last executing test programs:

5m20.180701359s ago: executing program 0 (id=366):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f00000001c0)={0x8, {"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", 0x1000}}, 0x1006)

5m19.603152751s ago: executing program 0 (id=371):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
dup(0xffffffffffffffff)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r5, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r1, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r2, 0x0, 0x97, 0x8000000})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r2, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r2})
r6 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0)
write$proc_mixer(r6, &(0x7f00000000c0)=ANY=[@ANYBLOB="4c494e453120274d61737465722043617074757265205302697463682720313030303030"], 0x39)
close(r6)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
dup(0xffffffffffffffff) (async)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc}) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r5, 0x0) (async)
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) (async)
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r1, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r2, 0x0, 0x97, 0x8000000}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000500)={0x28, 0x6, r2, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x80000001}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r2}) (async)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x1, 0x0) (async)
write$proc_mixer(r6, &(0x7f00000000c0)=ANY=[@ANYBLOB="4c494e453120274d61737465722043617074757265205302697463682720313030303030"], 0x39) (async)
close(r6) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)

5m19.128783801s ago: executing program 0 (id=376):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000100)=ANY=[@ANYBLOB="00a0"]) (async)
r3 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r3, &(0x7f0000000100)=""/159, 0xfffffe5a)

5m17.974399772s ago: executing program 0 (id=385):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x2382, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)
ioctl$KDSIGACCEPT(r2, 0x400455cb, 0x2e)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000040))
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r5 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_RESET(r5, 0x4141, 0x0)
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r6, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
ioctl$TUNGETFILTER(r7, 0x801054db, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = dup(r8)
ioctl$KVM_SET_MSRS(r9, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800008304"])
ioctl$KVM_SET_GSI_ROUTING(r6, 0x4008ae6a, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000400000004"])
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_NMI(r11, 0xae9a)
syz_open_dev$loop(&(0x7f0000000180), 0x15fbf1, 0x800)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$KDFONTOP_SET(r9, 0x4b72, &(0x7f0000000140)={0x0, 0x1, 0x1d, 0xf, 0x177, &(0x7f0000000280)="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"})
read(r11, &(0x7f00000001c0)=""/165, 0xa5)

5m15.628095691s ago: executing program 0 (id=402):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$fb(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x11, r0, 0x6f000)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r1, &(0x7f0000001080)=ANY=[@ANYBLOB="1e0396ca3c5c980128876360864668f82ffdd569d2f530b5e033ff11edf1c5ffc733d2acb165fe588cd568cd1f31b87b68b00ad888ca"], 0xffdd)
r2 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f00000004c0)={{0xffff0000, 0xeeee8000, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x5002, 0x8080000, 0x0, 0x8, 0x0, 0x0, 0x81, 0x0, 0x44, 0xe, 0x0, 0x3}, {0x100000}, {0x11000, 0x10000, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1a}, {0x100000, 0xd000, 0x4, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0x0, 0x84}, {0xeeee8000, 0x80a0000, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x6000, 0x0, 0x0, 0x82}, {0x6000}, {0x1, 0xfffe}, 0x10d, 0x0, 0xf000, 0x90, 0x0, 0x100, 0x900, [0x0, 0x0, 0x0, 0x4]})
r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x200)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r8 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$nci(r8, &(0x7f00000000c0)=""/47, 0x2f)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r6, 0x8208ae63, &(0x7f00000003c0)={0x2, 0x0, @ioapic={0x0, 0xb5, 0x3, 0x3, 0x0, [{0x0, 0x80, 0x9}, {0x19, 0x5, 0x0, '\x00', 0x10}, {0xfc, 0x1}, {0xfe, 0x0, 0x3, '\x00', 0x2}, {0x8, 0x0, 0x5, '\x00', 0x9}, {0x0, 0x0, 0xfb}, {0x0, 0x85, 0xbe}, {0x0, 0x7}, {0xfe, 0x1, 0x0, '\x00', 0xff}, {0x8, 0x4, 0xfe, '\x00', 0x42}, {0x0, 0x2}, {0x0, 0x50}, {0x8b, 0x0, 0x4, '\x00', 0x3}, {0x1, 0x4e, 0x8}, {0x5, 0x2, 0x4, '\x00', 0xfe}, {0x0, 0x4}, {0x1, 0x3, 0x4, '\x00', 0x4}, {0x0, 0x0, 0x0, '\x00', 0xdd}, {0x1, 0x3, 0x7, '\x00', 0x3}, {0x80, 0x0, 0xeb, '\x00', 0x5}, {0x5, 0x3}, {0x0, 0x40, 0x0, '\x00', 0x70}, {0x1, 0x0, 0xfe, '\x00', 0xe}, {0x10, 0x83, 0xe}]}})
r9 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x180)
ioctl$CEC_ADAP_S_LOG_ADDRS(r9, 0xc05c6104, &(0x7f00000000c0)={"0e00", 0x0, 0x6, 0x2, 0x0, 0x0, "f700", '\x00\x00\a\x00', "0300", "fc2c6eff", ["50d5c2a7c5ae5cace40000b6", "808e88e2e9ffd850ffff00", "0c436d743c97c443084000", "ff81000000008000"]})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
r11 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r11, 0xc0f85403, 0x0)
read$midi(r2, &(0x7f0000000180)=""/153, 0x99)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x8, 0x8031, 0xffffffffffffffff, 0xee04c000)
ioctl$SNDCTL_SEQ_PANIC(r10, 0x5100)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)

5m14.404350675s ago: executing program 0 (id=409):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="1e030af5ffff"], 0xffdd)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
read(r2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r2, {0xa}}, './file0\x00'})
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000100)=0x7)
r4 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x9, 0xc1a800)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140), 0x4680, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r4, 0x80045500, &(0x7f00000000c0))
ioctl$AUTOFS_IOC_FAIL(r1, 0x40187542, 0x200000000000)
close(r1)

4m58.968040329s ago: executing program 32 (id=409):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="1e030af5ffff"], 0xffdd)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
read(r2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r2, {0xa}}, './file0\x00'})
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000100)=0x7)
r4 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x9, 0xc1a800)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140), 0x4680, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r4, 0x80045500, &(0x7f00000000c0))
ioctl$AUTOFS_IOC_FAIL(r1, 0x40187542, 0x200000000000)
close(r1)

4m19.412162887s ago: executing program 4 (id=731):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x100000000, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000000), 0x8600, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r2, &(0x7f0000000400)=[{&(0x7f0000002200)=""/4099, 0x1003}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/clear_refs\x00', 0x1, 0x0)
syz_open_dev$evdev(&(0x7f0000007d80), 0x2, 0x2000)
close(0x3)
write$sysctl(r3, &(0x7f0000000000)='4\x00', 0x2)
read(r1, &(0x7f00000001c0)=""/157, 0x9d)

4m19.146215087s ago: executing program 4 (id=732):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/devices.allow\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000001c0)={0x6, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r3 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r3, 0xc0405610, &(0x7f0000000740)={0xe})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r4, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0x900, 0x12)

4m18.936765836s ago: executing program 4 (id=733):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000006680), 0x0, 0x0)
ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000006980)={0x0, {0x0, 0x80000000}})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r3, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f00000001c0)=0x101)
read$FUSE(r1, 0x0, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r5 = dup(r4)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x9, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r5, 0x0)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f0000000cc0)={{0x3, 0x3, 0x1, 0x1, 0x9}})
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

4m17.843035276s ago: executing program 4 (id=738):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x408200, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x29a100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCFLSH(r0, 0x80047456, 0x20000020001100)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x430482, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000200), 0x72, 0x551982)
ioctl$USBDEVFS_CONNECTINFO(r1, 0x80045518, &(0x7f0000002a40))
ioctl$USBDEVFS_ALLOW_SUSPEND(r1, 0x5522)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000080)={0x0, "4fcb813dd28b42bee2b094a3de6dbfd30a74457bcd1cfd5feffe5c019f45d57f", <r3=>0xffffffffffffffff})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f00000000c0)={'wlan0\x00', 0x400})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f00000006c0)={'bridge_slave_0\x00', 0x600})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
write$UHID_INPUT(r9, &(0x7f0000001040)={0x18, {"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", 0x1000}}, 0x1006)
r10 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000180)={0x1, 0x0, [{0x40000118, 0x0, 0x1000}]})
ioctl$SYNC_IOC_MERGE(r3, 0xc0303e03, &(0x7f0000000180)={"b645563c45bcc7e181fad43c40fc603ebaf6ab65a29e23546aad0281b3aff5eb", r3, <r11=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r11, 0xc0383e04, &(0x7f0000000100)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
r12 = syz_open_dev$cec(&(0x7f0000000240), 0x0, 0x3074c0)
r13 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_S_FREQUENCY(r13, 0x402c5639, &(0x7f0000001100)={0x2, 0x2a2cf01ef564b64d, 0x3})
ioctl$CEC_TRANSMIT(r12, 0xc0386105, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x4, 0x6, 0xe20, 0x3ff, "c2a0da871813beebb98f6cd3bde10363", 0x8, 0xc6, 0x9, 0x2, 0x2, 0xf})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

4m17.01885515s ago: executing program 4 (id=741):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="000004858ff35500370000d3bf00d695fa23bbc084e006621e25deb48c4b"])
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0xd8b41, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$fb(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x11, r4, 0x6f000)
ioctl$VIDIOC_QUERYSTD(r4, 0x8008563f, &(0x7f0000000300))
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r5, 0xc040aed5, &(0x7f00000000c0)={0xffff1000, 0x118028})
read(r2, &(0x7f00000001c0)=""/133, 0x85)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000540)=0x9)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000500))
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x7e)
mmap(&(0x7f00000bc000/0x3000)=nil, 0x3000, 0x4, 0x4010, r1, 0x1000000000000000)
r7 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r7, 0xc0205648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x980912, 0x0, '\x00', @string=0x0}})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r8 = syz_open_dev$swradio(&(0x7f0000001500), 0x1, 0x2)
pwritev2(r8, &(0x7f0000001740)=[{&(0x7f0000001540)="dc", 0x1}], 0x1, 0x3, 0x7fffffff, 0x3)
r9 = syz_open_dev$dri(&(0x7f0000000000), 0x6379, 0xbd400)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r9, 0xc01864c6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r10=>0xffffffffffffffff})
ioctl$DRM_IOCTL_WAIT_VBLANK(r10, 0xc018643a, &(0x7f00000001c0))
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r5, 0x4068aea3, &(0x7f0000000140)={0xbe, 0x0, 0x1})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

4m16.760683861s ago: executing program 4 (id=743):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000040)={0x0, 0x0, 0x4})
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000280)={0x1, 0x0, [{0x4b564d04, 0x0, 0x5}]}) (async)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0) (async)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = dup(r6) (async)
r8 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r8, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) (async)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x4d, 0x6, 0xffffffffffffffff, 0x4, 0x0, 0x2, 0x6c, 0x87a, 0x8000000000000, 0x80040000000000, 0x0, 0x9, 0x1, 0x0, 0x8ca, 0x8005], 0x2000, 0x3c6200}) (async)
r9 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x9e, 0x0, 0x0, 0x0, @time={0x1505, 0x1002}, {0x0, 0x3e}, {0x9}, @queue={0x2, {0x7, 0x10001}}}], 0x1c) (async)
ioctl$SCSI_IOCTL_GET_PCI(r9, 0x5393, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r7, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0) (async)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f0000000000)=0x15) (async)
ioctl$TCSETS(r10, 0x40384708, &(0x7f0000000040)={0x8, 0x1, 0x80, 0x3, 0x1a, "3eccd2000500"})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) (async)
ioctl$BLKZEROOUT(r7, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

4m1.419002723s ago: executing program 33 (id=743):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000040)={0x0, 0x0, 0x4})
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000280)={0x1, 0x0, [{0x4b564d04, 0x0, 0x5}]}) (async)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0) (async)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0) (async)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r7 = dup(r6) (async)
r8 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r8, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) (async)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x4d, 0x6, 0xffffffffffffffff, 0x4, 0x0, 0x2, 0x6c, 0x87a, 0x8000000000000, 0x80040000000000, 0x0, 0x9, 0x1, 0x0, 0x8ca, 0x8005], 0x2000, 0x3c6200}) (async)
r9 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x9e, 0x0, 0x0, 0x0, @time={0x1505, 0x1002}, {0x0, 0x3e}, {0x9}, @queue={0x2, {0x7, 0x10001}}}], 0x1c) (async)
ioctl$SCSI_IOCTL_GET_PCI(r9, 0x5393, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r7, 0x0) (async)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0) (async)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f0000000000)=0x15) (async)
ioctl$TCSETS(r10, 0x40384708, &(0x7f0000000040)={0x8, 0x1, 0x80, 0x3, 0x1a, "3eccd2000500"})
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) (async)
ioctl$BLKZEROOUT(r7, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

50.795947158s ago: executing program 2 (id=2144):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000121a02, 0x0)
r3 = dup(r2)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

49.777367869s ago: executing program 2 (id=2151):
r0 = syz_open_dev$video4linux(&(0x7f0000000100), 0x0, 0x0)
ioctl$VIDIOC_QUERYSTD(r0, 0x8008563f, 0x0)
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)

49.598062064s ago: executing program 2 (id=2152):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) (async, rerun: 64)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) (rerun: 64)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000740)={0x800006dc, 0x0, 0xfffffff9, 0x6, 0x18, "e0d997451fcd50bd026388080d00"})
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000040)=0xa) (async, rerun: 32)
r2 = dup(r0) (rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x0) (async)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"]) (async)
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x10000, 0xfffffffffffffffd, 0x200, 0x10003, 0x4, 0x400200cc6, 0xd92, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8d], 0xeeee8000, 0x2011c0}) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0) (async)
r6 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1f984a1d, 0x202812, r6, 0x7dfff000)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_timestamps\x00', 0x1, 0x0)

49.100599252s ago: executing program 2 (id=2154):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x42002, 0x0) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8500, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r6, 0x8140aecc, &(0x7f0000000280))
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0)
ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0x79)
r8 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$TIOCGWINSZ(r8, 0x5413, &(0x7f0000000200)) (async)
write$cgroup_int(r3, &(0x7f00000001c0)=0x722, 0x12) (async)
r9 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(r10, 0x4068aea3, &(0x7f00000000c0)={0x80, 0x0, 0x8c8ddd2}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0xfffffffffffffffe, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x6, 0x2, 0x2, 0x6, 0x9, 0x96, 0xf0, 0xffffffff00000000, 0x4, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0xffffffff, 0x8, 0x9, 0x3, 0x3, 0x4, 0x20000000006, 0x4, 0x9, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffff6, 0x2, 0xe, 0x6, 0x10, 0xea, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x47bf, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0xffffffffffff0001, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x3, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x9, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]}) (async)
read(r0, &(0x7f00000001c0)=""/172, 0xac) (async)
r11 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r11, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

48.65010597s ago: executing program 2 (id=2159):
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x35315852}})
r3 = dup(r1)
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000040)={0x5, 0x7f, 0x4, 0x515f3554, 0x2, "78e172d0fcffffff00"})
write$UHID_INPUT(r3, &(0x7f0000001040)={0xd, {"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", 0x1010}}, 0x1b7)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = openat$cgroup_type(0xffffffffffffffff, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r6, &(0x7f0000000000), 0x9)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000380)={0x2, 0x102000, 0x1})
r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x50009405, &(0x7f0000000180))
r8 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r9 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r9, 0xc0745645, &(0x7f0000000100)={0xfff8, [0x7, 0x847e, 0x6, 0xccb, 0x7, 0x1003, 0x1, 0x7, 0xe, 0x3ef, 0x5, 0x4, 0xb, 0x2, 0x4, 0xf2f, 0x5, 0x7, 0xc27, 0x1, 0x1ff, 0x2522, 0x0, 0x7fe, 0xff, 0x0, 0x800, 0x5, 0x0, 0x8, 0xfff7, 0x3, 0x5, 0x0, 0xff, 0x5, 0x4, 0x8, 0x101, 0xa432, 0x207, 0x7, 0x3, 0x54ae, 0x5, 0xf, 0x7, 0xc9], 0x4})
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000002140)={0x6, 0x1, 0x5, 0xcc83, 0x9d200000})
read$FUSE(r0, &(0x7f0000000080)={0x2020, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}, 0x2020)
ioctl$BLKTRACESETUP(r8, 0xc0481273, &(0x7f00000020c0)={'\x00', 0x33, 0x64c, 0x9, 0x6, 0x4, r10})
r11 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_G_AUDOUT(r11, 0x80345631, 0x0)
r12 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r12, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$SIOCSIFHWADDR(r12, 0x8927, &(0x7f00000001c0)={'bond_slave_0\x00', @remote})
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r8, 0x7dfff000)

47.392549244s ago: executing program 2 (id=2167):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f00000000c0)={0x7fffffff, 0x0, 'client1\x00', 0x0, "f8ee6e5e2b38b5cc", "b8c5126deca3c384693ba0e2b53b908612ca856de6ac921b579ddca05c6d32b9"})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) (async)
r2 = syz_open_dev$sndctrl(&(0x7f00000007c0), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f0000000040)={0x4})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, <r3=>0xffffffffffffffff, {0x2}}, './file0\x00'}) (async)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
write$cgroup_devices(r4, &(0x7f0000001080)=ANY=[@ANYBLOB="1e0396ca3c5c980128876360864668f82ffdd569d2f530b5e033ff11edf1c5ffc733d2acb165fe588cd568cd1f31b87b68b00ad888ca"], 0xffdd) (async)
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000480), 0xb, 0x141341)
ioctl$USBDEVFS_SETINTERFACE(r6, 0x80085504, &(0x7f0000000100)={0x0, 0x100})
r7 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f0000000180)={0x0, 0xf34, 0xe1, 0x0, 0x3}) (async, rerun: 32)
r8 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x8042, 0x0) (rerun: 32)
write$vga_arbiter(r8, &(0x7f0000000080)=@other={'lock', ' ', 'io'}, 0x8) (async)
ioctl$IOMMU_IOAS_ALLOC(r7, 0x3b81, &(0x7f00000002c0)={0xc, 0x0, <r9=>0x0})
ioctl$IOMMU_IOAS_MAP(r7, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r9, 0x0, &(0x7f0000000300)="96", 0x1, 0xfffffffffffffffc}) (async, rerun: 64)
ioctl$IOMMU_IOAS_MAP$PAGES(r7, 0x3b85, &(0x7f0000000240)={0x28, 0x3, r9, 0x0, &(0x7f0000001000/0x3000)=nil, 0x3000, 0x8000000000000001}) (async, rerun: 64)
ioctl$IOMMU_IOAS_MAP(r7, 0x3b85, &(0x7f0000000140)={0x28, 0x6, r9, 0x0, &(0x7f0000000200)="cc", 0x1, 0x2})
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r5, 0x7dfff000)

