5, 0x8, 0x6, 0x8, 0x7fffffffffffffff, 0x200, 0x7, 0x101, 0x9, 0x7, 0x3, 0x9, 0x101, 0x3, 0x7, 0xffff, 0x5, 0x3, 0x77, 0x60, 0x2a66, 0x8000000000000000, 0xaf2, 0x10001, 0xffffffffffffffff, 0x3, 0x3f, 0x7f, 0x8, 0x5, 0x6, 0x200, 0x202, 0x5, 0x7, 0x8000, 0x88de, 0xfffffffffffffffd, 0x8000000000000001, 0x6, 0x4, 0x8000, 0x7, 0x0, 0x3, 0xb4, 0x1, 0xe44d, 0x9, 0x3, 0x5, 0x6, 0x400, 0x8000]}) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000001100)={r0, 0x800, 0x8, r0}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x10001, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) openat$cgroup_procs(r3, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) (async) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000002c0)={0x0, 0x9cb9, 0x3}) (async) syz_init_net_socket$ax25(0x3, 0x2, 0x0) (async) ioctl$SIOCAX25OPTRT(r5, 0x89e7, 0x0) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000001b00)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) (async) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000700)={{}, 0x0, 0xc, @unused=[0x2, 0xd7cd, 0x101, 0x1], @devid=r6}) (async) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000001700)={r6, 0x7, 0x4}) (async) ioctl$BTRFS_IOC_DEV_REPLACE(r4, 0xca289435, &(0x7f00000006c0)={0x3, 0x80000001, @start={r7, 0x1, "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", "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"}, [0x80000000, 0x6, 0x81, 0x4, 0xfffffffffffffffc, 0x0, 0x4, 0x6be, 0x7fffffffffffffff, 0x7, 0x5, 0x8, 0x6, 0x8, 0x7fffffffffffffff, 0x200, 0x7, 0x101, 0x9, 0x7, 0x3, 0x9, 0x101, 0x3, 0x7, 0xffff, 0x5, 0x3, 0x77, 0x60, 0x2a66, 0x8000000000000000, 0xaf2, 0x10001, 0xffffffffffffffff, 0x3, 0x3f, 0x7f, 0x8, 0x5, 0x6, 0x200, 0x202, 0x5, 0x7, 0x8000, 0x88de, 0xfffffffffffffffd, 0x8000000000000001, 0x6, 0x4, 0x8000, 0x7, 0x0, 0x3, 0xb4, 0x1, 0xe44d, 0x9, 0x3, 0x5, 0x6, 0x400, 0x8000]}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000001100)={r0, 0x800, 0x8, r0}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x10001, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) 22:56:20 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) sendfile(r0, r0, &(0x7f0000000180)=0x9, 0xfffffffffffff34c) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000010c0)={{}, r4, 0x8, @unused=[0x0, 0x2, 0xbb1, 0x61f], @subvolid}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000140)={"e1f8da515bcffca0f32334c7cfd56e36", r4, 0x0, {0xfd, 0x400}, {0xfff, 0x81e0}, 0x9, [0x9, 0x800, 0x0, 0x0, 0x6, 0x0, 0x4, 0xfa, 0x2, 0x8, 0x0, 0x6c2, 0x5, 0x2, 0x0, 0x7]}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000640)={{}, r4, 0x38, @unused=[0x80000003, 0x0, 0xeeec, 0xc8], @devid}) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000580)={0x0, r1, 0x8001, 0x2, 0x3f}) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000400)=0x2) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) sendfile(r0, r0, &(0x7f0000000180)=0x9, 0xfffffffffffff34c) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) socket$inet_tcp(0x2, 0x1, 0x0) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001640)) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f00000010c0)={{}, r4, 0x8, @unused=[0x0, 0x2, 0xbb1, 0x61f], @subvolid}) (async) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000140)={"e1f8da515bcffca0f32334c7cfd56e36", r4, 0x0, {0xfd, 0x400}, {0xfff, 0x81e0}, 0x9, [0x9, 0x800, 0x0, 0x0, 0x6, 0x0, 0x4, 0xfa, 0x2, 0x8, 0x0, 0x6c2, 0x5, 0x2, 0x0, 0x7]}) (async) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000640)={{}, r4, 0x38, @unused=[0x80000003, 0x0, 0xeeec, 0xc8], @devid}) (async) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000580)={0x0, r1, 0x8001, 0x2, 0x3f}) (async) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000400)=0x2) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) 22:56:20 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x92, 0x3fffff) 22:56:20 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000001c0)={0x2, 'geneve0\x00', {0x8}, 0x6}) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_CAP_DISABLE_QUIRKS(r3, 0x4068aea3, &(0x7f00000002c0)={0x74, 0x0, 0x1d}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:21 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x66, 0x3fffff) 22:56:21 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x67, 0x3fffff) 22:56:21 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000001c0)={0x2, 'geneve0\x00', {0x8}, 0x6}) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_CAP_DISABLE_QUIRKS(r3, 0x4068aea3, &(0x7f00000002c0)={0x74, 0x0, 0x1d}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:21 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x93, 0x3fffff) 22:56:21 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f00000002c0)={0x0, @bt={0x9ac3, 0xd29, 0x1, 0x1, 0x100000000, 0xffffff75, 0x9, 0xfff, 0x3a9, 0x4, 0x0, 0x8001, 0x6, 0xfffffffe, 0x4, 0xa, {0x7, 0x6}, 0x3, 0x5}}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0xfb]}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x4, 0x0, 0x200, 0x100000000, 0xba2b, 0xc7a, 0x563, 0x7fff, 0x4, 0x2, 0x7, 0x7b, 0x0, 0x7fffffffffffffff, 0xc7, 0xffffffff], 0x2000, 0x208506}) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000480)={0x6, 0x0, [{0x80000000, 0xd7, 0x1000, 0xfffff23a, 0x4}, {0x80000019, 0x1d9a, 0xfffffffa, 0x3, 0x8}, {0x80000000, 0x1, 0x0, 0x7}, {0x40000000, 0xff, 0xffffff00, 0x9, 0x4}, {0x1e, 0x4, 0x3, 0x7, 0x1}, {0x4, 0xfe94, 0x7, 0x8, 0x10000}]}) ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f00000001c0)={0x6, 0x9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:21 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = socket$nl_rdma(0x10, 0x3, 0x14) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r1, 0x89e7, 0x0) sendfile(r0, r1, &(0x7f00000001c0)=0x7, 0xfffffffffffffffb) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:21 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca3f0900000000000000751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b32fa8ef2b68e5b36d9c11792b4c00efa8febb40d017510f56f301c9ed895fabf6412596f2378f832aea692a2c991bd064098a51b390b2cdd43bdefd7910e3c1f08ca087afab24165e9edf84bc87609d5ec4b5e341e18a41a2b35422d78eabfe1b61d0dd9763aca64b98997772531697be2da6b593ba45"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 809.878161][ T28] audit: type=1800 audit(1654383381.486:468): pid=10943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:21 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:21 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x68, 0x3fffff) 22:56:21 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca3f0900000000000000751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b32fa8ef2b68e5b36d9c11792b4c00efa8febb40d017510f56f301c9ed895fabf6412596f2378f832aea692a2c991bd064098a51b390b2cdd43bdefd7910e3c1f08ca087afab24165e9edf84bc87609d5ec4b5e341e18a41a2b35422d78eabfe1b61d0dd9763aca64b98997772531697be2da6b593ba45"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca3f0900000000000000751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b32fa8ef2b68e5b36d9c11792b4c00efa8febb40d017510f56f301c9ed895fabf6412596f2378f832aea692a2c991bd064098a51b390b2cdd43bdefd7910e3c1f08ca087afab24165e9edf84bc87609d5ec4b5e341e18a41a2b35422d78eabfe1b61d0dd9763aca64b98997772531697be2da6b593ba45"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:21 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x94, 0x3fffff) 22:56:21 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r0 = socket$nl_rdma(0x10, 0x3, 0x14) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r1, 0x89e7, 0x0) (async) sendfile(r0, r1, &(0x7f00000001c0)=0x7, 0xfffffffffffffffb) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 32) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:21 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f00000002c0)={0x0, @bt={0x9ac3, 0xd29, 0x1, 0x1, 0x100000000, 0xffffff75, 0x9, 0xfff, 0x3a9, 0x4, 0x0, 0x8001, 0x6, 0xfffffffe, 0x4, 0xa, {0x7, 0x6}, 0x3, 0x5}}) (async) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0xfb]}) (async) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x4, 0x0, 0x200, 0x100000000, 0xba2b, 0xc7a, 0x563, 0x7fff, 0x4, 0x2, 0x7, 0x7b, 0x0, 0x7fffffffffffffff, 0xc7, 0xffffffff], 0x2000, 0x208506}) (async) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000480)={0x6, 0x0, [{0x80000000, 0xd7, 0x1000, 0xfffff23a, 0x4}, {0x80000019, 0x1d9a, 0xfffffffa, 0x3, 0x8}, {0x80000000, 0x1, 0x0, 0x7}, {0x40000000, 0xff, 0xffffff00, 0x9, 0x4}, {0x1e, 0x4, 0x3, 0x7, 0x1}, {0x4, 0xfe94, 0x7, 0x8, 0x10000}]}) (async) ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f00000001c0)={0x6, 0x9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:22 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x69, 0x3fffff) [ 810.425762][ T28] audit: type=1800 audit(1654383382.026:469): pid=10967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:22 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f00000002c0)={0x0, @bt={0x9ac3, 0xd29, 0x1, 0x1, 0x100000000, 0xffffff75, 0x9, 0xfff, 0x3a9, 0x4, 0x0, 0x8001, 0x6, 0xfffffffe, 0x4, 0xa, {0x7, 0x6}, 0x3, 0x5}}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0xfb]}) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x4, 0x0, 0x200, 0x100000000, 0xba2b, 0xc7a, 0x563, 0x7fff, 0x4, 0x2, 0x7, 0x7b, 0x0, 0x7fffffffffffffff, 0xc7, 0xffffffff], 0x2000, 0x208506}) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000480)={0x6, 0x0, [{0x80000000, 0xd7, 0x1000, 0xfffff23a, 0x4}, {0x80000019, 0x1d9a, 0xfffffffa, 0x3, 0x8}, {0x80000000, 0x1, 0x0, 0x7}, {0x40000000, 0xff, 0xffffff00, 0x9, 0x4}, {0x1e, 0x4, 0x3, 0x7, 0x1}, {0x4, 0xfe94, 0x7, 0x8, 0x10000}]}) ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f00000001c0)={0x6, 0x9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f00000002c0)={0x0, @bt={0x9ac3, 0xd29, 0x1, 0x1, 0x100000000, 0xffffff75, 0x9, 0xfff, 0x3a9, 0x4, 0x0, 0x8001, 0x6, 0xfffffffe, 0x4, 0xa, {0x7, 0x6}, 0x3, 0x5}}) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0xfb]}) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x4, 0x0, 0x200, 0x100000000, 0xba2b, 0xc7a, 0x563, 0x7fff, 0x4, 0x2, 0x7, 0x7b, 0x0, 0x7fffffffffffffff, 0xc7, 0xffffffff], 0x2000, 0x208506}) (async) fcntl$setstatus(r4, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r5, 0x200002) (async) sendfile(r4, r5, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000480)={0x6, 0x0, [{0x80000000, 0xd7, 0x1000, 0xfffff23a, 0x4}, {0x80000019, 0x1d9a, 0xfffffffa, 0x3, 0x8}, {0x80000000, 0x1, 0x0, 0x7}, {0x40000000, 0xff, 0xffffff00, 0x9, 0x4}, {0x1e, 0x4, 0x3, 0x7, 0x1}, {0x4, 0xfe94, 0x7, 0x8, 0x10000}]}) (async) ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f00000001c0)={0x6, 0x9}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) 22:56:22 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x95, 0x3fffff) 22:56:22 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r0 = socket$nl_rdma(0x10, 0x3, 0x14) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r1, 0x89e7, 0x0) sendfile(r0, r1, &(0x7f00000001c0)=0x7, 0xfffffffffffffffb) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:22 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca3f0900000000000000751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b32fa8ef2b68e5b36d9c11792b4c00efa8febb40d017510f56f301c9ed895fabf6412596f2378f832aea692a2c991bd064098a51b390b2cdd43bdefd7910e3c1f08ca087afab24165e9edf84bc87609d5ec4b5e341e18a41a2b35422d78eabfe1b61d0dd9763aca64b98997772531697be2da6b593ba45"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:22 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6a, 0x3fffff) [ 810.720693][ T28] audit: type=1800 audit(1654383382.326:470): pid=10996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:22 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(0xffffffffffffffff, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:22 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) fsmount(r0, 0x1, 0x82) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x4, 0x3, 0x2, 0x8, 0xdb, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000, 0x40050}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x3b) 22:56:22 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x96, 0x3fffff) 22:56:22 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:22 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r1, 0x89e7, 0x0) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r2, 0x89e7, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESDEC=r1, @ANYRESDEC=r2, @ANYRES64=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2000000, 0x8, 0x8f2c, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x6], 0x0, 0x20210}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:22 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6b, 0x3fffff) 22:56:22 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) fsmount(r0, 0x1, 0x82) (async) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x4, 0x3, 0x2, 0x8, 0xdb, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000, 0x40050}) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) (async) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x3b) 22:56:22 