000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4004ae99, 0x0) 00:19:49 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4090ae82, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x7}}) 00:19:49 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) ioctl$FBIOGET_FSCREENINFO(r0, 0x4602, &(0x7f0000000000)) (async) ioctl$FBIOGET_FSCREENINFO(r0, 0x4602, &(0x7f0000000000)) ioctl$FBIOBLANK(r0, 0x4611, 0x4) 00:19:49 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async, rerun: 32) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) (rerun: 32) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) (async) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x300}}) 00:19:49 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) ioctl$FBIOGET_FSCREENINFO(r0, 0x4602, &(0x7f0000000000)) (async) ioctl$FBIOBLANK(r0, 0x4611, 0x4) 00:19:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x16) 00:19:49 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) (async) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x500}}) 00:19:49 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000180)={0x0, 0x800, 0x190, 0x280, 0x400, 0x8a9, 0xf, 0x2, {0x6, 0x7ff, 0x1}, {0x4, 0x6, 0x1}, {0x3, 0x5}, {0x5, 0x8, 0x1}, 0x1, 0x100, 0xfffffffa, 0x6, 0x1, 0x7ff, 0x40, 0x1, 0x1, 0x5, 0x10001, 0x4, 0x1, 0x0, 0x3, 0x7}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$FBIOGETCMAP(r2, 0x4604, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0]}) ioctl$FBIOBLANK(r0, 0x4611, 0x4) 00:19:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x40086602, 0x0) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x600}}) 00:19:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4138ae84, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:49 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'}) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f00000002c0)={0x400, 0x640, 0x1000, 0x90, 0x401, 0x40, 0x8, 0x0, {0x7, 0x50, 0x1}, {0xfff, 0x8, 0x1}, {0x9, 0x41b6}, {0x6, 0x101}, 0x1, 0x10, 0x80000001, 0xe5e7, 0x1, 0x3ff, 0x5, 0xffff7ff8, 0x3ff, 0x10, 0x7, 0x2, 0xa, 0x200, 0x3, 0x2}) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:49 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000180)={0x0, 0x800, 0x190, 0x280, 0x400, 0x8a9, 0xf, 0x2, {0x6, 0x7ff, 0x1}, {0x4, 0x6, 0x1}, {0x3, 0x5}, {0x5, 0x8, 0x1}, 0x1, 0x100, 0xfffffffa, 0x6, 0x1, 0x7ff, 0x40, 0x1, 0x1, 0x5, 0x10001, 0x4, 0x1, 0x0, 0x3, 0x7}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$FBIOGETCMAP(r2, 0x4604, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0]}) ioctl$FBIOBLANK(r0, 0x4611, 0x4) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) (async) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000180)={0x0, 0x800, 0x190, 0x280, 0x400, 0x8a9, 0xf, 0x2, {0x6, 0x7ff, 0x1}, {0x4, 0x6, 0x1}, {0x3, 0x5}, {0x5, 0x8, 0x1}, 0x1, 0x100, 0xfffffffa, 0x6, 0x1, 0x7ff, 0x40, 0x1, 0x1, 0x5, 0x10001, 0x4, 0x1, 0x0, 0x3, 0x7}) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) (async) ioctl$FBIOGETCMAP(r2, 0x4604, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0]}) (async) ioctl$FBIOBLANK(r0, 0x4611, 0x4) (async) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x700}}) 00:19:49 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'}) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f00000002c0)={0x400, 0x640, 0x1000, 0x90, 0x401, 0x40, 0x8, 0x0, {0x7, 0x50, 0x1}, {0xfff, 0x8, 0x1}, {0x9, 0x41b6}, {0x6, 0x101}, 0x1, 0x10, 0x80000001, 0xe5e7, 0x1, 0x3ff, 0x5, 0xffff7ff8, 0x3ff, 0x10, 0x7, 0x2, 0xa, 0x200, 0x3, 0x2}) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0xff00}}) 00:19:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x17) 00:19:49 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000180)={0x0, 0x800, 0x190, 0x280, 0x400, 0x8a9, 0xf, 0x2, {0x6, 0x7ff, 0x1}, {0x4, 0x6, 0x1}, {0x3, 0x5}, {0x5, 0x8, 0x1}, 0x1, 0x100, 0xfffffffa, 0x6, 0x1, 0x7ff, 0x40, 0x1, 0x1, 0x5, 0x10001, 0x4, 0x1, 0x0, 0x3, 0x7}) (async) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000180)={0x0, 0x800, 0x190, 0x280, 0x400, 0x8a9, 0xf, 0x2, {0x6, 0x7ff, 0x1}, {0x4, 0x6, 0x1}, {0x3, 0x5}, {0x5, 0x8, 0x1}, 0x1, 0x100, 0xfffffffa, 0x6, 0x1, 0x7ff, 0x40, 0x1, 0x1, 0x5, 0x10001, 0x4, 0x1, 0x0, 0x3, 0x7}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) (async) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$FBIOGETCMAP(r2, 0x4604, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0]}) ioctl$FBIOBLANK(r0, 0x4611, 0x4) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x1000000}}) 00:19:49 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'}) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f00000002c0)={0x400, 0x640, 0x1000, 0x90, 0x401, 0x40, 0x8, 0x0, {0x7, 0x50, 0x1}, {0xfff, 0x8, 0x1}, {0x9, 0x41b6}, {0x6, 0x101}, 0x1, 0x10, 0x80000001, 0xe5e7, 0x1, 0x3ff, 0x5, 0xffff7ff8, 0x3ff, 0x10, 0x7, 0x2, 0xa, 0x200, 0x3, 0x2}) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'}) (async) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f00000002c0)={0x400, 0x640, 0x1000, 0x90, 0x401, 0x40, 0x8, 0x0, {0x7, 0x50, 0x1}, {0xfff, 0x8, 0x1}, {0x9, 0x41b6}, {0x6, 0x101}, 0x1, 0x10, 0x80000001, 0xe5e7, 0x1, 0x3ff, 0x5, 0xffff7ff8, 0x3ff, 0x10, 0x7, 0x2, 0xa, 0x200, 0x3, 0x2}) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) 00:19:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x40186366, 0x0) 00:19:49 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x41a0ae8d, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:49 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x2000000}}) 00:19:50 executing program 2: semget$private(0x0, 0x2, 0x1) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x3000000}}) 00:19:50 executing program 2: semget$private(0x0, 0x2, 0x1) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 2: semget$private(0x0, 0x2, 0x1) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x18) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x4000000}}) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x5000000}}) 00:19:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x5, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000040), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8004ae98, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x401c5820, 0x0) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) 00:19:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x5, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000040), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x6000000}}) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FALLOCATE={0x11, 0x14, 0x0, @fd=r2, 0x100, 0x0, 0xff, 0x0, 0x1}, 0x6) 00:19:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x5, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000040), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x7000000}}) 00:19:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x19) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name, &(0x7f0000000040)=0x10, 0x80000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0xfdfdffff}}) 00:19:50 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) connect$rds(r0, &(0x7f0000000300)={0x2, 0x4e22, @loopback}, 0x10) write$binfmt_script(r0, &(0x7f0000000340)={'#! ', './file0', [{}, {0x20, '/dev/fb0\x00'}, {0x20, '\x00'}, {0x20, '@'}, {0x20, '#$'}, {0x20, '/dev/fb0\x00'}], 0xa, "31eae792aabe43bcb986aa64a71ed25252b029285ab47347abc0c1794c7d3e"}, 0x46) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="000000006a8a00000000000000003f94"]) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x5, 0x2, 0x1, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) socket$inet(0x2, 0x800, 0x6) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000002c0)={0x193, 0x3, &(0x7f00000003c0)=[0x0, 0x0, 0x0], &(0x7f0000000040), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)}) 00:19:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x80086301, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4020940d, 0x0) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0xff000000}}) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0xfffffdfd}}) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) setxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.redirect\x00', &(0x7f00000003c0)='}{^:)&@.:\x00', 0xa, 0x3) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:50 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0xffffff7f}}) 00:19:50 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1a) 00:19:51 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:19:51 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000300)) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:51 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) (async) connect$rds(r0, &(0x7f0000000300)={0x2, 0x4e22, @loopback}, 0x10) (async) write$binfmt_script(r0, &(0x7f0000000340)={'#! ', './file0', [{}, {0x20, '/dev/fb0\x00'}, {0x20, '\x00'}, {0x20, '@'}, {0x20, '#$'}, {0x20, '/dev/fb0\x00'}], 0xa, "31eae792aabe43bcb986aa64a71ed25252b029285ab47347abc0c1794c7d3e"}, 0x46) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="000000006a8a00000000000000003f94"]) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x5, 0x2, 0x1, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) socket$inet(0x2, 0x800, 0x6) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) (async) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000002c0)={0x193, 0x3, &(0x7f00000003c0)=[0x0, 0x0, 0x0], &(0x7f0000000040), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)}) 00:19:51 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x2}) 00:19:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4048ae9b, 0x0) 00:19:51 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x412100, 0x4) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x80086601, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:51 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x3}) 00:19:51 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) (async) connect$rds(r0, &(0x7f0000000300)={0x2, 0x4e22, @loopback}, 0x10) (async) write$binfmt_script(r0, &(0x7f0000000340)={'#! ', './file0', [{}, {0x20, '/dev/fb0\x00'}, {0x20, '\x00'}, {0x20, '@'}, {0x20, '#$'}, {0x20, '/dev/fb0\x00'}], 0xa, "31eae792aabe43bcb986aa64a71ed25252b029285ab47347abc0c1794c7d3e"}, 0x46) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="000000006a8a00000000000000003f94"]) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x5, 0x2, 0x1, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) socket$inet(0x2, 0x800, 0x6) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) (async) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000002c0)={0x193, 0x3, &(0x7f00000003c0)=[0x0, 0x0, 0x0], &(0x7f0000000040), &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)}) 00:19:51 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:51 executing program 3: ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0) 00:19:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1b) 00:19:51 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x4}) 00:19:51 executing program 3: ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0) 00:19:51 executing program 2: ioctl$VIDIOC_ENUMINPUT(0xffffffffffffffff, 0xc050561a, &(0x7f0000001840)={0x40, "c6de24f91b934ea4414cd1d60b4e15c4c871cc0b1d157c22feea4df18a6c221c", 0x3, 0x800, 0x1, 0x4000, 0x2, 0x2}) r0 = openat$null(0xffffffffffffff9c, &(0x7f00000018c0), 0x482, 0x0) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000001900)) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x5, &(0x7f0000000180)={0x0, 0x5dc7, 0x4, 0x3, 0x32c}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000200)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x16, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001800)={&(0x7f00000002c0)=@xdp={0x2c, 0x4, 0x0, 0x12}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)="163ece4614a82dad672b9199e3eaffc7cad30ea5c2c86278d20d5a1375ffa95549da12782425afb3b26c29b536afbf1a3a42ac53b6cf299c7c9b7211baab7201819afa6e8721430285de65c8a8a601487bf7fae81e87b51c71cf5f7fc7316373e97e3cc6fdebc5f3246ef518432d", 0x6e}, {&(0x7f00000003c0)="2dc560ede8db7c0f3f13dde2ad332fe99ff65c8a5ae078f2d544235fc05031ec34f8a514f2d12d05ac227675abda4eb2da1b59f36ac4299a1c4b37d5c7ba", 0x3e}, {&(0x7f0000000400)="2737ed737b6644c0653fee9d6bcc6c780d2c963b22b397", 0x17}], 0x3, &(0x7f0000001940)=[{0x40, 0x10f, 0x3, "33cbe6aaff8a3233219ea41568b8ee2dfe295691bf3560ba343db654d0b6a7d84c4907efe5d25300da04a1f7"}, {0x90, 0x118, 0x4b, "c18cc9cab216f1d469a6f9e569fe6e884c9ca4fc7e391afb5a185119e75318b35b81d39fce139ea29b23a049063bee12da1d09fa13239a07d3d651e99ffa5cf93c7cff78e6b065eabdf6431a17bd23d9199fd33ba8ca9c348e5c3ac3edb63d7c7212fa06f4ac4d738452f41d931e37c63236f27e2889cb7833"}, {0x30, 0x112, 