26.559894575s ago: executing program 3 (id=2240):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000000)={[{0x80000000, 0x4, 0xc2, 0x4f, 0x40, 0x2, 0x80, 0x1, 0x3, 0x44, 0x8, 0x0, 0x9}, {0xb, 0xa6f2, 0x6, 0x8, 0x9, 0xff, 0x4, 0x3, 0xa, 0x13, 0x7, 0x6, 0x1}, {0x1ff, 0x7, 0xd, 0x10, 0x25, 0x9, 0x0, 0xfb, 0x4, 0x15, 0x0, 0x2, 0x4}], 0x9})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x0, 0x10000, 0xfffffffffffffffd, 0x4002004c4, 0x1000, 0x0, 0x0, 0x10, 0x0, 0x3], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x8000, 0x0)
ioctl$VIDIOC_G_FMT(r5, 0xc0d05604, &(0x7f0000000280)={0x8, @raw_data="24c68d6a23e49bb0d4b5e7813d9d11b799b508b3643d1d213807b8ef1b8984ddba6ffc5f5d1411423f2b3bb545b61201ce62c16137bcf57c565a6287b9671ef47bbe381bcb378921bb13f489dcaf4f5f2edbefb84d75d32c899b3943ea607442bfb00c56ba7048bd50558250130f1e54b4df9f939a1dfa4496e7e1fe0ec0a3e9ae24420e6630625b304c7a8102a1fa8824edf26fbef59238ec895e9d35d234feebdbaebf84720ee47b9357c745e7ac2390a8825cda2e1cba0b75c519cb175a194023d672f843ce0a"})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r4, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000000)={[{0x80000000, 0x4, 0xc2, 0x4f, 0x40, 0x2, 0x80, 0x1, 0x3, 0x44, 0x8, 0x0, 0x9}, {0xb, 0xa6f2, 0x6, 0x8, 0x9, 0xff, 0x4, 0x3, 0xa, 0x13, 0x7, 0x6, 0x1}, {0x1ff, 0x7, 0xd, 0x10, 0x25, 0x9, 0x0, 0xfb, 0x4, 0x15, 0x0, 0x2, 0x4}], 0x9}) (async)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x6, 0xfffffffffffffffd, 0x0, 0x10000, 0xfffffffffffffffd, 0x4002004c4, 0x1000, 0x0, 0x0, 0x10, 0x0, 0x3], 0xeeee8000, 0x2011c0}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) (async)
syz_open_dev$video(&(0x7f0000000000), 0x8000, 0x0) (async)
ioctl$VIDIOC_G_FMT(r5, 0xc0d05604, &(0x7f0000000280)={0x8, @raw_data="24c68d6a23e49bb0d4b5e7813d9d11b799b508b3643d1d213807b8ef1b8984ddba6ffc5f5d1411423f2b3bb545b61201ce62c16137bcf57c565a6287b9671ef47bbe381bcb378921bb13f489dcaf4f5f2edbefb84d75d32c899b3943ea607442bfb00c56ba7048bd50558250130f1e54b4df9f939a1dfa4496e7e1fe0ec0a3e9ae24420e6630625b304c7a8102a1fa8824edf26fbef59238ec895e9d35d234feebdbaebf84720ee47b9357c745e7ac2390a8825cda2e1cba0b75c519cb175a194023d672f843ce0a"}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r4, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)

26.555467519s ago: executing program 3 (id=2241):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000080)={0x0, 0x7f, 0x700})
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
ioctl$TIOCGICOUNT(r2, 0x545d, 0x0)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x0, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x4, 0xffffffff, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x3, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r6, 0x40187014, &(0x7f0000000080)={0x1, 0x0, {0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x1}})
read$FUSE(r2, &(0x7f00000003c0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
read$FUSE(r4, &(0x7f0000002400)={0x2020, 0x0, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000200)={0xa0, 0x0, r7, {{0x3, 0x0, 0xdd8, 0x6, 0xfffffffb, 0x5, {0x6, 0x5, 0x3, 0x3, 0xe4, 0x6, 0x6, 0x3ff, 0x2, 0x1000, 0x4, r8, 0xffffffffffffffff, 0x5, 0x10001}}, {0x0, 0x1b}}}, 0xa0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000002c0), 0x341040, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
ioctl$CEC_TRANSMIT(r4, 0xc0386105, &(0x7f00000001c0)={0xfd, 0x9, 0x2, 0x6, 0x8, 0x9c, "8b9ae7ea0d70fd8e51d54380e7bee32b", 0x0, 0x5, 0xd5, 0xf8, 0x39, 0xef, 0x4})
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

26.551711003s ago: executing program 3 (id=2242):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r0, 0x7dfff000)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000080)={0xc, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f00000000c0)={0x28, 0x2, r2, 0x0, &(0x7f0000788000/0x2000)=nil, 0x2000, 0xc3})

26.540680116s ago: executing program 3 (id=2245):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40402, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800008604"])
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0xfffffffffffffffe, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x9, 0x96, 0xf0, 0xffffffff00000000, 0x4, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0xffffffff, 0x8, 0x6, 0x6, 0x3, 0x4, 0x20000000006, 0x8, 0x9, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x2, 0xe, 0x6, 0x4, 0xea, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x47bc, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0xb, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x9, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x9, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2080, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r5, 0xae9a) (async)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x7, 0x0, 0xfffffffffffffffe]}) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0) (async)
r7 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x80001, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
ioctl$KVM_SET_MP_STATE(r10, 0x4004ae99, &(0x7f0000000000)=0x9) (async)
ioctl$UI_ABS_SETUP(r7, 0x401c5504, &(0x7f0000000000)={0x0, {0x0, 0x3}}) (async)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
dup(r0) (async)
ioctl$KVM_SET_SREGS(r13, 0x4138ae84, &(0x7f0000000580)={{0xffff1000, 0x2, 0xa, 0x9, 0x6, 0x2b, 0x7f, 0x5c, 0x0, 0x9, 0x0, 0xd}, {0x8080000, 0x8e3986f0e82331aa, 0xb, 0x4, 0x1, 0x6, 0x3, 0x9, 0x7, 0xe, 0x8, 0x1}, {0xf000, 0x1000, 0x0, 0x2, 0x5, 0x6, 0x2, 0x0, 0x2, 0x7f, 0x6, 0x5}, {0x5000, 0xeeee0000, 0x4, 0x0, 0x65, 0x4, 0x4, 0x2, 0xa0, 0x3, 0x7, 0x7}, {0xeeee0001, 0x100000, 0x10, 0x2, 0x1, 0x1, 0x86, 0x3, 0x81, 0x7, 0x0, 0xea}, {0xd000, 0x80a0000, 0x9, 0x10, 0xe0, 0x40, 0xe3, 0xb9, 0xff, 0x3e, 0xf2, 0xf9}, {0x8000000, 0x1000, 0x8, 0x80, 0x9, 0x43, 0x1, 0x8, 0x87, 0x5, 0x42, 0x6}, {0x4, 0x8080000, 0x10, 0xff, 0x8, 0xd, 0x8, 0x55, 0x1e, 0x4, 0x0, 0x7}, {0x1000, 0x3b1a}, {0x5000, 0x4}, 0x10000, 0x0, 0x0, 0xc4, 0x8, 0x0, 0x6000, [0x80, 0x2, 0x4, 0x8]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r6, 0xc00c642d, &(0x7f0000000200)={0x0, 0x3})
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r0, 0x7dfff000)

26.326593575s ago: executing program 3 (id=2247):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000680)={0x13, 0x10, 0x10f, {0x0, r1, 0x2}}, 0x18)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r2, 0x3b72, &(0x7f00000001c0)={0x18, 0x5, 0x80000008, 0x200})
r3 = syz_open_dev$swradio(&(0x7f0000000f80), 0x1, 0x2)
read(r3, &(0x7f0000000fc0)=""/4, 0x4)
ioctl$VIDIOC_EXPBUF(r3, 0xc0405610, &(0x7f0000001000))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r5, &(0x7f0000000100)=""/159, 0xfffffe5a)
r6 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2)
ioctl$vim2m_VIDIOC_EXPBUF(r6, 0xc0405668, &(0x7f0000000dc0)={0x2, 0x0, 0xa, 0x81080})
ioctl$BLKOPENZONE(r5, 0x40101286, 0x0)
r7 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
r8 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0)
close(r8)
r9 = syz_open_dev$vbi(&(0x7f0000000140), 0x2, 0x2)
ioctl$VIDIOC_TRY_FMT(r9, 0xc0d05640, &(0x7f0000000200)={0x4, @sdr={0x64737664, 0x3ff}})
write$FUSE_CREATE_OPEN(r7, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r7, 0x0, 0x0)
r10 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r11 = dup(r10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r11, 0x0)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r7, 0x80184132, &(0x7f00000001c0))
ioctl$BLKZEROOUT(r11, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

25.640669443s ago: executing program 3 (id=2250):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x5, 0x2, 0x2, 0x6bd, 0x8, 0xfff, {0x6, 0x2, 0x7fff, 0x0, 0x8, 0x1, 0x7fffffff, 0x7, 0xb, 0x4000, 0x6, 0x0, 0x0, 0x2, 0xb}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r5, 0x4b52, &(0x7f0000000000)={0x2, {0x2, 0x8000, 0x0, 0x4}})
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

10.414016553s ago: executing program 34 (id=2250):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x5, 0x2, 0x2, 0x6bd, 0x8, 0xfff, {0x6, 0x2, 0x7fff, 0x0, 0x8, 0x1, 0x7fffffff, 0x7, 0xb, 0x4000, 0x6, 0x0, 0x0, 0x2, 0xb}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r3 = dup(r2)
r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r4, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r5, 0x4b52, &(0x7f0000000000)={0x2, {0x2, 0x8000, 0x0, 0x4}})
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

3.303058386s ago: executing program 1 (id=2335):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e})
r1 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x4b564d01, 0x0, 0xfffffffffffffff7}]})
read(r1, &(0x7f0000000100)=""/159, 0xfffffe5a)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

2.727574833s ago: executing program 1 (id=2337):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001ac0)={r1, 0x0, {0x0, 0x0, 0x0, 0x1, 0x800, 0x0, 0x0, 0x0, 0x4, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}})
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001c00)={0x8, {"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", 0x1000}}, 0x2000)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r3, 0x7a6, &(0x7f00000000c0)={0x2651, 0xb, 0x200000002, 0x100000006, 0x2, 0x8002})
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)

2.474186175s ago: executing program 1 (id=2339):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
ioctl$UI_DEV_DESTROY(r0, 0x5502)
r1 = syz_open_dev$vcsu(&(0x7f0000000040), 0x8000000000000000, 0x800)
ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000080)={0xb, 0xe, 0x8, 0x84880})
r2 = dup2(0xffffffffffffffff, r0)
ioctl$VIDIOC_G_ENC_INDEX(r2, 0x8818564c, &(0x7f00000000c0))
r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000900), 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000940)={0x0, ""/256, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000b40)={{<r5=>0x0, 0x4, 0xfffffffffffffff8, 0x2, 0x9, 0x81, 0x1, 0x4, 0xfffff966, 0x80000000, 0x3ff, 0xd14, 0xb, 0x887, 0xd}})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r3, 0xd000943e, &(0x7f0000001b40)={r4, r5, "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", "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"})
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000002b40)=0x8000000)
ioctl$VIDIOC_SUBDEV_S_CROP(r0, 0xc038563c, &(0x7f0000002b80)={0x1, 0x0, {0x8, 0x0, 0xffffffff, 0x8}})
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000002bc0), 0x2, 0x0)
write$vhost_msg(r6, &(0x7f0000002d40)={0x1, {&(0x7f0000002c00)=""/167, 0xa7, &(0x7f0000002cc0)=""/105, 0x1, 0x2}}, 0x48)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000002dc0)={0x3, 0x2, 0x0, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000002e00), 0x3b709eedbdaaff03, 0x0)
ioctl$RTC_AIE_OFF(r7, 0x7002)
ioctl$X86_IOC_RDMSR_REGS(r1, 0xc02063a0, &(0x7f0000002e40)=[0x31f7a8b0, 0x4bfd, 0x8, 0x8, 0x10, 0x5, 0x7f, 0x1])
r8 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000002e80), 0x2, 0x0)
ioctl$VIDIOC_S_PARM(r8, 0xc0cc5616, &(0x7f0000002ec0)={0xd, @capture={0x1000, 0x1, {0x8000, 0xfffff001}, 0x3, 0xffffffaa}})
ioctl$TIOCSIG(r2, 0x40045436, 0x2a)
ioctl$F2FS_IOC_COMPRESS_FILE(r7, 0xf518, 0x0)
ioctl$VIDIOC_DBG_G_REGISTER(r0, 0xc0385650, &(0x7f0000002fc0)={{0x2, @addr=0x1}, 0x8, 0x0, 0x1})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000003000)={{0x1, 0x1, 0x18, <r9=>r8, {0x4}}, './file0\x00'})
ioctl$VIDIOC_G_AUDIO(r9, 0x80345621, &(0x7f0000003040))
ioctl$VIDIOC_G_PARM(r2, 0xc0cc5615, &(0x7f0000003080)={0x8, @raw_data="b522f2b717adb2ed3649e8791e3d2df9a1464f86eee5281bdf3b9815431d2e26a624818e6aa7911ffdcb7ef9ac3f09b024940baf5805a16f8c8c6b94e492229200eab9487d017f3b42d7330cb3d313e1133b31359f47c4c1aa7455b1ca159fcdd59acc5a98a634063d4702f82e1323e3432df92698f8103cee5a8d3130502fdb2aa13bf7debba00431d7b166cb8050422442104a2ed7f0749a72192e9ba8d3c8b0f58d1d99d22849b7556ea6d96faf34b057fa357c658a639aea82b665385f78c0075715b8455cf2"})
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x80049367, &(0x7f0000003180))
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000031c0), 0x2, 0x0)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000003600)={0x0, 0x0, 0x1f, 0x19, 0x111, &(0x7f0000003200)="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"})
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)