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) fsmount(r0, 0x1, 0x82) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x4, 0x3, 0x2, 0x8, 0xdb, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x5], 0x100000, 0x40050}) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) (async) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x3b) [ 811.318073][T11024] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 811.318370][T11024] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 22:56:23 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r1, 0x89e7, 0x0) (async) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r2, 0x89e7, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESDEC=r1, @ANYRESDEC=r2, @ANYRES64=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2000000, 0x8, 0x8f2c, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x6], 0x0, 0x20210}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:23 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x7fffffffffffff]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:23 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r1, 0x89e7, 0x0) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r2, 0x89e7, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESDEC=r1, @ANYRESDEC=r2, @ANYRES64=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2000000, 0x8, 0x8f2c, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x6], 0x0, 0x20210}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:23 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6c, 0x3fffff) 22:56:23 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(0xffffffffffffffff, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:23 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:23 executing program 3: openat$vcsa(0xffffffffffffff9c, &(0x7f0000001640), 0x240000, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000e2ff00afca24da62fd474543c310751b74eb880f4585d62ff3b7828853ab21ccb5bbf623035201ff00ea2000c80b00f9ff00f5000080c99bf636d112fb301f58a62fd06b26ec3e1db1eed44c61de7c4f3a07cf5ed28916144775444c259570f0dd9c37d9a69af837355f10add485c3aaaab2e77b3584bc7c7bc97c59a7428dd8b689c1067b6f69"]) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000001740)="0f01c4366626660f01180f20d86635200000000f22d836660ff160180fac76090e6766c7442400d826b7b26766c74424027cf57e296766c744240600000000670f01142466b9ce0800000f32650f01c0440f20c0663503000000440f22c0baf80c66b8a6c0838b66efbafc0ced", 0x6d}], 0x1, 0x4c, &(0x7f00000017c0)=[@cr4={0x1, 0x200110}, @dstype0={0x6, 0x7}], 0x2) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0xffffffff, 0x9]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(r0, &(0x7f0000001700)='pids.events\x00', 0x0, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000380)=""/136, 0x88}, {&(0x7f0000000440)=""/227, 0xe3}, {&(0x7f0000000180)=""/121, 0x79}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/104, 0x68}], 0x5, 0x1f, 0x5) 22:56:23 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x97, 0x3fffff) 22:56:23 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) socket$inet_sctp(0x2, 0x1, 0x84) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x7fffffffffffff]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:23 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6d, 0x3fffff) [ 812.178920][ T28] audit: type=1800 audit(1654383383.786:471): pid=11074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:23 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x7fffffffffffff]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:23 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x98, 0x3fffff) 22:56:24 executing program 3: openat$vcsa(0xffffffffffffff9c, &(0x7f0000001640), 0x240000, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000e2ff00afca24da62fd474543c310751b74eb880f4585d62ff3b7828853ab21ccb5bbf623035201ff00ea2000c80b00f9ff00f5000080c99bf636d112fb301f58a62fd06b26ec3e1db1eed44c61de7c4f3a07cf5ed28916144775444c259570f0dd9c37d9a69af837355f10add485c3aaaab2e77b3584bc7c7bc97c59a7428dd8b689c1067b6f69"]) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000001740)="0f01c4366626660f01180f20d86635200000000f22d836660ff160180fac76090e6766c7442400d826b7b26766c74424027cf57e296766c744240600000000670f01142466b9ce0800000f32650f01c0440f20c0663503000000440f22c0baf80c66b8a6c0838b66efbafc0ced", 0x6d}], 0x1, 0x4c, &(0x7f00000017c0)=[@cr4={0x1, 0x200110}, @dstype0={0x6, 0x7}], 0x2) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0xffffffff, 0x9]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(r0, &(0x7f0000001700)='pids.events\x00', 0x0, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000380)=""/136, 0x88}, {&(0x7f0000000440)=""/227, 0xe3}, {&(0x7f0000000180)=""/121, 0x79}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/104, 0x68}], 0x5, 0x1f, 0x5) openat$vcsa(0xffffffffffffff9c, &(0x7f0000001640), 0x240000, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000e2ff00afca24da62fd474543c310751b74eb880f4585d62ff3b7828853ab21ccb5bbf623035201ff00ea2000c80b00f9ff00f5000080c99bf636d112fb301f58a62fd06b26ec3e1db1eed44c61de7c4f3a07cf5ed28916144775444c259570f0dd9c37d9a69af837355f10add485c3aaaab2e77b3584bc7c7bc97c59a7428dd8b689c1067b6f69"]) (async) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000001740)="0f01c4366626660f01180f20d86635200000000f22d836660ff160180fac76090e6766c7442400d826b7b26766c74424027cf57e296766c744240600000000670f01142466b9ce0800000f32650f01c0440f20c0663503000000440f22c0baf80c66b8a6c0838b66efbafc0ced", 0x6d}], 0x1, 0x4c, &(0x7f00000017c0)=[@cr4={0x1, 0x200110}, @dstype0={0x6, 0x7}], 0x2) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0xffffffff, 0x9]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) openat$cgroup_ro(r0, &(0x7f0000001700)='pids.events\x00', 0x0, 0x0) (async) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000380)=""/136, 0x88}, {&(0x7f0000000440)=""/227, 0xe3}, {&(0x7f0000000180)=""/121, 0x79}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/104, 0x68}], 0x5, 0x1f, 0x5) (async) 22:56:24 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:24 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6e, 0x3fffff) [ 812.558228][ T28] audit: type=1800 audit(1654383384.166:472): pid=11107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1174 res=0 errno=0 [ 812.596130][ T28] audit: type=1800 audit(1654383384.206:473): pid=11111 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1174 res=0 errno=0 22:56:24 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x6f, 0x3fffff) 22:56:24 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(0xffffffffffffffff, 0x2ff, 0x0, 0x0, 0x0, 0x0) 22:56:24 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000003001b74eb88000100000100000001ff00000000c80b0000000000001d17c9f6b5b3000000000000000000a7000000002fd4b3189b0b60851a5b98af43e8d3d2c9c59bcb8d9b1b6d54018ffc17108878040ab7cc2dc1d74c3538fd778316a4726a2a364165dccbfffd40ed6b75bbd0ee5b9edbe065b0bdc44ec6237273895b676aa8935ed1dd988f8209a28f5ec5c3e26e3adabc460cbc74e94c341366fe87402fc37645ccdb6fc8451f78ca87bb2283f5bdab6b5611004400b38e4ffff4dd41c91d522e211fbc4873e239548c6259e50fa1bac2c5d92c1febdc7b8e87bab97139c941b5873b4d"]) ioctl$KVM_RUN(r0, 0xae80, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x20600, 0x0) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46900) r7 = open(&(0x7f0000000080)='./bus\x00', 0x1b9642, 0x18d) ftruncate(r7, 0x200002) sendfile(r6, r7, 0x0, 0x80001d00c0d2) ioctl$KVM_CAP_X2APIC_API(r6, 0x4068aea3, &(0x7f0000000400)={0x81, 0x0, 0x3}) openat$cgroup_ro(r5, &(0x7f00000002c0)='freezer.self_freezing\x00', 0x0, 0x0) 22:56:24 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x99, 0x3fffff) 22:56:24 executing program 3: openat$vcsa(0xffffffffffffff9c, &(0x7f0000001640), 0x240000, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000e2ff00afca24da62fd474543c310751b74eb880f4585d62ff3b7828853ab21ccb5bbf623035201ff00ea2000c80b00f9ff00f5000080c99bf636d112fb301f58a62fd06b26ec3e1db1eed44c61de7c4f3a07cf5ed28916144775444c259570f0dd9c37d9a69af837355f10add485c3aaaab2e77b3584bc7c7bc97c59a7428dd8b689c1067b6f69"]) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000001740)="0f01c4366626660f01180f20d86635200000000f22d836660ff160180fac76090e6766c7442400d826b7b26766c74424027cf57e296766c744240600000000670f01142466b9ce0800000f32650f01c0440f20c0663503000000440f22c0baf80c66b8a6c0838b66efbafc0ced", 0x6d}], 0x1, 0x4c, &(0x7f00000017c0)=[@cr4={0x1, 0x200110}, @dstype0={0x6, 0x7}], 0x2) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0xffffffff, 0x9]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$cgroup_ro(r0, &(0x7f0000001700)='pids.events\x00', 0x0, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000380)=""/136, 0x88}, {&(0x7f0000000440)=""/227, 0xe3}, {&(0x7f0000000180)=""/121, 0x79}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/104, 0x68}], 0x5, 0x1f, 0x5) openat$vcsa(0xffffffffffffff9c, &(0x7f0000001640), 0x240000, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000e2ff00afca24da62fd474543c310751b74eb880f4585d62ff3b7828853ab21ccb5bbf623035201ff00ea2000c80b00f9ff00f5000080c99bf636d112fb301f58a62fd06b26ec3e1db1eed44c61de7c4f3a07cf5ed28916144775444c259570f0dd9c37d9a69af837355f10add485c3aaaab2e77b3584bc7c7bc97c59a7428dd8b689c1067b6f69"]) (async) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000001740)="0f01c4366626660f01180f20d86635200000000f22d836660ff160180fac76090e6766c7442400d826b7b26766c74424027cf57e296766c744240600000000670f01142466b9ce0800000f32650f01c0440f20c0663503000000440f22c0baf80c66b8a6c0838b66efbafc0ced", 0x6d}], 0x1, 0x4c, &(0x7f00000017c0)=[@cr4={0x1, 0x200110}, @dstype0={0x6, 0x7}], 0x2) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0xffffffff, 0x9]}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) openat$cgroup_ro(r0, &(0x7f0000001700)='pids.events\x00', 0x0, 0x0) (async) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000380)=""/136, 0x88}, {&(0x7f0000000440)=""/227, 0xe3}, {&(0x7f0000000180)=""/121, 0x79}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/104, 0x68}], 0x5, 0x1f, 0x5) (async) 22:56:24 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRES16=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) sendmmsg$sock(r7, &(0x7f0000001bc0)=[{{&(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @empty}, 0x4, 0x1, 0x0, 0x1}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000380)="c3b5e2b8d9309c74d4250f00e7b5b7661642308bbb7d572df793195569f387ed733fd08a57c31dacc8208e98952461123c3e2ed95e3b80a4039ca606042234a6ff5c6f7f2372b43dacaaef507d951303a0dc205e8e99bfae", 0x58}, {&(0x7f0000000400)="9486474d4dce2a5ee8ddb0dde1b366e31c360a488b3dcd3ac8ab168884ba3a3793488139be9765447fa3e879f21d80173fdc9b5aaf647c2cec40279730538385fe83e46fd2d092c99c1b39f2696b07ab262bf9d578c98c280072b485a2a77fa14be436cc8677562032be44385b43d223f34167ccaf80ce37a19e3a456c9c6e76a60824a37b4a23d61af71d484ef3711fe458e9980b1bef3790aa19ab33276a3ac8ed3dff60c7dbfae8acda45d3ce42026420343cf6733ed740ee1c7b2f6b4401beeaa820922b03c8abe1f06a1e130b5528726c1c3b", 0xd5}, {&(0x7f0000000500)="839c8f423aa487e93156672cb82e8d21d282335cbe833c1e6f878175356160ce4229d576927f7e697ff84ea5cc54e5293e9ed004e47bd2c69f9094b9b212924e88e540b78c0b94b7a13d162d84a81b955cc2c082fce52f50f8355657881b0ca0b47fb05ba42c6ab96da0d19627a506291d43bb0383ca0cb867d1a50d1c73fdae58b3ee11c2eede83aa4a806680daf8421cff94370ca3daa995", 0x99}, {&(0x7f00000005c0)="2f993472ef6ddf922c22c0d7d3355e36d36b22", 0x13}, {&(0x7f0000000600)="3b1f9ed8fcc2fb2876a6e93ca52f4ff11dd8786c7980bfb58f4808370f7cab64b6c7ab84d7bccaabf645c5e14cf6b65332c982e917bfb551459e8e5b26c1a349ef3fb2d7df96c62a990a6a04", 0x4c}, {&(0x7f0000000680)="fc4c067e9112e7a363eeab40cff08df00fa27912070bb8e21b5e785b37f267d2eafde4bfb3d5f24c03d0da39ea4319a772c54a4bb78e7f5034b0b5bc0e8471e5bbf6fdfb7795272f9217822cf2e31da64c03ec7fac9a2d4dc59f2869c2d7f5f498426586998c35541a6afc56e48a8bc42634ee074f1bbb3703b4d53704c564b8b7026a2882a0a03eaf", 0x89}, {&(0x7f0000000740)="47d2e68b0990d0c529d1fabab4930ca44d14c1ed338819f146da6df11743a7aa95deb315d8e7d2b0ad3affb36e8f0d9b50970e7126e36b73215dfb45df9748777c06424b89e387447f18a0acb98b0711955f10ee60e9596e2b2522a001777dbc1b017eb4fa8b8d0d550c0a011d1df41f5d92c760dd8f5cdc204d859febcd14558edb90bca7449bf9efb0f6408dfbf9c62f0680370abbd6a17d41d4a61f1bbe3f3732da13ac2fd0b201b53912813fc64d78c28308c4eef5b58fb94d69f85442e1bfd73053d525151007ccbd9a9caf53fc758c66b9358e3e910796cc", 0xdb}, {&(0x7f0000000840)="5857f6e4a97727f500e8c2b8fbbcd6909f5db7b3cdb4999dc66d86b89bb486a880291c2e030388bbe7e6fa483f30d368d1056e955acbccc11ddb5ae17338d0e117b5bfe37183aeb684ff2197d3a3486eccc2b7369233c6338cff1a67a79f8505b7b2a179b5522d29673680d9c5cdeaecb4bc742a5ff5399aa6752203c3ea2d1f0be209d77c0f8297f6fc49d4bb2c8814a616f18df0ec948db8b0cd2ce0406053f15f428f90149bfc2d34d8e248ae1591b651fbbd2a81da7fbd08737070abd0d50430d6abb2e5eed1675a78390c7f9c64e09f8c2de82e4676b2bac9c16b8a5820ce22743965cdf804a0cc95257f770202bf47", 0xf2}, {&(0x7f0000000940)="2da0dca4a622ef70218848f022ec037c765bafa1459dbf79e8e22e4e8f495eb793740bb4b4bdb405fe8db1ca8aa1d15a3f7ae4e87efb0509cf643b648fae8e13bff986b75e7b2278d2485595c4e88b3ba7cfb841ca76872f39d8f94bda8cb5d70a", 0x61}], 0x9}}, {{&(0x7f0000000a80)=@pppoe={0x18, 0x0, {0x0, @multicast, 