0x8, "39a8fc6387d4b42b980a06c91fef2f2eefc6dec30f633288130613bb"}, {0x40, 0x10a, 0x1, "c1c375374319a412274643e19ce4f361b8757d3dba7e76b13583eec317e9087251354a45046071802285"}, {0x50, 0x115, 0x1000, "ce6df93c8d51e98a8f7adbf171fe86bbd11a743be59cc777537d1e6abac762e0d580b92a67f55fb813a02d2396aec764d159f22009b158f9ea20c7ea54"}, {0x1010, 0x3a, 0x4, "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"}, {0xe8, 0x107, 0x100, "ba94e9fcbd977519179eea5e6e281cee20ac679ebf1076bd3b0830338bb3a6a875b42ff77fa980385624b9dcee44b3cf6586960a6c774a639cd976abee3665ef6e20819c96d1718f3dedf2404aa1662caf4f045f362dd7889e468c7f0ab21e6f5a72e35fa950395a96486ea6009a06be0abbf25c2f86e0a490a0972e839d5b5bd2610b8417b6a27ff4bb8bd5279a870458f54e7a8f1eab8352271eb0ea8bbdb4516a3801245e73fff4aafd8e7c7037567b3d8a8f39fc877a7af7904aa456dc0f46b2bb9d95f5ed1cfe80023787bb8559862b96"}, {0xd8, 0x19, 0xfffff978, "18ad03b558934bd1a87e95c38d0dabd74662d39b733607944d417cc16b4688d8c94e1d6f43c1ee766b5a0b40986ece1e09aa9d697e68275ede3d8ce01848ec910fe65484971963e763fe9dd713dddb2af729456ac01fb496215a78a3fdcc773f3a7c7210b6078161b254b3dbab5a4e60ed8fb96321524dbba084f677a2dfe80dd6b4f0bbb3a81b7fea7b509de98939b4e33961ad56ce4e938a1196ed5301fe98b1c69e0abbefdb36fa881ef27023a7f11f56e9b5873e999604fb2d620ac810aefb85"}], 0x1360}, 0x0, 0x10, 0x1}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, 0x0, 0x80, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c4}, 0x4000) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000040)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:51 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x5}) 00:19:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4090ae82, 0x0) 00:19:51 executing program 3: ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0) 00:19:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x801c581f, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:51 executing program 2: ioctl$VIDIOC_ENUMINPUT(0xffffffffffffffff, 0xc050561a, &(0x7f0000001840)={0x40, "c6de24f91b934ea4414cd1d60b4e15c4c871cc0b1d157c22feea4df18a6c221c", 0x3, 0x800, 0x1, 0x4000, 0x2, 0x2}) r0 = openat$null(0xffffffffffffff9c, &(0x7f00000018c0), 0x482, 0x0) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000001900)) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x5, &(0x7f0000000180)={0x0, 0x5dc7, 0x4, 0x3, 0x32c}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000200)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x16, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001800)={&(0x7f00000002c0)=@xdp={0x2c, 0x4, 0x0, 0x12}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)="163ece4614a82dad672b9199e3eaffc7cad30ea5c2c86278d20d5a1375ffa95549da12782425afb3b26c29b536afbf1a3a42ac53b6cf299c7c9b7211baab7201819afa6e8721430285de65c8a8a601487bf7fae81e87b51c71cf5f7fc7316373e97e3cc6fdebc5f3246ef518432d", 0x6e}, {&(0x7f00000003c0)="2dc560ede8db7c0f3f13dde2ad332fe99ff65c8a5ae078f2d544235fc05031ec34f8a514f2d12d05ac227675abda4eb2da1b59f36ac4299a1c4b37d5c7ba", 0x3e}, {&(0x7f0000000400)="2737ed737b6644c0653fee9d6bcc6c780d2c963b22b397", 0x17}], 0x3, &(0x7f0000001940)=[{0x40, 0x10f, 0x3, "33cbe6aaff8a3233219ea41568b8ee2dfe295691bf3560ba343db654d0b6a7d84c4907efe5d25300da04a1f7"}, {0x90, 0x118, 0x4b, "c18cc9cab216f1d469a6f9e569fe6e884c9ca4fc7e391afb5a185119e75318b35b81d39fce139ea29b23a049063bee12da1d09fa13239a07d3d651e99ffa5cf93c7cff78e6b065eabdf6431a17bd23d9199fd33ba8ca9c348e5c3ac3edb63d7c7212fa06f4ac4d738452f41d931e37c63236f27e2889cb7833"}, {0x30, 0x112, 0x8, "39a8fc6387d4b42b980a06c91fef2f2eefc6dec30f633288130613bb"}, {0x40, 0x10a, 0x1, "c1c375374319a412274643e19ce4f361b8757d3dba7e76b13583eec317e9087251354a45046071802285"}, {0x50, 0x115, 0x1000, "ce6df93c8d51e98a8f7adbf171fe86bbd11a743be59cc777537d1e6abac762e0d580b92a67f55fb813a02d2396aec764d159f22009b158f9ea20c7ea54"}, {0x1010, 0x3a, 0x4, "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"}, {0xe8, 0x107, 0x100, "ba94e9fcbd977519179eea5e6e281cee20ac679ebf1076bd3b0830338bb3a6a875b42ff77fa980385624b9dcee44b3cf6586960a6c774a639cd976abee3665ef6e20819c96d1718f3dedf2404aa1662caf4f045f362dd7889e468c7f0ab21e6f5a72e35fa950395a96486ea6009a06be0abbf25c2f86e0a490a0972e839d5b5bd2610b8417b6a27ff4bb8bd5279a870458f54e7a8f1eab8352271eb0ea8bbdb4516a3801245e73fff4aafd8e7c7037567b3d8a8f39fc877a7af7904aa456dc0f46b2bb9d95f5ed1cfe80023787bb8559862b96"}, {0xd8, 0x19, 0xfffff978, "18ad03b558934bd1a87e95c38d0dabd74662d39b733607944d417cc16b4688d8c94e1d6f43c1ee766b5a0b40986ece1e09aa9d697e68275ede3d8ce01848ec910fe65484971963e763fe9dd713dddb2af729456ac01fb496215a78a3fdcc773f3a7c7210b6078161b254b3dbab5a4e60ed8fb96321524dbba084f677a2dfe80dd6b4f0bbb3a81b7fea7b509de98939b4e33961ad56ce4e938a1196ed5301fe98b1c69e0abbefdb36fa881ef27023a7f11f56e9b5873e999604fb2d620ac810aefb85"}], 0x1360}, 0x0, 0x10, 0x1}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, 0x0, 0x80, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c4}, 0x4000) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000040)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$VIDIOC_ENUMINPUT(0xffffffffffffffff, 0xc050561a, &(0x7f0000001840)={0x40, "c6de24f91b934ea4414cd1d60b4e15c4c871cc0b1d157c22feea4df18a6c221c", 0x3, 0x800, 0x1, 0x4000, 0x2, 0x2}) (async) openat$null(0xffffffffffffff9c, &(0x7f00000018c0), 0x482, 0x0) (async) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000001900)) (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) syz_io_uring_setup(0x5, &(0x7f0000000180)={0x0, 0x5dc7, 0x4, 0x3, 0x32c}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000200)) (async) syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x16, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001800)={&(0x7f00000002c0)=@xdp={0x2c, 0x4, 0x0, 0x12}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)="163ece4614a82dad672b9199e3eaffc7cad30ea5c2c86278d20d5a1375ffa95549da12782425afb3b26c29b536afbf1a3a42ac53b6cf299c7c9b7211baab7201819afa6e8721430285de65c8a8a601487bf7fae81e87b51c71cf5f7fc7316373e97e3cc6fdebc5f3246ef518432d", 0x6e}, {&(0x7f00000003c0)="2dc560ede8db7c0f3f13dde2ad332fe99ff65c8a5ae078f2d544235fc05031ec34f8a514f2d12d05ac227675abda4eb2da1b59f36ac4299a1c4b37d5c7ba", 0x3e}, {&(0x7f0000000400)="2737ed737b6644c0653fee9d6bcc6c780d2c963b22b397", 0x17}], 0x3, &(0x7f0000001940)=[{0x40, 0x10f, 0x3, "33cbe6aaff8a3233219ea41568b8ee2dfe295691bf3560ba343db654d0b6a7d84c4907efe5d25300da04a1f7"}, {0x90, 0x118, 0x4b, "c18cc9cab216f1d469a6f9e569fe6e884c9ca4fc7e391afb5a185119e75318b35b81d39fce139ea29b23a049063bee12da1d09fa13239a07d3d651e99ffa5cf93c7cff78e6b065eabdf6431a17bd23d9199fd33ba8ca9c348e5c3ac3edb63d7c7212fa06f4ac4d738452f41d931e37c63236f27e2889cb7833"}, {0x30, 0x112, 0x8, "39a8fc6387d4b42b980a06c91fef2f2eefc6dec30f633288130613bb"}, {0x40, 0x10a, 0x1, "c1c375374319a412274643e19ce4f361b8757d3dba7e76b13583eec317e9087251354a45046071802285"}, {0x50, 0x115, 0x1000, "ce6df93c8d51e98a8f7adbf171fe86bbd11a743be59cc777537d1e6abac762e0d580b92a67f55fb813a02d2396aec764d159f22009b158f9ea20c7ea54"}, {0x1010, 0x3a, 0x4, "d11c93520a7a2fb1c746c485474f3f339e46e027f7117c7f220a08b347c667536b1c2d5f0a1379acb9f3b16f984c0801896891c16853bbcebffa5892972521d4b4fba823a1e472e1e16a93feac616a94d662b5e6d1bced0c7f19d2fc2636be1ed3c9cef6e06d799ed2df58f415b09f2eff92c4c06b6e620a33084f32c863a1adc19cb6154f96b3c7939d1ad3277283aaa989f4d8ab2c97e1d8253108d5c153e879fba265f7f9ac3c11236cca3f26291b5033e27d74ee0067dcace0041356634e4468dd2b4b75ee310d52c03e274239735f003b542aa34b19dfae3bde9dd601e7ff4c1b37a200d2ef9ace49fb206f285b9fa6b00cfa8f0fbcf4fb0d7ba5b7f8bfa2a90fc83eb5b183ff2d36285b0965f34e0450b4f1ae909869b574c2af9ee0ff69ff001565ad654d36c9e355fc4fb64d25be1d0864ac0a180c3159eaa9d1e30b037ce2524d321e6ee4b0cec238900a8bd32283f4bf45e0f01bfb66ed17fe7a51e8ef151168a55bbc1f1ebb6e20c77fc559c1dca813ea688cc26ce62ccb67993f295c8c003d6ae749ba98f30d290c7eb96be575cfb422d25b912fd1a92f62367061e70567eba5328b8d2698b55bcadfe607b0c2d59cea77d4c6dc9b9fcdfc1401349d9ed04584b38096cc72bfc75b4f575d586ff8e7171f6dc52b5dc1f2726cfb36d5387e6dceb673602290d8c39038ba5c7d8ad6b619b10772889160e528e27990e9ecb56c6b0f31411895710aafd802db7dc39882771dee516c2673b5acf3f083c8df4125f0354b6a8429b0a74b665753e61e6acf2c104623b6830ebcf1af6e60c5ec409e13746fea652379f35a29ddf62443cca7ff347578d940f17d2d55dca866758d6eeef7a737df81ae3c56321998c8170c22e5247ec628d10335871aebe28721e7bb8d97217f74db7f79d46922a7ba1df553f838a643132b8b324be133b4130816b32603b3c6252d7e0a9af70cd217cdd623d8b1b2a56022beeb1ae8b2b0d5a7a34315894ab31ed1b14f6d2a1494f85e093fa88ee689e5fe3b23690811f3136dbe8f9adeb20adfff8534751d16842baee3aa05af8e98912b659a1679b1b6ffe382cf6256c32ade52d1860f4432ad726760a36dd3ebdd221ca9c86dfd1c6bb8a90e0d71a92b4111aa4db5ef2052f1be1d09e5710a14f9a562c787a93266a46f1ec06ba11baa146cb2a47de44c4e1510d1e6cfadcf686af7e1c931ec19cb8605ec8282588333a2ae019cfae320a3e0f81a673cff87615daba1304d1d569b1898dd7cba88325b48a97dce53ebd540a9ff8f8593c6a5a353d95e85505cdf6c9f890d6b2771671c5612d6641c3dd6b4563808c75c94171faf2d12457c85ecdffce728367b7f94d1d161ce42866bdf41748c7ebb8daba14cb69a4b9d18e9ac537020f89b7326f1497e7cf32847a12274f669e222e161f670e2dc892fe76ae57efd89939988dd913db43146863079fd816278d57f6c47371ca0c67d20cd9b1178cf4b43ace556ed69b750e1e40518c55b74dab191262ddf6f579ed39dc022ea5728293d8bd89be56a37897e2658bf638fe32e45d4da1da98e33a6cd98cd5f5edc3701c53e52dfde1080ff69eb7909eff549499e6ffaa047d49fc922b749eed4a36bc0394058714af1e5875b497cb475a9823703ada8cace5512cbb839c0025a3505963f2d9807359009775352e07a39d691e256b56b5be7dff597035491711a7f1acbc676b6543c4ffe30dc4f9bae9f84a713f44a1ba0fd5bf9a36404caa156c1c996733a4825cc21c0921ac471810c540e8e154c94accc345daa07257329d5d787fe809649e514bc95105a94c9df77b895ca60b7723990369ed7f032a0182cad570a1b1895f691eb3a7177cd8ef8afa5702d548254743c764eb68b044e0e29b86ee299402b04e0e94f56240712dd386e83d60ce790882a7dfc62ef183cd2701a8fc6b1153630e0d46c867754a711920c4f9e6269ac25cbbb339da9325977265aaef358ace0a4cb88e64a17d8a66940c56288ca1fb162864497484ee2f2ae1a1919a0f86f4fc474e3c2c470361e0d507046d77d0fda68709f88ea41843ffa46c0dc7d65d80dee8e898ef734fe37b214fb77353303753db599faa061296cf24ab81c858faed34dfc46057671b7f09fe100c1581c0700eec820fa1f186b2151eeabdd1cfa3cbefbc82347340e23634add2b108fc6dd2b6004c3e9a855d71ab5be74a0be00dc37070b61976d1a769e805aa13ad5c6a9c437424886860f90b63a4b20c669c9c8a946bebbf241dfd3a671821f2251047aa22175c2c6d8850c72f85c35f8167095c521c6deaf42e820923953d39264461d5c6e4d809aeaa645efb98a6157934b47bf998e830b1582ae4a1ed39a345f847edabf132327b9e7d7fa90c169ef9f14a2ba96cdbdcd156ea7a2563dfd485f74d28cf852a7898f5d3d957dea87710c16cfefb979f09ff2d6bb8e2eef8f0a7bec5f7855c22e53b0ae7dec0c5580bbb1758b75c02f9a2156e9dddde19ccdef20333878a1a30e12bdb031ba4ad5e7970085b50f357fd2974d72f8e55a277f8e34d16598a5dabebb4a889f947ec9f7f7d6067c3167af03f4c5f7f086b939668794091c7c35630404fc71e517f5422337ae0f0ecf915802dba04a8011c28e59afdbb65d74757b1b65fa6753fc7c48091ea2e84d5fb6de0bd2216d4febeab1f20058cee3cf555864b69f758938bee7aaddae7ddb13ee5987f212b8343d9e5ffb8fac15a0bcfc10dd3a971ad0bc73d7417dcea0af83baa962794bc0fab533ff453ffb87a42ae414c91fbd2eab791270ccc4f974ab036ccdbf2d01e3054e28893926d475c2f5ba75ac8e48242f33b4889d826227cd0444dea8786a8955e72dd1b80985d027edfb04c6e36f39dc8cf7fbb56de78f82fdec8465d382f3cf3e0aba1bbf1410601d7fd507bcd8d2b1f22b1b04fcf30cdf54262f69b5ef49c051a879412c2ad97cbae601aaa356ef63e3d17256eb1742dc6a797b687b76b46185f9f5037c53b510fd97b15222f30c6bd2006e6c75a91874583d98c250741dcb9ed9a75998e47f13ae637ac8b327f88704a95e51b0013405eadab7f0d1d015130a93602180a35842125537df0d01a26f6f89bf25645875bee67ab8031f196bc0413e93f993814842d1f87c703bff5733f21269f75bb0904cc6f0c3c40b08ddc0e5cce603310a17d11a50ed68a9d446d2bed889e1cd711c355c833d81c110f76e4e064fbdfd06e0018d176706625f4284e6a996c0571d288bbebbb8d2dc5117db32caf54415e2ba1c7b4f940ef530bf894c28922c27d5e4ff19967074f9939360dfe2bb257fe953853417548219646c36cca72834f2a2b64e3ce98122018d34cd457f9e61771e50ba7d0d878d252ba76eac5ae08d030109c5457c6948a094ecf1c6fa7ffca0470fb01933fb540cd813b24967d19f2f9f60b07b5d666f8eab187f403e10e6e5b91db13a4ddebced43b62d084cb797d08fb227d36a5812805882b432fee36e001ab6e93461961efd876c673c8a48b19c7bcfa8f9b0044f91a84f431da304694f2a935fa21e5579638192167fcc77c4b2afe52bc073d8df7a610984711dd3198de211d8326d617818dce1b3e22547cc8b9db664bb377ae152235af8b7e5eed6bcdec1536fd384d8900bfd90eea396b93e898ebd88480ec10fd8350eb1d562b8009d98d9b98e42febd1dc2c61467803e88a6b757c913c0cdeca3ba54639d6032bac2c9a44a41af64923a69c0c541350c4907a14da702735a0f19fbe67967759fa1146226441a8426217245df1de1fe7cefad2663d6499cb0435698655ac3a8feca091b1a977c080ac67d0efb50b395fbfd2896882ab6b65a32a1a53b26fe4f33eb859fb0bf84bd7b068cc454b4a06b5918188f0e27cd24e6921b520b41e4e3e1951c8f7d0b7478b7768a2f53ec7bf5b56b84307e3a590f264a79959caadfeef7680af1f881f753e6e11dd1780d3042387203a1f852ea718091839c22f2751fdb4dd4df885c38a7b6e0aa564c0a21dc4a874d2b8843339790e06dcbe25dd4a6c8c3555ba80e76b0b89656abf4e73bb62f2a1cd3f55df70f040fb48c10cd63257d4569a8446f3119222