2.328477656s ago: executing program 5 (id=2340):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = syz_open_dev$midi(&(0x7f0000000000), 0x1, 0x1)
ioctl$HIDIOCGUSAGES(0xffffffffffffffff, 0xd01c4813, &(0x7f0000000240)={{0x3, 0x100, 0x5, 0xb7a4, 0x1, 0xffff}, 0x341, [0xc, 0x40, 0xcd6, 0x4, 0x6, 0x0, 0x3, 0x7, 0x9, 0x7a18fde9, 0x9, 0xf12, 0x4, 0x3, 0x378, 0x350bae1a, 0x4, 0x0, 0x1, 0xffff06bd, 0x0, 0xd4f, 0x7, 0xf2, 0x10, 0x5, 0x8, 0x10001, 0x401, 0x80000000, 0x2401, 0x3ca5, 0x1, 0x0, 0xff, 0x4, 0x4, 0x3, 0x0, 0x0, 0x40000000, 0x80000000, 0x7fff, 0x7, 0x3, 0xa, 0x0, 0x10000, 0x401, 0x8, 0xffff, 0x91ba, 0x7, 0x9, 0x1, 0xb6, 0x24, 0xcb, 0x5, 0x7f, 0x5, 0x311, 0x66d1, 0xfffffffd, 0xa7d6, 0xb6eb, 0xc74, 0x77, 0x1, 0xff, 0x5cb5, 0xfffffffe, 0x401, 0xedf4, 0x4, 0x1000, 0x6, 0xfffffffe, 0x8001, 0xc1, 0x1, 0x8, 0x1, 0x32, 0x98, 0x7f, 0x0, 0x401, 0x2, 0x2, 0x4680, 0x7, 0xe665, 0x3c6e, 0x3, 0x40, 0x80, 0x4b, 0x8000, 0x2, 0xb, 0x6, 0x4fa4, 0x80000002, 0x1, 0xb, 0x0, 0xfffffffa, 0x3, 0x9, 0xfd, 0x101, 0x4, 0x40, 0xa, 0x1b, 0x1ff, 0x7ff, 0x2, 0x80000000, 0xffff, 0x9, 0x0, 0x6, 0x2, 0x1, 0x3, 0xa0, 0xf, 0x1ff, 0x9, 0x7, 0x6, 0x400, 0x8, 0xff2, 0x6, 0x0, 0x6, 0x0, 0x9, 0x1, 0xf1a, 0x664, 0x4, 0x9, 0x9, 0x2, 0x4, 0xfffffffd, 0x10, 0x0, 0x9, 0x10000, 0x1, 0x9, 0xf7a, 0xc6, 0x1, 0x4, 0x6, 0xffffffff, 0x6, 0x10001, 0x8, 0x68, 0x7, 0x1, 0x5, 0x3, 0x9a3f, 0x400000, 0x0, 0x80000067, 0xffffff7e, 0x7, 0x10000000, 0x10001, 0x7, 0x3, 0x10, 0x10a, 0x2, 0x40, 0x1c, 0x80, 0xb5f8, 0x8bc, 0x3, 0x101, 0x5, 0x63, 0x4, 0x8001, 0x10, 0x1000, 0x288c, 0x1ffe, 0x73ee, 0x1, 0x5, 0x9, 0x7fffffff, 0x73, 0x7, 0x8, 0x6, 0x400, 0x40, 0x0, 0x0, 0x0, 0x546c, 0x981, 0x5aa, 0x7fff, 0x7, 0x4, 0x8, 0x6688, 0x45e3, 0x5, 0x7, 0x1, 0x5, 0x3, 0x0, 0x1, 0x2, 0xffffffff, 0x4, 0xce, 0xf, 0x0, 0x1, 0x667, 0x3, 0x0, 0x9, 0x9, 0x37d, 0x10001, 0xc, 0x1, 0x1, 0x2, 0x6, 0x4, 0x6, 0x1, 0x9, 0x6, 0xfffffffa, 0x2, 0x0, 0x9, 0x5, 0x2, 0x7, 0x3, 0xffffff1b, 0x9, 0x2, 0xd, 0x34ea, 0x10000, 0x0, 0x80000001, 0x8, 0x8000, 0x3a, 0x10, 0x8, 0x9, 0x5, 0x1, 0x6, 0x10001, 0x0, 0x4, 0x10000, 0x4, 0xffff, 0xe, 0x89, 0x2, 0x7, 0x1, 0x73, 0x3, 0x9, 0x4, 0x1, 0x9, 0x0, 0x8, 0x0, 0x2, 0x80000004, 0x29, 0x9, 0x0, 0x4, 0x4, 0x0, 0x1, 0x4, 0x5, 0x4, 0x10001, 0xf, 0x9, 0x100, 0x4, 0x59b, 0x7, 0x8, 0x9, 0x3, 0x2, 0x4, 0xbf, 0x0, 0x8, 0x40, 0xd3, 0x7, 0x1, 0x89aa, 0x8, 0x7, 0xf0ce, 0x4, 0x1, 0x0, 0x2, 0xc6, 0x1000, 0x1, 0x937, 0xa, 0x6, 0x3, 0xffffffff, 0x5, 0x9, 0x5, 0xffffffff, 0xbe, 0x1, 0x7, 0x0, 0xffffffff, 0x0, 0x3d6, 0x0, 0xc, 0x6, 0x7, 0xfffffeff, 0x4, 0x2, 0x7fff, 0x101, 0x7, 0x6, 0x706, 0x2, 0x49, 0x10, 0xfffffff7, 0xfffff772, 0x8, 0x80000000, 0x6, 0x1, 0xa9c, 0x9, 0x9, 0x1, 0x2, 0x5, 0x1000, 0x5, 0x1ff, 0x9, 0x3, 0x3, 0x10001, 0xffff0000, 0xf, 0x1, 0xffffa5ba, 0xffffa9b4, 0x1, 0x4, 0x5, 0x3, 0x4b5f, 0x6, 0xa, 0xffffffff, 0x1, 0x80000000, 0xb, 0x0, 0xc8f, 0x1, 0x7, 0x8, 0x1, 0x10000, 0x57dc, 0x818a, 0x10, 0x8, 0x10, 0xfffffffc, 0xfffff001, 0xa, 0x5, 0x5, 0x4, 0xfff, 0x9, 0x10, 0xfffffffd, 0x4, 0xc2, 0x7f, 0x4, 0x2, 0x80000000, 0xd, 0x3, 0x1, 0x0, 0x5, 0xb6, 0x101, 0x401, 0x2, 0x7, 0xc, 0x6623258, 0xf2, 0x741, 0xae6, 0x9, 0xffffa0ae, 0x9, 0x6, 0x2, 0x8, 0x9, 0x1, 0x7f, 0x9a, 0x9, 0xb, 0x800, 0x4, 0x3ff, 0x5, 0x7, 0x7, 0x8, 0xfe, 0x7f, 0x9, 0x4, 0x2, 0x20000000, 0x2, 0x8000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7, 0x8000001, 0x0, 0xfff, 0x101, 0x4, 0x0, 0x96c6, 0xc, 0x5, 0xfff, 0x100, 0xffff, 0x1, 0x401, 0xf0, 0x0, 0xfffff53d, 0x9, 0x2, 0x6, 0x0, 0x6, 0x4b15, 0x10000, 0x1, 0x9, 0x1, 0xd, 0x9, 0x4, 0xfffffe01, 0x1, 0x6, 0x0, 0x3, 0x10001, 0x1, 0x7, 0x1, 0x5, 0x8, 0xffffc487, 0x200, 0x10001, 0x37c, 0x7, 0x6, 0x6, 0x8, 0xfffffe00, 0x1, 0x1, 0x0, 0xe, 0x0, 0x2, 0x4, 0x80000000, 0xb46d, 0x3, 0x1000, 0x1eb4bce6, 0x10, 0x8, 0x1, 0x5, 0x1, 0x5, 0x9, 0x1000, 0x7, 0x62f2f805, 0x9, 0x3, 0xffffffff, 0xfffffe00, 0x7f, 0x6, 0x8, 0x40, 0x5, 0x2, 0xa, 0x5, 0x6, 0x80000000, 0x25, 0x8, 0x7, 0x7, 0x1, 0x5, 0x9, 0x6709, 0x80000001, 0x0, 0x80, 0x8, 0x6, 0x0, 0xa95a, 0xff, 0x5, 0x2, 0x2, 0x4, 0x10000, 0x80000001, 0x5, 0x8001, 0x9, 0x0, 0xb7, 0x3, 0xff, 0x9, 0xffff, 0x80, 0xfea5, 0x7fff, 0x7, 0x7, 0x7, 0x7485, 0x9, 0x8, 0x0, 0x8000, 0xf, 0x5, 0xe, 0x8, 0x1000, 0x3, 0x7, 0x382d, 0x459, 0xcad, 0x9, 0x0, 0x2, 0x9, 0x6, 0x20000a4, 0xe0, 0xfffffffb, 0x5, 0xffffffff, 0x2, 0x7, 0xa05a, 0x0, 0x0, 0x0, 0x35, 0x8, 0x1, 0x1, 0x30, 0xffffff7e, 0x1, 0x2, 0x9, 0x3, 0x7, 0x8, 0x8, 0x4000, 0x1, 0x4, 0x15294b70, 0x3, 0x3, 0x2, 0x43, 0x3, 0x9, 0x5, 0x80000000, 0x9, 0x0, 0x5, 0x81, 0x1, 0x2, 0x3fd, 0x1df, 0x6, 0x6, 0xfffffffa, 0x1a, 0x9, 0x2, 0x9, 0x1, 0x9, 0x7, 0x2c1, 0x9e95, 0x2, 0xfffffedd, 0x30c8, 0x2, 0x38a0, 0x7b, 0x0, 0x8, 0x9, 0x6, 0x9, 0x9, 0x8, 0x5, 0x8, 0x1ff, 0x7fff, 0x3, 0x8000002, 0x8, 0x2b, 0x200006, 0x4, 0x7, 0x2, 0xfb4, 0xbf8, 0x7, 0x405, 0x6, 0x4, 0x8001, 0x9, 0x8, 0x3, 0x6ae574d2, 0x6, 0xfffffe00, 0x1000, 0x5, 0x92, 0x3, 0x7fffffff, 0xd7, 0x8001, 0x905, 0x3, 0x6, 0xfffffb31, 0xb, 0x4, 0x7, 0x8, 0x1, 0x6, 0x1, 0xff, 0x100, 0x4, 0x3, 0x6, 0x80000000, 0x0, 0x100a, 0x7fffffff, 0x7fff, 0x2, 0xfffffff8, 0x2, 0x9af, 0x10001, 0x8, 0x4, 0x8, 0x6, 0x7742348d, 0x5, 0x5, 0x1f, 0x40, 0x0, 0x6, 0x7fffffff, 0x7, 0x7, 0x8, 0x17f, 0x6, 0x2, 0x5, 0x6, 0x1, 0xb, 0xe, 0x5, 0x1, 0xfe7, 0xfffffffc, 0x8, 0x7ff, 0x3e9, 0x0, 0x3, 0x2000, 0xd, 0x3, 0x4, 0x3, 0x81, 0x8, 0x14, 0x8, 0x9, 0x6, 0xffff, 0xf28c, 0x7, 0x6, 0x4, 0x7fffffff, 0xffff, 0x7fffffff, 0xc9, 0x2, 0x0, 0x924, 0x6, 0x100, 0x1, 0x5, 0xffff351b, 0x8, 0xfffffffb, 0x7, 0x9, 0x2, 0x5, 0x4, 0x1, 0x4, 0xff, 0xee, 0x2, 0x4, 0x8, 0x9f, 0x7, 0x3, 0x9, 0xc9, 0x1, 0x1, 0x1, 0xfffffff7, 0x0, 0x5, 0x5, 0x6, 0x400, 0x51, 0x7, 0xefb, 0xb8, 0x8, 0x5, 0xfffffff7, 0x7, 0x7, 0x5, 0x6330, 0x0, 0x6, 0xea, 0x0, 0xfff, 0x809, 0x6, 0x0, 0x6, 0xffff, 0xfffffffa, 0x3, 0x0, 0x1, 0x6, 0xfffffc00, 0x5, 0x7, 0x2ec, 0x9, 0x6, 0x3ff, 0x6, 0xfff, 0x0, 0xa7b, 0x62cc, 0xfffffff7, 0x7, 0x40, 0xa, 0x8, 0x3, 0xe, 0x1, 0x1, 0xc, 0x40, 0x3, 0x4, 0x5, 0x5, 0x7ff, 0x5, 0x8, 0x5, 0x3, 0x9, 0x2, 0x80000001, 0x54, 0x400, 0x1, 0x8, 0xa, 0x9, 0xc0, 0x3, 0x72, 0x80, 0x1000, 0x7, 0x800, 0x6, 0xd19, 0x3, 0x93c, 0x6, 0x0, 0x0, 0xe, 0x5, 0x3, 0xfffffffa, 0xa01, 0xf3, 0xffffff00, 0x8, 0xe, 0x3, 0x3ff, 0x5, 0x2, 0x6, 0xfffffff8, 0xffff, 0xfffffff9, 0x9, 0x5, 0x62, 0x8, 0x1, 0xfffffffb, 0x1af88, 0x2, 0x9, 0x7, 0x0, 0x7, 0x8, 0x10000, 0x40, 0x8, 0x7, 0x2b, 0x6, 0x10, 0x5, 0x200, 0x7fff, 0x6, 0x3, 0x8, 0x10, 0x4, 0x6, 0x633, 0xf05, 0x0, 0x101, 0x200, 0x7, 0x7ff, 0x0, 0x1, 0x1, 0x10000, 0x9, 0x40, 0x9, 0x0, 0x7f, 0x8, 0x6, 0xe, 0x3, 0x80000001, 0x0, 0x8, 0x8, 0x7, 0xdd, 0x8, 0x89, 0x0, 0x100, 0x1, 0x9, 0xe75, 0x400, 0x1, 0x0, 0x200, 0xe9ab, 0xfffffff8, 0x8000, 0x7, 0x2, 0x2, 0x43, 0x3ff, 0x0, 0x7, 0x9, 0x1, 0x6, 0x7, 0xa, 0xf, 0xf39d, 0x71, 0xfff, 0x5, 0x8]})
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
write$ppp(0xffffffffffffffff, 0x0, 0x0) (async)
write$ppp(0xffffffffffffffff, 0x0, 0x0)
write$char_usb(r1, &(0x7f0000000040)="e2", 0x2250)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{0x0}], 0x1, 0x3, 0x7)
write(r0, &(0x7f00000000c0)="c253a6b5d7860834080f20aafd9427acb4d76324df36803a4d5d4022ce8cdd6030286e8fc96b93d6bb24adced553580232cfb97d76ffb0f589e0994e9a4b311aaacda72e93bd74d293deaf8a95", 0x4d)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r0, 0x80045700, &(0x7f0000000140)) (async)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r0, 0x80045700, &(0x7f0000000140))
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x10010, r0, 0x7dfff000) (async)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x10010, r0, 0x7dfff000)

2.211823793s ago: executing program 1 (id=2341):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
openat$ttyS3(0xffffff9c, &(0x7f0000004380), 0xf00, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x0, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r1, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)

2.183459262s ago: executing program 5 (id=2342):
read(0xffffffffffffffff, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 32)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000200)={0x4376ea830d56d49d})
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (rerun: 32)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_NMI(r4, 0xae9a) (async)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000500)={[0x0, 0x100000000, 0x0, 0x0, 0x100000, 0xb, 0x401, 0x8000000, 0x7, 0x0, 0xfffffffffffffffe, 0x200, 0x2], 0x0, 0x200})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_open_dev$radio(&(0x7f0000000100), 0x2, 0x2) (async, rerun: 64)
r5 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2) (rerun: 64)
ioctl$VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f00000000c0)={0xf0f041}) (async, rerun: 64)
close(r5) (async, rerun: 64)
r6 = syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_QUERYMENU(r6, 0xc02c5625, &(0x7f0000000040)={0x98f907, 0x0, @name="f4e06b0a1e730e142a5c1e8623218cb8167a99b19faf6797ae55586411baebc8"}) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x810, r6, 0x37a09000) (async)
openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (rerun: 32)
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000280)={0xa, 0x0, [{0xb6e, 0x0, 0x80000000}, {0x1a2, 0x0, 0x1}, {0x40000100, 0x0, 0x5}, {0xbf2, 0x0, 0x7fffffffffffffff}, {0x3b7, 0x0, 0x9}, {0x0, 0x0, 0x81}, {0x310, 0x0, 0xd}, {0x345, 0x0, 0x4}, {0x83b, 0x0, 0x6}, {0x33f, 0x0, 0x4}]})

1.863858192s ago: executing program 1 (id=2343):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000080), 0x4, 0x101881)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000001100)={r1, 0x0, {0x0, 0x0, 0x0, 0x800, 0xffe, 0x0, 0x0, 0x3, 0x1c, "339f020bbe82b3980000e4d6000000de00100d07000000000000009d03740250ceaac594b1b3d741dda1b719b438ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "244333791f045158d97405000000000000040000000100", [0x1ff]}}) (async)
write$FUSE_INIT(r2, &(0x7f00000000c0)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x9, 0x8000000, 0x8, 0x8, 0x8, 0xfffffffc, 0x0, 0x0, 0x10, 0x9}}, 0x50) (async)
r3 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x90040, 0x0) (async, rerun: 32)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) (rerun: 32)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000240)={0x80, 0x7}) (async, rerun: 32)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000001c0)=0x10) (async, rerun: 32)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0x0) (async, rerun: 64)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async, rerun: 64)
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (async)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r4, 0x4008941a, &(0x7f0000000280)) (async)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_INC(r7, 0x40045701, &(0x7f0000000180)=0xffffffff)
ioctl$int_in(r6, 0x40000000af01, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x206200, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CAP_X2APIC_API(r9, 0x4068aea3, &(0x7f0000000d40)={0xdb}) (async, rerun: 32)
r10 = dup(r0) (rerun: 32)
ioctl$VHOST_NET_SET_BACKEND(r6, 0x4008af30, &(0x7f0000000000)={0x1, r10})

1.676690368s ago: executing program 5 (id=2344):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) (async)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x3, &(0x7f0000000080)={0x0, "cbc19de8d51fc1a057020ccfd3da422ceb02449515512b2bde3ea4bdb44a7af50b"}})
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VIDIOC_ENUMAUDOUT(r2, 0xc0345642, &(0x7f0000000200)={0x0, "7fe99814c2440619f3d9d94b4e4a84a23881e89eacc1333ffe736a89fb50587c"}) (async)
r3 = syz_open_dev$usbfs(&(0x7f0000000380), 0x2fb8, 0x1)
syz_open_dev$vim2m(&(0x7f0000000100), 0x6, 0x2) (async)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0xfffffff8, 0x25, &(0x7f0000000180)={0x40, 0xd, 0x8001, 0xd49, 0x953}, 0x95b, 0x6, 0xc0000, 0x0, 0x1e, 0x68e, 0x0}) (async)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f00000000c0)={0x1, 0x2})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0x8)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000140)={0x1, 0x1}) (async)
r5 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
preadv(r5, &(0x7f0000000080)=[{&(0x7f0000000280)=""/212, 0xfffffed3}], 0x1, 0xffeffffb, 0x1007)

1.447763727s ago: executing program 5 (id=2345):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f00000000c0)='cgroup.freeze\x00', 0x300, 0x0)
read$FUSE(r2, &(0x7f000001aa80)={0x2020}, 0x2020)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305839, 0x0) (async, rerun: 32)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (rerun: 32)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000380)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r4, 0x3ba0, &(0x7f00000000c0)={0x48, 0x2, r6, 0x0, <r7=>0x0})
ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, &(0x7f0000000080)={0x28, 0x6, r5, 0x0, &(0x7f0000000040)='x', 0x1, 0x9}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_REPLACE(r4, 0x3ba0, &(0x7f0000000180)={0x48, 0xa, r7, 0x0, r5}) (async)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0x5a051feb1f984a1d, 0x202812, r0, 0x7dfff000)

1.088824178s ago: executing program 5 (id=2346):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x10001})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r2, 0x4148, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f00000003c0), 0x7, 0x2)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r7=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r6, 0xc03864bc, &(0x7f00000001c0)={0x0, 0x2, &(0x7f0000010140)=[r7, r7], &(0x7f0000010200), 0x0, 0x0, 0x0, 0x1000000000000})
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r8, 0x4008ae9c, &(0x7f00000000c0)={0x7, 0x1, 0x9})
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000b40)={0x1, @pix_mp={0x0, 0x0, 0x34324152}})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r9, &(0x7f0000000000), 0x2a979d)
r10 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x121003, 0x0)
ioctl$FS_IOC_SETFLAGS(r10, 0x40081271, &(0x7f0000000040)=0x2000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x6000000)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
r11 = openat$binfmt_register(0xffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r11, &(0x7f00000000c0)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x821e, 0x3a, '\'-*\')!-', 0x3a, '\x00', 0x3a, './file0'}, 0x2f)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x202812, r11, 0xd1ea1000)

440.204403ms ago: executing program 1 (id=2347):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r1 = syz_open_dev$radio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x9b0905, 0x8000, '\x00', @p_u8=&(0x7f0000000080)}})
r2 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0x40045612, &(0x7f0000000080)={0xa})
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r3, &(0x7f00000005c0)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x47b07c7d, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x2, 0x0, 0x800007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x100000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe04, 0x0, 0x0, 0x2], [0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x758, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000003, 0x0, 0x0, 0x0, 0xfffffffd]}, 0x45c)
ioctl$UI_DEV_CREATE(r3, 0x5501)
r4 = dup(r3)
write$uinput_user_dev(r4, &(0x7f00000000c0)={'syz0\x00', {0xfff7, 0xc, 0x100, 0x81}, 0x12, [0x7b, 0xb7e2, 0x3, 0x9, 0x100, 0x3, 0x1, 0x7, 0x9, 0x2, 0x7, 0xa, 0x3, 0x0, 0x7f, 0xd, 0x7fff, 0x6, 0x6, 0x5, 0x6, 0x6, 0x7, 0x6, 0xff, 0x2, 0xa5f2b87a, 0x401, 0x0, 0xfc75, 0x8, 0x9, 0x4, 0x2, 0xffffffff, 0x83, 0xfffff765, 0x2, 0x3, 0x6, 0xa, 0x2, 0x5, 0x0, 0x3ff, 0x6, 0x7, 0x4c, 0xfffffffd, 0x80, 0x80000008, 0x8, 0x9, 0x7, 0x101, 0xc3c, 0x1733, 0x7fff, 0x7ffc, 0x1, 0x6, 0x5, 0x1, 0x4], [0x1, 0x3, 0x8, 0x8, 0x0, 0x8, 0x4, 0x0, 0x25, 0x10, 0x6, 0x7, 0x8, 0xe62, 0xffffff73, 0x1000, 0x6, 0x13e5, 0x3, 0x3, 0x1000, 0x7, 0x1, 0x3b40, 0x4, 0x1000, 0x5, 0x7fff, 0x8, 0x5a, 0xffff2503, 0x7fffffff, 0x6995, 0x1, 0x80000000, 0x8, 0xdab, 0x9, 0x2, 0x76c4, 0xfffffffd, 0x4, 0x401, 0x10000, 0xd, 0x2, 0x9, 0x20010, 0x4000e, 0x9, 0x7, 0xa, 0x9, 0x3, 0x8, 0x3, 0x2, 0x3a6, 0x0, 0xc0d, 0xfffffffd, 0x9, 0xc, 0xfffffffb], [0x3, 0x6, 0x6, 0x9, 0x1000, 0x0, 0x80000000, 0x5, 0x7f, 0xa, 0x100, 0x1000, 0xf1, 0x6, 0xc, 0x10000, 0x72, 0xc, 0x633, 0xd, 0x7, 0x6, 0x80000000, 0x6, 0x0, 0x7, 0x8, 0x2ef3adcb, 0x10, 0x2, 0x8, 0x8, 0x74, 0x4, 0x7, 0x7ff, 0xfffffff2, 0x63, 0x7, 0x2, 0x3, 0x3, 0x20a7fd9e, 0xfffffffd, 0x2, 0xa1, 0x0, 0x9d, 0x7, 0xa8a, 0x2, 0x6, 0x77, 0x8, 0x1ff, 0x7, 0x7, 0x2, 0x0, 0x2, 0x8, 0x2, 0x3, 0x5], [0x4, 0x4, 0x5, 0x8000, 0x493e, 0x3, 0x35ff4447, 0x7, 0x5, 0x4, 0x5d3a, 0x5, 0x5, 0x3ff, 0xb88f, 0xffff0000, 0x9, 0xf7df, 0x2, 0x10, 0x8, 0x2, 0xff, 0x9, 0x4, 0x4, 0x0, 0x0, 0x7, 0x4e6, 0x8, 0x40000000, 0x5ef, 0x8000, 0xc, 0x41, 0x400, 0x1, 0x5, 0x0, 0x9a8, 0x0, 0x231, 0x3ff, 0x8, 0x1, 0xffff0001, 0x1, 0x1, 0x10, 0x8, 0x5396, 0x6161, 0xb, 0x101, 0x1ff, 0x8, 0x431, 0x6, 0x5, 0x4, 0x7b, 0x7fc, 0x9]}, 0x45c)
read$FUSE(r4, &(0x7f0000002c40)={0x2020}, 0x2020)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
r5 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
ioctl$LOOP_GET_STATUS(r5, 0x4c03, &(0x7f0000000040))
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r6, 0x0)
r7 = syz_open_dev$video4linux(&(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_G_FMT(r7, 0xc0305602, &(0x7f0000000540)={0x1, 0xe7})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000540)={0x6000, 0x18000})
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r10, 0x4090ae82, &(0x7f00000003c0)={[0x82bf, 0x80], 0x0, 0x202})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000040000)