'veth1_macvtap\x00'}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000b00)="3bdc1ad69eaa545a3cbc7805316c559751e9d6211874ecddc8fb8e5ab66886095fcf471dbd787e39c359f6cbc4b0979c893cd7b6c6d3702fbf3cf4a4a3c8d3663d65eacce04ed06eee41f75001b6f706704f92d32828465e0933583d09b46562c43c20141d2a36d8e69990e69a13cf474093809bd90ef61a21fca10ae2e3b9d48407c7d4c388a84d3f2cb43c99425d54e0c0191ac46a4417574d23e74108723bd69357192ffd1c820f1f296d3b873232511e8771659904a16e85c1247263c345bdb669f7c7863e54ff424c25d91f2d6f997837486f0124a71c2467dee1e9e50f96be2b39bc15819b520b504e4471360d4a4860430ae42b305042bf362cfeffc6fcfed68713c37fada27c641af794552d21c195b58a2453d58459ea7b09ba283c7d4c321552ebddbee23691e826822aa4e5b9b0bb568e5a95ef833c684e72661c9baad4aa5a0e413cf2767287d769fc5f6558cc926c6654872090baaca32edf5f3cf02857a11215fa1a7e5db733424e0bd7e740e3fe4a4942baf0710df51daac54489673cc762229d30128a92f6767072855234a71423dc99ad81bb4550343f8b89b9a362c9dafcfb69520b4e681b882f434904c8c400d221b3e5cbdc522958998cc95793f002fee440fab3aa52b8da76008778d58220a70d76737cb1f3d123cd3b2f9db7c07203e3ee73a8c80c82c589b6b9ad9b5a455d71bd3e0eccc4a021d753e707da2bed1379c099a076caa10ab47abab3db85a1744937444ebf5a72783eab1dc79e85ee60b76432e8fe3a0340df9bf96eabe89a407282cac1cd90f63b6b6e5c40dff42e87a5707b3814721486a33a2601c198685306ed40b96d3f3e1e373b802e6b3dc1c191449996ec19f9c63148131141cb8df0ddf6a8d81420ba4caedb1f04fe5b7d840d9bb1bb36be8db933011b402e0f3892e2d925b72d5bcadcadd76f1e14f6e491cbdaa4d2bcfb483bafda1b8dcb8b0f39052ec1901502ce7d4d6c635d21f2fbd9b8bb44cb65ef2171982c0d6431a1e61c1fe1e204958d0c8c5f7dc75c3b5d2a6de6392bb015f35126048e554a622205895b31125ae9d17ebd9b1c0ed2dd9877c86d91e7ab4954f6d272f5da596d732f8e81ff82bd12da8ee6c86ae4b17b62c4f5738b846927df88e112b6e266379faa967ddbcb11cae71f12d79ec7322bc06a35927dd319063ec60485b3cf9f4bc41f5fd7e72fb1651371db82a111ad15841715f683525bb102956c40f9d036b990909645ea2e149fa64135447d7a29632ca84cd2148891ff964a5e32688cda5b8cb5137391d81909a924a954ddd6c59a3d517484584bac8f9757294205a4028b7a4a6cb25b955076eadba778a003722edea00a53838c78c35851da5534ac475c6c3c3e93a82c52c18399e6b52194492c93c4834d326b74fb0bfe7e12b1b26e715e39c41a68f470014a33dcafbd32b8133d1e00f2ad3d60c3055aad01e521d697de6b987b525cc3fd73ac905f3c4d6e496f7114cf7bb22c10cbb404e750e3b9339b09d16ce708355df902561d42549a26a9a28e85f084941d4cada9c8914c628d711edcf3d18ca0dea65f9e576dbba9ca38d7981f7188a57b061d25553d55ed33b6f8614d3ad111b5237bd3175dc16ebca8f148fa77d32d4fa3e721d13dec2511fe6d1acf9dd55521f6d1b5cd8ea96bce89135b83eec9ec8b1e30c7e47bde975e03905862c512b9ecceb68e65c234103f4c3bdcb04bf182696fb00df08cb1443dbbce7e01fc5ca0997da4ffb57539aaa3d9f04ada456463104e3ccde8d162c3586526a65d73ea99cfc5e8ac5582d0c66555f0049fbe3bb16c4986e2b7cb4afe432276242fb33d53629282a71a654342c993b72354c01ec2b21fe545bd6ca17f0f308c91f6b18048ba1c581382aeac1e175e08f00a97971d29ae1f07e4738cb6bc2b32fdc0974b6d659c0949c6d66329fb05398b6ddb7dd5f4d579d29431c6281dfac75897a22e9b7f0aede6903aeed050f7ac6cedd1a3f9f13d058e89fac4f80d663e6e24c6889d156fb6bfbf987018e67b340098a2b6db94e8fa57699c2df530eee9eb43b2a02ffffdf9b269f629f41c761886dcb520c3bb813af68836f9eda0cfe280c7df5f9128aba5f58a6bb51570e608a192898e5c37e3dcd6684150943759ec63dbb25e6e0d35f891aabe97fc00aadaabffa91f793127ef2ab2fa845b41b0c2a260350eb19b47f1fe82ba3d78dce42ccaa8bc2c01abb36cd8dbc6ac9fae06d14bcc8112df464c059b6752b5ce13d4b4d9c361267b54b89a6ac5341d1e7d51232359ff0898685c8bcfc4172b9ff4da2c25abfdf70f72bf4a0a2ee7adfb08669eb5ddca9e7b49a065d80ee29f10988e0e96d44ace3e66340ed43673f3226c5ac81853f50701f2f39323d0dd94eaa1b0f4c35fa85aa6e9c2187f500bfbfe89045728d124429582f38752c52446f82e0787095ccb581c361d224ff0bfe35daa15d766c1adc7d5e73654525349a4b5959217ddf89a0caf3410cc76337791c714de01d83e68deb0530999a96511ad1f1d4ab47052a59fea8c3dfddc0d8956f5ff91023d7011620b48e7b554ede60ac3a87d8c72ed51b778204c55e28a34ff7b34ab632dc7055cc57e4fb3224e147150799f51ab9030e4232e8319ee6cc9150e33397a124caefbf6413c65f0ec95fa82736e55c3e194b074e2ee3f429a0e156fc16bff5bd9e95059a1f567646f712a778ebf8af275fc8d519a2ee52344af61af41252004485492895bbe489083e3920b81754ad3afea1330af12fb78965c945116d4aeb45aab16c042f30cde55b335f603c390c5034efa366afbc51b838c4d63f2f5601fab8b66d8262303b389de9034545681c43864a7b813ecc4de4d1841b21cd4003ca48137221eeacf8c0fa38f774248de997bf54372984d6002459307de0d0736f823f2d59fe786f067d2377d726c1818def290d51d8d82dd3e8ae7d4ab938bfe53514de3e023c542df4d404a70623d4df5b7556294a95b261b639ea8a8a966022d5eee9ef1582615c3ad03c616b80de47abb6c272c1d306717eb70f13c323510b6f8f0454cbcd4edc2fdd887f253ee35a81805eafb0d0dce422a1c11d97e5f0a577388dbd39da0c94d75fa7d7483f6fee4666ed0e641f5280dc4a001105ca598a4d2b7827b8c3ae2bf8fc2fc892b42f95ab251ba89808cfe3ac603af3d5da1786e8fa1c943d7d0d4d4fd239de5f2018b356979c9cc0c34f839277d01fc8e1d6ed4ba3f6599aca60f94bce202e363109760e4fe2721e436691f980aa2187c9a70afbebd8ac666209f25278b8b35e5941093c37b0f0bbc0ad5e026b6942887447fd98cb966bc53e2d531872f9d6a3dab68f6ee5efc17f0f03c7556df075e4e63158b5e9505b59d43048c2d11bdc6f35ed755d2fdd92b2e5502224d03f9c6a7bb4a548c1d786f13d38455fdf53399b9bfa8fe08af69669911b678f7fc54bb9eb61cfdad74cb694bc02f1c569c6d8b78cf0b9b8757ab0a56b68e36168b09b1aefe084b9262641123a7e615a2bf23757eb2687a38832c6569cc7d7dcda531bef42b9ed24303ab5b7ee7f06eacf07b3dfde894ed6a1df36472bdf318835fd2de0a1205d389fc02258b54c57c1dba888371d9f11ebfcd6f15aca71ea5f1513319b712c5f20bfbbf6a14f015bfd3ce01a5db0c6074feb8f4f4c12c3b23b274ef7e2b46b3bb1e2a54352fbfbd5ebeb6eae97e0909b73e337279a817c02349c8e2b93e3ee70c7725801b02c07d4b18e6564aa72cfd9081a2089e03fd46491f34efcbcd2956fa47a89cc0b11ebcd55acb7666dfbf9a3de5613b06f2f1110f3cd2a1c625b713fa4beb908d2cdbf104b8416cb6f8ebacd352100975c472dc93bbff4416f17bfc6989264903306c7a3b39dca1c2be9279c4b8ba8e81428abed18593fb56ab8f68616a7ecfe839568e7a56559784ac2ad3b6d82effb8684d2a1b8abdc9f99d083f077546f190043c0a691301d456d509f76c425ae2441ab462891c1ecbe528097dc3d64248fc508e66ae68edda5f5bb06c7744c68440f6122bdbc3820c5f47547af016c8fcccc5950039464f5ae27fb77b1d35e8f7606a28f9e5dcc0b27907eddec3f7a4cd1f1fb8ac7d054cab45c9d69fcc0b9f4765516ce01656bbffd3e518dcbb4e0c686fbea3236dd5ab6ad55fddbc1a7657b359cb87fee38ceef3feaa5e9926f74b1e8ee8c822983eda3cdf718eae01594803807e685048e3bfa0ba190d770a6958c6a6b8c9fe09a479c53875c8d0cf6763527859338ec83e33a3497d09e705e13129a255c7e0bcc7b92db515538d7010d4e568faefce8577aa10353bc827812ba4984b79986a81b8f74842c8a8a3c75f20504846927221f51cb28255dd5589cea66c06eb01c9044940934a979184b64603a7b2c8ce0c345399abcf8bfa83af7aef210328e780d7cc3ec00947db42e40d092c6e89b8ae8498192d65f5858a0519380d82b52fa4169f64432452f80b9d9067b979c63e5e9dce386563578fc8abc7cb095b56672cb3e45861dbdf458cda734300299bfac6d5e2c529951b1399db44ca8ce31988e5bd9976d87107b316d75a69c5c7a6a9eb6c6121937a1e599a2627da630541fbb4692e3a0a47e7169ef8ac72f7c9a3fe131e3e94449361cbc31877032304961509e893b59982091846cd671d371c9366d61d8e6880536c294ed95ba0611143ebf487c7e4600921e79c7a9234195cbd552b2580fc0e3abdc5122deda82481b4c1cdacfe97df7015cea10d435d28ae91aad24e9844963ed900f2ef3416ebe00957496289ea1e57f95fb15bde7aa88a5052030b9596385d1186e3b72afe9930aa9422c2866c70026fecf1cd60fc7d283617b9c1346a496b2ed0bce2dfd9630a082dedc68aa998c113c4060c714b0b006e8243f036f1b7a92f5a36a2a2700fc6bf9c330d243da7a84c9730cec33c2bf70b126ec27d4cefdf5fe5770e7b2788e57f5326f0b80d665c51bd25a6c56e40b57221120b242d0def60c3d2ec0415e1b56dc76ce9c9a969a3711ee6396f2b5def8b95f895d787b344e0a23e3d1985ac1fe5b6ff15f7ca47f2e11b2aa7225f21df7a9433d747679f7a1698f105d358dbd226bc5fd09e463483028e94799040207db442890cdfa1e05d7afcd4833e6d007d7571669908c6f9ac92677103c31a7ee5d0d8ddc00c9a20592021e1ddff76c52222bbd3bb03ded80006b54d42d87b46e0c21db518df38efc6e0c475c074cc026929001b0201c8b4e1fcb28602e5878b2cd81462405f357823bb967481fc924f33e7ef5a102ef6faff84713e44abcede997f6d21cc2752a29c2dd79d4907d0bfe026af290d26c17042d86a83087535a04f23ddf0f5291d70beec1969ed72cfca961d9fd5f6638509ec35ec9d462f053e7db0339d4eaef23f85b70af92b04fc0e76787153920bb0f9bbf7f77998a6de4c53c8d02260368a45664b7c415182866463db2ffd611151af8691b5909e77ca217ed039da9d64e2d9964fc6a60c7db444b793be2b1dc17923e975c0ca3ba0768a94e44c8ef401881966d6e041cda4242bc2d1c45fa4a56da34140bd9b731219d383774ee054b8111896c518e23bebfcfcfba18fc9b3afbea9049582d2b91d9c7b9313fb4eb44798078ee1efa1bb19d16894842177ec2b7d8d71826df252fca51ca086ebfbefa666540c866829694345fe892da130a739985512881fa5fd4584f9f6f7e0705e77702d9e12944d63e1d93fa97c10a47b9ec2de8482f226da387ecf3819608f0be81b2e38466c8f40b63ecbfe1ae441c18b", 0x1000}], 0x1, &(0x7f0000001b40)=[@timestamping={{0x14, 0x1, 0x25, 0x8001}}, @timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}], 0x48}}], 0x2, 0x8000) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f00000002c0)={0x7, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}, {}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb], 0x2}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 22:56:24 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x70, 0x3fffff) [ 813.124440][ T28] audit: type=1800 audit(1654383384.726:474): pid=11145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1184 res=0 errno=0 [ 813.161826][ T28] audit: type=1800 audit(1654383384.766:475): pid=11149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1185 res=0 errno=0 22:56:24 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000003001b74eb88000100000100000001ff00000000c80b0000000000001d17c9f6b5b3000000000000000000a7000000002fd4b3189b0b60851a5b98af43e8d3d2c9c59bcb8d9b1b6d54018ffc17108878040ab7cc2dc1d74c3538fd778316a4726a2a364165dccbfffd40ed6b75bbd0ee5b9edbe065b0bdc44ec6237273895b676aa8935ed1dd988f8209a28f5ec5c3e26e3adabc460cbc74e94c341366fe87402fc37645ccdb6fc8451f78ca87bb2283f5bdab6b5611004400b38e4ffff4dd41c91d522e211fbc4873e239548c6259e50fa1bac2c5d92c1febdc7b8e87bab97139c941b5873b4d"]) ioctl$KVM_RUN(r0, 0xae80, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) r5 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x20600, 0x0) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46900) (async) r7 = open(&(0x7f0000000080)='./bus\x00', 0x1b9642, 0x18d) ftruncate(r7, 0x200002) (async) sendfile(r6, r7, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_CAP_X2APIC_API(r6, 0x4068aea3, &(0x7f0000000400)={0x81, 0x0, 0x3}) openat$cgroup_ro(r5, &(0x7f00000002c0)='freezer.self_freezing\x00', 0x0, 0x0) 22:56:24 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x9a, 0x3fffff) 22:56:24 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x71, 0x3fffff) 22:56:25 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001af459d0000fd474543c310751b74eb88000100000100000081ff0000c699ed060000000000001d17c99bf6b5b3f0163909b44f380679a6b38fe373193f736def16b31ac7f831a8638e534c6ec6b74eddea901b65517e8898849fdf0ce4e3642ba53a60d5cae1e4c830"]) write(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00', 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000180)={0x10000, 0x10000, 0x7, 0x64, 0x7ff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) tee(r1, 0xffffffffffffffff, 0x7ff, 0x8) ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f00000001c0)={0x7980000000000000, 0xf000, 0x9, 0x6, 0x13}) [ 813.512820][ T28] audit: type=1800 audit(1654383385.116:476): pid=11173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:25 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRES16=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) sendmmsg$sock(r7, &(0x7f0000001bc0)=[{{&(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @empty}, 0x4, 0x1, 0x0, 0x1}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000380)="c3b5e2b8d9309c74d4250f00e7b5b7661642308bbb7d572df793195569f387ed733fd08a57c31dacc8208e98952461123c3e2ed95e3b80a4039ca606042234a6ff5c6f7f2372b43dacaaef507d951303a0dc205e8e99bfae", 0x58}, {&(0x7f0000000400)="9486474d4dce2a5ee8ddb0dde1b366e31c360a488b3dcd3ac8ab168884ba3a3793488139be9765447fa3e879f21d80173fdc9b5aaf647c2cec40279730538385fe83e46fd2d092c99c1b39f2696b07ab262bf9d578c98c280072b485a2a77fa14be436cc8677562032be44385b43d223f34167ccaf80ce37a19e3a456c9c6e76a60824a37b4a23d61af71d484ef3711fe458e9980b1bef3790aa19ab33276a3ac8ed3dff60c7dbfae8acda45d3ce42026420343cf6733ed740ee1c7b2f6b4401beeaa820922b03c8abe1f06a1e130b5528726c1c3b", 0xd5}, {&(0x7f0000000500)="839c8f423aa487e93156672cb82e8d21d282335cbe833c1e6f878175356160ce4229d576927f7e697ff84ea5cc54e5293e9ed004e47bd2c69f9094b9b212924e88e540b78c0b94b7a13d162d84a81b955cc2c082fce52f50f8355657881b0ca0b47fb05ba42c6ab96da0d19627a506291d43bb0383ca0cb867d1a50d1c73fdae58b3ee11c2eede83aa4a806680daf8421cff94370ca3daa995", 0x99}, {&(0x7f00000005c0)="2f993472ef6ddf922c22c0d7d3355e36d36b22", 0x13}, {&(0x7f0000000600)="3b1f9ed8fcc2fb2876a6e93ca52f4ff11dd8786c7980bfb58f4808370f7cab64b6c7ab84d7bccaabf645c5e14cf6b65332c982e917bfb551459e8e5b26c1a349ef3fb2d7df96c62a990a6a04", 0x4c}, {&(0x7f0000000680)="fc4c067e9112e7a363eeab40cff08df00fa27912070bb8e21b5e785b37f267d2eafde4bfb3d5f24c03d0da39ea4319a772c54a4bb78e7f5034b0b5bc0e8471e5bbf6fdfb7795272f9217822cf2e31da64c03ec7fac9a2d4dc59f2869c2d7f5f498426586998c35541a6afc56e48a8bc42634ee074f1bbb3703b4d53704c564b8b7026a2882a0a03eaf", 0x89}, {&(0x7f0000000740)="47d2e68b0990d0c529d1fabab4930ca44d14c1ed338819f146da6df11743a7aa95deb315d8e7d2b0ad3affb36e8f0d9b50970e7126e36b73215dfb45df9748777c06424b89e387447f18a0acb98b0711955f10ee60e9596e2b2522a001777dbc1b017eb4fa8b8d0d550c0a011d1df41f5d92c760dd8f5cdc204d859febcd14558edb90bca7449bf9efb0f6408dfbf9c62f0680370abbd6a17d41d4a61f1bbe3f3732da13ac2fd0b201b53912813fc64d78c28308c4eef5b58fb94d69f85442e1bfd73053d525151007ccbd9a9caf53fc758c66b9358e3e910796cc", 