d2f27a0fdfa5eb74fe24d885f02138cb6a9169c8aba854aee03231c9c3c10688bcfa3470f0b939d7586137bbcb48f7db9b5d225c1d9077d6643335a7a2bcbb615b08c640d83f79aa080585803199f0997fa4a547bef140c1a4de31396b243dc86da105195068b5335f44be52d29cd5d10f27e8a4e339c0ca027c8a942222131bea6cd9c7213831380f5cd0adb72e306628f097092fc62da6e89366bcc1915fc6a00a79ee86277be871a32c562da09d43e64d20377f09f435328edd65ae8086f08feebd9ad3a27bc571d7cd9386087385e2fed74f00f8b2b741aadcda799adfa1173844baed4985878a9811b1ce6552b1a9fda1d11bb5544123bf40563be6f28e1f0686e36152fb01bfccd647cea126b458728df85ebd11b961135bd5be3dba397b33a053f2174c3d47dc1ac65abfe2041c1de541d72c4943b0e5fcd0affb34c9b7c7ce78d41178f241d9bfd6e3af9b859cf04f0026db5b25d6a24a299b37e314401bb0f95b1fb5d13bc9b8b16090d53f581c18ab80ba62d67981b8f00b150efcf55d19b6c4db08cbac68b9ff2ded36587570b285f1b114e1c9c106487e37da983718a5a2327f85f03041160218273479e0f3bcd9c3895624427cbf2491f550f6003b886a3e249b75be33714a37ece9b8a5b092cbe901cbcd8e69a874db118fec28e83daf0e5c4f6b0a499e727b6c0f774a60f2e2a9dcb00636aa1021270cd3748eb18e74e54f3c747b43447f0d43f01ac7d125ae455f07d84fb85299c23a0f3169bd4320061355869c29979f0f273bc11639597dae6ea38192f26cf2215639476edb5c590d4a2eeb00e03bdc41a04c200278d494ab2bf5df8cd620b2e885d26e8807002ea61250594aaf283a5ad4034db5a9d46ca1afcea6137d937c72772992398c9d0954ba91bb47a13d7448f2f0aa4a17b927474cb16cfed2106cbbe94e81513bc19ac57b6b2ce75f4147e26ec14a4cec50649383413ade618a713655ff922ae60d1d4288bcb578f0cf81b177c6502de8e07ba40eee9df248c7936c5af8d4158f77c4042a49cb2a5f075fa30b77b8dccfe16d752c0327fe60f65003cb22af81b44f890a25b521b962f04dc1c440c9b1aee8fd7ed9747f0348b8e2ff94447009757c0950b11479a00d4bd8a245bff23030fc4418b8daa73169040129ded852f96ae446b733f62e19b4b42b678417d33500ac780e518b52aa514677b3443e5b26996c35e7a63da59c531def541f3a2ad105ff5edbc7dbc16ca684e678051d8e71560dd683eded06822e33ee2c547b35a01ede6435ae0e42914471ed7f7dbca87218908d48c03f0346aea8f41c476eeb81a03bf876209141df3178ec8fc57311660de5bb7449648cf48712fb120b9557be33919dc7b56f263721e0caa6c064cbbd37afa556acca8b06ac47f58092a36e44d8057985190c038c30a785977da3bec1826223ed0b1c337914731e87484513934e9e1302604a07ae7887823322ca40f54a1927221a5f22a28482e0cfe94cea20ac41650b1c8ea2d3588216fa3221e8da6ddffaa06813d4f0dfeb7f7d295612b3fc5d9e23773a3cc839d5eb283af89684c37581b73ad606a5eed053bbb36ef63c5c47a194ff8e7d5deefce029634093e81425f572314e67eb0435841da3c633b7dac3ac35276f8008ef205544659bda010c67dbae54890"}, {0xe8, 0x107, 0x100, "ba94e9fcbd977519179eea5e6e281cee20ac679ebf1076bd3b0830338bb3a6a875b42ff77fa980385624b9dcee44b3cf6586960a6c774a639cd976abee3665ef6e20819c96d1718f3dedf2404aa1662caf4f045f362dd7889e468c7f0ab21e6f5a72e35fa950395a96486ea6009a06be0abbf25c2f86e0a490a0972e839d5b5bd2610b8417b6a27ff4bb8bd5279a870458f54e7a8f1eab8352271eb0ea8bbdb4516a3801245e73fff4aafd8e7c7037567b3d8a8f39fc877a7af7904aa456dc0f46b2bb9d95f5ed1cfe80023787bb8559862b96"}, {0xd8, 0x19, 0xfffff978, "18ad03b558934bd1a87e95c38d0dabd74662d39b733607944d417cc16b4688d8c94e1d6f43c1ee766b5a0b40986ece1e09aa9d697e68275ede3d8ce01848ec910fe65484971963e763fe9dd713dddb2af729456ac01fb496215a78a3fdcc773f3a7c7210b6078161b254b3dbab5a4e60ed8fb96321524dbba084f677a2dfe80dd6b4f0bbb3a81b7fea7b509de98939b4e33961ad56ce4e938a1196ed5301fe98b1c69e0abbefdb36fa881ef27023a7f11f56e9b5873e999604fb2d620ac810aefb85"}], 0x1360}, 0x0, 0x10, 0x1}, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) (async) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, 0x0, 0x80, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c4}, 0x4000) (async) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000040)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) 00:19:51 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x6}) 00:19:51 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:51 executing program 2: ioctl$VIDIOC_ENUMINPUT(0xffffffffffffffff, 0xc050561a, &(0x7f0000001840)={0x40, "c6de24f91b934ea4414cd1d60b4e15c4c871cc0b1d157c22feea4df18a6c221c", 0x3, 0x800, 0x1, 0x4000, 0x2, 0x2}) r0 = openat$null(0xffffffffffffff9c, &(0x7f00000018c0), 0x482, 0x0) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000001900)) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x5, &(0x7f0000000180)={0x0, 0x5dc7, 0x4, 0x3, 0x32c}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000200)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x16, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001800)={&(0x7f00000002c0)=@xdp={0x2c, 0x4, 0x0, 0x12}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)="163ece4614a82dad672b9199e3eaffc7cad30ea5c2c86278d20d5a1375ffa95549da12782425afb3b26c29b536afbf1a3a42ac53b6cf299c7c9b7211baab7201819afa6e8721430285de65c8a8a601487bf7fae81e87b51c71cf5f7fc7316373e97e3cc6fdebc5f3246ef518432d", 0x6e}, {&(0x7f00000003c0)="2dc560ede8db7c0f3f13dde2ad332fe99ff65c8a5ae078f2d544235fc05031ec34f8a514f2d12d05ac227675abda4eb2da1b59f36ac4299a1c4b37d5c7ba", 0x3e}, {&(0x7f0000000400)="2737ed737b6644c0653fee9d6bcc6c780d2c963b22b397", 0x17}], 0x3, &(0x7f0000001940)=[{0x40, 0x10f, 0x3, "33cbe6aaff8a3233219ea41568b8ee2dfe295691bf3560ba343db654d0b6a7d84c4907efe5d25300da04a1f7"}, {0x90, 0x118, 0x4b, "c18cc9cab216f1d469a6f9e569fe6e884c9ca4fc7e391afb5a185119e75318b35b81d39fce139ea29b23a049063bee12da1d09fa13239a07d3d651e99ffa5cf93c7cff78e6b065eabdf6431a17bd23d9199fd33ba8ca9c348e5c3ac3edb63d7c7212fa06f4ac4d738452f41d931e37c63236f27e2889cb7833"}, {0x30, 0x112, 0x8, "39a8fc6387d4b42b980a06c91fef2f2eefc6dec30f633288130613bb"}, {0x40, 0x10a, 0x1, "c1c375374319a412274643e19ce4f361b8757d3dba7e76b13583eec317e9087251354a45046071802285"}, {0x50, 0x115, 0x1000, "ce6df93c8d51e98a8f7adbf171fe86bbd11a743be59cc777537d1e6abac762e0d580b92a67f55fb813a02d2396aec764d159f22009b158f9ea20c7ea54"}, {0x1010, 0x3a, 0x4, "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"}, {0xe8, 0x107, 0x100, "ba94e9fcbd977519179eea5e6e281cee20ac679ebf1076bd3b0830338bb3a6a875b42ff77fa980385624b9dcee44b3cf6586960a6c774a639cd976abee3665ef6e20819c96d1718f3dedf2404aa1662caf4f045f362dd7889e468c7f0ab21e6f5a72e35fa950395a96486ea6009a06be0abbf25c2f86e0a490a0972e839d5b5bd2610b8417b6a27ff4bb8bd5279a870458f54e7a8f1eab8352271eb0ea8bbdb4516a3801245e73fff4aafd8e7c7037567b3d8a8f39fc877a7af7904aa456dc0f46b2bb9d95f5ed1cfe80023787bb8559862b96"}, {0xd8, 0x19, 0xfffff978, "18ad03b558934bd1a87e95c38d0dabd74662d39b733607944d417cc16b4688d8c94e1d6f43c1ee766b5a0b40986ece1e09aa9d697e68275ede3d8ce01848ec910fe65484971963e763fe9dd713dddb2af729456ac01fb496215a78a3fdcc773f3a7c7210b6078161b254b3dbab5a4e60ed8fb96321524dbba084f677a2dfe80dd6b4f0bbb3a81b7fea7b509de98939b4e33961ad56ce4e938a1196ed5301fe98b1c69e0abbefdb36fa881ef27023a7f11f56e9b5873e999604fb2d620ac810aefb85"}], 0x1360}, 0x0, 0x10, 0x1}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, 0x0, 0x80, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c4}, 0x4000) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000040)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$VIDIOC_ENUMINPUT(0xffffffffffffffff, 0xc050561a, &(0x7f0000001840)={0x40, "c6de24f91b934ea4414cd1d60b4e15c4c871cc0b1d157c22feea4df18a6c221c", 0x3, 0x800, 0x1, 0x4000, 0x2, 0x2}) (async) openat$null(0xffffffffffffff9c, &(0x7f00000018c0), 0x482, 0x0) (async) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000001900)) (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) syz_io_uring_setup(0x5, &(0x7f0000000180)={0x0, 0x5dc7, 0x4, 0x3, 0x32c}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000080), &(0x7f0000000200)) (async) syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x16, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001800)={&(0x7f00000002c0)=@xdp={0x2c, 0x4, 0x0, 0x12}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000340)="163ece4614a82dad672b9199e3eaffc7cad30ea5c2c86278d20d5a1375ffa95549da12782425afb3b26c29b536afbf1a3a42ac53b6cf299c7c9b7211baab7201819afa6e8721430285de65c8a8a601487bf7fae81e87b51c71cf5f7fc7316373e97e3cc6fdebc5f3246ef518432d", 0x6e}, {&(0x7f00000003c0)="2dc560ede8db7c0f3f13dde2ad332fe99ff65c8a5ae078f2d544235fc05031ec34f8a514f2d12d05ac227675abda4eb2da1b59f36ac4299a1c4b37d5c7ba", 0x3e}, {&(0x7f0000000400)="2737ed737b6644c0653fee9d6bcc6c780d2c963b22b397", 0x17}], 0x3, &(0x7f0000001940)=[{0x40, 0x10f, 0x3, "33cbe6aaff8a3233219ea41568b8ee2dfe295691bf3560ba343db654d0b6a7d84c4907efe5d25300da04a1f7"}, {0x90, 0x118, 0x4b, "c18cc9cab216f1d469a6f9e569fe6e884c9ca4fc7e391afb5a185119e75318b35b81d39fce139ea29b23a049063bee12da1d09fa13239a07d3d651e99ffa5cf93c7cff78e6b065eabdf6431a17bd23d9199fd33ba8ca9c348e5c3ac3edb63d7c7212fa06f4ac4d738452f41d931e37c63236f27e2889cb7833"}, {0x30, 0x112, 0x8, "39a8fc6387d4b42b980a06c91fef2f2eefc6dec30f633288130613bb"}, {0x40, 0x10a, 0x1, "c1c375374319a412274643e19ce4f361b8757d3dba7e76b13583eec317e9087251354a45046071802285"}, {0x50, 0x115, 0x1000, "ce6df93c8d51e98a8f7adbf171fe86bbd11a743be59cc777537d1e6abac762e0d580b92a67f55fb813a02d2396aec764d159f22009b158f9ea20c7ea54"}, {0x1010, 0x3a, 0x4, "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"}, {0xe8, 0x107, 0x100, "ba94e9fcbd977519179eea5e6e281cee20ac679ebf1076bd3b0830338bb3a6a875b42ff77fa980385624b9dcee44b3cf6586960a6c774a639cd976abee3665ef6e20819c96d1718f3dedf2404aa1662caf4f045f362dd7889e468c7f0ab21e6f5a72e35fa950395a96486ea6009a06be0abbf25c2f86e0a490a0972e839d5b5bd2610b8417b6a27ff4bb8bd5279a870458f54e7a8f1eab8352271eb0ea8bbdb4516a3801245e73fff4aafd8e7c7037567b3d8a8f39fc877a7af7904aa456dc0f46b2bb9d95f5ed1cfe80023787bb8559862b96"}, {0xd8, 0x19, 0xfffff978, "18ad03b558934bd1a87e95c38d0dabd74662d39b733607944d417cc16b4688d8c94e1d6f43c1ee766b5a0b40986ece1e09aa9d697e68275ede3d8ce01848ec910fe65484971963e763fe9dd713dddb2af729456ac01fb496215a78a3fdcc773f3a7c7210b6078161b254b3dbab5a4e60ed8fb96321524dbba084f677a2dfe80dd6b4f0bbb3a81b7fea7b509de98939b4e33961ad56ce4e938a1196ed5301fe98b1c69e0abbefdb36fa881ef27023a7f11f56e9b5873e999604fb2d620ac810aefb85"}], 0x1360}, 0x0, 0x10, 0x1}, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) (async) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, 0x0, 0x80, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c4}, 0x4000) (async) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000040)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) 00:19:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1c) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x7}) 00:19:52 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000000200)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, &(0x7f00000012c0)=""/111, 0x6f}, 0x0, 0x2, 0x0, {0x1, r1}}, 0x2) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4138ae84, 0x0) 00:19:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8090ae81, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x300}) 00:19:52 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000000200)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, &(0x7f00000012c0)=""/111, 0x6f}, 0x0, 0x2, 0x0, {0x1, r1}}, 0x2) (async, rerun: 64) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async, rerun: 64) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x500}) 00:19:52 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0) 00:19:52 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0) 00:19:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1d) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x600}) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000000200)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, &(0x7f00000012c0)=""/111, 0x6f}, 0x0, 0x2, 0x0, {0x1, r1}}, 0x2) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000000200)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, &(0x7f00000012c0)=""/111, 0x6f}, 0x0, 0x2, 0x0, {0x1, r1}}, 0x2) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) 00:19:52 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0) 00:19:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8138ae83, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x41a0ae8d, 0x0) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x700}) 00:19:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x19) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000700)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0\x00'}) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x7, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="d95da35ef24d0e971406f544a848163bc862ce16e9ce5b2480f98c2cf6fed00c3c7398f605de6abb4d6bd2032b8c9e187941ac55ab44203b219d7ed23fc122087cc333479ee8342c2b657a4106fa2c471ca6dafd9276212266d096b705ba962dcb7fbc", 0x63}], 0x1, &(0x7f00000002c0)=[{0x38, 0x29, 0x1, "7efe2d68be2d3c11de6eb5416fee7684b274071c86d02f0b99c03dc277c27f607349"}, {0x58, 0x10b, 0x2, "8f9b547a6b2f7ab9b45d1a4bf7fe51210fce31daa86fe7fd29a407d9924f1da0b856f26a5dbc3398db7e2defb2d76a4c18e8d56730d138ce09f5f5c9828e654f6459b91b0f6764"}, {0x98, 0xff, 