0s ago: executing program 5 (id=2348):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000200)={0x28, 0x7, r1, 0x0, &(0x7f0000000240)='LLLLLLLLLLLLLLLLLLLLLLLL', 0x18, 0x8})
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f0000000340)={0x18, r1, 0x2, 0x1c}) (async)
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f0000000340)={0x18, r1, 0x2, 0x1c})
syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2) (async)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0585609, &(0x7f0000000180)={0x0, 0x2})
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0xc34101, 0x0) (async)
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0xc34101, 0x0)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
openat$userio(0xffffffffffffff9c, &(0x7f00000001c0), 0x400400, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, &(0x7f0000000140)={0x0, 0x2b, 0x80800, 0x0, <r4=>0xffffffffffffffff})
write$USERIO_CMD_SEND_INTERRUPT(r4, &(0x7f0000000000)={0x2, 0x1}, 0xfffffe11)
write$vhost_msg_v2(r4, &(0x7f00000004c0)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x1}}, 0x48) (async)
write$vhost_msg_v2(r4, &(0x7f00000004c0)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x1}}, 0x48)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x0, 0x60000)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
write$sndseq(r5, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xfd, @tick, {0x5}, {0xe}, @connect={{}, {0x1, 0x7}}}], 0xfdc1) (async)
write$sndseq(r5, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xfd, @tick, {0x5}, {0xe}, @connect={{}, {0x1, 0x7}}}], 0xfdc1)
read(r0, &(0x7f0000000280)=""/176, 0xfffffee5)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0xa4800, 0x0) (async)
r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0xa4800, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