0xdb}, {&(0x7f0000000840)="5857f6e4a97727f500e8c2b8fbbcd6909f5db7b3cdb4999dc66d86b89bb486a880291c2e030388bbe7e6fa483f30d368d1056e955acbccc11ddb5ae17338d0e117b5bfe37183aeb684ff2197d3a3486eccc2b7369233c6338cff1a67a79f8505b7b2a179b5522d29673680d9c5cdeaecb4bc742a5ff5399aa6752203c3ea2d1f0be209d77c0f8297f6fc49d4bb2c8814a616f18df0ec948db8b0cd2ce0406053f15f428f90149bfc2d34d8e248ae1591b651fbbd2a81da7fbd08737070abd0d50430d6abb2e5eed1675a78390c7f9c64e09f8c2de82e4676b2bac9c16b8a5820ce22743965cdf804a0cc95257f770202bf47", 0xf2}, {&(0x7f0000000940)="2da0dca4a622ef70218848f022ec037c765bafa1459dbf79e8e22e4e8f495eb793740bb4b4bdb405fe8db1ca8aa1d15a3f7ae4e87efb0509cf643b648fae8e13bff986b75e7b2278d2485595c4e88b3ba7cfb841ca76872f39d8f94bda8cb5d70a", 0x61}], 0x9}}, {{&(0x7f0000000a80)=@pppoe={0x18, 0x0, {0x0, @multicast, 'veth1_macvtap\x00'}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000b00)="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", 0x1000}], 0x1, &(0x7f0000001b40)=[@timestamping={{0x14, 0x1, 0x25, 0x8001}}, @timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}], 0x48}}], 0x2, 0x8000) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f00000002c0)={0x7, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}, {}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb], 0x2}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRES16=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r3, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) socket$phonet_pipe(0x23, 0x5, 0x2) (async) sendmmsg$sock(r7, &(0x7f0000001bc0)=[{{&(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @empty}, 0x4, 0x1, 0x0, 0x1}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000380)="c3b5e2b8d9309c74d4250f00e7b5b7661642308bbb7d572df793195569f387ed733fd08a57c31dacc8208e98952461123c3e2ed95e3b80a4039ca606042234a6ff5c6f7f2372b43dacaaef507d951303a0dc205e8e99bfae", 0x58}, {&(0x7f0000000400)="9486474d4dce2a5ee8ddb0dde1b366e31c360a488b3dcd3ac8ab168884ba3a3793488139be9765447fa3e879f21d80173fdc9b5aaf647c2cec40279730538385fe83e46fd2d092c99c1b39f2696b07ab262bf9d578c98c280072b485a2a77fa14be436cc8677562032be44385b43d223f34167ccaf80ce37a19e3a456c9c6e76a60824a37b4a23d61af71d484ef3711fe458e9980b1bef3790aa19ab33276a3ac8ed3dff60c7dbfae8acda45d3ce42026420343cf6733ed740ee1c7b2f6b4401beeaa820922b03c8abe1f06a1e130b5528726c1c3b", 0xd5}, {&(0x7f0000000500)="839c8f423aa487e93156672cb82e8d21d282335cbe833c1e6f878175356160ce4229d576927f7e697ff84ea5cc54e5293e9ed004e47bd2c69f9094b9b212924e88e540b78c0b94b7a13d162d84a81b955cc2c082fce52f50f8355657881b0ca0b47fb05ba42c6ab96da0d19627a506291d43bb0383ca0cb867d1a50d1c73fdae58b3ee11c2eede83aa4a806680daf8421cff94370ca3daa995", 0x99}, {&(0x7f00000005c0)="2f993472ef6ddf922c22c0d7d3355e36d36b22", 0x13}, {&(0x7f0000000600)="3b1f9ed8fcc2fb2876a6e93ca52f4ff11dd8786c7980bfb58f4808370f7cab64b6c7ab84d7bccaabf645c5e14cf6b65332c982e917bfb551459e8e5b26c1a349ef3fb2d7df96c62a990a6a04", 0x4c}, {&(0x7f0000000680)="fc4c067e9112e7a363eeab40cff08df00fa27912070bb8e21b5e785b37f267d2eafde4bfb3d5f24c03d0da39ea4319a772c54a4bb78e7f5034b0b5bc0e8471e5bbf6fdfb7795272f9217822cf2e31da64c03ec7fac9a2d4dc59f2869c2d7f5f498426586998c35541a6afc56e48a8bc42634ee074f1bbb3703b4d53704c564b8b7026a2882a0a03eaf", 0x89}, {&(0x7f0000000740)="47d2e68b0990d0c529d1fabab4930ca44d14c1ed338819f146da6df11743a7aa95deb315d8e7d2b0ad3affb36e8f0d9b50970e7126e36b73215dfb45df9748777c06424b89e387447f18a0acb98b0711955f10ee60e9596e2b2522a001777dbc1b017eb4fa8b8d0d550c0a011d1df41f5d92c760dd8f5cdc204d859febcd14558edb90bca7449bf9efb0f6408dfbf9c62f0680370abbd6a17d41d4a61f1bbe3f3732da13ac2fd0b201b53912813fc64d78c28308c4eef5b58fb94d69f85442e1bfd73053d525151007ccbd9a9caf53fc758c66b9358e3e910796cc", 0xdb}, {&(0x7f0000000840)="5857f6e4a97727f500e8c2b8fbbcd6909f5db7b3cdb4999dc66d86b89bb486a880291c2e030388bbe7e6fa483f30d368d1056e955acbccc11ddb5ae17338d0e117b5bfe37183aeb684ff2197d3a3486eccc2b7369233c6338cff1a67a79f8505b7b2a179b5522d29673680d9c5cdeaecb4bc742a5ff5399aa6752203c3ea2d1f0be209d77c0f8297f6fc49d4bb2c8814a616f18df0ec948db8b0cd2ce0406053f15f428f90149bfc2d34d8e248ae1591b651fbbd2a81da7fbd08737070abd0d50430d6abb2e5eed1675a78390c7f9c64e09f8c2de82e4676b2bac9c16b8a5820ce22743965cdf804a0cc95257f770202bf47", 0xf2}, {&(0x7f0000000940)="2da0dca4a622ef70218848f022ec037c765bafa1459dbf79e8e22e4e8f495eb793740bb4b4bdb405fe8db1ca8aa1d15a3f7ae4e87efb0509cf643b648fae8e13bff986b75e7b2278d2485595c4e88b3ba7cfb841ca76872f39d8f94bda8cb5d70a", 0x61}], 0x9}}, {{&(0x7f0000000a80)=@pppoe={0x18, 0x0, {0x0, @multicast, 'veth1_macvtap\x00'}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000b00)="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", 0x1000}], 0x1, &(0x7f0000001b40)=[@timestamping={{0x14, 0x1, 0x25, 0x8001}}, @timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}], 0x48}}], 0x2, 0x8000) (async) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f00000002c0)={0x7, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}, {}]}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb], 0x2}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) 22:56:25 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000003001b74eb88000100000100000001ff00000000c80b0000000000001d17c9f6b5b3000000000000000000a7000000002fd4b3189b0b60851a5b98af43e8d3d2c9c59bcb8d9b1b6d54018ffc17108878040ab7cc2dc1d74c3538fd778316a4726a2a364165dccbfffd40ed6b75bbd0ee5b9edbe065b0bdc44ec6237273895b676aa8935ed1dd988f8209a28f5ec5c3e26e3adabc460cbc74e94c341366fe87402fc37645ccdb6fc8451f78ca87bb2283f5bdab6b5611004400b38e4ffff4dd41c91d522e211fbc4873e239548c6259e50fa1bac2c5d92c1febdc7b8e87bab97139c941b5873b4d"]) (async) ioctl$KVM_RUN(r0, 0xae80, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (rerun: 64) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) r5 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x20600, 0x0) (async) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46900) (async, rerun: 32) r7 = open(&(0x7f0000000080)='./bus\x00', 0x1b9642, 0x18d) (rerun: 32) ftruncate(r7, 0x200002) sendfile(r6, r7, 0x0, 0x80001d00c0d2) ioctl$KVM_CAP_X2APIC_API(r6, 0x4068aea3, &(0x7f0000000400)={0x81, 0x0, 0x3}) (async) openat$cgroup_ro(r5, &(0x7f00000002c0)='freezer.self_freezing\x00', 0x0, 0x0) [ 813.801592][ T28] audit: type=1800 audit(1654383385.406:477): pid=11176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1166 res=0 errno=0 22:56:25 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x0, 0x0, 0x0, 0x0, 0x0) 22:56:25 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x72, 0x3fffff) 22:56:25 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x9b, 0x3fffff) 22:56:25 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001af459d0000fd474543c310751b74eb88000100000100000081ff0000c699ed060000000000001d17c99bf6b5b3f0163909b44f380679a6b38fe373193f736def16b31ac7f831a8638e534c6ec6b74eddea901b65517e8898849fdf0ce4e3642ba53a60d5cae1e4c830"]) write(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00', 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000180)={0x10000, 0x10000, 0x7, 0x64, 0x7ff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) tee(r1, 0xffffffffffffffff, 0x7ff, 0x8) ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f00000001c0)={0x7980000000000000, 0xf000, 0x9, 0x6, 0x13}) 22:56:25 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000501090024da62fd474543c310751b74eb88000100000100000001ff000000a4190b00000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90], 0x1, 0x80000}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x20, 0x8, 0xfb, 0x7e, 0x9, 0x0, 0x2, 0x0, 0x0, 0x2], 0x10000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:25 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x73, 0x3fffff) 22:56:25 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x9c, 0x3fffff) 22:56:25 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x74, 0x3fffff) 22:56:25 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRES16=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x46900) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) sendmmsg$sock(r7, &(0x7f0000001bc0)=[{{&(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @empty}, 0x4, 0x1, 0x0, 0x1}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000380)="c3b5e2b8d9309c74d4250f00e7b5b7661642308bbb7d572df793195569f387ed733fd08a57c31dacc8208e98952461123c3e2ed95e3b80a4039ca606042234a6ff5c6f7f2372b43dacaaef507d951303a0dc205e8e99bfae", 0x58}, {&(0x7f0000000400)="9486474d4dce2a5ee8ddb0dde1b366e31c360a488b3dcd3ac8ab168884ba3a3793488139be9765447fa3e879f21d80173fdc9b5aaf647c2cec40279730538385fe83e46fd2d092c99c1b39f2696b07ab262bf9d578c98c280072b485a2a77fa14be436cc8677562032be44385b43d223f34167ccaf80ce37a19e3a456c9c6e76a60824a37b4a23d61af71d484ef3711fe458e9980b1bef3790aa19ab33276a3ac8ed3dff60c7dbfae8acda45d3ce42026420343cf6733ed740ee1c7b2f6b4401beeaa820922b03c8abe1f06a1e130b5528726c1c3b", 0xd5}, {&(0x7f0000000500)="839c8f423aa487e93156672cb82e8d21d282335cbe833c1e6f878175356160ce4229d576927f7e697ff84ea5cc54e5293e9ed004e47bd2c69f9094b9b212924e88e540b78c0b94b7a13d162d84a81b955cc2c082fce52f50f8355657881b0ca0b47fb05ba42c6ab96da0d19627a506291d43bb0383ca0cb867d1a50d1c73fdae58b3ee11c2eede83aa4a806680daf8421cff94370ca3daa995", 0x99}, {&(0x7f00000005c0)="2f993472ef6ddf922c22c0d7d3355e36d36b22", 0x13}, {&(0x7f0000000600)="3b1f9ed8fcc2fb2876a6e93ca52f4ff11dd8786c7980bfb58f4808370f7cab64b6c7ab84d7bccaabf645c5e14cf6b65332c982e917bfb551459e8e5b26c1a349ef3fb2d7df96c62a990a6a04", 0x4c}, {&(0x7f0000000680)="fc4c067e9112e7a363eeab40cff08df00fa27912070bb8e21b5e785b37f267d2eafde4bfb3d5f24c03d0da39ea4319a772c54a4bb78e7f5034b0b5bc0e8471e5bbf6fdfb7795272f9217822cf2e31da64c03ec7fac9a2d4dc59f2869c2d7f5f498426586998c35541a6afc56e48a8bc42634ee074f1bbb3703b4d53704c564b8b7026a2882a0a03eaf", 0x89}, {&(0x7f0000000740)="47d2e68b0990d0c529d1fabab4930ca44d14c1ed338819f146da6df11743a7aa95deb315d8e7d2b0ad3affb36e8f0d9b50970e7126e36b73215dfb45df9748777c06424b89e387447f18a0acb98b0711955f10ee60e9596e2b2522a001777dbc1b017eb4fa8b8d0d550c0a011d1df41f5d92c760dd8f5cdc204d859febcd14558edb90bca7449bf9efb0f6408dfbf9c62f0680370abbd6a17d41d4a61f1bbe3f3732da13ac2fd0b201b53912813fc64d78c28308c4eef5b58fb94d69f85442e1bfd73053d525151007ccbd9a9caf53fc758c66b9358e3e910796cc", 0xdb}, {&(0x7f0000000840)="5857f6e4a97727f500e8c2b8fbbcd6909f5db7b3cdb4999dc66d86b89bb486a880291c2e030388bbe7e6fa483f30d368d1056e955acbccc11ddb5ae17338d0e117b5bfe37183aeb684ff2197d3a3486eccc2b7369233c6338cff1a67a79f8505b7b2a179b5522d29673680d9c5cdeaecb4bc742a5ff5399aa6752203c3ea2d1f0be209d77c0f8297f6fc49d4bb2c8814a616f18df0ec948db8b0cd2ce0406053f15f428f90149bfc2d34d8e248ae1591b651fbbd2a81da7fbd08737070abd0d50430d6abb2e5eed1675a78390c7f9c64e09f8c2de82e4676b2bac9c16b8a5820ce22743965cdf804a0cc95257f770202bf47", 0xf2}, {&(0x7f0000000940)="2da0dca4a622ef70218848f022ec037c765bafa1459dbf79e8e22e4e8f495eb793740bb4b4bdb405fe8db1ca8aa1d15a3f7ae4e87efb0509cf643b648fae8e13bff986b75e7b2278d2485595c4e88b3ba7cfb841ca76872f39d8f94bda8cb5d70a", 0x61}], 0x9}}, {{&(0x7f0000000a80)=@pppoe={0x18, 0x0, {0x0, @multicast, 'veth1_macvtap\x00'}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000b00)="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", 0x1000}], 0x1, &(0x7f0000001b40)=[@timestamping={{0x14, 0x1, 0x25, 0x8001}}, @timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}], 0x48}}], 0x2, 0x8000) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f00000002c0)={0x7, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}, {}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb], 0x2}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRES16=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) creat(&(0x7f0000000100)='./bus\x00', 0x0) (async) fcntl$setstatus(r3, 0x4, 0x46900) (async) open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (async) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) socket$phonet_pipe(0x23, 0x5, 0x2) (async) sendmmsg$sock(r7, &(0x7f0000001bc0)=[{{&(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e21, @empty}, 0x4, 0x1, 0x0, 0x1}}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000380)="c3b5e2b8d9309c74d4250f00e7b5b7661642308bbb7d572df793195569f387ed733fd08a57c31dacc8208e98952461123c3e2ed95e3b80a4039ca606042234a6ff5c6f7f2372b43dacaaef507d951303a0dc205e8e99bfae", 0x58}, {&(0x7f0000000400)="9486474d4dce2a5ee8ddb0dde1b366e31c360a488b3dcd3ac8ab168884ba3a3793488139be9765447fa3e879f21d80173fdc9b5aaf647c2cec40279730538385fe83e46fd2d092c99c1b39f2696b07ab262bf9d578c98c280072b485a2a77fa14be436cc8677562032be44385b43d223f34167ccaf80ce37a19e3a456c9c6e76a60824a37b4a23d61af71d484ef3711fe458e9980b1bef3790aa19ab33276a3ac8ed3dff60c7dbfae8acda45d3ce42026420343cf6733ed740ee1c7b2f6b4401beeaa820922b03c8abe1f06a1e130b5528726c1c3b", 0xd5}, {&(0x7f0000000500)="839c8f423aa487e93156672cb82e8d21d282335cbe833c1e6f878175356160ce4229d576927f7e697ff84ea5cc54e5293e9ed004e47bd2c69f9094b9b212924e88e540b78c0b94b7a13d162d84a81b955cc2c082fce52f50f8355657881b0ca0b47fb05ba42c6ab96da0d19627a506291d43bb0383ca0cb867d1a50d1c73fdae58b3ee11c2eede83aa4a806680daf8421cff94370ca3daa995", 