0x101, "b21b46ad491e130c9c53078a6d0f903100455cad776cf1df5f2abca545046e204bdd65dea843a2d1103783e354b4570d37392d2bb86073aa72c1e7a2641abdf5b4f35cdd6a7e3fc6b324b25b92c2acfe36585bc085416b8e15e6789f8c883bdb89107be10d7c68a5da310125f83c84c204cde0aa3da1cfa0f1ce75aaa99eac5811878d67b7e997"}, {0xd8, 0x3a, 0x5, "0e92662ccd0845e017d7adc4e76b79d6498477abdd2035ac2096cb021ae84ef61e56534651469754c3a8c3a8475def01b3cefe0d6da66ae7bca25fc1369c21371c157c598f190feaf65cb0b7b57f84dc45c6460cfbf6df55a2edceddf1090203c8b3d950b062e4af162c3f00c54942db8913e07c3a47bea8ab134f538c01b08499b60400744d0dead4d3abc42c128b2c6bd48738eb71a4f39cd800a828635f0c8e4814d8694e6848cd8984b5391a3bdb91d3c07ad3766eef97b53bbd3bbcb91a67b6c27e52c3848e"}, {0x20, 0x3a, 0x0, "d25d2e7dba2a5dcff062"}, {0x10, 0x119, 0x1}, {0xe8, 0x115, 0x81, "8768eea5c3b35698d0cd642fad1ee86cacd70985b0ee2690f84a368f28f3b1cd7569b8172d0bc8635ad613ddacca8005ed6c4c23cbd3483243df13be9f364a7d3a87cb2aed58ab9e1fa52c0336504de2ccdd2b017815dfaf45a07169764c604769f73def81883f74cf9b1ac4ad0a03cc95da5592b5a6fc355e21bedb58f380b42ea57c26a039f274631a1e7de9e99f6d62b6186057ca07241990fdca8fdec6161ecd5e18ead632d8e80ff2354b43f6721de7df6d0028acb627c8c36ed5601400e0925f5fd895a4d6dd496c1fada1a0ebb0fcb1bc59395f"}, {0xb8, 0x3a, 0xfffffe01, "a61f012efe93413b20be476e0f7a0d948913c0298e37ab8e134de5f7ea1139e928909d59cfb0451f8d67de3e18f2f6048c3c52e3210ba8ee4028fff5e8147de3b6b1141fcc7c0d3b5c099eee6f4409a9e5a3b57101062e2564393138ef85778bbf4b3977a1363fdbcc329d774b42cdac41c5066f868b1f024cbac8f8c0ec12d8220ee0e2c92eee6787cca0a699af8e91b32a4be8bb2c8a1c787c09103a3b443d4f"}], 0x3d0}, 0x0, 0x90, 0x1, {0x0, r1}}, 0x7) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x6}}}}, 0xf) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0xff00}) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1) (async) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000700)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0\x00'}) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) (async) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x7, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="d95da35ef24d0e971406f544a848163bc862ce16e9ce5b2480f98c2cf6fed00c3c7398f605de6abb4d6bd2032b8c9e187941ac55ab44203b219d7ed23fc122087cc333479ee8342c2b657a4106fa2c471ca6dafd9276212266d096b705ba962dcb7fbc", 0x63}], 0x1, &(0x7f00000002c0)=[{0x38, 0x29, 0x1, "7efe2d68be2d3c11de6eb5416fee7684b274071c86d02f0b99c03dc277c27f607349"}, {0x58, 0x10b, 0x2, "8f9b547a6b2f7ab9b45d1a4bf7fe51210fce31daa86fe7fd29a407d9924f1da0b856f26a5dbc3398db7e2defb2d76a4c18e8d56730d138ce09f5f5c9828e654f6459b91b0f6764"}, {0x98, 0xff, 0x101, "b21b46ad491e130c9c53078a6d0f903100455cad776cf1df5f2abca545046e204bdd65dea843a2d1103783e354b4570d37392d2bb86073aa72c1e7a2641abdf5b4f35cdd6a7e3fc6b324b25b92c2acfe36585bc085416b8e15e6789f8c883bdb89107be10d7c68a5da310125f83c84c204cde0aa3da1cfa0f1ce75aaa99eac5811878d67b7e997"}, {0xd8, 0x3a, 0x5, "0e92662ccd0845e017d7adc4e76b79d6498477abdd2035ac2096cb021ae84ef61e56534651469754c3a8c3a8475def01b3cefe0d6da66ae7bca25fc1369c21371c157c598f190feaf65cb0b7b57f84dc45c6460cfbf6df55a2edceddf1090203c8b3d950b062e4af162c3f00c54942db8913e07c3a47bea8ab134f538c01b08499b60400744d0dead4d3abc42c128b2c6bd48738eb71a4f39cd800a828635f0c8e4814d8694e6848cd8984b5391a3bdb91d3c07ad3766eef97b53bbd3bbcb91a67b6c27e52c3848e"}, {0x20, 0x3a, 0x0, "d25d2e7dba2a5dcff062"}, {0x10, 0x119, 0x1}, {0xe8, 0x115, 0x81, "8768eea5c3b35698d0cd642fad1ee86cacd70985b0ee2690f84a368f28f3b1cd7569b8172d0bc8635ad613ddacca8005ed6c4c23cbd3483243df13be9f364a7d3a87cb2aed58ab9e1fa52c0336504de2ccdd2b017815dfaf45a07169764c604769f73def81883f74cf9b1ac4ad0a03cc95da5592b5a6fc355e21bedb58f380b42ea57c26a039f274631a1e7de9e99f6d62b6186057ca07241990fdca8fdec6161ecd5e18ead632d8e80ff2354b43f6721de7df6d0028acb627c8c36ed5601400e0925f5fd895a4d6dd496c1fada1a0ebb0fcb1bc59395f"}, {0xb8, 0x3a, 0xfffffe01, "a61f012efe93413b20be476e0f7a0d948913c0298e37ab8e134de5f7ea1139e928909d59cfb0451f8d67de3e18f2f6048c3c52e3210ba8ee4028fff5e8147de3b6b1141fcc7c0d3b5c099eee6f4409a9e5a3b57101062e2564393138ef85778bbf4b3977a1363fdbcc329d774b42cdac41c5066f868b1f024cbac8f8c0ec12d8220ee0e2c92eee6787cca0a699af8e91b32a4be8bb2c8a1c787c09103a3b443d4f"}], 0x3d0}, 0x0, 0x90, 0x1, {0x0, r1}}, 0x7) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x6}}}}, 0xf) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x1000000}) 00:19:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1e) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1) (async) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000700)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0\x00'}) (async) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000700)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0\x00'}) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_SENDMSG={0x9, 0x7, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="d95da35ef24d0e971406f544a848163bc862ce16e9ce5b2480f98c2cf6fed00c3c7398f605de6abb4d6bd2032b8c9e187941ac55ab44203b219d7ed23fc122087cc333479ee8342c2b657a4106fa2c471ca6dafd9276212266d096b705ba962dcb7fbc", 0x63}], 0x1, &(0x7f00000002c0)=[{0x38, 0x29, 0x1, "7efe2d68be2d3c11de6eb5416fee7684b274071c86d02f0b99c03dc277c27f607349"}, {0x58, 0x10b, 0x2, "8f9b547a6b2f7ab9b45d1a4bf7fe51210fce31daa86fe7fd29a407d9924f1da0b856f26a5dbc3398db7e2defb2d76a4c18e8d56730d138ce09f5f5c9828e654f6459b91b0f6764"}, {0x98, 0xff, 0x101, "b21b46ad491e130c9c53078a6d0f903100455cad776cf1df5f2abca545046e204bdd65dea843a2d1103783e354b4570d37392d2bb86073aa72c1e7a2641abdf5b4f35cdd6a7e3fc6b324b25b92c2acfe36585bc085416b8e15e6789f8c883bdb89107be10d7c68a5da310125f83c84c204cde0aa3da1cfa0f1ce75aaa99eac5811878d67b7e997"}, {0xd8, 0x3a, 0x5, "0e92662ccd0845e017d7adc4e76b79d6498477abdd2035ac2096cb021ae84ef61e56534651469754c3a8c3a8475def01b3cefe0d6da66ae7bca25fc1369c21371c157c598f190feaf65cb0b7b57f84dc45c6460cfbf6df55a2edceddf1090203c8b3d950b062e4af162c3f00c54942db8913e07c3a47bea8ab134f538c01b08499b60400744d0dead4d3abc42c128b2c6bd48738eb71a4f39cd800a828635f0c8e4814d8694e6848cd8984b5391a3bdb91d3c07ad3766eef97b53bbd3bbcb91a67b6c27e52c3848e"}, {0x20, 0x3a, 0x0, "d25d2e7dba2a5dcff062"}, {0x10, 0x119, 0x1}, {0xe8, 0x115, 0x81, "8768eea5c3b35698d0cd642fad1ee86cacd70985b0ee2690f84a368f28f3b1cd7569b8172d0bc8635ad613ddacca8005ed6c4c23cbd3483243df13be9f364a7d3a87cb2aed58ab9e1fa52c0336504de2ccdd2b017815dfaf45a07169764c604769f73def81883f74cf9b1ac4ad0a03cc95da5592b5a6fc355e21bedb58f380b42ea57c26a039f274631a1e7de9e99f6d62b6186057ca07241990fdca8fdec6161ecd5e18ead632d8e80ff2354b43f6721de7df6d0028acb627c8c36ed5601400e0925f5fd895a4d6dd496c1fada1a0ebb0fcb1bc59395f"}, {0xb8, 0x3a, 0xfffffe01, "a61f012efe93413b20be476e0f7a0d948913c0298e37ab8e134de5f7ea1139e928909d59cfb0451f8d67de3e18f2f6048c3c52e3210ba8ee4028fff5e8147de3b6b1141fcc7c0d3b5c099eee6f4409a9e5a3b57101062e2564393138ef85778bbf4b3977a1363fdbcc329d774b42cdac41c5066f868b1f024cbac8f8c0ec12d8220ee0e2c92eee6787cca0a699af8e91b32a4be8bb2c8a1c787c09103a3b443d4f"}], 0x3d0}, 0x0, 0x90, 0x1, {0x0, r1}}, 0x7) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x6}}}}, 0xf) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x2000000}) 00:19:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x81a0ae8c, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8004ae98, 0x0) 00:19:52 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x3000000}) 00:19:52 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000180)={0x0, 'caif0\x00', {}, 0x3}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000004, 0x10, r2, 0x4b815000) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0xf0, 0x2000, 0xf0, 0x258, 0x4, 0x1, 0x8, 0x20, {0x8, 0x80000000, 0x1}, {0x4, 0x7ff, 0x1}, {0x2ff81dfa, 0x8, 0x1}, {0x3, 0xd4a8}, 0x3, 0x40, 0x9aa, 0xb91, 0x0, 0x10001, 0xffffffff, 0x101, 0x1fb7, 0x0, 0x1, 0x1, 0xa, 0x2, 0x1, 0xc}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) dup(r1) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8004ae98, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x4000000}) 00:19:53 executing program 2: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000180)={0x0, 'caif0\x00', {}, 0x3}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000004, 0x10, r2, 0x4b815000) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0xf0, 0x2000, 0xf0, 0x258, 0x4, 0x1, 0x8, 0x20, {0x8, 0x80000000, 0x1}, {0x4, 0x7ff, 0x1}, {0x2ff81dfa, 0x8, 0x1}, {0x3, 0xd4a8}, 0x3, 0x40, 0x9aa, 0xb91, 0x0, 0x10001, 0xffffffff, 0x101, 0x1fb7, 0x0, 0x1, 0x1, 0xa, 0x2, 0x1, 0xc}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) dup(r1) (async) dup(r1) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x5000000}) 00:19:53 executing program 2: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000180)={0x0, 'caif0\x00', {}, 0x3}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000004, 0x10, r2, 0x4b815000) (async) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000004, 0x10, r2, 0x4b815000) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0xf0, 0x2000, 0xf0, 0x258, 0x4, 0x1, 0x8, 0x20, {0x8, 0x80000000, 0x1}, {0x4, 0x7ff, 0x1}, {0x2ff81dfa, 0x8, 0x1}, {0x3, 0xd4a8}, 0x3, 0x40, 0x9aa, 0xb91, 0x0, 0x10001, 0xffffffff, 0x101, 0x1fb7, 0x0, 0x1, 0x1, 0xa, 0x2, 0x1, 0xc}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) dup(r1) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f00000001c0)={0x7, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 00:19:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x22) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x6000000}) 00:19:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0045878, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:53 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x401c5820, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x80086301, 0x0) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x7000000}) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0xfdfdffff}) 00:19:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x5450, 0x0) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0xff000000}) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0xfffffdfd}) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0xffffff7f}) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:19:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x80086601, 0x0) 00:19:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0045878, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x2}) 00:19:53 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x5}}) 00:19:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x24) 00:19:53 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x3}) 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x4}) 00:19:54 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (fail_nth: 1) 00:19:54 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x8) 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x5}) 00:19:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0189436, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x6}) [ 1927.849794][T11085] FAULT_INJECTION: forcing a failure. [ 1927.849794][T11085] name failslab, interval 1, probability 0, space 0, times 0 [ 1927.877059][T11085] CPU: 1 PID: 11085 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1927.887547][T11085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 00:19:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x801c581f, 0x0) [ 1927.897631][T11085] Call Trace: [ 1927.900938][T11085] [ 1927.903895][T11085] dump_stack_lvl+0x136/0x150 [ 1927.908609][T11085] should_fail_ex+0x4a3/0x5b0 [ 1927.913339][T11085] should_failslab+0x9/0x20 [ 1927.917885][T11085] __kmem_cache_alloc_node+0x5b/0x320 [ 1927.923306][T11085] ? tomoyo_realpath_from_path+0xc3/0x600 [ 1927.929082][T11085] ? tomoyo_realpath_from_path+0xc3/0x600 [ 1927.934855][T11085] __kmalloc+0x4e/0x190 [ 1927.939134][T11085] ? rcu_is_watching+0x12/0xb0 [ 1927.943953][T11085] tomoyo_realpath_from_path+0xc3/0x600 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x7}) [ 1927.949541][T11085] ? tomoyo_profile+0x46/0x60 [ 1927.954287][T11085] tomoyo_path_number_perm+0x217/0x570 [ 1927.959786][T11085] ? tomoyo_path_number_perm+0x1c1/0x570 [ 1927.965461][T11085] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 1927.971307][T11085] ? find_held_lock+0x2d/0x110 [ 1927.976134][T11085] ? lock_downgrade+0x690/0x690 [ 1927.981044][T11085] ? wait_for_completion_io_timeout+0x20/0x20 [ 1927.987169][T11085] ? __fget_files+0x26a/0x480 [ 1927.991907][T11085] security_file_ioctl+0x54/0xb0 [ 1927.996897][T11085] __x64_sys_ioctl+0xb7/0x210 [ 1928.001629][T11085] do_syscall_64+0x39/0xb0 [ 1928.006106][T11085] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1928.012045][T11085] RIP: 0033:0x7fbcd588c169 [ 1928.016489][T11085] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1928.036135][T11085] RSP: 002b:00007fbcd650a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1928.044614][T11085] RAX: ffffffffffffffda RBX: 00007fbcd59abf80 RCX: 00007fbcd588c169 [ 1928.052614][T11085] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000003 [ 1928.060647][T11085] RBP: 00007fbcd650a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1928.068649][T11085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1928.076644][T11085] R13: 00007fbcd5acfb1f R14: 00007fbcd650a300 R15: 0000000000022000 [ 1928.084660][T11085] 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x300}) 00:19:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x26) [ 1928.146878][T11085] ERROR: Out of memory at tomoyo_realpath_from_path. 00:19:54 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 1) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x500}) 00:19:54 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (fail_nth: 2) 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x600}) [ 1928.307409][T11115] FAULT_INJECTION: forcing a failure. [ 1928.307409][T11115] name failslab, interval 1, probability 0, space 0, times 0 [ 1928.326833][T11115] CPU: 1 PID: 11115 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1928.337312][T11115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1928.347386][T11115] Call Trace: [ 1928.350673][T11115] [ 1928.353613][T11115] dump_stack_lvl+0x136/0x150 [ 1928.358326][T11115] should_fail_ex+0x4a3/0x5b0 [ 1928.363040][T11115] should_failslab+0x9/0x20 [ 1928.367562][T11115] __kmem_cache_alloc_node+0x5b/0x320 [ 1928.372965][T11115] ? tomoyo_encode2.part.0+0xe9/0x3a0 [ 1928.378378][T11115] ? tomoyo_encode2.part.0+0xe9/0x3a0 [ 1928.383767][T11115] __kmalloc+0x4e/0x190 [ 1928.387958][T11115] ? __kmem_cache_alloc_node+0x1b0/0x320 [ 1928.393645][T11115] tomoyo_encode2.part.0+0xe9/0x3a0 [ 1928.398963][T11115] ? tomoyo_realpath_from_path+0xc3/0x600 [ 1928.404721][T11115] ? rcu_is_watching+0x12/0xb0 [ 1928.409508][T11115] tomoyo_encode+0x2c/0x50 [ 1928.413943][T11115] tomoyo_realpath_from_path+0x185/0x600 [ 1928.419599][T11115] tomoyo_path_number_perm+0x217/0x570 [ 1928.425068][T11115] ? tomoyo_path_number_perm+0x1c1/0x570 [ 1928.430716][T11115] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 1928.436542][T11115] ? find_held_lock+0x2d/0x110 [ 1928.441433][T11115] ? lock_downgrade+0x690/0x690 [ 1928.446318][T11115] ? wait_for_completion_io_timeout+0x20/0x20 [ 1928.452414][T11115] ? __fget_files+0x26a/0x480 [ 1928.457132][T11115] security_file_ioctl+0x54/0xb0 [ 1928.462094][T11115] __x64_sys_ioctl+0xb7/0x210 [ 1928.466798][T11115] do_syscall_64+0x39/0xb0 [ 1928.471242][T11115] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1928.477171][T11115] RIP: 0033:0x7fbcd588c169 [ 1928.481596][T11115] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1928.501388][T11115] RSP: 002b:00007fbcd650a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1928.509840][T11115] RAX: ffffffffffffffda RBX: 00007fbcd59abf80 RCX: 00007fbcd588c169 [ 1928.517822][T11115] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000003 [ 1928.525803][T11115] RBP: 00007fbcd650a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1928.533868][T11115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1928.541842][T11115] R13: 00007fbcd5acfb1f R14: 00007fbcd650a300 R15: 0000000000022000 [ 1928.549835][T11115] 00:19:54 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x700}) 00:19:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc018ae85, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 1928.586421][T11115] ERROR: Out of memory at tomoyo_realpath_from_path. 00:19:55 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0xff00}) 00:19:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x28) 00:19:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8090ae81, 0x0) 00:19:55 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (fail_nth: 3) 00:19:55 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x1000000}) [ 1928.787621][T11123] FAULT_INJECTION: forcing a failure. [ 1928.787621][T11123] name failslab, interval 1, probability 0, space 0, times 0 00:19:55 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x2000000}) [ 1928.844928][T11138] FAULT_INJECTION: forcing a failure. [ 1928.844928][T11138] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1928.857796][T11123] CPU: 0 PID: 11123 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1928.868430][T11123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1928.878508][T11123] Call Trace: [ 1928.881814][T11123] [ 1928.884774][T11123] dump_stack_lvl+0x136/0x150 [ 1928.889491][T11123] should_fail_ex+0x4a3/0x5b0 [ 1928.894223][T11123] should_failslab+0x9/0x20 [ 1928.898755][T11123] __kmem_cache_alloc_node+0x5b/0x320 [ 1928.904163][T11123] ? tomoyo_realpath_from_path+0xc3/0x600 [ 1928.909922][T11123] ? tomoyo_realpath_from_path+0xc3/0x600 [ 1928.915674][T11123] __kmalloc+0x4e/0x190 [ 1928.919853][T11123] ? rcu_is_watching+0x12/0xb0 [ 1928.924642][T11123] tomoyo_realpath_from_path+0xc3/0x600 [ 1928.930206][T11123] ? tomoyo_profile+0x46/0x60 [ 1928.934915][T11123] tomoyo_path_number_perm+0x217/0x570 [ 1928.940388][T11123] ? tomoyo_path_number_perm+0x1c1/0x570 [ 1928.946034][T11123] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 1928.951859][T11123] ? find_held_lock+0x2d/0x110 [ 1928.956657][T11123] ? lock_downgrade+0x690/0x690 [ 1928.961544][T11123] ? wait_for_completion_io_timeout+0x20/0x20 [ 1928.967653][T11123] ? __fget_files+0x26a/0x480 [ 1928.972378][T11123] security_file_ioctl+0x54/0xb0 [ 1928.977344][T11123] __x64_sys_ioctl+0xb7/0x210 [ 1928.982054][T11123] do_syscall_64+0x39/0xb0 [ 1928.986500][T11123] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1928.992430][T11123] RIP: 0033:0x7fa9bfc8c169 [ 1928.996856][T11123] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1929.016478][T11123] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1929.024909][T11123] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1929.032889][T11123] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1929.040954][T11123] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.048933][T11123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1929.056923][T11123] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1929.065097][T11123] [ 1929.070407][T11123] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1929.089522][T11138] CPU: 0 PID: 11138 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1929.099991][T11138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1929.110079][T11138] Call Trace: [ 1929.113383][T11138] [ 1929.116331][T11138] dump_stack_lvl+0x136/0x150 [ 1929.121057][T11138] should_fail_ex+0x4a3/0x5b0 [ 1929.125783][T11138] _copy_to_user+0x2e/0x150 [ 1929.131820][T11138] simple_read_from_buffer+0xd0/0x160 [ 1929.137242][T11138] proc_fail_nth_read+0x18b/0x220 [ 1929.142317][T11138] ? proc_exe_link+0x1e0/0x1e0 [ 1929.147204][T11138] ? security_file_permission+0xaf/0xd0 [ 1929.152810][T11138] vfs_read+0x25b/0x930 [ 1929.157005][T11138] ? proc_exe_link+0x1e0/0x1e0 [ 1929.161816][T11138] ? kernel_read+0x1c0/0x1c0 [ 1929.166476][T11138] ? __fget_files+0x26a/0x480 [ 1929.171223][T11138] ksys_read+0x12b/0x250 [ 1929.175502][T11138] ? vfs_write+0xe10/0xe10 [ 1929.180051][T11138] ? syscall_enter_from_user_mode+0x26/0x80 [ 1929.185986][T11138] do_syscall_64+0x39/0xb0 [ 1929.190447][T11138] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1929.196368][T11138] RIP: 0033:0x7fbcd583df8c [ 1929.200802][T11138] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1929.220478][T11138] RSP: 002b:00007fbcd650a160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1929.228917][T11138] RAX: ffffffffffffffda RBX: 00007fbcd59abf80 RCX: 00007fbcd583df8c [ 1929.236909][T11138] RDX: 000000000000000f RSI: 00007fbcd650a1e0 RDI: 0000000000000004 [ 1929.244894][T11138] RBP: 00007fbcd650a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1929.252889][T11138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1929.260955][T11138] R13: 00007fbcd5acfb1f R14: 00007fbcd650a300 R15: 0000000000022000 [ 1929.268957][T11138] 00:19:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 2) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:55 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x3000000}) 00:19:55 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:19:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc020660b, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8138ae83, 0x0) 00:19:55 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x4000000}) 00:19:55 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x2, 0x0) 00:19:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2a) 00:19:55 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x5000000}) 00:19:55 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x10, 0x0) 00:19:55 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4600, 0x0) 00:19:56 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x6000000}) [ 1929.769262][T11163] FAULT_INJECTION: forcing a failure. [ 1929.769262][T11163] name failslab, interval 1, probability 0, space 0, times 0 [ 1929.791160][T11163] CPU: 1 PID: 11163 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1929.801632][T11163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1929.811717][T11163] Call Trace: [ 1929.815028][T11163] [ 1929.818009][T11163] dump_stack_lvl+0x136/0x150 [ 1929.822728][T11163] should_fail_ex+0x4a3/0x5b0 [ 1929.827461][T11163] should_failslab+0x9/0x20 [ 1929.832011][T11163] __kmem_cache_alloc_node+0x5b/0x320 [ 1929.837520][T11163] ? tomoyo_encode2.part.0+0xe9/0x3a0 [ 1929.842942][T11163] ? tomoyo_encode2.part.0+0xe9/0x3a0 [ 1929.848352][T11163] __kmalloc+0x4e/0x190 [ 1929.852546][T11163] ? __kmem_cache_alloc_node+0x1b0/0x320 [ 1929.858237][T11163] tomoyo_encode2.part.0+0xe9/0x3a0 [ 1929.863470][T11163] ? tomoyo_realpath_from_path+0xc3/0x600 [ 1929.869214][T11163] ? rcu_is_watching+0x12/0xb0 [ 1929.873979][T11163] tomoyo_encode+0x2c/0x50 [ 1929.878395][T11163] tomoyo_realpath_from_path+0x185/0x600 [ 1929.884045][T11163] ? tomoyo_profile+0x46/0x60 [ 1929.888740][T11163] tomoyo_path_number_perm+0x217/0x570 [ 1929.894202][T11163] ? tomoyo_path_number_perm+0x1c1/0x570 [ 1929.899835][T11163] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 1929.905736][T11163] ? find_held_lock+0x2d/0x110 [ 1929.910573][T11163] ? lock_downgrade+0x690/0x690 [ 1929.915437][T11163] ? wait_for_completion_io_timeout+0x20/0x20 [ 1929.921514][T11163] ? __fget_files+0x26a/0x480 [ 1929.926204][T11163] security_file_ioctl+0x54/0xb0 [ 1929.931152][T11163] __x64_sys_ioctl+0xb7/0x210 [ 1929.935851][T11163] do_syscall_64+0x39/0xb0 [ 1929.940291][T11163] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1929.946197][T11163] RIP: 0033:0x7fa9bfc8c169 [ 1929.950617][T11163] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1929.970224][T11163] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1929.978650][T11163] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1929.986639][T11163] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1929.994607][T11163] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1930.002592][T11163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1930.010568][T11163] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1930.018558][T11163] [ 1930.023813][T11163] ERROR: Out of memory at tomoyo_realpath_from_path. 00:19:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 3) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:56 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x7000000}) 00:19:56 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4601, 0x0) 00:19:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2c) 00:19:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x81a0ae8c, 0x0) 00:19:56 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4602, 0x0) 00:19:56 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0xfdfdffff}) 00:19:56 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4604, 0x0) 00:19:56 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0xff000000}) 00:19:56 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4605, 0x0) 00:19:56 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0xfffffdfd}) [ 1930.456107][T11219] FAULT_INJECTION: forcing a failure. [ 1930.456107][T11219] name failslab, interval 1, probability 0, space 0, times 0 [ 1930.479446][T11219] CPU: 1 PID: 11219 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1930.489948][T11219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1930.500031][T11219] Call Trace: [ 1930.503335][T11219] [ 1930.506308][T11219] dump_stack_lvl+0x136/0x150 [ 1930.511109][T11219] should_fail_ex+0x4a3/0x5b0 [ 1930.515820][T11219] should_failslab+0x9/0x20 [ 1930.520351][T11219] __kmem_cache_alloc_node+0x5b/0x320 [ 1930.525769][T11219] ? kvmalloc_node+0xa2/0x1a0 [ 1930.530484][T11219] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1930.535972][T11219] ? kvmalloc_node+0xa2/0x1a0 [ 1930.540670][T11219] __kmalloc_node+0x51/0x1a0 [ 1930.545289][T11219] kvmalloc_node+0xa2/0x1a0 [ 1930.549818][T11219] __kvm_mmu_topup_memory_cache+0x304/0x460 [ 1930.555742][T11219] ? __mutex_unlock_slowpath+0x157/0x5e0 [ 1930.561407][T11219] ? wait_for_completion_io_timeout+0x20/0x20 [ 1930.567500][T11219] mmu_topup_memory_caches+0x1f/0xd0 [ 1930.572808][T11219] kvm_mmu_load+0xd6/0x2140 [ 1930.577334][T11219] ? find_held_lock+0x2d/0x110 [ 1930.582130][T11219] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1930.587621][T11219] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1930.593316][T11219] ? __report_tpr_access.isra.0+0x160/0x160 [ 1930.599247][T11219] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1930.604400][T11219] ? invept_error+0xb0/0xb0 [ 1930.608934][T11219] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1930.614103][T11219] vcpu_enter_guest+0x3d21/0x5ff0 [ 1930.619181][T11219] ? lock_release+0x670/0x670 [ 1930.623889][T11219] ? kvm_check_nested_events+0xf0/0xf0 [ 1930.629366][T11219] ? mark_held_locks+0x9f/0xe0 [ 1930.634152][T11219] ? __local_bh_enable_ip+0xa4/0x130 [ 1930.639477][T11219] ? lockdep_hardirqs_on+0x7d/0x100 [ 1930.644707][T11219] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1930.650116][T11219] ? __local_bh_enable_ip+0xa4/0x130 [ 1930.655435][T11219] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1930.661185][T11219] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1930.666770][T11219] kvm_vcpu_ioctl+0x574/0xea0 [ 1930.671470][T11219] ? kvm_release_pfn_dirty+0x220/0x220 [ 1930.676970][T11219] ? wait_for_completion_io_timeout+0x20/0x20 [ 1930.683089][T11219] ? __fget_files+0x26a/0x480 [ 1930.687821][T11219] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1930.692781][T11219] ? kvm_release_pfn_dirty+0x220/0x220 [ 1930.698260][T11219] __x64_sys_ioctl+0x197/0x210 [ 1930.703071][T11219] do_syscall_64+0x39/0xb0 [ 1930.707521][T11219] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1930.713438][T11219] RIP: 0033:0x7fa9bfc8c169 [ 1930.717864][T11219] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1930.737591][T11219] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1930.746035][T11219] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1930.754036][T11219] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1930.762039][T11219] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 [ 1930.770022][T11219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1930.778003][T11219] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1930.786011][T11219] 00:19:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 4) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:57 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4606, 0x0) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0xffffff7f}) 00:19:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0045878, 0x0) 00:19:57 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2e) 00:19:57 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x460f, 0x0) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x2}) 00:19:57 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4610, 0x0) 00:19:57 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4611, 0x0) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x3}) [ 1931.258590][T11243] FAULT_INJECTION: forcing a failure. [ 1931.258590][T11243] name failslab, interval 1, probability 0, space 0, times 0 00:19:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 5) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x4}) [ 1931.277695][T11243] CPU: 1 PID: 11243 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1931.277733][T11243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 00:19:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x5}) 00:19:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0045878, 0x0) [ 1931.277749][T11243] Call Trace: [ 1931.277756][T11243] [ 1931.277767][T11243] dump_stack_lvl+0x136/0x150 00:19:57 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x30) 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x6}) [ 1931.277811][T11243] should_fail_ex+0x4a3/0x5b0 [ 1931.277854][T11243] should_failslab+0x9/0x20 [ 1931.277886][T11243] kmem_cache_alloc+0x63/0x3b0 [ 1931.277931][T11243] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1931.277970][T11243] ? wait_for_completion_io_timeout+0x20/0x20 00:19:57 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x7}) [ 1931.278008][T11243] mmu_topup_memory_caches+0x1f/0xd0 [ 1931.278037][T11243] kvm_mmu_load+0xd6/0x2140 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x300}) [ 1931.278072][T11243] ? find_held_lock+0x2d/0x110 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x500}) [ 1931.278119][T11243] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1931.278158][T11243] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1931.278193][T11243] ? __report_tpr_access.isra.0+0x160/0x160 [ 1931.278234][T11243] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1931.278271][T11243] ? invept_error+0xb0/0xb0 [ 1931.278305][T11243] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1931.278340][T11243] vcpu_enter_guest+0x3d21/0x5ff0 [ 1931.278382][T11243] ? lock_release+0x670/0x670 [ 1931.278412][T11243] ? kvm_check_nested_events+0xf0/0xf0 [ 1931.278439][T11243] ? mark_held_locks+0x9f/0xe0 [ 1931.278469][T11243] ? __local_bh_enable_ip+0xa4/0x130 [ 1931.278500][T11243] ? lockdep_hardirqs_on+0x7d/0x100 [ 1931.278529][T11243] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1931.278555][T11243] ? __local_bh_enable_ip+0xa4/0x130 [ 1931.278589][T11243] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1931.278613][T11243] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1931.278653][T11243] kvm_vcpu_ioctl+0x574/0xea0 [ 1931.278682][T11243] ? kvm_release_pfn_dirty+0x220/0x220 [ 1931.278724][T11243] ? wait_for_completion_io_timeout+0x20/0x20 [ 1931.278770][T11243] ? __fget_files+0x26a/0x480 [ 1931.278832][T11243] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1931.278858][T11243] ? kvm_release_pfn_dirty+0x220/0x220 [ 1931.278889][T11243] __x64_sys_ioctl+0x197/0x210 [ 1931.278934][T11243] do_syscall_64+0x39/0xb0 [ 1931.278968][T11243] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1931.278996][T11243] RIP: 0033:0x7fa9bfc8c169 [ 1931.279016][T11243] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1931.279038][T11243] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1931.279062][T11243] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1931.279078][T11243] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1931.279093][T11243] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1931.279109][T11243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1931.279123][T11243] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1931.279153][T11243] [ 1931.731676][T11284] FAULT_INJECTION: forcing a failure. [ 1931.731676][T11284] name failslab, interval 1, probability 0, space 0, times 0 [ 1931.731713][T11284] CPU: 0 PID: 11284 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1931.731742][T11284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1931.731758][T11284] Call Trace: [ 1931.731764][T11284] [ 1931.731774][T11284] dump_stack_lvl+0x136/0x150 [ 1931.731817][T11284] should_fail_ex+0x4a3/0x5b0 [ 1931.731863][T11284] should_failslab+0x9/0x20 [ 1931.731895][T11284] kmem_cache_alloc+0x63/0x3b0 [ 1931.731943][T11284] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1931.731982][T11284] ? wait_for_completion_io_timeout+0x20/0x20 [ 1931.732020][T11284] mmu_topup_memory_caches+0x1f/0xd0 [ 1931.732051][T11284] kvm_mmu_load+0xd6/0x2140 [ 1931.732087][T11284] ? find_held_lock+0x2d/0x110 [ 1931.732137][T11284] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1931.732176][T11284] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1931.732213][T11284] ? __report_tpr_access.isra.0+0x160/0x160 [ 1931.732254][T11284] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1931.732291][T11284] ? invept_error+0xb0/0xb0 [ 1931.732325][T11284] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1931.732362][T11284] vcpu_enter_guest+0x3d21/0x5ff0 [ 1931.732406][T11284] ? lock_release+0x670/0x670 [ 1931.732436][T11284] ? kvm_check_nested_events+0xf0/0xf0 [ 1931.732464][T11284] ? mark_held_locks+0x9f/0xe0 [ 1931.732494][T11284] ? __local_bh_enable_ip+0xa4/0x130 [ 1931.732526][T11284] ? lockdep_hardirqs_on+0x7d/0x100 [ 1931.732554][T11284] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1931.732580][T11284] ? __local_bh_enable_ip+0xa4/0x130 [ 1931.732614][T11284] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1931.732642][T11284] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1931.732684][T11284] kvm_vcpu_ioctl+0x574/0xea0 [ 1931.732712][T11284] ? kvm_release_pfn_dirty+0x220/0x220 [ 1931.732751][T11284] ? wait_for_completion_io_timeout+0x20/0x20 [ 1931.732802][T11284] ? __fget_files+0x26a/0x480 [ 1931.732852][T11284] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1931.732877][T11284] ? kvm_release_pfn_dirty+0x220/0x220 [ 1931.732908][T11284] __x64_sys_ioctl+0x197/0x210 [ 1931.732952][T11284] do_syscall_64+0x39/0xb0 [ 1931.732993][T11284] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1931.733028][T11284] RIP: 0033:0x7fa9bfc8c169 [ 1931.733051][T11284] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1931.733077][T11284] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1931.733106][T11284] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1931.733126][T11284] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1931.733143][T11284] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 00:19:58 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x541b, 0x0) 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x600}) 00:19:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:58 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x32) 00:19:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0189436, 0x0) 00:19:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 6) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x700}) [ 1931.733161][T11284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1931.733178][T11284] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1931.733215][T11284] 00:19:58 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x5421, 0x0) 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0xff00}) 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x1000000}) 00:19:58 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x2000000}) 00:19:58 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x5450, 0x0) 00:19:58 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x5451, 0x0) 00:19:59 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x3000000}) [ 1932.693020][T11304] FAULT_INJECTION: forcing a failure. [ 1932.693020][T11304] name failslab, interval 1, probability 0, space 0, times 0 [ 1932.722371][T11304] CPU: 1 PID: 11304 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1932.732840][T11304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1932.742911][T11304] Call Trace: [ 1932.746210][T11304] [ 1932.749154][T11304] dump_stack_lvl+0x136/0x150 [ 1932.753855][T11304] should_fail_ex+0x4a3/0x5b0 [ 1932.758559][T11304] should_failslab+0x9/0x20 [ 1932.763081][T11304] kmem_cache_alloc+0x63/0x3b0 [ 1932.767888][T11304] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1932.773888][T11304] ? wait_for_completion_io_timeout+0x20/0x20 [ 1932.779975][T11304] mmu_topup_memory_caches+0x1f/0xd0 [ 1932.785288][T11304] kvm_mmu_load+0xd6/0x2140 [ 1932.789808][T11304] ? find_held_lock+0x2d/0x110 [ 1932.794620][T11304] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1932.800118][T11304] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1932.805799][T11304] ? __report_tpr_access.isra.0+0x160/0x160 [ 1932.811720][T11304] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1932.816868][T11304] ? invept_error+0xb0/0xb0 [ 1932.821413][T11304] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1932.826461][T11304] vcpu_enter_guest+0x3d21/0x5ff0 [ 1932.831513][T11304] ? lock_release+0x670/0x670 [ 1932.836202][T11304] ? kvm_check_nested_events+0xf0/0xf0 [ 1932.841671][T11304] ? mark_held_locks+0x9f/0xe0 [ 1932.846447][T11304] ? __local_bh_enable_ip+0xa4/0x130 [ 1932.851749][T11304] ? lockdep_hardirqs_on+0x7d/0x100 [ 1932.856975][T11304] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1932.862359][T11304] ? __local_bh_enable_ip+0xa4/0x130 [ 1932.867682][T11304] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1932.873418][T11304] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1932.878988][T11304] kvm_vcpu_ioctl+0x574/0xea0 [ 1932.883676][T11304] ? kvm_release_pfn_dirty+0x220/0x220 [ 1932.889154][T11304] ? wait_for_completion_io_timeout+0x20/0x20 [ 1932.895245][T11304] ? __fget_files+0x26a/0x480 [ 1932.899952][T11304] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1932.904900][T11304] ? kvm_release_pfn_dirty+0x220/0x220 [ 1932.910462][T11304] __x64_sys_ioctl+0x197/0x210 [ 1932.915339][T11304] do_syscall_64+0x39/0xb0 [ 1932.919780][T11304] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1932.925691][T11304] RIP: 0033:0x7fa9bfc8c169 [ 1932.930135][T11304] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1932.949757][T11304] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1932.958187][T11304] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1932.966167][T11304] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1932.974144][T11304] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1932.982121][T11304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1932.990110][T11304] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1932.998111][T11304] [ 1933.001201][ C1] vkms_vblank_simulate: vblank timer overrun 00:19:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x6) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:19:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x34) 00:19:59 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x4000000}) 00:19:59 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x5452, 0x0) 00:19:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 7) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:19:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc018ae85, 0x0) 00:19:59 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x5460, 0x0) 00:19:59 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x5000000}) 00:19:59 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x8933, 0x0) 00:19:59 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x6000000}) 00:19:59 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x7000000}) [ 1933.404654][T11349] FAULT_INJECTION: forcing a failure. [ 1933.404654][T11349] name failslab, interval 1, probability 0, space 0, times 0 [ 1933.440799][T11349] CPU: 1 PID: 11349 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 00:19:59 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044625, 0x0) [ 1933.451294][T11349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1933.461385][T11349] Call Trace: [ 1933.464686][T11349] [ 1933.467659][T11349] dump_stack_lvl+0x136/0x150 [ 1933.472382][T11349] should_fail_ex+0x4a3/0x5b0 [ 1933.477126][T11349] should_failslab+0x9/0x20 [ 1933.481677][T11349] kmem_cache_alloc+0x63/0x3b0 [ 1933.486513][T11349] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1933.492460][T11349] ? wait_for_completion_io_timeout+0x20/0x20 [ 1933.498795][T11349] mmu_topup_memory_caches+0x1f/0xd0 [ 1933.504137][T11349] kvm_mmu_load+0xd6/0x2140 [ 1933.508701][T11349] ? find_held_lock+0x2d/0x110 [ 1933.513523][T11349] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1933.519101][T11349] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1933.524738][T11349] ? __report_tpr_access.isra.0+0x160/0x160 [ 1933.530664][T11349] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1933.535783][T11349] ? invept_error+0xb0/0xb0 [ 1933.540288][T11349] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1933.545359][T11349] vcpu_enter_guest+0x3d21/0x5ff0 [ 1933.550417][T11349] ? lock_release+0x670/0x670 [ 1933.555211][T11349] ? kvm_check_nested_events+0xf0/0xf0 [ 1933.560670][T11349] ? mark_held_locks+0x9f/0xe0 [ 1933.565449][T11349] ? __local_bh_enable_ip+0xa4/0x130 [ 1933.570822][T11349] ? lockdep_hardirqs_on+0x7d/0x100 [ 1933.576050][T11349] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1933.581417][T11349] ? __local_bh_enable_ip+0xa4/0x130 [ 1933.586718][T11349] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1933.592446][T11349] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1933.597999][T11349] kvm_vcpu_ioctl+0x574/0xea0 [ 1933.602677][T11349] ? kvm_release_pfn_dirty+0x220/0x220 [ 1933.608138][T11349] ? wait_for_completion_io_timeout+0x20/0x20 [ 1933.614312][T11349] ? __fget_files+0x26a/0x480 [ 1933.619005][T11349] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1933.623941][T11349] ? kvm_release_pfn_dirty+0x220/0x220 [ 1933.629411][T11349] __x64_sys_ioctl+0x197/0x210 [ 1933.634209][T11349] do_syscall_64+0x39/0xb0 [ 1933.638719][T11349] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1933.644707][T11349] RIP: 0033:0x7fa9bfc8c169 [ 1933.649122][T11349] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1933.668831][T11349] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1933.677247][T11349] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1933.685218][T11349] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1933.693279][T11349] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1933.701253][T11349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1933.709242][T11349] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1933.717233][T11349] [ 1933.720292][ C1] vkms_vblank_simulate: vblank timer overrun 00:20:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x7) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:00 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0xfdfdffff}) 00:20:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 8) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:00 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4004462f, 0x0) 00:20:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc020660b, 0x0) 00:20:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x36) 00:20:00 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0xff000000}) 00:20:00 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x400448c9, 0x0) 00:20:00 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0xfffffdfd}) 00:20:00 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0xffffff7f}) 00:20:00 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x400448dd, 0x0) 00:20:00 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x400454ca, 0x0) [ 1934.275175][T11398] FAULT_INJECTION: forcing a failure. [ 1934.275175][T11398] name failslab, interval 1, probability 0, space 0, times 0 [ 1934.289261][T11398] CPU: 0 PID: 11398 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1934.299741][T11398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1934.309819][T11398] Call Trace: [ 1934.313094][T11398] [ 1934.316045][T11398] dump_stack_lvl+0x136/0x150 [ 1934.320726][T11398] should_fail_ex+0x4a3/0x5b0 [ 1934.325414][T11398] should_failslab+0x9/0x20 [ 1934.329921][T11398] kmem_cache_alloc+0x63/0x3b0 [ 1934.334713][T11398] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1934.340655][T11398] ? wait_for_completion_io_timeout+0x20/0x20 [ 1934.346733][T11398] mmu_topup_memory_caches+0x1f/0xd0 [ 1934.352058][T11398] kvm_mmu_load+0xd6/0x2140 [ 1934.356621][T11398] ? find_held_lock+0x2d/0x110 [ 1934.361431][T11398] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1934.366921][T11398] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1934.372594][T11398] ? __report_tpr_access.isra.0+0x160/0x160 [ 1934.378517][T11398] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1934.383659][T11398] ? invept_error+0xb0/0xb0 [ 1934.388189][T11398] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1934.393243][T11398] vcpu_enter_guest+0x3d21/0x5ff0 [ 1934.398312][T11398] ? lock_release+0x670/0x670 [ 1934.403010][T11398] ? kvm_check_nested_events+0xf0/0xf0 [ 1934.408500][T11398] ? mark_held_locks+0x9f/0xe0 [ 1934.413305][T11398] ? __local_bh_enable_ip+0xa4/0x130 [ 1934.418626][T11398] ? lockdep_hardirqs_on+0x7d/0x100 [ 1934.423850][T11398] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1934.429239][T11398] ? __local_bh_enable_ip+0xa4/0x130 [ 1934.434546][T11398] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1934.440283][T11398] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1934.445858][T11398] kvm_vcpu_ioctl+0x574/0xea0 [ 1934.450553][T11398] ? kvm_release_pfn_dirty+0x220/0x220 [ 1934.456037][T11398] ? wait_for_completion_io_timeout+0x20/0x20 [ 1934.462141][T11398] ? __fget_files+0x26a/0x480 [ 1934.466852][T11398] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1934.471842][T11398] ? kvm_release_pfn_dirty+0x220/0x220 [ 1934.477320][T11398] __x64_sys_ioctl+0x197/0x210 [ 1934.482116][T11398] do_syscall_64+0x39/0xb0 [ 1934.486571][T11398] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1934.492527][T11398] RIP: 0033:0x7fa9bfc8c169 [ 1934.496954][T11398] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1934.516686][T11398] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1934.525116][T11398] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1934.533098][T11398] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1934.541093][T11398] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1934.549080][T11398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1934.557066][T11398] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1934.565072][T11398] 00:20:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x8) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:00 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 9) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40049409, 0x0) 00:20:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2) 00:20:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x38) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40086602, 0x0) 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2}) 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x3}) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40186366, 0x0) 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x4}) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x401c5820, 0x0) [ 1934.955491][T11427] FAULT_INJECTION: forcing a failure. [ 1934.955491][T11427] name failslab, interval 1, probability 0, space 0, times 0 [ 1934.978982][T11427] CPU: 0 PID: 11427 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1934.989552][T11427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1934.999640][T11427] Call Trace: [ 1935.002912][T11427] [ 1935.005839][T11427] dump_stack_lvl+0x136/0x150 [ 1935.010516][T11427] should_fail_ex+0x4a3/0x5b0 [ 1935.015201][T11427] should_failslab+0x9/0x20 [ 1935.019702][T11427] kmem_cache_alloc+0x63/0x3b0 [ 1935.024481][T11427] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1935.030393][T11427] ? wait_for_completion_io_timeout+0x20/0x20 [ 1935.036579][T11427] mmu_topup_memory_caches+0x1f/0xd0 [ 1935.041880][T11427] kvm_mmu_load+0xd6/0x2140 [ 1935.046394][T11427] ? mark_held_locks+0x9f/0xe0 [ 1935.051233][T11427] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1935.056714][T11427] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 1935.062890][T11427] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1935.068551][T11427] ? __report_tpr_access.isra.0+0x160/0x160 [ 1935.074483][T11427] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1935.079711][T11427] ? invept_error+0xb0/0xb0 [ 1935.084255][T11427] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1935.089328][T11427] vcpu_enter_guest+0x3d21/0x5ff0 [ 1935.094360][T11427] ? lock_release+0x670/0x670 [ 1935.099051][T11427] ? kvm_check_nested_events+0xf0/0xf0 [ 1935.104534][T11427] ? mark_held_locks+0x9f/0xe0 [ 1935.109299][T11427] ? __local_bh_enable_ip+0xa4/0x130 [ 1935.114639][T11427] ? lockdep_hardirqs_on+0x7d/0x100 [ 1935.119862][T11427] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1935.125247][T11427] ? __local_bh_enable_ip+0xa4/0x130 [ 1935.130556][T11427] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1935.136304][T11427] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1935.141862][T11427] kvm_vcpu_ioctl+0x574/0xea0 [ 1935.146549][T11427] ? kvm_release_pfn_dirty+0x220/0x220 [ 1935.152040][T11427] ? __fget_files+0x26a/0x480 [ 1935.156745][T11427] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1935.161695][T11427] ? kvm_release_pfn_dirty+0x220/0x220 [ 1935.167172][T11427] __x64_sys_ioctl+0x197/0x210 [ 1935.171980][T11427] do_syscall_64+0x39/0xb0 [ 1935.176497][T11427] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1935.182419][T11427] RIP: 0033:0x7fa9bfc8c169 [ 1935.186864][T11427] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1935.206496][T11427] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1935.214911][T11427] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1935.222875][T11427] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1935.230888][T11427] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1935.238911][T11427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1935.246891][T11427] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x5}) 