will be removed.
[  127.009702][ T6785] syz.0.205: attempt to access beyond end of device
[  127.009702][ T6785] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  127.233110][    T9] hid-generic 0000:0000:0000.0002: item fetching failed at offset 0/1
[  127.273285][    T9] hid-generic 0000:0000:0000.0002: probe with driver hid-generic failed with error -22
[  128.593804][ T6847] program syz.3.219 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.551746][ T6870] binder: 6868:6870 ioctl c0306201 2000000003c0 returned -22
[  131.198444][ T6911] sp0: Synchronizing with TNC
[  131.242686][ T6910] [U] �
[  132.718338][ T6967] syz.0.258 (6967): drop_caches: 0
[  132.989415][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  132.996641][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  133.342875][ T6984] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  133.350494][ T6986] FAULT_INJECTION: forcing a failure.
[  133.350494][ T6986] name failslab, interval 1, probability 0, space 0, times 0
[  133.399395][ T6986] CPU: 0 UID: 0 PID: 6986 Comm: syz.3.266 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  133.399424][ T6986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.399434][ T6986] Call Trace:
[  133.399442][ T6986]  <TASK>
[  133.399451][ T6986]  dump_stack_lvl+0x189/0x250
[  133.399479][ T6986]  ? __pfx____ratelimit+0x10/0x10
[  133.399508][ T6986]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.399529][ T6986]  ? __pfx__printk+0x10/0x10
[  133.399553][ T6986]  ? __pfx___might_resched+0x10/0x10
[  133.399574][ T6986]  ? fs_reclaim_acquire+0x7d/0x100
[  133.399603][ T6986]  should_fail_ex+0x414/0x560
[  133.399631][ T6986]  should_failslab+0xa8/0x100
[  133.399656][ T6986]  __kmalloc_noprof+0xcb/0x4f0
[  133.399677][ T6986]  ? tomoyo_encode+0x28b/0x550
[  133.399703][ T6986]  tomoyo_encode+0x28b/0x550
[  133.399729][ T6986]  tomoyo_realpath_from_path+0x58d/0x5d0
[  133.399763][ T6986]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  133.399792][ T6986]  tomoyo_path_number_perm+0x1e8/0x5a0
[  133.399822][ T6986]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  133.399869][ T6986]  ? __lock_acquire+0xab9/0xd20
[  133.399912][ T6986]  ? __fget_files+0x2a/0x420
[  133.399941][ T6986]  ? __fget_files+0x2a/0x420
[  133.399963][ T6986]  ? __fget_files+0x3a0/0x420
[  133.399987][ T6986]  ? __fget_files+0x2a/0x420
[  133.400017][ T6986]  security_file_ioctl+0xcb/0x2d0
[  133.400044][ T6986]  __se_sys_ioctl+0x47/0x170
[  133.400070][ T6986]  do_syscall_64+0xfa/0x3b0
[  133.400087][ T6986]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.400114][ T6986]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.400133][ T6986]  ? clear_bhb_loop+0x60/0xb0
[  133.400156][ T6986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.400174][ T6986] RIP: 0033:0x7f3a6638e929
[  133.400190][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.400214][ T6986] RSP: 002b:00007f3a6724c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  133.400235][ T6986] RAX: ffffffffffffffda RBX: 00007f3a665b5fa0 RCX: 00007f3a6638e929
[  133.400249][ T6986] RDX: 0000200000000000 RSI: 0000000040087543 RDI: 0000000000000003
[  133.400261][ T6986] RBP: 00007f3a6724c090 R08: 0000000000000000 R09: 0000000000000000
[  133.400272][ T6986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.400283][ T6986] R13: 0000000000000000 R14: 00007f3a665b5fa0 R15: 00007ffc1effdaf8
[  133.400311][ T6986]  </TASK>
[  133.400745][ T6986] ERROR: Out of memory at tomoyo_realpath_from_path.
[  133.593539][    C0] vkms_vblank_simulate: vblank timer overrun
[  133.753395][ T6997] kvm: kvm [6993]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x882
[  133.781319][ T6997] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  134.460577][ T7020] FAULT_INJECTION: forcing a failure.
[  134.460577][ T7020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.484049][ T7020] CPU: 1 UID: 0 PID: 7020 Comm: syz.2.278 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  134.484075][ T7020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  134.484085][ T7020] Call Trace:
[  134.484093][ T7020]  <TASK>
[  134.484101][ T7020]  dump_stack_lvl+0x189/0x250
[  134.484128][ T7020]  ? __pfx____ratelimit+0x10/0x10
[  134.484167][ T7020]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.484189][ T7020]  ? __pfx__printk+0x10/0x10
[  134.484211][ T7020]  ? __might_fault+0xb0/0x130
[  134.484246][ T7020]  should_fail_ex+0x414/0x560
[  134.484275][ T7020]  _copy_from_user+0x2d/0xb0
[  134.484297][ T7020]  udmabuf_ioctl+0x121/0x2c0
[  134.484328][ T7020]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  134.484355][ T7020]  ? __fget_files+0x2a/0x420
[  134.484387][ T7020]  ? __fget_files+0x2a/0x420
[  134.484413][ T7020]  ? __fget_files+0x3a0/0x420
[  134.484438][ T7020]  ? __fget_files+0x2a/0x420
[  134.484469][ T7020]  ? bpf_lsm_file_ioctl+0x9/0x20
[  134.484490][ T7020]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  134.484517][ T7020]  __se_sys_ioctl+0xfc/0x170
[  134.484544][ T7020]  do_syscall_64+0xfa/0x3b0
[  134.484561][ T7020]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.484590][ T7020]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.484607][ T7020]  ? clear_bhb_loop+0x60/0xb0
[  134.484630][ T7020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.484648][ T7020] RIP: 0033:0x7fe462f8e929
[  134.484666][ T7020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.484681][ T7020] RSP: 002b:00007fe463e06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.484702][ T7020] RAX: ffffffffffffffda RBX: 00007fe4631b5fa0 RCX: 00007fe462f8e929
[  134.484715][ T7020] RDX: 0000200000000000 RSI: 0000000040087543 RDI: 0000000000000003
[  134.484727][ T7020] RBP: 00007fe463e06090 R08: 0000000000000000 R09: 0000000000000000
[  134.484738][ T7020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.484749][ T7020] R13: 0000000000000000 R14: 00007fe4631b5fa0 R15: 00007ffe779233d8
[  134.484779][ T7020]  </TASK>
[  135.915600][ T7067] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  136.239215][ T7077] syz.0.296: attempt to access beyond end of device
[  136.239215][ T7077] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  136.410051][   T30] audit: type=1800 audit(1750402737.410:6): pid=7083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.297" name="memory.events" dev="tmpfs" ino=357 res=0 errno=0
[  136.601875][ T7089] binder: 7084:7089 ioctl 40046210 ffffffffffffffff returned -14
[  137.261801][ T7105] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  137.576230][ T7109] can0: slcan on ptm0.
[  138.186925][ T7108] can0 (unregistered): slcan off ptm0.
[  138.631405][ T7131] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  141.768044][ T7214] usb usb1: usbfs: process 7214 (syz.0.331) did not claim interface 0 before use
[  142.057117][ T7228] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  142.071084][ T7227] iommufd_mock iommufd_mock0: Adding to iommu group 1
[  143.753424][ T7273] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  144.147947][ T7292] kvm: kvm [7291]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x7fffffffffffffff
[  144.212524][ T7293] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  144.212549][ T7293] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  144.973991][ T7308] autofs4:pid:7308:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  146.604273][ T7345] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  146.649840][ T7349] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  146.704442][ T7352] ALSA: mixer_oss: invalid index 100000
[  147.073857][ T7365] binder: BINDER_SET_CONTEXT_MGR already set
[  147.112870][ T7365] binder: 7363:7365 ioctl 4018620d 200000000100 returned -16
[  148.380387][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  148.408801][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  148.637741][ T7406] input: syz0 as /devices/virtual/input/input17
[  150.422931][ T5841] Bluetooth: hci4: command 0x1003 tx timeout
[  150.429970][ T5157] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  154.887415][ T7532] autofs4:pid:7532:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  155.325494][ T7540] FAULT_INJECTION: forcing a failure.
[  155.325494][ T7540] name failslab, interval 1, probability 0, space 0, times 0
[  155.362973][ T7540] CPU: 1 UID: 0 PID: 7540 Comm: syz.1.430 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  155.363002][ T7540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.363014][ T7540] Call Trace:
[  155.363022][ T7540]  <TASK>
[  155.363030][ T7540]  dump_stack_lvl+0x189/0x250
[  155.363059][ T7540]  ? __pfx____ratelimit+0x10/0x10
[  155.363089][ T7540]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.363111][ T7540]  ? __pfx__printk+0x10/0x10
[  155.363136][ T7540]  ? __pfx___might_resched+0x10/0x10
[  155.363158][ T7540]  ? fs_reclaim_acquire+0x7d/0x100
[  155.363189][ T7540]  should_fail_ex+0x414/0x560
[  155.363220][ T7540]  should_failslab+0xa8/0x100
[  155.363247][ T7540]  __kmalloc_noprof+0xcb/0x4f0
[  155.363269][ T7540]  ? tomoyo_encode+0x28b/0x550
[  155.363296][ T7540]  tomoyo_encode+0x28b/0x550
[  155.363324][ T7540]  tomoyo_realpath_from_path+0x58d/0x5d0
[  155.363358][ T7540]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  155.363387][ T7540]  tomoyo_path_number_perm+0x1e8/0x5a0
[  155.363419][ T7540]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  155.363467][ T7540]  ? __lock_acquire+0xab9/0xd20
[  155.363509][ T7540]  ? __fget_files+0x2a/0x420
[  155.363540][ T7540]  ? __fget_files+0x2a/0x420
[  155.363563][ T7540]  ? __fget_files+0x3a0/0x420
[  155.363589][ T7540]  ? __fget_files+0x2a/0x420
[  155.363620][ T7540]  security_file_ioctl+0xcb/0x2d0
[  155.363650][ T7540]  __se_sys_ioctl+0x47/0x170
[  155.363675][ T7540]  do_syscall_64+0xfa/0x3b0
[  155.363691][ T7540]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.363733][ T7540]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.363750][ T7540]  ? clear_bhb_loop+0x60/0xb0
[  155.363773][ T7540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.363788][ T7540] RIP: 0033:0x7fd37098e929
[  155.363805][ T7540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.363819][ T7540] RSP: 002b:00007fd371814038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.363840][ T7540] RAX: ffffffffffffffda RBX: 00007fd370bb5fa0 RCX: 00007fd37098e929
[  155.363853][ T7540] RDX: 0000200000000000 RSI: 0000000040087543 RDI: 0000000000000004
[  155.363864][ T7540] RBP: 00007fd371814090 R08: 0000000000000000 R09: 0000000000000000
[  155.363882][ T7540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.363892][ T7540] R13: 0000000000000000 R14: 00007fd370bb5fa0 R15: 00007ffc8802e038
[  155.363923][ T7540]  </TASK>
[  155.363944][ T7540] ERROR: Out of memory at tomoyo_realpath_from_path.
[  155.899848][ T7551] usb usb8: usbfs: process 7551 (syz.2.432) did not claim interface 0 before use
[  157.031591][ T7564] autofs4:pid:7564:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  159.073963][ T7599] autofs4:pid:7599:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  160.010360][ T7617] mkiss: ax0: crc mode is auto.
[  160.120089][ T7620] vivid-004: disconnect
[  160.299338][ T7616] vivid-004: reconnect
[  160.463278][ T7625] autofs4:pid:7625:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  162.567404][ T7664] autofs4:pid:7664:validate_dev_ioctl: path string terminator missing for cmd(0xc0189371)
[  162.975915][ T7666] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  163.246542][ T7671] input: syz0 as /devices/virtual/input/input20
[  167.577282][ T7749] binder_alloc: binder_alloc_mmap_handler: 7744 200000735000-200000736000 already mapped failed -16
[  168.118015][ T7755] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  168.141430][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  168.151507][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  168.163595][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  168.173019][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  168.190152][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  168.293821][ T5157] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  168.303168][ T5157] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  168.311130][ T5157] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  168.329641][ T5157] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  168.343952][ T5157] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  168.680058][ T3460] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.853699][ T3460] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.957548][ T7767] program syz.3.505 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.970063][ T7775] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  168.985664][ T7775] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  168.999893][ T3460] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.141070][ T3460] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.717887][ T3460] bridge_slave_1: left allmulticast mode
[  169.738092][ T3460] bridge_slave_1: left promiscuous mode
[  169.767604][ T3460] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.856440][ T3460] bridge_slave_0: left allmulticast mode
[  169.862238][ T3460] bridge_slave_0: left promiscuous mode
[  169.931062][ T3460] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.245884][  T977] hid-generic 0000:0000:0000.0003: item fetching failed at offset 0/1
[  171.246604][  T977] hid-generic 0000:0000:0000.0003: probe with driver hid-generic failed with error -22
[  171.767003][ T3460] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  171.864706][ T3460] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  171.946487][ T3460] bond0 (unregistering): Released all slaves
[  172.095984][ T7759] chnl_net:caif_netlink_parms(): no params data found
[  173.201645][ T3460] hsr_slave_0: left promiscuous mode
[  173.268018][ T3460] hsr_slave_1: left promiscuous mode
[  173.284547][ T3460] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.302377][ T3460] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.367106][ T3460] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.394466][ T3460] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.503955][ T3460] veth1_macvtap: left promiscuous mode
[  173.509593][ T3460] veth0_macvtap: left promiscuous mode
[  173.537158][ T3460] veth1_vlan: left promiscuous mode
[  173.554243][ T3460] veth0_vlan: left promiscuous mode
[  173.641585][ T7889] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  174.718279][ T7907] Falling back ldisc for ttynull.
[  175.131776][ T7918] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  175.588245][ T3460] team0 (unregistering): Port device team_slave_1 removed
[  175.674512][ T3460] team0 (unregistering): Port device team_slave_0 removed
[  176.421488][ T7950] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  176.510505][ T7955] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  176.540210][ T7955] iommufd_mock iommufd_mock2: Adding to iommu group 2
[  176.872425][ T7759] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.891063][ T7759] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.966914][ T7962] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  176.979108][ T7759] bridge_slave_0: entered allmulticast mode
[  176.996813][ T7759] bridge_slave_0: entered promiscuous mode
[  177.088110][ T7759] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.106400][ T7759] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.117441][ T7759] bridge_slave_1: entered allmulticast mode
[  177.161783][ T7759] bridge_slave_1: entered promiscuous mode
[  177.389494][ T7759] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  177.404237][ T7759] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  177.796354][ T7759] team0: Port device team_slave_0 added
[  177.817314][ T7759] team0: Port device team_slave_1 added
[  178.074986][ T7759] batman_adv: batadv0: Adding interface: batadv_slave_0
[  178.093272][ T7759] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.125516][ T7759] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  178.152211][ T7759] batman_adv: batadv0: Adding interface: batadv_slave_1
[  178.180911][ T7759] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.207026][    C0] vkms_vblank_simulate: vblank timer overrun
[  178.249646][ T7759] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  178.441522][ T7759] hsr_slave_0: entered promiscuous mode
[  178.477362][ T7759] hsr_slave_1: entered promiscuous mode
[  178.486878][ T7759] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  178.499652][ T7759] Cannot create hsr debugfs directory
[  179.011672][ T7759] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  179.047739][ T7759] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  179.140435][ T7759] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  179.168032][ T7759] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  179.484692][ T7759] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.551823][ T7759] 8021q: adding VLAN 0 to HW filter on device team0
[  179.588816][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.596100][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.707942][ T3460] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.715678][ T3460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.240032][ T7759] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.638076][ T8064] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.561' sets config #-1
[  180.876618][ T7759] veth0_vlan: entered promiscuous mode
[  180.911309][ T7759] veth1_vlan: entered promiscuous mode
[  181.066991][ T7759] veth0_macvtap: entered promiscuous mode
[  181.080435][ T7759] veth1_macvtap: entered promiscuous mode
[  181.170785][ T7759] batman_adv: batadv0: Interface activated: batadv_slave_0
[  181.236638][ T7759] batman_adv: batadv0: Interface activated: batadv_slave_1
[  181.265500][ T7759] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.265567][ T7759] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.265594][ T7759] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.265620][ T7759] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  181.423730][ T8084] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  181.449126][ T1164] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  181.449152][ T1164] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  181.547772][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  181.547800][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  182.102102][ T8100] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  183.379510][ T8136] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  184.302165][ T8161] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  184.690081][ T8170] input: syz0 as /devices/virtual/input/input22
[  184.691125][ T8172] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  185.260989][ T8193] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  185.471940][ T8198] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  186.696747][ T8232] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  187.239276][ T8246] block nbd1: NBD_DISCONNECT
[  187.377289][  T977] hid (null): unknown global tag 0xe
[  187.408282][  T977] hid-generic 000C:0040:0006.0004: unknown global tag 0xe
[  187.442427][  T977] hid-generic 000C:0040:0006.0004: item 0 1 1 14 parsing failed
[  187.467935][  T977] hid-generic 000C:0040:0006.0004: probe with driver hid-generic failed with error -22
[  188.037343][ T8274] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  191.305416][ T8371] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  191.450993][ T8371] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  192.203826][ T8391] Invalid logical block size (2)
[  192.210311][ T8389] input: syz1 as /devices/virtual/input/input24
[  192.227997][ T8394] Invalid logical block size (2)
[  193.043738][ T8409] loop6: detected capacity change from 0 to 524287999
[  193.244803][ T8414] syz.2.634: attempt to access beyond end of device
[  193.244803][ T8414] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  193.275759][ T8414] syz.2.634: attempt to access beyond end of device
[  193.275759][ T8414] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  193.328276][ T8414] syz.2.634: attempt to access beyond end of device
[  193.328276][ T8414] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  193.367449][ T8414] syz.2.634: attempt to access beyond end of device
[  193.367449][ T8414] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  193.424551][ T8414] syz.2.634: attempt to access beyond end of device
[  193.424551][ T8414] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  193.673440][ T8426] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  194.206299][ T5887] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  194.243066][ T5887] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  194.287925][ T5887] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  194.301981][ T5887] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  194.322042][ T5887] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  194.377238][ T5887] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  194.430764][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  194.437240][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  194.539806][ T8451] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  194.609606][ T8455] kvm: kvm [8446]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0xf0000a1a9
[  194.649850][ T8452] fido_id[8452]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  195.609628][ T8476] binder: 8475:8476 ioctl c018620c 0 returned -14
[  196.654146][ T8507] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  196.980817][ T5867] hid-generic C98F:0003:0000.0006: item fetching failed at offset 0/2
[  197.023562][ T5867] hid-generic C98F:0003:0000.0006: probe with driver hid-generic failed with error -22
[  197.181842][ T8530] sp0: Synchronizing with TNC
[  197.857221][ T8529] [U] �
[  198.749273][ T8574] binder: 8573:8574 ioctl c0306201 200000000640 returned -22
[  199.566496][ T8594] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  200.030531][ T8614] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  201.234028][ T8650] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  202.994965][ T8710] vivid-000: disconnect
[  203.297380][ T8714] vivid-000: reconnect
[  204.481887][ T8761] random: crng reseeded on system resumption
[  206.484139][  T977] hid-generic 009C:0008:0003.0007: unknown main item tag 0x3
[  206.491625][  T977] hid-generic 009C:0008:0003.0007: unknown main item tag 0x0
[  206.542849][  T977] hid-generic 009C:0008:0003.0007: unknown main item tag 0x0
[  206.572788][  T977] hid-generic 009C:0008:0003.0007: unknown main item tag 0x0
[  206.623131][  T977] hid-generic 009C:0008:0003.0007: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  208.421957][ T8860] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  208.581189][ T8873] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  209.238407][ T8883] program syz.4.741 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  212.084068][ T8928] dlm: no locking on control device
[  212.170216][ T8934] input: syz1 as /devices/virtual/input/input27
[  212.734471][ T8945] CUSE: info not properly terminated
[  212.893755][ T8949] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  213.423148][ T8955] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  213.674650][ T8960] mkiss: ax0: crc mode is auto.
[  213.802133][ T8961] binder: 8959:8961 ioctl c00c620f 0 returned -14
[  217.789022][ T9043] syz.2.788: attempt to access beyond end of device
[  217.789022][ T9043] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  218.662627][ T9071] misc userio: No port type given on /dev/userio
[  219.481780][ T9081] binder: BINDER_SET_CONTEXT_MGR already set
[  219.491189][ T9081] binder: 9080:9081 ioctl 4018620d 200000000100 returned -16
[  219.593393][ T9082] binder: 9080:9082 ioctl c0306201 200000000640 returned -22
[  219.985599][ T9094] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  220.945653][ T9108] input: syz1 as /devices/virtual/input/input28
[  221.030795][ T9110] input: syz1 as /devices/virtual/input/input29
[  221.347987][ T9116] ptm ptm9: ldisc open failed (-12), clearing slot 9
[  222.834371][ T9133] [U] 	
[  223.973650][ T3460] Bluetooth: hci4: Frame reassembly failed (-84)
[  224.162790][ T9176] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  225.193611][ T9198] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  225.492044][ T9204] vivid-002: =================  START STATUS  =================
[  225.562733][ T9204] vivid-002: Radio HW Seek Mode: Bounded
[  225.569066][ T9204] vivid-002: Radio Programmable HW Seek: false
[  225.669122][ T9204] vivid-002: RDS Rx I/O Mode: Block I/O
[  225.727644][ T9204] vivid-002: Generate RBDS Instead of RDS: false
[  225.779200][ T9204] vivid-002: RDS Reception: 
[  225.783588][ T5844] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  225.798043][ T5844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  225.806221][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  225.814787][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  225.822965][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  225.832285][ T9204] true
[  225.835359][ T9204] vivid-002: RDS Program Type: 0 inactive
[  225.841164][ T9204] vivid-002: RDS PS Name:  inactive
[  225.846796][ T9204] vivid-002: RDS Radio Text:  inactive
[  225.850689][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  225.852373][ T9204] vivid-002: RDS Traffic Announcement: false inactive
[  225.865495][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  225.868378][ T9204] vivid-002: RDS Traffic Program: false inactive
[  225.875476][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  225.891456][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  225.892789][ T9204] vivid-002: RDS Music: 
[  225.899589][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  225.908762][ T9204] false inactive
[  225.932463][ T9204] vivid-002: ==================  END STATUS  ==================
[  226.023048][ T5841] Bluetooth: hci4: command 0x1003 tx timeout
[  226.023098][ T5157] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  226.058834][ T3460] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.247493][ T3460] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.347246][ T3460] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.454824][ T3460] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.687272][ T9214] chnl_net:caif_netlink_parms(): no params data found
[  226.721519][ T9218] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  226.729971][ T9218] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  226.799254][ T3460] bridge_slave_1: left allmulticast mode
[  226.812938][ T3460] bridge_slave_1: left promiscuous mode
[  226.818835][ T3460] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.844386][ T3460] bridge_slave_0: left allmulticast mode
[  226.850292][ T3460] bridge_slave_0: left promiscuous mode
[  226.857764][ T3460] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.227400][ T3460] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  228.239678][ T3460] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  228.252293][ T3460] bond0 (unregistering): Released all slaves
[  228.536635][ T9214] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.560803][ T9214] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.589979][ T9214] bridge_slave_0: entered allmulticast mode
[  228.655440][ T9214] bridge_slave_0: entered promiscuous mode
[  228.686370][ T9214] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.726740][ T9214] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.752377][ T9214] bridge_slave_1: entered allmulticast mode
[  228.775291][ T9214] bridge_slave_1: entered promiscuous mode
[  228.913755][ T9270] can0: slcan on ttynull.
[  229.141486][ T9214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  229.229588][ T3460] hsr_slave_0: left promiscuous mode
[  229.266486][ T3460] hsr_slave_1: left promiscuous mode
[  229.283217][ T3460] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  229.290707][ T3460] batman_adv: batadv0: Removing interface: batadv_slave_0
[  229.322060][ T3460] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  229.342809][ T3460] batman_adv: batadv0: Removing interface: batadv_slave_1
[  229.362282][   T30] audit: type=1400 audit(1750402830.420:7): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=9284 comm="syz.1.846"
[  229.408244][ T3460] veth1_macvtap: left promiscuous mode
[  229.422859][ T3460] veth0_macvtap: left promiscuous mode
[  229.449346][ T3460] veth1_vlan: left promiscuous mode
[  229.459410][ T3460] veth0_vlan: left promiscuous mode
[  230.521697][ T3460] team0 (unregistering): Port device team_slave_1 removed
[  230.579791][ T3460] team0 (unregistering): Port device team_slave_0 removed
[  230.698471][ T9312] slcan: can't register candev
[  230.705896][ T9312] Falling back ldisc for ptm0.
[  230.724517][ T9313] slcan: can't register candev
[  231.018806][ T9214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  231.106166][ T9268] can0 (unregistered): slcan off ttynull.
[  231.111316][ T9317] mkiss: ax0: crc mode is auto.
[  231.187102][ T9214] team0: Port device team_slave_0 added
[  231.216351][ T9214] team0: Port device team_slave_1 added
[  231.376437][ T9214] batman_adv: batadv0: Adding interface: batadv_slave_0
[  231.395707][ T9214] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  231.452848][ T9214] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  231.481700][ T9214] batman_adv: batadv0: Adding interface: batadv_slave_1