0x99}, {&(0x7f00000005c0)="2f993472ef6ddf922c22c0d7d3355e36d36b22", 0x13}, {&(0x7f0000000600)="3b1f9ed8fcc2fb2876a6e93ca52f4ff11dd8786c7980bfb58f4808370f7cab64b6c7ab84d7bccaabf645c5e14cf6b65332c982e917bfb551459e8e5b26c1a349ef3fb2d7df96c62a990a6a04", 0x4c}, {&(0x7f0000000680)="fc4c067e9112e7a363eeab40cff08df00fa27912070bb8e21b5e785b37f267d2eafde4bfb3d5f24c03d0da39ea4319a772c54a4bb78e7f5034b0b5bc0e8471e5bbf6fdfb7795272f9217822cf2e31da64c03ec7fac9a2d4dc59f2869c2d7f5f498426586998c35541a6afc56e48a8bc42634ee074f1bbb3703b4d53704c564b8b7026a2882a0a03eaf", 0x89}, {&(0x7f0000000740)="47d2e68b0990d0c529d1fabab4930ca44d14c1ed338819f146da6df11743a7aa95deb315d8e7d2b0ad3affb36e8f0d9b50970e7126e36b73215dfb45df9748777c06424b89e387447f18a0acb98b0711955f10ee60e9596e2b2522a001777dbc1b017eb4fa8b8d0d550c0a011d1df41f5d92c760dd8f5cdc204d859febcd14558edb90bca7449bf9efb0f6408dfbf9c62f0680370abbd6a17d41d4a61f1bbe3f3732da13ac2fd0b201b53912813fc64d78c28308c4eef5b58fb94d69f85442e1bfd73053d525151007ccbd9a9caf53fc758c66b9358e3e910796cc", 0xdb}, {&(0x7f0000000840)="5857f6e4a97727f500e8c2b8fbbcd6909f5db7b3cdb4999dc66d86b89bb486a880291c2e030388bbe7e6fa483f30d368d1056e955acbccc11ddb5ae17338d0e117b5bfe37183aeb684ff2197d3a3486eccc2b7369233c6338cff1a67a79f8505b7b2a179b5522d29673680d9c5cdeaecb4bc742a5ff5399aa6752203c3ea2d1f0be209d77c0f8297f6fc49d4bb2c8814a616f18df0ec948db8b0cd2ce0406053f15f428f90149bfc2d34d8e248ae1591b651fbbd2a81da7fbd08737070abd0d50430d6abb2e5eed1675a78390c7f9c64e09f8c2de82e4676b2bac9c16b8a5820ce22743965cdf804a0cc95257f770202bf47", 0xf2}, {&(0x7f0000000940)="2da0dca4a622ef70218848f022ec037c765bafa1459dbf79e8e22e4e8f495eb793740bb4b4bdb405fe8db1ca8aa1d15a3f7ae4e87efb0509cf643b648fae8e13bff986b75e7b2278d2485595c4e88b3ba7cfb841ca76872f39d8f94bda8cb5d70a", 0x61}], 0x9}}, {{&(0x7f0000000a80)=@pppoe={0x18, 0x0, {0x0, @multicast, 'veth1_macvtap\x00'}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000b00)="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", 0x1000}], 0x1, &(0x7f0000001b40)=[@timestamping={{0x14, 0x1, 0x25, 0x8001}}, @timestamping={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}], 0x48}}], 0x2, 0x8000) (async) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f00000002c0)={0x7, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}, {}]}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb], 0x2}) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) 22:56:26 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000501090024da62fd474543c310751b74eb88000100000100000001ff000000a4190b00000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90], 0x1, 0x80000}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x20, 0x8, 0xfb, 0x7e, 0x9, 0x0, 0x2, 0x0, 0x0, 0x2], 0x10000}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 814.385540][ T28] audit: type=1800 audit(1654383385.986:478): pid=11232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:26 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 64) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001af459d0000fd474543c310751b74eb88000100000100000081ff0000c699ed060000000000001d17c99bf6b5b3f0163909b44f380679a6b38fe373193f736def16b31ac7f831a8638e534c6ec6b74eddea901b65517e8898849fdf0ce4e3642ba53a60d5cae1e4c830"]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00', 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000180)={0x10000, 0x10000, 0x7, 0x64, 0x7ff}) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32) r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0) (rerun: 32) fcntl$setstatus(r3, 0x4, 0x46900) (async) r4 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r4, 0x200002) (async) sendfile(r3, r4, 0x0, 0x80001d00c0d2) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, 0x0) (async) tee(r1, 0xffffffffffffffff, 0x7ff, 0x8) (async, rerun: 64) ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f00000001c0)={0x7980000000000000, 0xf000, 0x9, 0x6, 0x13}) (rerun: 64) 22:56:26 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x120000, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f00000002c0)="3e0f32b8010000000f01c10f01cf66b854008ec0450f2310c744240051000000c744240200000000ff1c24f3a6b805000000b9bd0e00000f01d9c4226996458df3410fc77300", 0x46}], 0x1, 0x10, &(0x7f0000000380)=[@cr0={0x0, 0x8}, @flags={0x3, 0x148002}], 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000440)) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) splice(r4, &(0x7f0000000480), r0, &(0x7f0000000400)=0x1, 0x0, 0x4) 22:56:26 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x0, 0x0, 0x0, 0x0, 0x0) 22:56:26 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000501090024da62fd474543c310751b74eb88000100000100000001ff000000a4190b00000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90], 0x1, 0x80000}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x20, 0x8, 0xfb, 0x7e, 0x9, 0x0, 0x2, 0x0, 0x0, 0x2], 0x10000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000501090024da62fd474543c310751b74eb88000100000100000001ff000000a4190b00000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f00000001c0)=[0xd90], 0x1, 0x80000}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x20, 0x8, 0xfb, 0x7e, 0x9, 0x0, 0x2, 0x0, 0x0, 0x2], 0x10000}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 22:56:26 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x9d, 0x3fffff) 22:56:26 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x75, 0x3fffff) 22:56:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100004206914c000000c80b0100000000001d17c99bf6b5b3d84a6c3bb169142ef3c864ba30e08e270fb1f35a924e3e68c324777a11607ee7a997e4ebf8de5cd3b08c5e95d68a59597659e49ea8970b77f8e7a9d1b2f2d630c2e38bd09686533d55af61041245501b42a01e5fb39d30b5fb054ca3c10e9f"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000002c0)={[0x7, 0x100, 0x9, 0x80000000, 0x40, 0xffffffffffffffff, 0x0, 0x88, 0x7, 0x180000000000000, 0x40, 0x3, 0xeff9, 0x8, 0x100000001, 0xfffffffffffffff8], 0x5000}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000001c0)={0x90, 0x5, 0x3, 0x0, 0x0, 0x5, 0x80, 0xf9, 0x7f, 0x6, 0x40, 0xe8, 0x0, 0x2, 0x7, 0x7f, 0xff, 0xb9, 0x8, '\x00', 0x5, 0xffffffffffffff18}) 22:56:26 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x76, 0x3fffff) 22:56:26 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x77, 0x3fffff) 22:56:26 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x9e, 0x3fffff) 22:56:26 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x120000, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f00000002c0)="3e0f32b8010000000f01c10f01cf66b854008ec0450f2310c744240051000000c744240200000000ff1c24f3a6b805000000b9bd0e00000f01d9c4226996458df3410fc77300", 0x46}], 0x1, 0x10, &(0x7f0000000380)=[@cr0={0x0, 0x8}, @flags={0x3, 0x148002}], 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000440)) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) splice(r4, &(0x7f0000000480), r0, &(0x7f0000000400)=0x1, 0x0, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x120000, 0x0) (async) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f00000002c0)="3e0f32b8010000000f01c10f01cf66b854008ec0450f2310c744240051000000c744240200000000ff1c24f3a6b805000000b9bd0e00000f01d9c4226996458df3410fc77300", 0x46}], 0x1, 0x10, &(0x7f0000000380)=[@cr0={0x0, 0x8}, @flags={0x3, 0x148002}], 0x2) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000440)) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) splice(r4, &(0x7f0000000480), r0, &(0x7f0000000400)=0x1, 0x0, 0x4) (async) 22:56:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100004206914c000000c80b0100000000001d17c99bf6b5b3d84a6c3bb169142ef3c864ba30e08e270fb1f35a924e3e68c324777a11607ee7a997e4ebf8de5cd3b08c5e95d68a59597659e49ea8970b77f8e7a9d1b2f2d630c2e38bd09686533d55af61041245501b42a01e5fb39d30b5fb054ca3c10e9f"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000002c0)={[0x7, 0x100, 0x9, 0x80000000, 0x40, 0xffffffffffffffff, 0x0, 0x88, 0x7, 0x180000000000000, 0x40, 0x3, 0xeff9, 0x8, 0x100000001, 0xfffffffffffffff8], 0x5000}) (async) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000001c0)={0x90, 0x5, 0x3, 0x0, 0x0, 0x5, 0x80, 0xf9, 0x7f, 0x6, 0x40, 0xe8, 0x0, 0x2, 0x7, 0x7f, 0xff, 0xb9, 0x8, '\x00', 0x5, 0xffffffffffffff18}) 22:56:26 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="03bc4600000000000001afca8f5f81ff010000d2c58468e628ce24efd37bacc4172512631699da62fd474543c310751b74eb88000000000100000001ff"]) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000002c0)={[0x5, 0x2000000000003ff, 0x5, 0x1, 0x3a, 0x8000, 0x9f0c, 0x9, 0x5, 0x81, 0x1ff, 0x3f, 0x7, 0x0, 0x7, 0x7], 0x10000, 0x5000}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) fallocate(r3, 0x60, 0x101, 0x1c0000) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) sendfile(r5, r6, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000380)={0x7, 0x0, [{0x9b0, 0x0, 0x100000001}, {0xb0c, 0x0, 0x7fff}, {0x80a, 0x0, 0x3ff}, {0x948, 0x0, 0x4}, {0xb02, 0x0, 0x1}, {0x582, 0x0, 0xfffffffffffffffe}, {0x2bb, 0x0, 0xdb8000000000000}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:26 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x78, 0x3fffff) [ 815.398592][ T28] audit: type=1800 audit(1654383387.006:479): pid=11294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:27 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100004206914c000000c80b0100000000001d17c99bf6b5b3d84a6c3bb169142ef3c864ba30e08e270fb1f35a924e3e68c324777a11607ee7a997e4ebf8de5cd3b08c5e95d68a59597659e49ea8970b77f8e7a9d1b2f2d630c2e38bd09686533d55af61041245501b42a01e5fb39d30b5fb054ca3c10e9f"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000002c0)={[0x7, 0x100, 0x9, 0x80000000, 0x40, 0xffffffffffffffff, 0x0, 0x88, 0x7, 0x180000000000000, 0x40, 0x3, 0xeff9, 0x8, 0x100000001, 0xfffffffffffffff8], 0x5000}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000001c0)={0x90, 0x5, 0x3, 0x0, 0x0, 0x5, 0x80, 0xf9, 0x7f, 0x6, 0x40, 0xe8, 0x0, 0x2, 0x7, 0x7f, 0xff, 0xb9, 0x8, '\x00', 0x5, 0xffffffffffffff18}) 22:56:27 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x120000, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f00000002c0)="3e0f32b8010000000f01c10f01cf66b854008ec0450f2310c744240051000000c744240200000000ff1c24f3a6b805000000b9bd0e00000f01d9c4226996458df3410fc77300", 0x46}], 0x1, 0x10, &(0x7f0000000380)=[@cr0={0x0, 0x8}, @flags={0x3, 0x148002}], 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000440)) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) splice(r4, &(0x7f0000000480), r0, &(0x7f0000000400)=0x1, 0x0, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x120000, 0x0) (async) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f00000002c0)="3e0f32b8010000000f01c10f01cf66b854008ec0450f2310c744240051000000c744240200000000ff1c24f3a6b805000000b9bd0e00000f01d9c4226996458df3410fc77300", 0x46}], 0x1, 0x10, &(0x7f0000000380)=[@cr0={0x0, 0x8}, @flags={0x3, 0x148002}], 0x2) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000440)) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) splice(r4, &(0x7f0000000480), r0, &(0x7f0000000400)=0x1, 0x0, 0x4) (async) 22:56:27 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) io_uring_enter(r2, 0x0, 0x0, 0x0, 0x0, 0x0) 22:56:27 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x9f, 0x3fffff) 22:56:27 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x79, 0x3fffff) 22:56:27 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="03bc4600000000000001afca8f5f81ff010000d2c58468e628ce24efd37bacc4172512631699da62fd474543c310751b74eb88000000000100000001ff"]) (async) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000002c0)={[0x5, 0x2000000000003ff, 0x5, 0x1, 0x3a, 0x8000, 0x9f0c, 0x9, 0x5, 0x81, 0x1ff, 0x3f, 0x7, 0x0, 0x7, 0x7], 0x10000, 0x5000}) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) fallocate(r3, 0x60, 0x101, 0x1c0000) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) (async) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) sendfile(r5, r6, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000380)={0x7, 0x0, [{0x9b0, 0x0, 0x100000001}, {0xb0c, 0x0, 0x7fff}, {0x80a, 0x0, 0x3ff}, {0x948, 0x0, 0x4}, {0xb02, 0x0, 0x1}, {0x582, 0x0, 0xfffffffffffffffe}, {0x2bb, 0x0, 0xdb8000000000000}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:27 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb, 0x0, 0x0, 0x40000, 0x6]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r3, 0x89e7, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f00000002c0)={0x0, 