[  231.491075][ T9214] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  231.530601][ T9214] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  231.831921][ T9214] hsr_slave_0: entered promiscuous mode
[  231.850279][ T9214] hsr_slave_1: entered promiscuous mode
[  231.857331][ T9214] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  231.869951][ T9214] Cannot create hsr debugfs directory
[  231.919147][ T9329] kvm: apic: phys broadcast and lowest prio
[  232.310432][ T9338] input: syz1 as /devices/virtual/input/input31
[  232.435273][ T9337] input: syz1 as /devices/virtual/input/input32
[  232.745903][ T9214] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  232.786186][ T9214] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  232.842142][ T9214] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  232.871410][ T9214] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  233.277913][ T9214] 8021q: adding VLAN 0 to HW filter on device bond0
[  233.358808][ T9214] 8021q: adding VLAN 0 to HW filter on device team0
[  233.428582][ T3479] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.436556][ T3479] bridge0: port 1(bridge_slave_0) entered forwarding state
[  233.511447][ T3479] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.518734][ T3479] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.303317][ T9214] 8021q: adding VLAN 0 to HW filter on device batadv0
[  235.319097][ T9214] veth0_vlan: entered promiscuous mode
[  235.347718][ T9214] veth1_vlan: entered promiscuous mode
[  235.369851][ T9437] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  235.443942][ T9214] veth0_macvtap: entered promiscuous mode
[  235.482006][ T9214] veth1_macvtap: entered promiscuous mode
[  235.547218][ T9214] batman_adv: batadv0: Interface activated: batadv_slave_0
[  235.585322][ T9214] batman_adv: batadv0: Interface activated: batadv_slave_1
[  235.593290][ T9437] kvm: kvm [9436]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010007) = 0x7
[  235.610506][ T9214] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  235.648154][ T9214] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  235.658939][ T9214] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  235.672617][ T9214] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  236.019542][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.059902][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.169719][ T3460] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.212389][ T3460] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  236.604694][ T9450] loop6: detected capacity change from 0 to 524287999
[  236.800007][ T9471] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  237.651408][ T9496] CUSE: info not properly terminated
[  239.252157][ T9524] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  240.009621][ T9551] loop6: detected capacity change from 0 to 524287999
[  240.165559][ T9554] loop6: detected capacity change from 524287999 to 524287952
[  241.125979][ T9584] nvme_fabrics: unknown parameter or missing value '��r���5�+�4��W�ڟEk���|f�-_2��Ȁx�$��W<|' in ctrl creation request
[  241.293996][ T9584] nvme_fabrics: missing parameter 'transport=%s'
[  241.301409][ T9584] nvme_fabrics: missing parameter 'nqn=%s'
[  241.464994][ T9591] nvme_fabrics: missing parameter 'transport=%s'
[  241.471667][ T9591] nvme_fabrics: missing parameter 'nqn=%s'
[  242.434638][ T9625] dlm: non-version read from control device 145
[  243.071576][ T9646] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  243.103353][ T9646] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  243.150561][   T30] audit: type=1800 audit(1750402844.210:8): pid=9646 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.913" name="[kvm-gmem]" dev="anon_inodefs" ino=39478 res=0 errno=0
[  243.241502][    C1] vkms_vblank_simulate: vblank timer overrun
[  243.451811][ T9652] binder: 9651:9652 ioctl c0306201 2000000003c0 returned -14
[  243.835308][ T5888] hid-generic C98F:0003:0000.0008: unknown main item tag 0x0
[  243.850921][ T9657] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  243.855078][ T5888] hid-generic C98F:0003:0000.0008: unknown main item tag 0x0
[  243.909703][ T5888] hid-generic C98F:0003:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  244.037999][ T9669] fido_id[9669]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  244.896243][ T9715] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  247.847941][ T9812] [U] 
[  247.847983][ T9812] [U] K{�
[  247.847993][ T9812] [U] �t �1��Š�F���fˊ�`G�J��g���������o��/�mC�
[  247.848015][ T9812] [U] t�ؖ/,�~�Ĝ��j���}8���'o1��"�7-�JQ�K��W��q�5c%"�H12��Y������X�`����`+��(��!(���z'�tXln�I�g�j����ݭ�p�~�7�!���"�����(�5�Ob���̓J�
[  247.848032][ T9812] [U] �k\&�}6�6�X�HX�������.`�a�$�40|϶��9��ި����U��4���Vbz��}�w�M�T���Q��Φr�4��
[  247.848061][ T9812] [U] ".h6��"�k�[����J�4��I�n��[Z(��C|T�]z{��3�c=��x�����4�w�)\T�XJ��SH{q;칢��t��+���g����d�.˂�>y����wUh�fN����hl]S�2���\g%�O�&z)��'�pul�_<�	�ذ����`ұT�������;_�"(�u{7j��2X �/�'��c���I����H�c�ճ�V�=��Ai�%w�Es� R��j���g��r����hI
���a��6-�D��V�� i"��n� ��Asc~4���8c�*�OO5/��J�~���w�vK+����3��Y)��M���v��yq潀DTr�
Otpem%f��ej�A5��T_-X~�^aaۂ�q��
[  247.848102][ T9812] [U] 	+�w�G?]��'a:	��)�
����' B>t���f/��<'�U�'��h�i�.+]e�.�-ɿ���%��>2`�^U�8F.�6��3��+�A�«���g3�p��6:�^0��t��v�'E�t����YC�n��rϩ�n�Pj�;�Z������8!��\���A�ʖ2��$�­wi.��#��/Bai���`��4j��d�y@�z��gW�5˿B��ٜ�N�y"vI2��
[  247.848122][ T9812] [U] �T�_K5�t�YJ���9��c�$br�L�Nul��9w���|�G�"ʃ�%����C�؝���q��
 ��3��q��N^HP*��$	�.�7yӱ�2�
[  247.848137][ T9812] [U] �?���h��*����3�7�鍾^#Q�"0~���(�o�XL�b�,'v��=���C�S���G�S��0�ւ��`���ه��=1(��p#�2DO*Ƀ
[  247.848157][ T9812] [U] �s��g������Gu��d-{���|&������2��L�c_��!`��oz֥�B��%>�r��w���Ss�H"�yA4�O.�Y��䏄RTԶ�B�[+/<<R�B����|Фe���۠�V96#���ͤ�j�U�%
s851���ҩs�P��\��?q�|L��QX�0�K�1orɴ2��|��d�F�������2ޔ���0��H�}C[/����px^��o
[  247.848190][ T9812] [U] �؛���(J�Л��m��xz�;�����؝_����*3�3��5�\�xm��U��AK!aQ`��;F�I+��VUH���m�j��Ʒ��Z�c��z���)_矡	���&�����a�xto���_� ���:���%�P���C���y�+_�����}U�m��ƫC�!KJ�7��g��=b�
[  247.848227][ T9812] [U] ٽ�F�%�XA��l�2r*g��VW��$��j	�A��F�ߝ�+��9̈́Vi�֗�kپ�1}_��
�%�r6��(]��/����řYܺ��h����r g��rn/ܫ�#!�d����%���D��-{�$�vU��T���$:mtr�E�C1V�D~��];[�����sq����(��e,X�8�"�
��G�d���2@T8��������t8.Rc+�@�ꦇp�u�
p����C���'�yL�-Ss1E?�7�O���^]����c��H]�Jkr]Rkq܆��ݣ��OTc��x���4�N�	��&���ڋ��@�:m7�~�+�W*���xM��>>��{q���
_�՝LX8�U����{�Z����)��7?�rR;�c�r�hײڣ����1�>)�Mă��t���(��aϝ�}9�ڥ�J*Mќ�ġ�'L��q	�DW����=��|q�	�Æ�W;5��Ž�!�dB�x`��/��E�`ƦM��X��"�\
[  247.848260][ T9812] [U] {;����٘_�o2��)�o��.2�W2���y���x_  HPϱ�S�D����:]�{������
[  247.848276][ T9812] [U] I,�>��	��5�1��^1�N4�oǶ�'0�?֒i�9w.�_.�W�a���V��`)�Z���c6Giӹ�a��XL[����F�*��O�W)+��'\n�
[K@����2�Ǭ���p"^`���	��
[  247.848288][ T9812] [U] 22��Ʃ���x?0;3u�
[  247.848317][ T9812] [U] ޜ�
��sObx�8�W�4�(�~/���K�U��ԖoQ�e+�G�-y�gY_
�>v�����3.h�ә]̈́�2��)�D�,	��	�D~�d���+�w;A\�F
P��Ș|$��)�
KؐI���ɿk�YT^R���癵��A=�#�������ae��t�1��ݯ4K�.e"R�S|��s���:��>p��r�"z������#P!�KY"�}��F�N84����hޱ�o��sߙ̫%Dlw�m��
[  247.848338][ T9812] [U] [�['xn�'�����,mr��/����1D=!D�x91B�
w�R�lf���K�Z��#�`�l؛�˜��b~�m���
[  247.848350][ T9812] [U] �L�>��d+�d�����"5���h3<���iR=F^�f�n��������v���D�OIO�:U�>�Y�
[  247.848362][ T9812] [U] 'B�6v�20��瞥�׌�"t8�{9�FW��]���쩍
[  247.848375][ T9812] [U] �72�����u�C6����τI]8c��tۨQSk�Y��I��� �|V'�TV/��g�$[� 9kh`�"����}��[^=��0�]��%�̂T�����F�_v�4C���
[  247.848385][ T9812] [U] �ec�
[  247.848398][ T9812] [U] ���|���<��:^�3$7nK~�-�@��?��/mtl��۾�I�w�@g~t�{��P�+�$�jp|���I�Ri�pm� ��Y� ��8�t���V�����,�l�,�
[  247.850058][ T9811] [U] �K�����)0���~��ʪ�iP'�f��z��r���@B�]�5��{��ʼ�'�8�ƥF��UTqUd
ǩ�K;7��0c[��y���YC���ذm��L�8�T�͚�5���rx����W� x���oQhVi'8����L�
[  247.986699][    C0] vkms_vblank_simulate: vblank timer overrun
[  248.085439][    C0] vkms_vblank_simulate: vblank timer overrun
[  248.210459][    C0] vkms_vblank_simulate: vblank timer overrun
[  248.981135][ T9830] dlm: no locking on control device
[  249.679193][ T9837] can0: slcan on ptm1.
[  249.786064][ T9837] can0 (unregistered): slcan off ptm1.
[  249.863114][ T5841] Bluetooth: hci4: command 0x1003 tx timeout
[  249.869941][ T5157] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  250.541456][ T9862] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  251.314309][ T9890] kvm: kvm [9888]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010004) = 0x3
[  251.709289][ T9900] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  251.930488][   T30] audit: type=1800 audit(1750402852.990:9): pid=9914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.974" name="dmabuf" dev="dmabuf" ino=6 res=0 errno=0
[  252.226653][ T9929] usb usb9: usbfs: process 9929 (syz.2.978) did not claim interface 0 before use
[  253.383047][ T9981] tap0: tun_chr_ioctl cmd 1074025680
[  253.433447][ T9982] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  253.668095][ T9987] binder: 9985:9987 ioctl 400c620e 2000000014c0 returned -22
[  253.798362][ T9986] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  253.806165][ T9987] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  253.830153][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.850941][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.890010][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.904695][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.912519][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.928374][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.937442][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.950682][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.959102][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  253.988236][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.013488][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.021313][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.030353][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.038700][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.047934][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.066225][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.082872][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.101094][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.112900][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.131006][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.149425][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.166793][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.182824][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.201066][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.222805][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.230733][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.258576][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.269183][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.282093][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.292187][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.315834][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.324141][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.331981][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.343556][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.351525][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.360210][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.369220][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.378055][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.387125][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.395396][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.404457][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.412356][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.427177][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.435551][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.444720][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.453713][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.462348][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.470992][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.495347][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.530762][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.546073][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.554988][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.568265][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.576608][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.590303][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.613532][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.621494][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.632603][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.676412][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.704289][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.735600][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.751163][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.766579][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.776232][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.789500][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.797772][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.813130][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.821366][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.839948][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.851208][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.864565][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.872476][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.884483][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.892456][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.921131][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.949429][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.971581][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  254.992156][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.005740][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.014804][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.022599][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.034399][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.042517][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.074328][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.082275][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.132840][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.154471][T10015] random: crng reseeded on system resumption
[  255.167567][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.191149][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.205304][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.222348][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.241368][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.255971][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.272937][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.322772][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.351880][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.370634][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.379788][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.392461][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.431136][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.441222][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.462197][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.471116][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.489376][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.498429][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.507329][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.528737][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.546976][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.562756][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.580943][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.603724][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.611550][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.632895][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.651702][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.667545][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.692714][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.710904][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.729068][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.741795][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.774670][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.810164][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.829748][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.850326][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.870735][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  255.878346][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  255.879294][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.918536][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.949163][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  255.992738][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.028306][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.039997][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.051301][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.081708][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.105317][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.132982][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.152743][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.160728][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.187488][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.196384][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.217985][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.248470][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.258718][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.284132][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.291951][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.310847][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.322732][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.340860][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.350975][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.369511][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.379651][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.398056][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.412733][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.422460][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.440968][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.449794][T10053] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  256.462727][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.492745][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.500598][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.634078][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.642178][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.647276][T10058] block device autoloading is deprecated and will be removed.
[  256.666530][T10058] syz.5.1008: attempt to access beyond end of device
[  256.666530][T10058] md3: rw=2048, sector=0, nr_sectors = 8 limit=0
[  256.680132][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.699046][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.737696][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.760963][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.772326][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.801097][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.835914][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.870030][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.890899][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.913584][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.937348][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.951875][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  256.976731][  T977] hid-generic 0008:0000:FFFFFBFF.0009: unknown main item tag 0x0
[  257.003112][  T977] hid-generic 0008:0000:FFFFFBFF.0009: hidraw0: <UNKNOWN> HID v9.86 Device [syz0] on syz1
[  257.216819][T10073] fido_id[10073]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  257.913028][T10097] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  260.468105][T10174] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  261.812480][T10214] mkiss: ax0: crc mode is auto.
[  262.021070][T10222] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  262.487530][T10234] input: syz0 as /devices/virtual/input/input38
[  263.274810][T10251] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  263.935964][T10274] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  264.783742][T10306] misc userio: Invalid payload size
[  265.401328][T10324] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  266.650148][T10363] binder: 10362:10363 ioctl c018620b 9999999999999999 returned -14
[  267.994350][T10409] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  269.541717][T10470] input: syz1 as /devices/virtual/input/input40
[  270.020283][T10478] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  271.280732][T10510] binfmt_misc: register: failed to install interpreter file ./cgroup
[  271.895379][T10520] CUSE: unknown device info "MzP���{U��җ�E�s��Z$cw#�/�f�}ٔ�b,Q�[{��Ʈ$
[  271.895379][T10520] �4&I:#5o6�3�ю.l%��wC
[  271.895379][T10520] �?"
[  271.895407][T10520] CUSE: unknown device info "v�2�.7���˂����*5����SEAy���	�`?e`��l6ݡ���Q0V84܎{c"�K��^�vaO֐M ����8�f1�\.dž6��(3�i�����fω11,kb���z���"�NXj�}�	�~
�wu/�K�9�.��r��פ�"
[  271.895423][T10520] CUSE: DEVNAME unspecified
[  271.896712][T10520] block nbd2: NBD_DISCONNECT
[  272.404576][T10528] vivid-000: disconnect
[  272.420334][T10527] vivid-000: reconnect
[  272.585090][T10534] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  272.791799][T10545] syz.2.1128: attempt to access beyond end of device
[  272.791799][T10545] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  273.423674][T10566] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  274.096746][T10569] input: syz1 as /devices/virtual/input/input42
[  277.891271][T10698] input: syz1 as /devices/virtual/input/input43
[  278.121191][T10703] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  279.126145][T10742] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  280.008460][T10781] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  280.102968][ T5841] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  280.384803][T10792] sp0: Synchronizing with TNC
[  281.666538][T10839] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  281.900734][   T30] audit: type=1800 audit(1750402882.960:10): pid=10848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1210" name="dmabuf" dev="dmabuf" ino=7 res=0 errno=0
[  282.205877][T10863] kvm: kvm [10857]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x3
[  282.593547][T10869] QAT: Stopping all acceleration devices.
[  282.802135][T10875] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  283.375863][T10900] binder: 10898:10900 ioctl c0306201 200000000540 returned -22
[  283.999145][T10926] CUSE: info not properly terminated
[  284.636367][T10938] usb usb9: usbfs: process 10938 (syz.3.1237) did not claim interface 0 before use
[  285.958269][T10969] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  285.996723][T10969] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  286.034858][T10972] iommufd_mock iommufd_mock2: Adding to iommu group 2
[  287.230623][T11005] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  287.249733][T11005] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  291.834892][T11121] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  295.049234][T11259] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  295.418566][T11274] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  295.904666][T11292] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  303.634029][T11332] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  303.649222][T11331] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  304.470276][T11357] block device autoloading is deprecated and will be removed.
[  304.974078][T11369] mkiss: ax0: crc mode is auto.
[  305.037842][T11372] syz.2.1351: attempt to access beyond end of device
[  305.037842][T11372] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  305.087506][T11374] mkiss: ax0: crc mode is auto.
[  305.565590][T11382] Failed to get privilege flags for destination (handle=0x2:0x4)
[  307.118088][T11416] kvm_intel: kvm [11415]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xff
[  307.331927][T11420] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  308.213641][T11444] [U] 
[  308.217036][T11444] [U] K{�
[  308.220193][T11444] [U] �t �1��Š�F���fˊ�`G�J��g���������o��/�mC�
[  308.227263][T11444] [U] t�ؖ/,�~�Ĝ��j���}8���'o1��"�7-�JQ�K��W��q�5c%"�H12��Y������X�`����`+��(��!(���z'�tXln�I�g�j����ݭ�p�~�7�!���"�����(�5�Ob���̓J�
[  308.243285][T11444] [U] �k\&�}6�6�X�HX�������.`�a�$�40|϶��9��ި����U��4���Vbz��}�w�M�T���Q��Φr�4��
[  308.254293][T11444] [U] ".h6��"�k�[����J�4��I�n��[Z(��C|T�]z{��3�c=��x�����4�w�)\T�XJ��SH{q;칢��t��+���g����d�.˂�>y����wUh�fN����hl]S�2���\g%�O�&z)��'�pul�_<�	�ذ����`ұT�������;_�"(�u{7j��2X �/�'��c���I����H�c�ճ�V�=��Ai�%w�Es� R��j���g��r����hI
���a��6-�D��V�� i"��n� ��Asc~4���8c�*�OO5/��J�~���w�vK+����3��Y)��M���v��yq潀DTr�
Otpem%f��ej�A5��T_-X~�^aaۂ�q��
[  308.290083][T11444] [U] 	+�w�G?]��'a:	��)�
����' B>t���f/��<'�U�'��h�i�.+]e�.�-ɿ���%��>2`�^U�8F.�6��3��+�A�«���g3�p��6:�^0��t��v�'E�t����YC�n��rϩ�n�Pj�;�Z������8!��\���A�ʖ2��$�­wi.��#��/Bai���`��4j��d�y@�z��gW�5˿B��ٜ�N�y"vI2��
[  308.313659][T11444] [U] �T�_K5�t�YJ���9��c�$br�L�Nul��9w���|�G�"ʃ�%����C�؝���q��
 ��3��q��N^HP*��$	�.�7yӱ�2�
[  308.324802][T11444] [U] �?���h��*����3�7�鍾^#Q�"0~���(�o�XL�b�,'v��=���C�S���G�S��0�ւ��`���ه��=1(��p#�2DO*Ƀ
[  308.336824][T11444] [U] �s��g������Gu��d-{���|&������2��L�c_��!`��oz֥�B��%>�r��w���Ss�H"�yA4�O.�Y��䏄RTԶ�B�[+/<<R�B����|Фe���۠�V96#���ͤ�j�U�%
s851���ҩs�P��\��?q�|L��QX�0�K�1orɴ2��|��d�F�������2ޔ���0��H�}C[/����px^��o
[  308.402752][T11444] [U] �؛���(J�Л��m��xz�;�����؝_����*3�3��5�\�xm��U��AK!aQ`��;F�I+��VUH���m�j��Ʒ��Z�c��z���)_矡	���&�����a�xto���_� ���:���%�P���C���y�+_�����}U�m��ƫC�!KJ�7��g��=b�
[  308.421725][T11444] [U] ٽ�F�%�XA��l�2r*g��VW��$��j	�A��F�ߝ�+��9̈́Vi�֗�kپ�1}_��
�%�r6��(]��/����řYܺ��h����r g��rn/ܫ�#!�d����%���D��-{�$�vU��T���$:mtr�E�C1V�D~��];[�����sq����(��e,X�8�"�
��G�d���2@T8��������t8.Rc+�@�ꦇp�u�
p����C���'�yL�-Ss1E?�7�O���^]����c��H]�Jkr]Rkq܆��ݣ��OTc��x���4�N�	��&���ڋ��@�:m7�~�+�W*���xM��>>��{q���
_�՝LX8�U����{�Z����)��7?�rR;�c�r�hײڣ����1�>)�Mă��t���(��aϝ�}9�ڥ�J*Mќ�ġ�'L��q	�DW����=��|q�	�Æ�W;5��Ž�!�dB�x`��/��E�`ƦM��X��"�\
[  308.468941][T11444] [U] {;����٘_�o2��)�o��.2�W2���y���x_  HPϱ�S�D����:]�{������
[  308.477733][T11444] [U] I,�>��	��5�1��^1�N4�oǶ�'0�?֒i�9w.�_.�W�a���V��`)�Z���c6Giӹ�a��XL[����F�*��O�W)+��'\n�
[K@����2�Ǭ���p"^`���	��
[  308.491567][T11444] [U] 22��Ʃ���x?0;3u�
[  308.495789][T11444] [U] ޜ�
��sObx�8�W�4�(�~/���K�U��ԖoQ�e+�G�-y�gY_
�>v�����3.h�ә]̈́�2��)�D�,	��	�D~�d���+�w;A\�F
P��Ș|$��)�
KؐI���ɿk�YT^R���癵��A=�#�ܜ	����ae��t�1��ݯ4K�.e"R�S|��s���:��>p��r�"z������#P!�KY"�}��F�N84����hޱ�o��sߙ̫%Dlw�m��
[  308.521095][T11444] [U] [�['xn�'�����,mr��/����1D=!D�x91B�
w�R�lf���K�Z��#�`�l؛�˜��b~�m���
[  308.530847][T11444] [U] �L�>��d+�d�����"5���h3<���iR=F^�f�n��������v���D�OIO�:U�>�Y�
[  308.539456][T11444] [U] 'B�6v�20��瞥�׌�"t8�{9�FW��]���쩍
[  308.545738][T11444] [U] �72�����u�C6����τI]8c��tۨQSk�Y��I��� �|V'�TV/��g�$[� 9kh`�"����}��[^=��0�]��%�̂T�����F�_v�4C���
[  308.558409][T11444] [U] �ec�
[  308.561528][T11444] [U] ���|���<��:^�3$7nK~�-�@��?��/mtl��۾�I�w�@g~t�{��P�+�$�jp|���I�Ri�pm� ��Y� ��8�t���V�����,�l�,�
[  309.073353][T11440] [U] �K�����)0���~��ʪ�iP'�f��z��r���@B�]�5��{��ʼ�'�8�ƥF��UTqUd
ǩ�K;7��0c[��y���YC���ذm��L�8�T�͚�5���rx����W� x���oQhVi'8����L�
[  309.117564][T11465] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  310.038756][T11492] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  310.709004][T11505] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  310.942991][T11508] binder: 11507:11508 ioctl c0306201 200000000380 returned -14
[  310.971678][T11509] binder: 11507:11509 ioctl c0306201 200000000680 returned -11
[  311.019318][T11508] binder: 11507:11508 ioctl c0306201 200000000680 returned -11
[  311.664599][T11543] QAT: failed to copy from user cfg_data.
[  312.084903][    C1] sd 0:0:1:0: [sda] tag#4331 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  312.095603][    C1] sd 0:0:1:0: [sda] tag#4331 CDB: Read(6) 08 00 00 00 85 f0
[  312.153382][T11554] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  312.249973][T11556] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  312.874511][T11570] syz.2.1414: attempt to access beyond end of device
[  312.874511][T11570] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  314.016009][T11601] binder: 11600:11601 ioctl c0046209 0 returned -22
[  314.510737][T11615] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  314.543929][T11617] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  314.595962][T11615] can0: slcan on ptm0.
[  314.873686][T11614] can0 (unregistered): slcan off ptm0.
[  315.055532][T11637] usb usb8: usbfs: process 11637 (syz.1.1431) did not claim interface 0 before use
[  315.269150][   T30] audit: type=1400 audit(1750402916.330:11): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=11641 comm="syz.1.1432"
[  315.974377][T11659] serio: Serial port ttynull
[  317.248564][T11707] usb usb8: usbfs: process 11707 (syz.3.1443) did not claim interface 0 before use
[  317.310241][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  317.316971][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  319.603207][   T30] audit: type=1400 audit(1750402920.670:12): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=11776 comm="syz.2.1461"
[  319.606543][   T30] audit: type=1400 audit(1750402920.670:13): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=11776 comm="syz.2.1461"
[  320.944114][T11822] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  321.320104][T11835] binder: 11834:11835 ioctl c018620c 200000000380 returned -22
[  321.341051][T11836] syz.5.1473: attempt to access beyond end of device
[  321.341051][T11836] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  321.667370][T11843] random: crng reseeded on system resumption
[  321.996624][T11854] binder: 11852:11854 ioctl c0306201 2000000003c0 returned -22
[  322.757770][T11880] CUSE: unknown device info "MzP���{U��җ�E�s��Z$cw#�/�f�}ٔ�b,Q�[{��Ʈ$
[  322.757770][T11880] �4&I:#5o6�3�ю.l%��wC
[  322.757770][T11880] �?"
[  322.795674][T11880] CUSE: unknown device info "v�2�.7���˂����*5����SEAy���	�`?e`��l6ݡ���Q0V84܎{c"�K��^�vaO֐M ����8�f1�\.dž6��(3�i�����fω11,kb���z���"�NXj�}�	�~
�wu/�K�9�.��r��פ�"
[  322.879445][T11880] CUSE: DEVNAME unspecified
[  322.992404][T11886] random: crng reseeded on system resumption
[  323.779711][T11901] input: syz0 as /devices/virtual/input/input47
[  323.845605][T11901] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  323.897357][T11904] deleting an unspecified loop device is not supported.
[  324.075250][T11915] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  324.551084][T11929] qrtr: Invalid version 24
[  324.956585][T11938] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  325.121267][T11940] syz.5.1503: attempt to access beyond end of device
[  325.121267][T11940] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  325.451551][T11946] binder: 11942:11946 ioctl 400c620e 2000000000c0 returned -22
[  326.789878][T11977] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  326.803476][T11977] binder: BC_ATTEMPT_ACQUIRE not supported
[  326.809497][T11977] binder: 11976:11977 ioctl c0306201 200000000100 returned -22
[  327.012449][ T3479] Bluetooth: hci4: Frame reassembly failed (-84)
[  328.599551][T12037] dlm: no local IP address has been set
[  328.607251][T12037] dlm: cannot start dlm midcomms -107
[  329.063096][ T5841] Bluetooth: hci4: command 0x1003 tx timeout
[  329.071138][ T5157] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  329.311556][T12059] can0: slcan on ptm0.
[  329.446520][T12056] can0 (unregistered): slcan off ptm0.
[  329.570429][T12069] syz.2.1543: attempt to access beyond end of device
[  329.570429][T12069] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  329.900402][T12087] usb usb1: usbfs: process 12087 (syz.2.1548) did not claim interface 0 before use
[  330.952398][T12124] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  331.709614][T12144] mkiss: ax0: crc mode is auto.
[  331.715553][ T3460] Bluetooth: hci4: Frame reassembly failed (-84)
[  331.722457][ T3460] Bluetooth: hci4: Frame reassembly failed (-84)
[  331.975999][T12157] kvm: kvm [12149]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0xa1a9
[  333.611565][T12187] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  333.630918][T12185] QAT: Device 7 not found
[  333.645994][T12185] QAT: Invalid ioctl -1070591350
[  333.786506][ T5157] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  333.793607][ T5841] Bluetooth: hci4: command 0x1003 tx timeout
[  333.969865][T12191] can0: slcan on ptm0.
[  334.433918][T12188] can0 (unregistered): slcan off ptm0.
[  335.464790][T12235] binder: 12234:12235 ioctl c0306201 0 returned -14
[  335.957205][T12252] usb usb9: usbfs: process 12252 (syz.2.1586) did not claim interface 0 before use
[  336.022372][T12252] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  336.516764][T12267] can0: slcan on ptm0.
[  336.811490][T12277] binder: 12273:12277 ioctl c0306201 0 returned -14
[  336.917645][T12265] can0 (unregistered): slcan off ptm0.
[  337.118090][T12282] input: syz1 as /devices/virtual/input/input48
[  337.207085][T12290] kvm: user requested TSC rate below hardware speed
[  337.215617][T12288] kvm: user requested TSC rate below hardware speed
[  337.718027][T12307] binder: 12306:12307 ioctl c0306201 0 returned -14
[  337.886525][T12310] input: syz0 as /devices/virtual/input/input49
[  338.723662][   T49] Bluetooth: hci4: Frame reassembly failed (-84)
[  339.516868][T12348] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  339.783889][T12352] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  340.129267][T12361] syz.1.1616 (12361) used obsolete PPPIOCDETACH ioctl
[  340.176302][T12366] syz.3.1618: attempt to access beyond end of device
[  340.176302][T12366] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  340.457171][T12379] CUSE: info not properly terminated
[  340.572388][T12381] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  340.582226][T12381] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  340.744404][ T5157] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  340.745293][ T5841] Bluetooth: hci4: command 0x1003 tx timeout
[  340.949665][T12392] random: crng reseeded on system resumption
[  340.980515][T12394] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  341.592541][T12414] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  342.648601][T12452] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  342.871136][T12461] misc userio: No port type given on /dev/userio
[  342.881829][T12461] misc userio: The device must be registered before sending interrupts
[  342.892349][T12461] misc userio: The device must be registered before sending interrupts
[  342.909134][T12462] misc userio: No port type given on /dev/userio
[  344.440517][T12514] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  344.462329][T12515] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  344.570557][T12521] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  345.042138][T12533] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  346.930616][T12594] syz.5.1685: attempt to access beyond end of device
[  346.930616][T12594] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  348.192577][T12633] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  349.520766][T12670] binder: 12669:12670 ioctl c0306201 2000000002c0 returned -14
[  349.700416][T12680] binder: 12678:12680 ioctl c0306201 200000000540 returned -22
[  349.708948][T12681] Sensor A: =================  START STATUS  =================
[  349.727309][T12681] Sensor A: Test Pattern: 75% Colorbar
[  349.763808][T12681] Sensor A: Show Information: All
[  349.769094][T12681] Sensor A: Vertical Flip: true
[  349.800010][T12681] Sensor A: Horizontal Flip: false
[  349.813514][T12681] Sensor A: Brightness: 255
[  349.818403][T12681] Sensor A: Contrast: 0
[  349.822795][T12681] Sensor A: Hue: 0
[  349.832037][T12681] Sensor A: Saturation: 128
[  349.836833][T12681] Sensor A: ==================  END STATUS  ==================
[  349.976310][T12687] CUSE: info not properly terminated
[  350.008739][T12687] syz.1.1713: attempt to access beyond end of device
[  350.008739][T12687] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  350.403577][T12705] binder: 12704:12705 ioctl c0306201 2000000002c0 returned -14
[  350.890851][T12726] binder: 12720:12726 ioctl c0306201 200000000000 returned -14
[  350.922809][T12728] input: syz1 as /devices/virtual/input/input53
[  351.446571][T12743] binder: 12742:12743 ioctl c0306201 2000000002c0 returned -14
[  353.464735][T12821] sp0: Synchronizing with TNC
[  353.475238][T12820] [U] �
[  354.196684][T12855] usb usb1: usbfs: process 12855 (syz.5.1762) did not claim interface 0 before use
[  354.216699][T12855] usb usb1: selecting invalid altsetting 256
[  354.979573][T12880] mkiss: ax0: crc mode is auto.
[  356.695839][T12892] syz.3.1772: vmalloc error: size 566231040, failed to allocated page array size 1105920, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  356.716681][T12892] CPU: 1 UID: 0 PID: 12892 Comm: syz.3.1772 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  356.716707][T12892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  356.716718][T12892] Call Trace:
[  356.716727][T12892]  <TASK>
[  356.716736][T12892]  dump_stack_lvl+0x189/0x250
[  356.716769][T12892]  ? __pfx_dump_stack_lvl+0x10/0x10
[  356.716791][T12892]  ? __pfx__printk+0x10/0x10
[  356.716814][T12892]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  356.716842][T12892]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  356.716870][T12892]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  356.716900][T12892]  warn_alloc+0x214/0x310
[  356.716934][T12892]  ? __pfx_warn_alloc+0x10/0x10
[  356.716981][T12892]  ? __get_vm_area_node+0x28f/0x300
[  356.717007][T12892]  ? vb2_vmalloc_alloc+0xef/0x340
[  356.717034][T12892]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  356.717092][T12892]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  356.717123][T12892]  ? __kasan_kmalloc+0x93/0xb0
[  356.717149][T12892]  vmalloc_user_noprof+0xad/0xf0
[  356.717172][T12892]  ? vb2_vmalloc_alloc+0xef/0x340
[  356.717194][T12892]  vb2_vmalloc_alloc+0xef/0x340
[  356.717213][T12892]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  356.717236][T12892]  __vb2_queue_alloc+0x9bf/0x15a0
[  356.717284][T12892]  vb2_core_reqbufs+0xc31/0x1420
[  356.717322][T12892]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  356.717351][T12892]  ? __vb2_init_fileio+0x1e8/0xff0
[  356.717375][T12892]  __vb2_init_fileio+0x318/0xff0
[  356.717409][T12892]  ? __pfx___mutex_lock+0x10/0x10
[  356.717440][T12892]  __vb2_perform_fileio+0x284/0x1600
[  356.717483][T12892]  vb2_fop_read+0x273/0x360
[  356.717513][T12892]  v4l2_read+0x199/0x2c0
[  356.717542][T12892]  ? __pfx_v4l2_read+0x10/0x10
[  356.717565][T12892]  vfs_read+0x1fd/0x980
[  356.717600][T12892]  ? __pfx_vfs_read+0x10/0x10
[  356.717629][T12892]  ? __fget_files+0x2a/0x420
[  356.717661][T12892]  ? __fget_files+0x2a/0x420
[  356.717688][T12892]  ? __fget_files+0x3a0/0x420
[  356.717716][T12892]  ? __fget_files+0x2a/0x420
[  356.717755][T12892]  ksys_read+0x145/0x250
[  356.717783][T12892]  ? __pfx_ksys_read+0x10/0x10
[  356.717806][T12892]  ? rcu_is_watching+0x15/0xb0
[  356.717835][T12892]  ? do_syscall_64+0xbe/0x3b0
[  356.717860][T12892]  do_syscall_64+0xfa/0x3b0
[  356.717878][T12892]  ? lockdep_hardirqs_on+0x9c/0x150
[  356.717908][T12892]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.717927][T12892]  ? clear_bhb_loop+0x60/0xb0
[  356.717952][T12892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.717970][T12892] RIP: 0033:0x7f3a6638e929
[  356.717989][T12892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.718005][T12892] RSP: 002b:00007f3a6724c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  356.718027][T12892] RAX: ffffffffffffffda RBX: 00007f3a665b5fa0 RCX: 00007f3a6638e929
[  356.718042][T12892] RDX: 0000000000000013 RSI: 0000200000000180 RDI: 0000000000000005
[  356.718054][T12892] RBP: 00007f3a66410b39 R08: 0000000000000000 R09: 0000000000000000
[  356.718066][T12892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  356.718077][T12892] R13: 0000000000000000 R14: 00007f3a665b5fa0 R15: 00007ffc1effdaf8
[  356.718109][T12892]  </TASK>
[  356.718117][T12892] Mem-Info:
[  357.042313][T12892] active_anon:18143 inactive_anon:0 isolated_anon:0
[  357.042313][T12892]  active_file:3351 inactive_file:44856 isolated_file:0
[  357.042313][T12892]  unevictable:772 dirty:2774 writeback:0
[  357.042313][T12892]  slab_reclaimable:11158 slab_unreclaimable:95062
[  357.042313][T12892]  mapped:26846 shmem:1381 pagetables:1451
[  357.042313][T12892]  sec_pagetables:0 bounce:0
[  357.042313][T12892]  kernel_misc_reclaimable:0
[  357.042313][T12892]  free:1310044 free_pcp:13749 free_cma:0
[  357.088348][T12892] Node 0 active_anon:73228kB inactive_anon:0kB active_file:13380kB inactive_file:179232kB unevictable:1552kB isolated(anon):0kB isolated(file):0kB mapped:107472kB dirty:11096kB writeback:0kB shmem:3988kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12112kB pagetables:5760kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  357.122375][T12892] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  357.154641][T12892] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  357.183541][T12892] lowmem_reserve[]: 0 2497 2498 2498 2498
[  357.189374][T12892] Node 0 DMA32 free:1318024kB boost:0kB min:34232kB low:42788kB high:51344kB reserved_highatomic:0KB free_highatomic:0KB active_anon:76784kB inactive_anon:0kB active_file:13380kB inactive_file:177904kB unevictable:1552kB writepending:11096kB present:3129332kB managed:2557540kB mlocked:16kB bounce:0kB free_pcp:35964kB local_pcp:15224kB free_cma:0kB
[  357.228901][T12892] lowmem_reserve[]: 0 0 1 1 1
[  357.262796][T12892] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  357.291760][    C0] vkms_vblank_simulate: vblank timer overrun
[  357.310528][T12892] lowmem_reserve[]: 0 0 0 0 0
[  357.316703][T12892] Node 1 Normal free:3904284kB boost:0kB min:55652kB low:69564kB high:83476kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17120kB local_pcp:12608kB free_cma:0kB
[  357.348237][    C0] vkms_vblank_simulate: vblank timer overrun
[  357.360303][T12892] lowmem_reserve[]: 0 0 0 0 0
[  357.366586][T12892] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  357.438256][T12892] Node 0 DMA32: 3*4kB (UME) 23*8kB (UE) 1*16kB (E) 147*32kB (ME) 106*64kB (UME) 16*128kB (UME) 7*256kB (ME) 5*512kB (UME) 3*1024kB (M) 1*2048kB (M) 316*4096kB (UM) = 1317556kB
[  357.497304][T12892] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  357.523124][T12892] Node 1 Normal: 165*4kB (UE) 47*8kB (UME) 35*16kB (UME) 81*32kB (UME) 29*64kB (UME) 7*128kB (UME) 2*256kB (M) 3*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 950*4096kB (M) = 3904284kB
[  357.542139][T12892] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  357.574614][T12892] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  357.593229][T12892] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  357.613308][T12892] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  357.652487][T12892] 49580 total pagecache pages
[  357.657398][T12892] 0 pages in swap cache
[  357.661594][T12892] Free swap  = 124996kB
[  357.672711][T12892] Total swap = 124996kB
[  357.682817][T12892] 2097051 pages RAM
[  357.702798][T12892] 0 pages HighMem/MovableOnly
[  357.707592][T12892] 425688 pages reserved
[  357.711774][T12892] 0 pages cma reserved
[  357.996502][T12973] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  358.990895][T13028] binder: 13025:13028 ioctl c0306201 2000000003c0 returned -14
[  359.027753][T13027] random: crng reseeded on system resumption
[  359.450105][T13049] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  360.499011][T13097] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  363.131095][T13208] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  364.099656][T13243] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  364.272480][T13259] binder: 13255:13259 ioctl 400c620e 2000000014c0 returned -22
[  364.898399][T13296] usb usb8: usbfs: process 13296 (syz.5.1858) did not claim interface 0 before use
[  366.143533][T13341] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  366.751323][T13374] CUSE: unknown device info "MzP���{U��җ�E�s��Z$cw#�/�f�}ٔ�b,Q�[{��Ʈ$
[  366.751323][T13374] �4&I:#5o6�3�ю.l%��wC
[  366.751323][T13374] �?"
[  366.822515][T13374] CUSE: unknown device info "v�2�.7���˂����*5����SEAy���	�`?e`��l6ݡ���Q0V84܎{c"�K��^�vaO֐M ����8�f1�\.dž6��(3�i�����fω11,kb���z���"�NXj�}�	�~
�wu/�K�9�.��r��פ�"
[  366.857818][T13374] CUSE: DEVNAME unspecified
[  367.243704][T13396] input: syz1 as /devices/virtual/input/input57
[  367.303067][T13396] program syz.1.1881 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  369.151469][T13493] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  370.234089][T13531] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  370.244809][T13531] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  371.423690][T13563] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  372.520005][T13622] dlm: Unknown command passed to DLM device : 222
[  372.520005][T13622] 
[  373.451209][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x7
[  373.483615][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x6
[  373.491560][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.512818][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.520633][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.552765][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.560657][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.582742][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.590746][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.652754][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.660599][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.707965][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.733141][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.768873][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.787518][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.818846][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.840506][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.873161][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.881257][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.890536][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.905711][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.916225][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.954785][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.976773][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  373.995675][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.011057][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.027115][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.039315][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.079566][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.089023][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.103089][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.112128][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.120972][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.129765][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.138298][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.148498][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.156818][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.167295][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.175518][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.199325][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.208034][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.216955][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.225429][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.242146][T13685] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  374.251219][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.280575][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.299322][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.309826][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.330755][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.363115][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.371073][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.402419][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.421653][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.435231][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.445889][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.465259][T13695] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  374.484645][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.503874][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.524141][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.546513][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.562285][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.589579][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.613618][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.637934][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.656167][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.672859][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.682539][T13707] ALSA: seq fatal error: cannot create timer (-22)
[  374.690985][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.705627][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.715220][T13705] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  374.736273][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.762719][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.783794][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.802183][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.816963][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.836765][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.862890][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.879720][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.896690][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.914864][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.937687][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.954405][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.971496][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  374.989740][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.010607][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.042684][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.063579][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.071391][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.098915][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.117785][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.132688][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.143447][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.162236][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.180658][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.192695][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.211039][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.227369][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.258838][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.267306][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.285648][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.302874][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.321414][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.351407][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.371634][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.390586][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.408675][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.429190][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.449164][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.467825][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.485935][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.512716][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.520821][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.567747][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.604520][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.637322][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.687757][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.716018][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.737799][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.764288][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.788788][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.806865][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.825390][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.847181][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.864174][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.886062][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.902659][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.921518][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.934889][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.958545][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.976871][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  375.992736][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.010928][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.029165][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.057659][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.112849][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.131080][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.151386][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.168734][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.180186][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.199942][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.212706][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.230865][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.262011][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.285226][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.306660][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.326569][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.370728][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.382772][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.396464][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.415124][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.471746][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.638450][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.646915][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.655527][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.664108][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.672561][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.681253][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.723344][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.739026][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.757108][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.773816][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.805149][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: unknown main item tag 0x0
[  376.841359][ T5887] hid-generic 0008:0000:FFFFFBFF.000A: hidraw0: <UNKNOWN> HID v9.86 Device [syz0] on syz1
[  377.012192][T13765] fido_id[13765]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  377.843445][T13810] i2c i2c-0: Invalid block write size 34
[  378.749737][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  378.749834][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  379.781336][T13910] input: syz1 as /devices/virtual/input/input58
[  380.120472][T13931] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  380.334608][T13945] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  380.354921][T13945] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  380.383702][T13946] iommufd_mock iommufd_mock2: Adding to iommu group 2
[  380.398707][T13945] iommufd_mock iommufd_mock3: Adding to iommu group 3
[  385.829509][T13994] input: syz0 as /devices/virtual/input/input59
[  386.671976][T14034] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  386.675322][T14035] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  386.842473][T14051] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  388.086636][T14092] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  389.228317][T14142] random: crng reseeded on system resumption
[  389.255836][T14142] Unrecognized hibernate image header format!
[  389.262471][T14142] PM: hibernation: Image mismatch: architecture specific data
[  389.361015][ T9214] cgroup: fork rejected by pids controller in /syz5
[  389.461375][T14150] binder: 14149:14150 ioctl c018620c 200000000140 returned -1
[  389.471795][T14150] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  389.836829][ T3479] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.003407][ T3479] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.099673][ T3479] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.207896][ T3479] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.545881][ T3479] bridge_slave_1: left allmulticast mode
[  390.553051][ T3479] bridge_slave_1: left promiscuous mode
[  390.564283][ T3479] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.644212][ T3479] bridge_slave_0: left allmulticast mode
[  390.662955][ T3479] bridge_slave_0: left promiscuous mode
[  390.670279][ T3479] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.768663][T14202] syz.2.2025: attempt to access beyond end of device
[  390.768663][T14202] md0: rw=2048, sector=40, nr_sectors = 8 limit=0
[  390.956690][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  390.958870][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  390.959607][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  390.961564][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  390.965746][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  391.020056][ T5157] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  391.023343][ T5157] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  391.024748][ T5157] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  391.026943][ T5157] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  391.027728][ T5157] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  391.708634][ T3479] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  391.711540][ T3479] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  391.725920][ T3479] bond0 (unregistering): Released all slaves
[  392.292063][ T3479] hsr_slave_0: left promiscuous mode
[  392.304144][ T3479] hsr_slave_1: left promiscuous mode
[  392.304955][ T3479] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  392.304982][ T3479] batman_adv: batadv0: Removing interface: batadv_slave_0