0x0, "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", "ad7d499f7a31d9482d040d0022379e32a31bb9b17c35c717fd43eed1f27bdfb1cdedb64e61cb70d79da581ca1f3d83a297511a5c9657ab82f42ee5f2ccd73efd626d5b887375a55e1c543c9f1b0032ce4c98b08c9c72a673c370a5fd391cb2676646d5ee8576d8f9f079f9df2609b53faf3c3d40a7ede337bb0d4b42ca9a40e546d1ad18c3652e9a535847a9eb46435fed6e45b5bfb5165f80da99fb05bf972ba4a1e01af8c993ab397e3d11e03602febe4508f8783835c90c74b72a7d325a237acae7d250d16ebc27a403d2e8243fb59929571277329fdf426b7f2432523b95de7737ed3275027456f361917dda583e3cafd7524a1843bc0beea1237fb66024cc5274ee5c9d8cb206529ad59dee252763a5b317b8f4eccefbd01dec2aefa9590e6d7c3cc298169cf30001ad6cac567519943cce9c850fc446ebd9921e9bd41d41ef146b98399c6fbf5c7e23daac33bed76850610a7428ebcb79bec1d2c72303bc198b32b3660c2d60f5b98c974c3cdb60b4a0d08f0a8a735a33f1a44709d1948d58abf6c70cecc763fab65652dd369ef1bade1af37999ab07bdfb88255372802790d2ab0a3824dabfe091253804f98b0ba2625b4e8661c5287a16c5026e719c1a02f5cfd8aad09abeb5a9cef917dfddab8b21b4984e167ce1fbf141dc85477a58e85ae66c8886bd143a3c0794e6620617dc587b395dfb26c7f0d3c502fc9b360cbe5086b8ee5195d0f07b1a86d71f52ed5b38333f5ab585018383a9ebd74fa0185eb8322aa98a223aaa82a2485a503aa9e2179d9211f962680f71f69faf6f0435ca1b2756031203875468235ca10da84e6364343f43721d8442c15e3efb15e03b2008cb92e3bc56f0d879e1f971f9c71f76cb07687b7d09704ec6ac0876fe09c91602019cffe12718dbfd10e2cbac68e6a8b5424e738ee0f548ed822e91db990c4d42518f99d7b500435c17895822be18d81d6e1db1abe84b64ddcb42eb6b5fd1e091e7d1267f523f215a3cceb8ad21d858439cbcbbe28ca709f773683afc25af58a4e519c6e869d529a5dc881fe434e89d9d1a9b82e70698ad3541c62b1207a7f7f75044cd0935a40502b3fb04fa5a7b14b7c9beedb85e0a871af94ce0fb9a1dd42e8804ad17dc2904556bce2b8de9ca6f712f65ca89cc8eb9cfb4f483f02fb1e1cf4a1294864f55caa0efd1f8eeacb40d1d65409ac01df12978e8dabcc5d9fbc352c0d2ccf578701e175e4c63227885ee38c0bf7fb2b8260ec5a3d0a2ca07349cb28d9f7f18710972fc32585eeb179e06e49f87acc42813f16d1bacb6e8ed57fb134d7beae24e3c746cc82f614fb2015cae4cc6b884a32fbf052edead5cdfd8a30ad1d529de0cdd05f175177ec6cc1471b120f15b99da8630c5a245a04d3b7a834f0aa8a88345875d604a519ed8eedf8d73985eb372ef26d0b2cb30fa9f0cc5bb48a852c05da7e729d36e46c0b61ea9095345d7a69331b0baca05216da1155c70e38f748f877613b35514102cbea7263e88c6d71b2af8d81b4632f015a5e5d12556ddb7eb879d06cac0639a5789070b0a5d09a70ebb4d402890a2eb6d2efa6a0493d5549130900e6d43ffc0fa0eb23534f6911a8751f6fbf3c803369c043bd63d21636a4aa2ec63a8b00dfe20dd74ea4b39449f99e181807b699ce2c86321e1ba2e3ba299af4b7d7c15c9bdb95f3751bc2f5291ee086690fdd2aac444418bd309274130820e757ba9a0fea0d8747b55a3ab724d52334f5ba4b1f9eb15888fe317734e1fd383b2b58341a76df20834e32fc69d7d3789798e74e08fdb2c38e53b22de03313668723383e73b2352b8b8e4e3296659fda8a90cc5f41559b12088ff3bf1246b57f8d3520af798bdcf8f796da00d9f4b561c2f800b27be4e0d526d00ca24a28dc084ff217df8cf52d54a8e826f3ff2609ff21f4b3c0c878fad5e31ff035ba1d7b044605242dc8ba7e5c7aa0f22ce52c30cf03a17286690e0bb942c8763bdfb3f32647bfb515e962ec386cfab486d862df41630a6325ca590ee4f8f56b9964cd925e8374b216a3a94d174172eff1f6ed662b7a174f564f08683935bfaa37c011e86667884a85c1f0ee7bdc7790bcae7c1e33b3583414d70a16ae0a81707304af265c43cc157d70a58d72d2795c8b6fafae3fb97a4229fed5e56df602ff77d41885f85c6edfa3d0ff12bdf3941ea6fa4bcb6d9973139b2c6e97f31915beeb4fe90370986aefd3a0c941f7e34fab05be28005317f0418ac3d390a0b09fdbcaab548ce9ca38ce155785c27fb32fa7363825500b0aad0d34828c9f2e11049cb1891b2bd47d9491faa524846cb083a524932486be2f41a1d48fef948fb241bf2b142e24b8303ed6d3c77bc9e62ba6b102a9416692a3c9641834facd4a958f402252471b4921dfa6796f7fc19f55b99b3c33d5a94722960dbc355a7c3cbdf1cc2d4740006f3c50eb8f425ea9536c88ff1349789707d626b4cab93bc122293059b6f353163d09ede344e4b907edfcaf4504cd0e3d3e645b72bf3bad2bbf80ee1c3045994a92f7813b9ec5da7bd8d311c5f490e2f90c616c4c0a5025433b6b243692ca027cb2c5540d137529f5dfa873406610151c387642a60f726221daf614b6efe7ab504b7e70345c01a2f413eef39c35a28edd2482b186d7030a5940c3754d97794b8be73e32db70f6b7b82aac5f37232718f5a66539f3d35030468cfca432c76b58a413e34fe12b605ce89c269c42992fd99fe7a030e142b8b840f0b62858fb3b8549a694cb98e10d525f6622bc734f485c464d4dd5907ee25a45b4bf45ff4559aee9ff4c56c3c676b3b6e6eda01ea149881f0410aee7548d5e17fc1bd2c4cec74c9edeb78b3cae3da5642e2cedb72219c2a479476d03ad9df39e00d36848a9d25f5cc0b31662165888b47d3270d0132dabc4b4aa36e78aa72e03a1887d49961689596084abe20e0b3e911fa30be0e50ed836201af968e41d9bd7f06118e6551536616ff48bc026a50fe4f4444290269f95eb19b5b09a2331e700fa26ee6b705e28873983525567c625b84ce4d21c37e344a9255a41cdf7ef8ebad1306b4a871c2a999e11551da4ac923829dc97a9e0ef7babbc0424caa50ef0fd993c0256fdfdbcc36a107e4638d88b2804106d6e81108b80445392001b7dac80607abf7e0c6a6430b3d1dfd0459376c6f638646a8279d06d0930fe2b43a61b4369389cdb32df6e304f42e772bed057343392cce56e003ddf42982ba371a8faeff9ad7d001979351bc658fdd6632d6f92f3ca7e948c8f8ba68f66b0d2a770c4b5727efe9e27533e1af10595b639d94071603a7780930ead912f873976ab39cc60ca5ffcb2d4481515300dfe4e5d9d2579c49fb62da3535274d5bb773b0bc3d0bf65e25082d5bfda28d29ae15f600dadbfe40bfcd30c635724e895df6cb58d095123712b74d63a6ff76e7967654311d55e534480d16a9c38530fe0b7548006ce6d2e3e9387919c4fb72a2c3880cc57f304dc8cd848098ccad1461ba745594331dbeb795df4e7ccac72be873f12f6d335d72ccfb1e29515601aa5fdd5b32085d9f3b3aa7b2bd5db1de4404912298b908ea779f57b25fb0c7f55d070243a2b671147fa6bfbc810f359e4640e210cb0d3f86102b620bc4875cf7259abe96cc8cd73144249c9b3ee3b697af2d63a77496b37bb93228dafe7af62322b9fecfa4387e13c9d42ff3657dfad7c48bac3e7a440adea8da8172edc96fc9e5c9d119bdc513b365d2ce85ff002b02327fc2d9d9384785de1e6c263b081748ed319726bf68e015f38615582e985bcb7b99487dd67e41e28f42f521073be60800267e24b82def9d5cf7c3ad5e6910da8479bb0ee098febb2b170deba172777597ceac66bc2a358fd3bbae848a62203f464a8710f1b7f0b8eb0cd9595e82c75c1cd005526f2758e1717881a38fecfbefe2bfb0b7a5fc2be03c05b446c1b5186d9f87513c7287c9e17d37c5c7913a7cfd9765ec66d12b68f256857da7ce89c83ae37f60e4c8a6d5458dbc2342d26bca67354397c3ef03f84695ca6b44c3dce9872abf1017e1d64aea0f43ffdc07f45dfa1851312abca9acc24df6a286d4695bee014645e4580af30a787fab820a801b2b2f74a7384c94be42f00cbc164ef7bb93f89d8ced50e6849eacce084f9c6ee9c659478cfac45470f7189bfe1f8819726ec4ef31b23172444d878f0d2266898c3a09df0a63fe8b858be7575a9ee394915e363ced6bca1ea4f51a50203b469e15059f45e4a266960633d09289df4bbfd56fc8a3405268c24c02effec327bc04813d44b34759848d7d3e16b985974c53712beeee35f9b712e3fec4263d2e6085b18b0f620f5e01f2b817aa4bbc455f5ee8905f51d942fa054827a9ec65cb249950f32257719052fb03481288da4d94286d74c6129fcacb4da333803d7c29a274bb2d8cbbe1a9d1eac0c18967f65f8ccfeabb021a94d4e02ebe2b690cb223960a07a12ee45711f297900435da8a7009667841c6ed0a73c423c602678ca8fbf9058e6ac15b45018303613ed0d5a806c992920c8058163133436739cb488f649d82f136f9712dacf73b51ed280802faecd5527104dbf9c829113eea5eb5dd599e0e96c4ddf815c6a312a4831386775c435ee70336376ca40b46acfabae6eab878a68b5008102117d1a9a4dc44e420cb62a30d8264c2d8ff86732ad936d967e4015d2df6a5a9fc1591b6ce0e16d111dea1d8fb4859bcc8cb8937818cd359cf46a8809d2edae661caf9ebbd34348345c34debf56dc427a9e0b7abdd74c1932b6a398f184f3477c945c6f62de03935833ddebae25ab4ddf853319acc3ef94f2e889a09cd8120ef8066ff492014b1e6b481ad5e45eb218fc81fb7c8dd1dc0591d5ddcd4ceae845eb0fa77bd6a5bcdd2d06cd7e38cb929d27327d7cdee7081d0b2b0fb278daa5db282d3dadf05b52f6dcf64cdf870f27d3f5685b6ea46c96cd48b0c7b080181e6ab13455ce7542ff71bcc2b5159a18f616ae565ac27b151521bd513ca2c25404ac33231f87c3ec496b90573d1ea15503f3ac3528a16f72b6c52078654efde17626e26d68b0cff113190774a7893bb63329214c73436abe85e360c587cb7dd9b8e3e5f2e628f6b521e5c381b067def66d21b39c98c46edac32f8ab02c8cf2939210b812e6e35e9f32d472b78beabbb073e69708157a9f5f1067664e3c39045f1bcc43cf946eab27689b5958ee6829a2cd2fa317b6b4771ca0016b2d81afe516742921f1a1bba10f0a69ba7b185494895c024287c471af0ea9849fb72e1931018740b7b4411988f77d7782f3e7fe5e390c5f1876301990a6fc1e291656ed59a9fd6d450481d46ee7ca4f7449472f449c76ff11fd76822eabbbba016c630e0c463eba76c68690d658226fa22"}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f00000012c0)={{r4, 0x1a0d, 0x3, 0x7, 0x1, 0x3f, 0x3b1, 0x4, 0x7, 0x0, 0x2f8, 0x7c89, 0x7, 0x0, 0x9}, 0x8, [0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:27 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7a, 0x3fffff) 22:56:27 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa0, 0x3fffff) [ 816.021189][ T28] audit: type=1800 audit(1654383387.626:480): pid=11343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1183 res=0 errno=0 22:56:27 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$pppl2tp(r0, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @rand_addr=0x64010100}, 0x0, 0x4, 0x1}}, 0x2e) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:27 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa1, 0x3fffff) 22:56:27 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="03bc4600000000000001afca8f5f81ff010000d2c58468e628ce24efd37bacc4172512631699da62fd474543c310751b74eb88000000000100000001ff"]) (async) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000002c0)={[0x5, 0x2000000000003ff, 0x5, 0x1, 0x3a, 0x8000, 0x9f0c, 0x9, 0x5, 0x81, 0x1ff, 0x3f, 0x7, 0x0, 0x7, 0x7], 0x10000, 0x5000}) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) fallocate(r3, 0x60, 0x101, 0x1c0000) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) (async) sendfile(r5, r6, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000380)={0x7, 0x0, [{0x9b0, 0x0, 0x100000001}, {0xb0c, 0x0, 0x7fff}, {0x80a, 0x0, 0x3ff}, {0x948, 0x0, 0x4}, {0xb02, 0x0, 0x1}, {0x582, 0x0, 0xfffffffffffffffe}, {0x2bb, 0x0, 0xdb8000000000000}]}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:27 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb, 0x0, 0x0, 0x40000, 0x6]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r3, 0x89e7, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f00000002c0)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f00000012c0)={{r4, 0x1a0d, 0x3, 0x7, 0x1, 0x3f, 0x3b1, 0x4, 0x7, 0x0, 0x2f8, 0x7c89, 0x7, 0x0, 0x9}, 0x8, [0x0]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 816.356565][ T28] audit: type=1800 audit(1654383387.966:481): pid=11363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1169 res=0 errno=0 22:56:28 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0xfb, 0x0, 0x0, 0x40000, 0x6]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r3, 0x89e7, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f00000002c0)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r3, 0xc0709411, &(0x7f00000012c0)={{r4, 0x1a0d, 0x3, 0x7, 0x1, 0x3f, 0x3b1, 0x4, 0x7, 0x0, 0x2f8, 0x7c89, 0x7, 0x0, 0x9}, 0x8, [0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:28 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa2, 0x3fffff) 22:56:28 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000001ff000000ffffffffffffffffb5b300006d821ab39409dbb9afba32afd156c326435d914fa6e2b37130b6ce35b29c3d9ab91144ec5ab120fef402d85c515758e8212eff6a4cb55ead550874addf9a4defc1926ffdbbfb9f24fc856da42c5aa9482459ea16e550d0c44367efd670cb9313972f9020ace980dc0bd52fd1de4bc1a071fd27d600"/176]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000380)="36660f3882bf00280000440f35c74424004b000000c7442402f79879b2c7442406000000000f011424b8010000000f01c10f894e29000066baf80cb832847e85ef66bafc0c66ed0fc79e00100000c7442400079f0000c744240200a00000c7442406000000000f011c240f01f8c4e311411a00", 0x73}], 0x1, 0x8, &(0x7f0000000180)=[@dstype0={0x6, 0x3}], 0x1) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) sendfile(r5, r6, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000440)=[@text64={0x40, &(0x7f0000000400)="f3420f58eb6666430fedef420f73f2028fc9f812cd0f87b573465e0f7985955aa7acdeee0f0926470fc7b90010000066660f3a142006", 0x36}], 0x1, 0x3c, &(0x7f0000000480)=[@cr0={0x0, 0x20000030}, @cr4={0x1, 0x8}], 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:28 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$pppl2tp(r0, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @rand_addr=0x64010100}, 0x0, 0x4, 0x1}}, 0x2e) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async) connect$pppl2tp(r0, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @rand_addr=0x64010100}, 0x0, 0x4, 0x1}}, 0x2e) (async) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) 22:56:28 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7b, 0x3fffff) 22:56:28 executing program 0: pipe2(0x0, 0x1800004) 22:56:28 executing program 0: syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_connect(0x0, 0x3ad, &(0x7f0000004e40)={{0x12, 0x1, 0x310, 0x82, 0x33, 0x66, 0x10, 0x4b4, 0x6570, 0x1378, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x39b, 0x2, 0x8, 0xfc, 0x30, 0x1, [{{0x9, 0x4, 0x0, 0x8, 0xe, 0x1b, 0x88, 0x73, 0xf6, [], [{{0x9, 0x5, 0x4, 0x0, 0x0, 0x0, 0x9, 0x20}}, {{0x9, 0x5, 0x0, 0x0, 0x1ef, 0x0, 0x0, 0x40}}, {{0x9, 0x5, 0xc, 0x10, 0x400, 0x1, 0x8, 0x2, [@generic={0xb6, 0xc, "2cd71caab7e051df01559606b57c568ddbe4a18b8a050ab3dc72fa28a160c07f93d0118445d26929b61d1db5b2f57c6a3f3d3b253cd1cd50c5a3a0287fa287c776ac2cfe27f74dd4261860d586cf36402e202e404a0cd1a2638f0c46046ebcc2041e715368cf7c07c462f2c78e84c033fb53d707a31d6a4c2cd69ed45063328e0e56b0995cb6d064457e5c98261c8386efb9033f8c2e571dce6a429badd01e6fe10cccbda3739ce1ff27e56cbbfa3976b0f4d4fa"}]}}, {{0x9, 0x5, 0x0, 0x2, 0x3ff, 0x0, 0x7, 0x7}}, {{0x9, 0x5, 0x2, 0x4, 0x0, 0xf9, 0xb, 0x26}}, {{0x9, 0x5, 0xf, 0x0, 0x410, 0x6, 0x0, 0x20, [@generic={0xb1, 0x23, "b7cd6147bd5473973e59a1af95bca5635bf0adb33f053bced23aba0c867ede8e6dbf20ac9c836de7c934726d6a047ba8310676479d08224f9dd9684781bec596c77d99971dcc3080a83b141f08f3d3883004d182d263e10714cd12ca6177525b70a8e51d9185487fe4270f76a36c96a3062fad100a886dea79dcda82c242f8e9ba8f9d0fc22dadcdb93c20f5f8d16db362940b67921163993d3c00a828bad8c465bec12cc96e8a0dae36c5e4b195d3"}]}}, {{0x9, 0x5, 0x80, 0x10, 0x8, 0x2, 0x5, 0x3}}, {{0x9, 0x5, 0xf, 0x0, 0x20, 0x0, 0x4, 0x0, [@generic={0x1e, 0x23, "e01807fca3e90b9e69d20ea6df3ee2ab578986a4eab048135e43be80"}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x8, 0x457}]}}, {{0x9, 0x5, 0x5, 0x10, 0x3ff, 0x3, 0x0, 0x2}}, {{0x9, 0x5, 0x9, 0x0, 0x0, 