[  392.305921][ T3479] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  392.305945][ T3479] batman_adv: batadv0: Removing interface: batadv_slave_1
[  392.337437][ T3479] veth1_macvtap: left promiscuous mode
[  392.375525][ T3479] veth0_macvtap: left promiscuous mode
[  392.375746][ T3479] veth1_vlan: left promiscuous mode
[  392.375876][ T3479] veth0_vlan: left promiscuous mode
[  393.073105][ T5157] Bluetooth: hci0: command tx timeout
[  393.458441][ T3479] team0 (unregistering): Port device team_slave_1 removed
[  393.624177][ T3479] team0 (unregistering): Port device team_slave_0 removed
[  395.145977][ T5157] Bluetooth: hci0: command tx timeout
[  395.789968][T14206] chnl_net:caif_netlink_parms(): no params data found
[  396.247700][T14206] bridge0: port 1(bridge_slave_0) entered blocking state
[  396.262874][T14206] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.280491][T14206] bridge_slave_0: entered allmulticast mode
[  396.294765][T14206] bridge_slave_0: entered promiscuous mode
[  396.296249][T14651] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  396.321286][T14206] bridge0: port 2(bridge_slave_1) entered blocking state
[  396.349113][T14206] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.372289][T14206] bridge_slave_1: entered allmulticast mode
[  396.401964][T14206] bridge_slave_1: entered promiscuous mode
[  396.585042][T14206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  396.609480][T14206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  396.772552][T14206] team0: Port device team_slave_0 added
[  396.806241][T14206] team0: Port device team_slave_1 added
[  396.908770][T14206] batman_adv: batadv0: Adding interface: batadv_slave_0
[  396.927319][T14206] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  396.983036][T14206] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  397.007783][T14206] batman_adv: batadv0: Adding interface: batadv_slave_1
[  397.024921][T14206] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  397.024981][T14206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  397.226715][ T5157] Bluetooth: hci0: command tx timeout
[  397.304880][T14206] hsr_slave_0: entered promiscuous mode
[  397.314727][T14206] hsr_slave_1: entered promiscuous mode
[  397.315677][T14206] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  397.315735][T14206] Cannot create hsr debugfs directory
[  397.693790][T14754] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  397.693839][T14754] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  398.325496][T14899] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  398.785636][T14206] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  398.795138][T14206] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  398.826949][T14206] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  398.841128][T14206] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  399.086480][T14206] 8021q: adding VLAN 0 to HW filter on device bond0
[  399.151122][T14206] 8021q: adding VLAN 0 to HW filter on device team0
[  399.191658][ T1164] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.198867][ T1164] bridge0: port 1(bridge_slave_0) entered forwarding state
[  399.256144][ T1164] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.263451][ T1164] bridge0: port 2(bridge_slave_1) entered forwarding state
[  399.899955][T14206] 8021q: adding VLAN 0 to HW filter on device batadv0
[  400.461023][T14206] veth0_vlan: entered promiscuous mode
[  400.480327][T14206] veth1_vlan: entered promiscuous mode
[  400.526394][T14206] veth0_macvtap: entered promiscuous mode
[  400.540371][T14206] veth1_macvtap: entered promiscuous mode
[  400.567058][T14206] batman_adv: batadv0: Interface activated: batadv_slave_0
[  400.587054][T14206] batman_adv: batadv0: Interface activated: batadv_slave_1
[  400.606333][T14206] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  400.618585][T14206] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  400.629382][T14206] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  400.642888][T14206] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  400.830167][ T1164] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  400.848844][ T1164] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  400.892018][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  400.900912][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.911581][T15090] tap0: tun_chr_ioctl cmd 1074812118
[  404.015293][T15096] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  404.466546][T15111] Sensor A: =================  START STATUS  =================
[  404.494502][T15111] Sensor A: Test Pattern: 75% Colorbar
[  404.510254][T15111] Sensor A: Show Information: All
[  404.530865][T15111] Sensor A: Vertical Flip: true
[  404.565414][T15111] Sensor A: Horizontal Flip: false
[  404.570664][T15111] Sensor A: Brightness: 255
[  404.577365][T15111] Sensor A: Contrast: 0
[  404.581769][T15111] Sensor A: Hue: 0
[  404.585955][T15111] Sensor A: Saturation: 128
[  404.590528][T15111] Sensor A: ==================  END STATUS  ==================
[  405.227447][T15136] vim2m vim2m.0: Fourcc format (0x47425247) invalid.
[  405.843213][T15161] input: syz1 as /devices/virtual/input/input63
[  406.404117][T15202] sp0: Synchronizing with TNC
[  406.776054][T15251] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  409.401467][T15400] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  410.007085][T15419] input: syz1 as /devices/virtual/input/input65
[  410.270285][T15425] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  413.155416][T15542] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  414.386301][T15575] random: crng reseeded on system resumption
[  415.743178][T15633] misc userio: Invalid payload size
[  415.750500][T15633] vim2m vim2m.0: vidioc_s_fmt queue busy
[  416.524586][T15651] binder: 15649:15651 ioctl f502 0 returned -22
[  416.598918][T15655] snd_dummy snd_dummy.0: control 1:254:0:syz0:0 is already present
[  418.853511][T15744] usb usb1: usbfs: process 15744 (syz.2.2167) did not claim interface 0 before use
[  418.909543][T15744] usb usb1: selecting invalid altsetting 256
[  419.352491][T15762] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  419.420480][T15767] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  419.979545][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  419.988998][ T5841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  419.997329][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  420.007304][ T5841] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  420.016933][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  420.084805][ T5157] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  420.095750][ T5157] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  420.103748][T15793] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  420.111322][ T5157] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  420.141989][ T5157] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  420.152534][ T3460] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.164247][ T5157] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  420.341151][T15819] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  420.462426][ T3460] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.585210][ T3460] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.779139][ T3460] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.387015][T15784] chnl_net:caif_netlink_parms(): no params data found
[  421.416475][ T3460] bridge_slave_1: left allmulticast mode
[  421.422249][ T3460] bridge_slave_1: left promiscuous mode
[  421.432530][ T3460] bridge0: port 2(bridge_slave_1) entered disabled state
[  421.491683][ T3460] bridge_slave_0: left allmulticast mode
[  421.503621][ T3460] bridge_slave_0: left promiscuous mode
[  421.509484][ T3460] bridge0: port 1(bridge_slave_0) entered disabled state
[  421.619492][T15866] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  421.629836][T15866] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  421.660134][T15990] kvm_intel: kvm [15988]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xff
[  422.080912][ T3460] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  422.101162][ T3460] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  422.118446][ T3460] bond0 (unregistering): Released all slaves
[  422.203716][T15999] mkiss: ax0: crc mode is auto.
[  422.935855][T15784] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.952008][T15784] bridge0: port 1(bridge_slave_0) entered disabled state
[  422.986027][T15784] bridge_slave_0: entered allmulticast mode
[  423.004384][T15784] bridge_slave_0: entered promiscuous mode
[  423.025925][T15784] bridge0: port 2(bridge_slave_1) entered blocking state
[  423.056117][T15784] bridge0: port 2(bridge_slave_1) entered disabled state
[  423.071603][T15784] bridge_slave_1: entered allmulticast mode
[  423.096064][T15784] bridge_slave_1: entered promiscuous mode
[  423.187836][ T3460] hsr_slave_0: left promiscuous mode
[  423.262843][ T3460] hsr_slave_1: left promiscuous mode
[  423.283546][ T3460] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  423.311515][ T3460] batman_adv: batadv0: Removing interface: batadv_slave_0
[  423.359752][ T3460] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  423.384046][ T3460] batman_adv: batadv0: Removing interface: batadv_slave_1
[  423.446537][ T3460] veth1_macvtap: left promiscuous mode
[  423.472623][ T3460] veth0_macvtap: left promiscuous mode
[  423.482142][ T3460] veth1_vlan: left promiscuous mode
[  423.496977][ T3460] veth0_vlan: left promiscuous mode
[  424.531131][ T3460] team0 (unregistering): Port device team_slave_1 removed
[  424.606595][ T3460] team0 (unregistering): Port device team_slave_0 removed
[  425.348144][T15784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  425.411366][T15784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  425.588289][T15784] team0: Port device team_slave_0 added
[  425.610549][T15784] team0: Port device team_slave_1 added
[  425.756388][T15784] batman_adv: batadv0: Adding interface: batadv_slave_0
[  425.756407][T15784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  425.800055][T15784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  425.802480][T15784] batman_adv: batadv0: Adding interface: batadv_slave_1
[  425.802496][T15784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  425.802528][T15784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  425.903846][    C0] vkms_vblank_simulate: vblank timer overrun
[  426.072398][T15784] hsr_slave_0: entered promiscuous mode
[  426.094692][T15784] hsr_slave_1: entered promiscuous mode
[  426.103783][T15784] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  426.103810][T15784] Cannot create hsr debugfs directory
[  427.774320][T15784] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  427.807448][T15784] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  427.841233][T15784] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  427.877860][T15784] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  428.121449][T16422] usb usb7: usbfs: process 16422 (syz.1.2211) did not claim interface 0 before use
[  428.280929][T15784] 8021q: adding VLAN 0 to HW filter on device bond0
[  428.320877][T15784] 8021q: adding VLAN 0 to HW filter on device team0
[  428.361497][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  428.368751][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  428.414113][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  428.421441][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  429.324179][T15784] 8021q: adding VLAN 0 to HW filter on device batadv0
[  429.472798][T15784] veth0_vlan: entered promiscuous mode
[  429.510157][T15784] veth1_vlan: entered promiscuous mode
[  429.607690][T15784] veth0_macvtap: entered promiscuous mode
[  429.653435][T15784] veth1_macvtap: entered promiscuous mode
[  429.745807][T15784] batman_adv: batadv0: Interface activated: batadv_slave_0
[  429.782467][T15784] batman_adv: batadv0: Interface activated: batadv_slave_1
[  429.823686][T15784] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.843547][T15784] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  429.862825][T15784] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  429.871801][T15784] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.249775][ T3460] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  430.320664][ T3460] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  430.423266][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  430.431581][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  432.615825][T16608] input: syz0 as /devices/virtual/input/input71
[  432.643884][T16608] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  440.188163][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  440.207563][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  440.517733][T16726] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  440.947642][T16734] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  441.468991][T16748] CUSE: info not properly terminated
[  442.503449][ T5841] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  444.069475][T16798] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  445.384806][T16833] input: syz1 as /devices/virtual/input/input72
[  445.895802][T16842] kvm: user requested TSC rate below hardware speed
[  445.935639][T16842] usb usb8: usbfs: process 16842 (syz.1.2269) did not claim interface 0 before use
[  446.283337][T16841] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  447.941981][T16896] binder: 16894:16896 ioctl c018620b 200000000100 returned -14
[  449.325577][T16933] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  451.416898][T16986] block device autoloading is deprecated and will be removed.
[  451.891745][T16996] binfmt_misc: register: failed to install interpreter file ./cgroup
[  452.257934][T17005] binder: BC_ACQUIRE_RESULT not supported
[  452.269732][T17002] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  452.292144][T17005] binder: 17003:17005 ioctl c0306201 200000000580 returned -22
[  452.894188][T17023] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  456.874605][ T5841] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  456.888155][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  456.897968][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  456.910204][ T5841] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  456.918918][ T5841] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  456.948030][ T5157] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  456.977917][ T5157] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  456.989026][ T5157] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  456.998234][ T5157] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  457.006763][ T5157] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  457.088079][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.230094][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.285735][T17135] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  457.340371][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.514858][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.056710][T17093] chnl_net:caif_netlink_parms(): no params data found
[  458.136898][   T36] bridge_slave_1: left allmulticast mode
[  458.145374][   T36] bridge_slave_1: left promiscuous mode
[  458.151236][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.183868][   T36] bridge_slave_0: left allmulticast mode
[  458.189608][   T36] bridge_slave_0: left promiscuous mode
[  458.202873][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  458.636777][T17275] ptm ptm8: ldisc open failed (-12), clearing slot 8
[  459.067211][ T5157] Bluetooth: hci3: command tx timeout
[  459.502208][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.514017][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.518452][   T36] bond0 (unregistering): Released all slaves
[  460.062757][T17093] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.063048][T17093] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.063247][T17093] bridge_slave_0: entered allmulticast mode
[  460.065098][T17093] bridge_slave_0: entered promiscuous mode
[  460.069305][T17093] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.069497][T17093] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.069680][T17093] bridge_slave_1: entered allmulticast mode
[  460.071802][T17093] bridge_slave_1: entered promiscuous mode
[  460.217989][   T36] hsr_slave_0: left promiscuous mode
[  460.218886][   T36] hsr_slave_1: left promiscuous mode
[  460.219636][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  460.219682][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.221726][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  460.221754][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  460.248118][   T36] veth1_macvtap: left promiscuous mode
[  460.248215][   T36] veth0_macvtap: left promiscuous mode
[  460.248434][   T36] veth1_vlan: left promiscuous mode
[  460.248584][   T36] veth0_vlan: left promiscuous mode
[  461.142780][ T5157] Bluetooth: hci3: command tx timeout
[  461.396165][   T36] team0 (unregistering): Port device team_slave_1 removed
[  461.456550][   T36] team0 (unregistering): Port device team_slave_0 removed
[  461.999163][T17093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  462.011725][T17093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  462.238531][T17093] team0: Port device team_slave_0 added
[  462.251072][T17093] team0: Port device team_slave_1 added
[  462.349913][T17093] batman_adv: batadv0: Adding interface: batadv_slave_0
[  462.354971][T17426] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  462.359410][T17093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.383728][T17426] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  462.389658][    C0] vkms_vblank_simulate: vblank timer overrun
[  462.405162][T17093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  462.422441][T17093] batman_adv: batadv0: Adding interface: batadv_slave_1
[  462.430737][T17093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.456792][    C0] vkms_vblank_simulate: vblank timer overrun
[  462.464750][T17093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  462.710471][T17093] hsr_slave_0: entered promiscuous mode
[  462.737211][T17093] hsr_slave_1: entered promiscuous mode
[  463.642473][T17093] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  463.670608][T17093] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  463.715961][T17093] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  463.798764][T17093] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  464.217964][T17093] 8021q: adding VLAN 0 to HW filter on device bond0
[  464.288654][T17093] 8021q: adding VLAN 0 to HW filter on device team0
[  464.298773][T17679] vivid-001: disconnect
[  464.331382][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  464.339309][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  464.394234][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  464.401945][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  464.413050][T17675] vivid-001: reconnect
[  464.551137][T17697] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  464.889751][T17707] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  465.192507][T17093] 8021q: adding VLAN 0 to HW filter on device batadv0
[  465.532047][T17691] loop4: detected capacity change from 0 to 7
[  465.841617][T17744] input: syz1 as /devices/virtual/input/input74
[  466.005033][T17744] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x3e7ffff pfn:0x56b01
[  466.032228][T17744] memcg:ffff8881404c9a00
[  466.070728][T17744] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff)
[  466.095000][T17744] raw: 00fff00000000001 0000000000000000 dead000000000122 0000000000000000
[  466.117254][T17744] raw: 0000000003e7ffff 0000000000000000 00000001ffffffff ffff8881404c9a00
[  466.145153][T17744] page dumped because: VM_BUG_ON_FOLIO(folio_order(folio) < mapping_min_folio_order(mapping))
[  466.175658][T17744] page_owner tracks the page as allocated
[  466.192742][T17744] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152c00(GFP_NOIO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 17744, tgid 17743 (syz.1.2347), ts 466005009964, free_ts 466004562400
[  466.252711][T17744]  post_alloc_hook+0x240/0x2a0
[  466.257606][T17744]  get_page_from_freelist+0x21e4/0x22c0
[  466.288228][T17744]  __alloc_frozen_pages_noprof+0x181/0x370
[  466.295880][T17744]  alloc_pages_mpol+0x232/0x4a0
[  466.300868][T17744]  alloc_pages_noprof+0xa9/0x190
[  466.309118][T17093] veth0_vlan: entered promiscuous mode
[  466.326161][T17093] veth1_vlan: entered promiscuous mode
[  466.335116][T17744]  folio_alloc_noprof+0x1e/0x30
[  466.347859][T17744]  filemap_alloc_folio_noprof+0xdf/0x470
[  466.359078][T17744]  page_cache_ra_order+0x5e5/0xc70
[  466.378083][T17744]  do_sync_mmap_readahead+0x4b5/0x5f0
[  466.406108][T17093] veth0_macvtap: entered promiscuous mode
[  466.412043][T17744]  filemap_fault+0x62a/0x1200
[  466.428524][T17744]  __do_fault+0x138/0x390
[  466.445139][T17093] veth1_macvtap: entered promiscuous mode
[  466.464441][T17744]  __handle_mm_fault+0x198b/0x5620
[  466.469953][T17744]  handle_mm_fault+0x40a/0x8e0
[  466.478982][T17744]  do_user_addr_fault+0x764/0x1390
[  466.499267][T17744]  exc_page_fault+0x76/0xf0
[  466.500808][T17093] batman_adv: batadv0: Interface activated: batadv_slave_0
[  466.517759][T17744]  asm_exc_page_fault+0x26/0x30
[  466.525132][T17093] batman_adv: batadv0: Interface activated: batadv_slave_1
[  466.542001][T17744] page last free pid 17723 tgid 17720 stack trace:
[  466.564494][T17093] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  466.569276][T17744]  free_unref_folios+0xc66/0x14d0
[  466.576913][T17093] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  466.598608][T17744]  folios_put_refs+0x559/0x640
[  466.600072][T17093] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  466.618015][T17744]  truncate_inode_pages_range+0x346/0xda0
[  466.621723][T17093] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  466.668052][T17744]  set_blocksize+0x32a/0x500
[  466.681282][T17744]  blkdev_bszset+0x1ac/0x220
[  466.700770][T17744]  blkdev_ioctl+0x430/0x6d0
[  466.718771][T17744]  __se_sys_ioctl+0xfc/0x170
[  466.727624][T17744]  do_syscall_64+0xfa/0x3b0
[  466.741208][T17744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.754293][T17744] ------------[ cut here ]------------
[  466.759948][T17744] kernel BUG at mm/filemap.c:868!
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  466.831104][T17744] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[  466.837556][T17744] CPU: 1 UID: 0 PID: 17744 Comm: syz.1.2347 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  466.849706][T17744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  466.859807][T17744] RIP: 0010:__filemap_add_folio+0x11ad/0x12f0
[  466.865918][T17744] Code: 02 c9 ff 4c 89 e7 48 c7 c6 60 37 94 8b e8 cb a2 10 00 90 0f 0b e8 83 02 c9 ff 4c 89 e7 48 c7 c6 40 2e 94 8b e8 b4 a2 10 00 90 <0f> 0b e8 6c 02 c9 ff 4c 89 e7 48 c7 c6 60 37 94 8b e8 9d a2 10 00
[  466.885747][T17744] RSP: 0018:ffffc90004796e60 EFLAGS: 00010246
[  466.891935][T17744] RAX: abfd5eb355e59f00 RBX: 0000000000000000 RCX: 0000000000000000
[  466.899930][T17744] RDX: 0000000000000007 RSI: ffffffff8da4c121 RDI: 00000000ffffffff
[  466.907909][T17744] RBP: ffffc90004796fc8 R08: ffffffff8fc232f7 R09: 1ffffffff1f8465e
[  466.916043][T17744] R10: dffffc0000000000 R11: fffffbfff1f8465f R12: ffffea00015ac040
[  466.924127][T17744] R13: dffffc0000000000 R14: ffffea00015ac048 R15: 0000000000000001
[  466.932111][T17744] FS:  00007fd3718146c0(0000) GS:ffff888125b1c000(0000) knlGS:0000000000000000
[  466.941071][T17744] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  466.947673][T17744] CR2: 00007ffe71654d6c CR3: 0000000021fea000 CR4: 00000000003526f0
[  466.955661][T17744] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  466.963639][T17744] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  466.971626][T17744] Call Trace:
[  466.975017][T17744]  <TASK>
[  466.977979][T17744]  ? percpu_ref_put+0x19/0x180
[  466.982762][T17744]  ? __pfx___filemap_add_folio+0x10/0x10
[  466.988407][T17744]  ? percpu_ref_put+0xf9/0x180
[  466.993180][T17744]  filemap_add_folio+0xd5/0x270
[  466.998133][T17744]  page_cache_ra_order+0x74c/0xc70
[  467.003527][T17744]  do_sync_mmap_readahead+0x4b5/0x5f0
[  467.008912][T17744]  ? __pfx_do_sync_mmap_readahead+0x10/0x10
[  467.014824][T17744]  ? count_memcg_event_mm+0x1d/0x250
[  467.020205][T17744]  ? count_memcg_event_mm+0x1d/0x250
[  467.025503][T17744]  filemap_fault+0x62a/0x1200
[  467.030200][T17744]  ? __pagetable_ctor+0x253/0x340
[  467.035232][T17744]  ? __pfx_filemap_fault+0x10/0x10
[  467.040350][T17744]  ? rcu_is_watching+0x15/0xb0
[  467.045125][T17744]  ? __raw_spin_lock_init+0x45/0x100
[  467.050421][T17744]  __do_fault+0x138/0x390
[  467.054769][T17744]  __handle_mm_fault+0x198b/0x5620
[  467.059900][T17744]  ? __pfx___handle_mm_fault+0x10/0x10
[  467.065378][T17744]  ? find_vma+0xe7/0x160
[  467.069720][T17744]  ? __pfx_find_vma+0x10/0x10
[  467.074407][T17744]  handle_mm_fault+0x40a/0x8e0
[  467.079197][T17744]  do_user_addr_fault+0x764/0x1390
[  467.084337][T17744]  exc_page_fault+0x76/0xf0
[  467.088858][T17744]  asm_exc_page_fault+0x26/0x30
[  467.093713][T17744] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  467.099541][T17744] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 ff f6 03 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  467.119152][T17744] RSP: 0018:ffffc900047977f8 EFLAGS: 00050206
[  467.125337][T17744] RAX: ffffffff84c5b201 RBX: ffff88805c420000 RCX: 0000000000000100
[  467.133328][T17744] RDX: 0000000000000000 RSI: ffff88805c420f00 RDI: 0000200000119000
[  467.141316][T17744] RBP: ffffc90004797948 R08: ffff88805c420fff R09: 1ffff1100b8841ff
[  467.149297][T17744] R10: dffffc0000000000 R11: ffffed100b884200 R12: 1ffff920008f2faf
[  467.157585][T17744] R13: 0000200000118100 R14: ffffc90004797d88 R15: 0000000000001000
[  467.165665][T17744]  ? _copy_to_iter+0x161/0x16f0
[  467.170540][T17744]  _copy_to_iter+0x24c/0x16f0
[  467.175319][T17744]  ? __pfx_filemap_get_pages+0x10/0x10
[  467.180890][T17744]  ? __pfx__copy_to_iter+0x10/0x10
[  467.186017][T17744]  ? folio_mark_accessed+0x26f/0x8b0
[  467.191323][T17744]  ? page_copy_sane+0x16a/0x280
[  467.196186][T17744]  copy_page_to_iter+0x10c/0x1c0
[  467.201219][T17744]  filemap_read+0x7c0/0x11a0
[  467.205941][T17744]  ? __pfx_filemap_read+0x10/0x10
[  467.211033][T17744]  ? end_current_label_crit_section+0x152/0x180
[  467.217301][T17744]  ? down_read+0x1ad/0x2e0
[  467.221762][T17744]  blkdev_read_iter+0x30a/0x440
[  467.226652][T17744]  vfs_read+0x4cd/0x980
[  467.230820][T17744]  ? __pfx_vfs_read+0x10/0x10
[  467.235636][T17744]  ? __fget_files+0x2a/0x420
[  467.240354][T17744]  ksys_read+0x145/0x250
[  467.244626][T17744]  ? __pfx_ksys_read+0x10/0x10
[  467.249406][T17744]  ? rcu_is_watching+0x15/0xb0
[  467.254184][T17744]  ? do_syscall_64+0xbe/0x3b0
[  467.258878][T17744]  do_syscall_64+0xfa/0x3b0
[  467.263828][T17744]  ? lockdep_hardirqs_on+0x9c/0x150
[  467.269041][T17744]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.275128][T17744]  ? clear_bhb_loop+0x60/0xb0
[  467.279839][T17744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.285738][T17744] RIP: 0033:0x7fd37098e929
[  467.290169][T17744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.309819][T17744] RSP: 002b:00007fd371814038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  467.318242][T17744] RAX: ffffffffffffffda RBX: 00007fd370bb5fa0 RCX: 00007fd37098e929
[  467.326313][T17744] RDX: 00000000fffffe5a RSI: 0000200000000100 RDI: 0000000000000003
[  467.334290][T17744] RBP: 00007fd370a10b39 R08: 0000000000000000 R09: 0000000000000000
[  467.342266][T17744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  467.350326][T17744] R13: 0000000000000000 R14: 00007fd370bb5fa0 R15: 00007ffc8802e038
[  467.358396][T17744]  </TASK>
[  467.361424][T17744] Modules linked in:
[  467.367562][T17744] ---[ end trace 0000000000000000 ]---
[  467.393575][T17744] RIP: 0010:__filemap_add_folio+0x11ad/0x12f0
[  467.399840][T17744] Code: 02 c9 ff 4c 89 e7 48 c7 c6 60 37 94 8b e8 cb a2 10 00 90 0f 0b e8 83 02 c9 ff 4c 89 e7 48 c7 c6 40 2e 94 8b e8 b4 a2 10 00 90 <0f> 0b e8 6c 02 c9 ff 4c 89 e7 48 c7 c6 60 37 94 8b e8 9d a2 10 00
[  467.421146][T17744] RSP: 0018:ffffc90004796e60 EFLAGS: 00010246
[  467.458477][T17093] ieee80211 phy21: Selected rate control algorithm 'minstrel_ht'
[  467.527781][T17744] RAX: abfd5eb355e59f00 RBX: 0000000000000000 RCX: 0000000000000000
[  467.536161][T17744] RDX: 0000000000000007 RSI: ffffffff8da4c121 RDI: 00000000ffffffff
[  467.550202][T17744] RBP: ffffc90004796fc8 R08: ffffffff8fc232f7 R09: 1ffffffff1f8465e
[  467.558289][T17744] R10: dffffc0000000000 R11: fffffbfff1f8465f R12: ffffea00015ac040
[  467.566706][T17744] R13: dffffc0000000000 R14: ffffea00015ac048 R15: 0000000000000001
[  467.592722][T17744] FS:  00007fd3718146c0(0000) GS:ffff888125b1c000(0000) knlGS:0000000000000000
[  467.623605][T17744] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  467.630641][T17744] CR2: 00007fc815ca0dc8 CR3: 0000000021fea000 CR4: 00000000003526f0
[  467.665599][T17744] DR0: fffffffffffffff8 DR1: 0000000000000006 DR2: 0200000000000000
[  467.742636][T17744] DR3: 0000000000000005 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  467.751154][T17744] Kernel panic - not syncing: Fatal exception
[  467.761377][T17744] Kernel Offset: disabled
[  467.765709][T17744] Rebooting in 86400 seconds..