0x3}}, {{0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{0x9, 0x5, 0xe, 0x0, 0x40, 0x0, 0x1, 0x6}}, {{0x9, 0x5, 0x80, 0x10, 0x20, 0x40, 0x0, 0x1, [@generic={0x2}]}}, {{0x9, 0x5, 0xe, 0x0, 0x20, 0x8, 0x20, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x1, 0x5}, @generic={0x2, 0xa}]}}]}}, {{0x9, 0x4, 0x77, 0x20, 0x7, 0xff, 0xff, 0xff, 0x3, [], [{{0x9, 0x5, 0xe, 0x0, 0x200, 0x6, 0x2, 0x4, [@generic={0x22, 0x4, "a66a35088f9539f48c7e9a2940803943af27d6f8a17be392d840f8fa03694029"}]}}, {{0x9, 0x5, 0x0, 0x1, 0x200, 0x6, 0x9, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x8, 0x7f}, @generic={0x2, 0x31}]}}, {{0x9, 0x5, 0xc, 0x0, 0x0, 0xfa, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x0, 0x2}]}}, {{0x9, 0x5, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, [@generic={0x40, 0x21, "4e5d41542a67f8c62e6d23ad97a1b696ab7d8cf5dde3659a3123f0127d7a5456ffef2043c052de28adc4cbc1b0217326be9c16fc6c3767cba78ce340ff85"}, @generic={0xba, 0x31, "0aa214e35d216fceb15113e722ea18cfce6bb15581735b216280a69618bcf7cddfd482694f2b3ab6174a3e6b09b519bf81d68fd1f7c37a88787a869a4409b8a4608980ccfc6140b3d05bea04dfc9c798f787d6074e1598f6b666a5274cf2d8fb98651d5e5a6ed4eeb9d332b2ca8cc14378184e05ffd56d4ca2958f1fabfc740ae72911ddd352dffd0490828ae18bfc3775d8f58228d7e3a84d5d9a10a16950487453f9963767cacd7ee6e57d60b781660fcdc306ef46c9d6"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x0, 0xdb, 0x8, 0x3f}}, {{0x9, 0x5, 0x0, 0x10, 0x8, 0x80, 0x0, 0x9}}, {{0x9, 0x5, 0x0, 0xc, 0x0, 0x0, 0x1, 0x1}}]}}]}}]}}, &(0x7f0000005a00)={0xa, &(0x7f0000005580)={0xa, 0x6, 0x300, 0x0, 0x0, 0x5e}, 0x14f, &(0x7f00000055c0)={0x5, 0xf, 0x14f, 0x5, [@generic={0x32, 0x10, 0xa, "56f8eb19178ce2b1f13a571a9db8f3aface44e7914af1ad6c3c273d33b20e4ad63ca9c9adccfc16afb3ff3833cac44"}, @generic={0xeb, 0x10, 0x2, "66a3f0a1aa922c78e93eb9724cee408d8403c7cf9e63c484065b6ccbe0a3c92789fce7dec00f658ea6da32ce81b50230a1bbada71cb41088c7c695c0f1bfc6ec8e35ab1283faca493bd5e6437bc223d92e753ef71676e82bbef5495d451e0ec92324b2f9bd67a1b5dc247d72599fc5202191a6a1a0109ce237a2ec17f5182289c845d0dcd97995eda5c380ecdf26658f2fa1ae1b90095a42e559c5eb43fe093a4668983f1b6ba77fd272be4625c66eb5408da2ea4d9356adbe2cc0f1b2e65b531168d4e297df948da8f72add13366269535e44949f540cc0c3601f4599b936ff0640c3142d0bd2ee"}, @wireless={0xb, 0x10, 0x1, 0xc, 0x13, 0x0, 0x3, 0x2, 0x8}, @ssp_cap={0x18, 0x10, 0xa, 0x7f, 0x3, 0xc6, 0x0, 0x0, [0xcf, 0x0, 0xc0cf]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x3, 0x9e, 0xca57}]}, 0x1, [{0x0, 0x0}]}) 22:56:28 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46900) r1 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) linkat(0xffffffffffffffff, &(0x7f00000001c0)='./bus\x00', r2, &(0x7f0000000200)='./bus\x00', 0x0) ftruncate(r1, 0x200002) sendfile(r0, r1, 0x0, 0x80001d00c0d2) ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) dup(0xffffffffffffffff) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:28 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$pppl2tp(r0, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @rand_addr=0x64010100}, 0x0, 0x4, 0x1}}, 0x2e) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:28 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7c, 0x3fffff) 22:56:28 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa3, 0x3fffff) 22:56:28 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r3, 0x89e7, 0x0) ioctl$BTRFS_IOC_SEND(r3, 0x40489426, &(0x7f00000002c0)={{r0}, 0x5, &(0x7f00000001c0)=[0x2, 0x7, 0xffffffffffffffff, 0x100, 0x0], 0xffffffff, 0x8}) [ 817.045959][ T14] usb 1-1: new high-speed USB device number 9 using dummy_hcd 22:56:28 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa4, 0x3fffff) 22:56:28 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7d, 0x3fffff) 22:56:28 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000001ff000000ffffffffffffffffb5b300006d821ab39409dbb9afba32afd156c326435d914fa6e2b37130b6ce35b29c3d9ab91144ec5ab120fef402d85c515758e8212eff6a4cb55ead550874addf9a4defc1926ffdbbfb9f24fc856da42c5aa9482459ea16e550d0c44367efd670cb9313972f9020ace980dc0bd52fd1de4bc1a071fd27d600"/176]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000380)="36660f3882bf00280000440f35c74424004b000000c7442402f79879b2c7442406000000000f011424b8010000000f01c10f894e29000066baf80cb832847e85ef66bafc0c66ed0fc79e00100000c7442400079f0000c744240200a00000c7442406000000000f011c240f01f8c4e311411a00", 0x73}], 0x1, 0x8, &(0x7f0000000180)=[@dstype0={0x6, 0x3}], 0x1) (async, rerun: 64) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) (rerun: 64) fcntl$setstatus(r5, 0x4, 0x46900) (async, rerun: 64) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) (rerun: 64) ftruncate(r6, 0x200002) (async) sendfile(r5, r6, 0x0, 0x80001d00c0d2) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000440)=[@text64={0x40, &(0x7f0000000400)="f3420f58eb6666430fedef420f73f2028fc9f812cd0f87b573465e0f7985955aa7acdeee0f0926470fc7b90010000066660f3a142006", 0x36}], 0x1, 0x3c, &(0x7f0000000480)=[@cr0={0x0, 0x20000030}, @cr4={0x1, 0x8}], 0x2) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:28 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x46900) r1 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) (async) linkat(0xffffffffffffffff, &(0x7f00000001c0)='./bus\x00', r2, &(0x7f0000000200)='./bus\x00', 0x0) (async) ftruncate(r1, 0x200002) sendfile(r0, r1, 0x0, 0x80001d00c0d2) (async) ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) dup(0xffffffffffffffff) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:28 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r3, 0x89e7, 0x0) (async) ioctl$BTRFS_IOC_SEND(r3, 0x40489426, &(0x7f00000002c0)={{r0}, 0x5, &(0x7f00000001c0)=[0x2, 0x7, 0xffffffffffffffff, 0x100, 0x0], 0xffffffff, 0x8}) [ 817.326257][ T14] usb 1-1: Using ep0 maxpacket: 16 22:56:28 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x7e, 0x3fffff) [ 817.526040][ T14] usb 1-1: config 8 has an invalid interface number: 119 but max is 1 [ 817.526073][ T14] usb 1-1: config 8 has an invalid interface number: 166 but max is 1 [ 817.526106][ T14] usb 1-1: config 8 has 3 interfaces, different from the descriptor's value: 2 [ 817.526133][ T14] usb 1-1: config 8 has no interface number 1 [ 817.526158][ T14] usb 1-1: config 8 has no interface number 2 [ 817.526215][ T14] usb 1-1: config 8 interface 0 altsetting 8 endpoint 0x4 has invalid wMaxPacketSize 0 [ 817.526277][ T14] usb 1-1: config 8 interface 0 altsetting 8 has an invalid endpoint with address 0x0, skipping [ 817.526314][ T14] usb 1-1: config 8 interface 0 altsetting 8 endpoint 0xC has invalid maxpacket 1024, setting to 64 [ 817.526349][ T14] usb 1-1: config 8 interface 0 altsetting 8 has an invalid endpoint with address 0x0, skipping [ 817.526378][ T14] usb 1-1: config 8 interface 0 altsetting 8 endpoint 0x2 has invalid wMaxPacketSize 0 [ 817.526415][ T14] usb 1-1: config 8 interface 0 altsetting 8 endpoint 0xF has invalid maxpacket 1040, setting to 64 [ 817.526448][ T14] usb 1-1: config 8 interface 0 altsetting 8 has an invalid endpoint with address 0x80, skipping [ 817.526477][ T14] usb 1-1: config 8 interface 0 altsetting 8 has a duplicate endpoint with address 0xF, skipping [ 817.526505][ T14] usb 1-1: config 8 interface 0 altsetting 8 endpoint 0x5 has invalid maxpacket 1023, setting to 64 [ 817.526537][ T14] usb 1-1: config 8 interface 0 altsetting 8 endpoint 0x9 has invalid wMaxPacketSize 0 [ 817.526568][ T14] usb 1-1: config 8 interface 0 altsetting 8 has an invalid endpoint with address 0x0, skipping [ 817.526596][ T14] usb 1-1: config 8 interface 0 altsetting 8 has an invalid endpoint with address 0x80, skipping [ 817.526622][ T14] usb 1-1: config 8 interface 0 altsetting 8 has a duplicate endpoint with address 0xE, skipping [ 817.526662][ T14] usb 1-1: config 8 interface 119 altsetting 32 has a duplicate endpoint with address 0xE, skipping [ 817.526691][ T14] usb 1-1: config 8 interface 119 altsetting 32 has 1 endpoint descriptor, different from the interface descriptor's value: 7 [ 817.526726][ T14] usb 1-1: too many endpoints for config 8 interface 166 altsetting 106: 53, using maximum allowed: 30 [ 817.526771][ T14] usb 1-1: config 8 interface 166 altsetting 106 has an invalid endpoint with address 0x0, skipping [ 817.526808][ T14] usb 1-1: config 8 interface 166 altsetting 106 has a duplicate endpoint with address 0xC, skipping [ 817.526836][ T14] usb 1-1: config 8 interface 166 altsetting 106 has an invalid endpoint with address 0x0, skipping [ 817.526870][ T14] usb 1-1: config 8 interface 166 altsetting 106 endpoint 0xD has invalid wMaxPacketSize 0 [ 817.526909][ T14] usb 1-1: config 8 interface 166 altsetting 106 has an invalid endpoint with address 0x0, skipping [ 817.526937][ T14] usb 1-1: config 8 interface 166 altsetting 106 has an invalid endpoint with address 0x0, skipping [ 817.526971][ T14] usb 1-1: config 8 interface 166 altsetting 106 has 6 endpoint descriptors, different from the interface descriptor's value: 53 [ 817.527016][ T14] usb 1-1: config 8 interface 0 has no altsetting 0 [ 817.527038][ T14] usb 1-1: config 8 interface 119 has no altsetting 0 [ 817.527067][ T14] usb 1-1: config 8 interface 166 has no altsetting 0 [ 817.790678][ T14] usb 1-1: string descriptor 0 read error: -22 [ 817.790785][ T14] usb 1-1: New USB device found, idVendor=04b4, idProduct=6570, bcdDevice=13.78 [ 817.790815][ T14] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 817.817485][T11403] raw-gadget gadget.0: fail, usb_ep_enable returned -22 [ 817.843304][ T14] hub 1-1:8.0: bad descriptor, ignoring hub [ 817.843331][ T14] hub: probe of 1-1:8.0 failed with error -5 [ 817.852510][ T14] hub 1-1:8.119: bad descriptor, ignoring hub [ 817.852536][ T14] hub: probe of 1-1:8.119 failed with error -5 [ 817.855512][ T14] hub 1-1:8.166: bad descriptor, ignoring hub [ 817.855536][ T14] hub: probe of 1-1:8.166 failed with error -5 [ 818.167338][ T23] usb 1-1: USB disconnect, device number 9 22:56:30 executing program 0: getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x11, &(0x7f0000000640), 0x0) 22:56:30 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa5, 0x3fffff) 22:56:30 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (rerun: 64) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 64) r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$SIOCAX25OPTRT(r3, 0x89e7, 0x0) (async, rerun: 32) ioctl$BTRFS_IOC_SEND(r3, 0x40489426, &(0x7f00000002c0)={{r0}, 0x5, &(0x7f00000001c0)=[0x2, 0x7, 0xffffffffffffffff, 0x100, 0x0], 0xffffffff, 0x8}) (rerun: 32) 22:56:30 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x82, 0x3fffff) 22:56:30 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000001ff000000ffffffffffffffffb5b300006d821ab39409dbb9afba32afd156c326435d914fa6e2b37130b6ce35b29c3d9ab91144ec5ab120fef402d85c515758e8212eff6a4cb55ead550874addf9a4defc1926ffdbbfb9f24fc856da42c5aa9482459ea16e550d0c44367efd670cb9313972f9020ace980dc0bd52fd1de4bc1a071fd27d600"/176]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1, 0x0, 0x0, 0xffffffffffffffff}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000380)="36660f3882bf00280000440f35c74424004b000000c7442402f79879b2c7442406000000000f011424b8010000000f01c10f894e29000066baf80cb832847e85ef66bafc0c66ed0fc79e00100000c7442400079f0000c744240200a00000c7442406000000000f011c240f01f8c4e311411a00", 0x73}], 0x1, 0x8, &(0x7f0000000180)=[@dstype0={0x6, 0x3}], 0x1) r5 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x46900) (async) r6 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r6, 0x200002) sendfile(r5, r6, 0x0, 0x80001d00c0d2) (async) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000440)=[@text64={0x40, &(0x7f0000000400)="f3420f58eb6666430fedef420f73f2028fc9f812cd0f87b573465e0f7985955aa7acdeee0f0926470fc7b90010000066660f3a142006", 0x36}], 0x1, 0x3c, &(0x7f0000000480)=[@cr0={0x0, 0x20000030}, @cr4={0x1, 0x8}], 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) 22:56:30 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 32) r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) (rerun: 32) fcntl$setstatus(r0, 0x4, 0x46900) r1 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d2) (async) linkat(0xffffffffffffffff, &(0x7f00000001c0)='./bus\x00', r2, &(0x7f0000000200)='./bus\x00', 0x0) (async) ftruncate(r1, 0x200002) (async, rerun: 64) sendfile(r0, r1, 0x0, 0x80001d00c0d2) (async, rerun: 64) ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) dup(0xffffffffffffffff) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 22:56:30 executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x3d04, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000180)=0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@nfc, 0x80, 0x0}}], 0x1, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r1}, 0x0) io_uring_enter(r2, 0x2ff, 0x0, 0x0, 0x0, 0x0) [ 818.632375][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 818.632392][ T28] audit: type=1800 audit(1654383390.236:487): pid=11456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1179 res=0 errno=0 22:56:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3", @ANYRESOCT=r0, @ANYRESOCT=r0]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 818.665993][ T28] audit: type=1800 audit(1654383390.276:488): pid=11456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1179 res=0 errno=0 [ 818.717854][ T28] audit: type=1800 audit(1654383390.326:489): pid=11467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1182 res=0 errno=0 22:56:30 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x83, 0x3fffff) 22:56:30 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000900000001d17c99bf6b5b30a2fbc82d8ec69b7956afb2f178987f5cfaca9f94ef224862bfaee6b4fd19ba6ebd86dc1721642dfd34998834a4f4ed37d4cda48349898aeaa44cf136cc40c43498da6ca6b9e14131ba6bb8417d86a1626f932693929e5682ba4e70d9a9274201e4d360400107882a2147a4e8284042f086d7a49ebc5aa6101993bad0ae5ca55a3fff7ec82df4d46328ee7b8164efa494a5c983847c7b5e09438f11b629de7ea51605a6e9ac5a9382288e84e402ad61a57abf92aa4321e14d5f600"/256]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0x40, 0xef43, 0x8000, 0x4, 0x1ff, 0x0], 0x6, 0x404e6cbbddf90115}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:30 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa6, 0x3fffff) 22:56:30 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3"]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) sendmsg$WG_CMD_GET_DEVICE(r1, &(0x7f0000000340)={&(0x7f00000001c0), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042bbd7000fdb3816d30f8c49a62de10164cdbdf250000"], 0x24}, 0x1, 0x0, 0x0, 0x20000080}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x46900) r5 = open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) ftruncate(r5, 0x200002) sendfile(r4, r5, 0x0, 0x80001d00c0d2) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r5, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {0x100000000}}, './file0\x00'}) ioctl$KVM_SET_CLOCK(r4, 0x4030ae7b, &(0x7f00000003c0)={0x5, 0xfff, 0x4, 0x7, 0x4}) ioctl$KVM_RUN(r3, 0xae80, 0x0) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000400), &(0x7f0000000440), 0x2, 0x1) 22:56:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3", @ANYRESOCT=r0, @ANYRESOCT=r0]) (async) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) 22:56:31 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa7, 0x3fffff) [ 819.329967][ T28] audit: type=1800 audit(1654383390.936:490): pid=11498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1179 res=0 errno=0 22:56:31 executing program 2: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {0x0, 0x0, 0xfff}], 0x0, 0x0) getpid() r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0x84, 0x3fffff) 22:56:31 executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000900000001d17c99bf6b5b30a2fbc82d8ec69b7956afb2f178987f5cfaca9f94ef224862bfaee6b4fd19ba6ebd86dc1721642dfd34998834a4f4ed37d4cda48349898aeaa44cf136cc40c43498da6ca6b9e14131ba6bb8417d86a1626f932693929e5682ba4e70d9a9274201e4d360400107882a2147a4e8284042f086d7a49ebc5aa6101993bad0ae5ca55a3fff7ec82df4d46328ee7b8164efa494a5c983847c7b5e09438f11b629de7ea51605a6e9ac5a9382288e84e402ad61a57abf92aa4321e14d5f600"/256]) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0x40, 0xef43, 0x8000, 0x4, 0x1ff, 0x0], 0x6, 0x404e6cbbddf90115}) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 22:56:31 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="03000000000000000001afca24da62fd474543c310751b74eb88000100000100000001ff00000000c80b0000000000001d17c99bf6b5b3", @ANYRESOCT=r0, @ANYRESOCT=r0]) (async, rerun: 64) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) (async, rerun: 64) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000000)=[0xd90], 0x1}) (async, rerun: 32) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 819.582720][T11477] ------------[ cut here ]------------ [ 819.582731][T11477] ODEBUG: free active (active state 0) object type: work_struct hint: snd_vmidi_output_work+0x0/0x380 [ 819.582809][T11479] general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN [ 819.588309][T11479] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [ 819.588327][T11479] CPU: 1 PID: 11479 Comm: syz-executor.0 Not tainted 5.18.0-next-20220603-syzkaller #0 [ 819.588353][T11479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 819.588366][T11479] RIP: 0010:snd_virmidi_output_trigger+0x82/0x130 [ 819.645678][T11479] Code: 8b ad 30 01 00 00 31 ff 89 de e8 39 a6 4b fa 85 db 48 b8 00 00 00 00 00 fc ff df 41 0f 95 c4 48 8d 7d 1c 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 60 31 ff 44 88 [ 819.656288][T11477] WARNING: CPU: 0 PID: 11477 at lib/debugobjects.c:502 debug_print_object+0x16e/0x250 [ 819.665300][T11479] RSP: 0018:ffffc900140dfc48 EFLAGS: 00010207 [ 819.665324][T11479] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff872ed7f7 [ 819.665340][T11479] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 000000000000001c [ 819.696961][T11479] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 819.704943][T11479] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880788f3001 [ 819.712929][T11479] R13: 000000007fbf0000 R14: ffff88814a324400 R15: 0000000000001000 [ 819.720916][T11479] FS: 00007f0823809700(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 819.730024][T11479] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 819.736619][T11479] CR2: 000000002040e000 CR3: 0000000017bd0000 CR4: 00000000003526e0 [ 819.744600][T11479] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 819.752592][T11479] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 819.760597][T11479] Call Trace: [ 819.763877][T11479] [ 819.766810][T11479] snd_rawmidi_kernel_write1+0x548/0x870 [ 819.772570][T11479] snd_rawmidi_write+0x273/0xb90 [ 819.777528][T11479] ? snd_rawmidi_input_params+0x1a0/0x1a0 [ 819.783263][T11479] ? wake_up_q+0xf0/0xf0 [ 819.787518][T11479] ? bpf_lsm_file_permission+0x5/0x10 [ 819.792996][T11479] ? security_file_permission+0xab/0xd0 [ 819.798570][T11479] ? snd_rawmidi_input_params+0x1a0/0x1a0 [ 819.804306][T11479] vfs_write+0x269/0xac0 [ 819.808592][T11479] ksys_write+0x1e8/0x250 [ 819.812943][T11479] ? __ia32_sys_read+0xb0/0xb0 [ 819.817737][T11479] ? syscall_enter_from_user_mode+0x21/0x70 [ 819.823648][T11479] ? syscall_enter_from_user_mode+0x21/0x70 [ 819.829574][T11479] do_syscall_64+0x35/0xb0 [ 819.833999][T11479] entry_SYSCALL_64_after_hwframe+0x46/0xb0 [ 819.839917][T11479] RIP: 0033:0x7f0822689109 [ 819.844334][T11479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 819.864032][T11479] RSP: 002b:00007f0823809168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 819.872451][T11479] RAX: ffffffffffffffda RBX: 00007f082279bf60 RCX: 00007f0822689109 [ 819.880515][T11479] RDX: 00000000fffffd2c RSI: 0000000020000000 RDI: 0000000000000004 [ 819.888487][T11479] RBP: 00007f08226e308d R08: 0000000000000000 R09: 0000000000000000 [ 819.896464][T11479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 819.904438][T11479] R13: 00007ffcfe8ebb1f R14: 00007f0823809300 R15: 0000000000022000 [ 819.912420][T11479] [ 819.915451][T11479] Modules linked in: 22:56:31 executing program 4: r0 = memfd_create(&(0x7f0000000240)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6#\r\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?$^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xce\xe5\x19THP\xf4O\xe2\x9f\xd9\xae\xcf>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0\xb04\xb7T5\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\x03\x8a\xc40\xbe\xe3\x93A\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3*\x82t\x96\xf8\x00\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6^r\xd4\xb5X\\\xdbD\x035\xd9\xfc\x9c\xdd\x9a\xf8.(\'\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xb3%Q\x02\x85;\x00h\xcb)\xf4f\x12[\xf9w\xd2\r\t\xef#\x94\x8b\x1f\xce\x06k\xbb\xf9\xaf\x96p\x99]\r\x00\xbc\xe5\xc2`\xaf\xc7\x1a\a\xa6]\x93\xf1~\xabz3\xfb\t\x03\x9aZ/\xcdP\xbasQz\xe6\xaeX$\xb7\xff\xf24s\xee[\xc1\xe8\x8c\x87\xc6F\xdd0n~\xe4\x90\xb3[Z\x9dq\xbb\xeb\xbe\xccO;r\xdf\x9c\xe0\xb3\xd7\xeb\xa6\xd9\xdc\xed\x91\x9fj\xcewv\xa20\xbb\x83\xad%IR\xc6\v\x87\xc2\xd9,\xa6\xa9{\xfc\xb2\xeb&2|\xa4\xb3\x85\xa1\xd7K', 0x0) fallocate(r0, 0x0, 0xa8, 0x3fffff) [ 819.945019][T11477] Modules linked in: [ 819.945025][T11479] ---[ end trace 0000000000000000 ]--- [ 819.945038][T11479] RIP: 0010:snd_virmidi_output_trigger+0x82/0x130 [ 819.964255][T11477] [ 819.964282][T11479] Code: 8b ad 30 01 00 00 31 ff 89 de e8 39 a6 4b fa 85 db 48 b8 00 00 00 00 00 fc ff df 41 0f 95 c4 48 8d 7d 1c 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 04 84 c0 75 60 31 ff 44 88 [ 819.990245][T11479] RSP: 0018:ffffc900140dfc48 EFLAGS: 00010207 [ 819.990358][T11477] CPU: 1 PID: 11477 Comm: syz-executor.0 Tainted: G D 5.18.0-next-20220603-syzkaller #0 [ 820.014553][T11477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 820.014579][T11479] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff872ed7f7 [ 820.040394][T11479] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 000000000000001c [ 820.040387][T11477] RIP: 0010:debug_print_object+0x16e/0x250 [ 820.060453][T11477] Code: ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 af 00 00 00 48 8b 14 dd 00 5e 28 8a 4c 89 ee 48 c7 c7 e0 51 28 8a e8 f8 9e 35 05 <0f> 0b 83 05 c5 1e bc 09 01 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e c3 [ 820.060462][T11479] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 820.060490][T11479] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880788f3001 [ 820.099572][T11479] R13: 000000007fbf0000 R14: ffff88814a324400 R15: 0000000000001000 [ 820.099592][T11477] RSP: 0018:ffffc90014257b98 EFLAGS: 00010286 [ 820.118967][T11479] FS: 00007f0823809700(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 820.125116][T11477] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 820.144641][T11477] RDX: ffff88807d2b8000 RSI: ffffffff8160ee38 RDI: fffff5200284af65 [ 820.144652][T11479] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 820.144676][T11479] CR2: 00007f0c6199d090 CR3: 0000000017bd0000 CR4: 00000000003526f0 [ 820.169721][T11477] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 820.169730][T11479] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 820.169751][T11479] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 820.193971][T11477] R10: 0000000080000000 R11: 302065746174444f R12: ffffffff89cb9ee0 [ 820.193978][T11479] Kernel panic - not syncing: Fatal exception [ 820.193993][T11477] R13: ffffffff8a2856c0 R14: ffffffff814d0d70 R15: dffffc0000000000 [ 820.194011][T11477] FS: 00005555566f7400(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 820.194113][T11477] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 820.194130][T11477] CR2: 00007fcee1d6b998 CR3: 0000000017bd0000 CR4: 00000000003526e0 [ 820.194146][T11477] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 820.194160][T11477] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 820.194176][T11477] Call Trace: [ 820.194183][T11477] [ 820.194191][T11477] ? lockdep_hardirqs_on+0x79/0x100 [ 820.194253][T11477] debug_check_no_obj_freed+0x301/0x420 [ 820.194285][T11477] slab_free_freelist_hook+0xeb/0x1c0 [ 820.194327][T11477] ? snd_virmidi_output_close+0x104/0x150 [ 820.194363][T11477] kfree+0xd6/0x4d0 [ 820.194402][T11477] ? prepare_to_wait_exclusive+0x2b0/0x2b0 [ 820.194451][T11477] snd_virmidi_output_close+0x104/0x150 [ 820.194483][T11477] close_substream.part.0+0xd8/0x720 [ 820.194523][T11477] ? __fsnotify_parent+0x498/0xa60 [ 820.194552][T11477] ? snd_rawmidi_output_params+0x170/0x170 [ 820.194586][T11477] ? fsnotify+0x13a0/0x13a0 [ 820.194608][T11477] ? locks_remove_file+0x2f7/0x570 [ 820.194638][T11477] rawmidi_release_priv+0x192/0x270 [ 820.194687][T11477] snd_rawmidi_release+0x5e/0xf0 [ 820.194720][T11477] __fput+0x277/0x9d0 [ 820.194744][T11477] ? snd_rawmidi_kernel_release+0xd0/0xd0 [ 820.194786][T11477] task_work_run+0xdd/0x1a0 [ 820.194821][T11477] exit_to_user_mode_prepare+0x23c/0x250 [ 820.194845][T11477] syscall_exit_to_user_mode+0x19/0x50 [ 820.194879][T11477] do_syscall_64+0x42/0xb0 [ 820.194904][T11477] entry_SYSCALL_64_after_hwframe+0x46/0xb0 [ 820.194942][T11477] RIP: 0033:0x7f082263bd4b [ 820.194962][T11477] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44 [ 820.194986][T11477] RSP: 002b:00007ffcfe8ebb80 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 820.195070][T11477] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f082263bd4b [ 820.195087][T11477] RDX: 0000001b2eb20000 RSI: 0000001b2eb2644c RDI: 0000000000000003 [ 820.195102][T11477] RBP: 00007f082279d960 R08: 0000000000000000 R09: 000000007362dfec [ 820.195118][T11477] R10: 00007ffcfe9b9090 R11: 0000000000000293 R12: 00000000000c8163 [ 820.195133][T11477] R13: 00007ffcfe8ebc80 R14: 00007ffcfe8ebca0 R15: 0000000000000032 [ 820.195214][T11477] [ 820.195222][T11477] irq event stamp: 7682 [ 820.195230][T11477] hardirqs last enabled at (7681): [] vprintk_store+0x930/0xae0 [ 820.195259][T11477] hardirqs last disabled at (7682): [] vprintk_store+0x65d/0xae0 [ 820.195287][T11477] softirqs last enabled at (2430): [] fpu_clone+0x3c3/0xbb0 [ 820.195321][T11477] softirqs last disabled at (2428): [] fpu_clone+0x336/0xbb0 [ 820.195354][T11477] ---[ end trace 0000000000000000 ]--- [ 820.491807][T11479] Kernel Offset: disabled [ 820.496123][T11479] Rebooting in 86400 seconds..