00:20:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x9) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 1935.254923][T11427] 00:20:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x4020940d, 0x0) 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x6}) 00:20:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3) 00:20:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3a) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x80086301, 0x0) 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x7}) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x80086601, 0x0) 00:20:01 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x801c581f, 0x0) 00:20:01 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x300}) 00:20:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:02 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0xc0045878, 0x0) [ 1935.671753][T11471] FAULT_INJECTION: forcing a failure. [ 1935.671753][T11471] name failslab, interval 1, probability 0, space 0, times 0 [ 1935.738118][T11471] CPU: 1 PID: 11471 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1935.748595][T11471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1935.758689][T11471] Call Trace: [ 1935.761993][T11471] [ 1935.764952][T11471] dump_stack_lvl+0x136/0x150 [ 1935.769680][T11471] should_fail_ex+0x4a3/0x5b0 [ 1935.774410][T11471] should_failslab+0x9/0x20 [ 1935.778947][T11471] kmem_cache_alloc+0x63/0x3b0 [ 1935.783773][T11471] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1935.789709][T11471] ? wait_for_completion_io_timeout+0x20/0x20 [ 1935.795823][T11471] mmu_topup_memory_caches+0x1f/0xd0 [ 1935.801150][T11471] kvm_mmu_load+0xd6/0x2140 [ 1935.805707][T11471] ? find_held_lock+0x2d/0x110 [ 1935.810530][T11471] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1935.816042][T11471] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1935.821721][T11471] ? __report_tpr_access.isra.0+0x160/0x160 [ 1935.827662][T11471] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1935.832809][T11471] ? invept_error+0xb0/0xb0 [ 1935.837346][T11471] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1935.842407][T11471] vcpu_enter_guest+0x3d21/0x5ff0 [ 1935.847469][T11471] ? lock_release+0x670/0x670 [ 1935.852183][T11471] ? kvm_check_nested_events+0xf0/0xf0 [ 1935.857678][T11471] ? mark_held_locks+0x9f/0xe0 [ 1935.862474][T11471] ? __local_bh_enable_ip+0xa4/0x130 [ 1935.867799][T11471] ? lockdep_hardirqs_on+0x7d/0x100 [ 1935.873049][T11471] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1935.878455][T11471] ? __local_bh_enable_ip+0xa4/0x130 [ 1935.883778][T11471] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1935.889515][T11471] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1935.895065][T11471] kvm_vcpu_ioctl+0x574/0xea0 [ 1935.899753][T11471] ? kvm_release_pfn_dirty+0x220/0x220 [ 1935.905243][T11471] ? wait_for_completion_io_timeout+0x20/0x20 [ 1935.911338][T11471] ? __fget_files+0x26a/0x480 [ 1935.916076][T11471] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1935.921048][T11471] ? kvm_release_pfn_dirty+0x220/0x220 [ 1935.926590][T11471] __x64_sys_ioctl+0x197/0x210 [ 1935.931443][T11471] do_syscall_64+0x39/0xb0 [ 1935.935906][T11471] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1935.941840][T11471] RIP: 0033:0x7fa9bfc8c169 [ 1935.946280][T11471] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1935.965922][T11471] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1935.974356][T11471] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1935.982325][T11471] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1935.990302][T11471] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 [ 1935.998291][T11471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1936.006539][T11471] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1936.014530][T11471] [ 1936.017739][ C1] vkms_vblank_simulate: vblank timer overrun 00:20:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 11) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:02 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x500}) 00:20:02 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0xc0045878, 0x0) 00:20:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4) 00:20:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xb) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3c) 00:20:02 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x600}) 00:20:02 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0xc0189436, 0x0) 00:20:02 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x700}) 00:20:02 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0xc020660b, 0x0) 00:20:02 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0xc0684608, 0x0) 00:20:02 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0xff00}) [ 1936.540442][T11508] FAULT_INJECTION: forcing a failure. [ 1936.540442][T11508] name failslab, interval 1, probability 0, space 0, times 0 [ 1936.556446][T11508] CPU: 0 PID: 11508 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1936.566919][T11508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1936.577014][T11508] Call Trace: [ 1936.580299][T11508] [ 1936.583244][T11508] dump_stack_lvl+0x136/0x150 [ 1936.587945][T11508] should_fail_ex+0x4a3/0x5b0 [ 1936.592652][T11508] should_failslab+0x9/0x20 [ 1936.597177][T11508] kmem_cache_alloc+0x63/0x3b0 [ 1936.601970][T11508] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1936.607892][T11508] ? wait_for_completion_io_timeout+0x20/0x20 [ 1936.613992][T11508] mmu_topup_memory_caches+0x1f/0xd0 [ 1936.619296][T11508] kvm_mmu_load+0xd6/0x2140 [ 1936.623826][T11508] ? find_held_lock+0x2d/0x110 [ 1936.628639][T11508] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1936.634140][T11508] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1936.639811][T11508] ? __report_tpr_access.isra.0+0x160/0x160 [ 1936.645747][T11508] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1936.650892][T11508] ? invept_error+0xb0/0xb0 [ 1936.655425][T11508] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1936.660472][T11508] vcpu_enter_guest+0x3d21/0x5ff0 [ 1936.665556][T11508] ? lock_release+0x670/0x670 [ 1936.670256][T11508] ? kvm_check_nested_events+0xf0/0xf0 [ 1936.675730][T11508] ? mark_held_locks+0x9f/0xe0 [ 1936.680509][T11508] ? __local_bh_enable_ip+0xa4/0x130 [ 1936.685814][T11508] ? lockdep_hardirqs_on+0x7d/0x100 [ 1936.691039][T11508] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1936.696426][T11508] ? __local_bh_enable_ip+0xa4/0x130 [ 1936.701730][T11508] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1936.707465][T11508] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1936.713038][T11508] kvm_vcpu_ioctl+0x574/0xea0 [ 1936.717731][T11508] ? kvm_release_pfn_dirty+0x220/0x220 [ 1936.723218][T11508] ? wait_for_completion_io_timeout+0x20/0x20 [ 1936.729327][T11508] ? __fget_files+0x26a/0x480 [ 1936.734036][T11508] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1936.738986][T11508] ? kvm_release_pfn_dirty+0x220/0x220 [ 1936.744458][T11508] __x64_sys_ioctl+0x197/0x210 [ 1936.749251][T11508] do_syscall_64+0x39/0xb0 [ 1936.754135][T11508] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1936.760068][T11508] RIP: 0033:0x7fa9bfc8c169 [ 1936.764496][T11508] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1936.784117][T11508] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1936.792544][T11508] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1936.800610][T11508] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1936.808589][T11508] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1936.816661][T11508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1936.824737][T11508] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1936.832735][T11508] 00:20:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 12) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:03 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x1000000}) 00:20:03 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x2) 00:20:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5) 00:20:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xc) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3e) 00:20:03 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x3) 00:20:03 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2000000}) 00:20:03 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x4) 00:20:03 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x3000000}) 00:20:03 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x4000000}) 00:20:03 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x5) [ 1937.239799][T11540] FAULT_INJECTION: forcing a failure. [ 1937.239799][T11540] name failslab, interval 1, probability 0, space 0, times 0 [ 1937.284610][T11540] CPU: 0 PID: 11540 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1937.295120][T11540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1937.305196][T11540] Call Trace: [ 1937.308515][T11540] [ 1937.311476][T11540] dump_stack_lvl+0x136/0x150 [ 1937.316203][T11540] should_fail_ex+0x4a3/0x5b0 [ 1937.320930][T11540] should_failslab+0x9/0x20 [ 1937.325438][T11540] kmem_cache_alloc+0x63/0x3b0 [ 1937.330273][T11540] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1937.336173][T11540] ? wait_for_completion_io_timeout+0x20/0x20 [ 1937.342269][T11540] mmu_topup_memory_caches+0x1f/0xd0 [ 1937.347592][T11540] kvm_mmu_load+0xd6/0x2140 [ 1937.352129][T11540] ? find_held_lock+0x2d/0x110 [ 1937.356939][T11540] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1937.362443][T11540] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1937.368116][T11540] ? __report_tpr_access.isra.0+0x160/0x160 [ 1937.374413][T11540] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1937.379610][T11540] ? invept_error+0xb0/0xb0 [ 1937.384243][T11540] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1937.389490][T11540] vcpu_enter_guest+0x3d21/0x5ff0 [ 1937.394554][T11540] ? lock_release+0x670/0x670 [ 1937.399260][T11540] ? kvm_check_nested_events+0xf0/0xf0 [ 1937.404750][T11540] ? mark_held_locks+0x9f/0xe0 [ 1937.409536][T11540] ? __local_bh_enable_ip+0xa4/0x130 [ 1937.414861][T11540] ? lockdep_hardirqs_on+0x7d/0x100 [ 1937.420102][T11540] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1937.425501][T11540] ? __local_bh_enable_ip+0xa4/0x130 [ 1937.430823][T11540] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1937.436570][T11540] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1937.442150][T11540] kvm_vcpu_ioctl+0x574/0xea0 [ 1937.446849][T11540] ? kvm_release_pfn_dirty+0x220/0x220 [ 1937.452341][T11540] ? wait_for_completion_io_timeout+0x20/0x20 [ 1937.458439][T11540] ? __fget_files+0x26a/0x480 [ 1937.463149][T11540] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1937.468107][T11540] ? kvm_release_pfn_dirty+0x220/0x220 [ 1937.473586][T11540] __x64_sys_ioctl+0x197/0x210 [ 1937.478381][T11540] do_syscall_64+0x39/0xb0 [ 1937.482827][T11540] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1937.488744][T11540] RIP: 0033:0x7fa9bfc8c169 [ 1937.493176][T11540] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1937.512801][T11540] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1937.521234][T11540] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1937.529215][T11540] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1937.537198][T11540] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1937.545180][T11540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1937.553159][T11540] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1937.561247][T11540] 00:20:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 13) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xd) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x6) 00:20:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x6) 00:20:04 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x5000000}) 00:20:04 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x42) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x7) 00:20:04 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x6000000}) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x300) 00:20:04 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x7000000}) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x500) 00:20:04 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0xfdfdffff}) [ 1938.028983][T11590] FAULT_INJECTION: forcing a failure. [ 1938.028983][T11590] name failslab, interval 1, probability 0, space 0, times 0 [ 1938.050282][T11590] CPU: 1 PID: 11590 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1938.060805][T11590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1938.070889][T11590] Call Trace: [ 1938.074186][T11590] [ 1938.077127][T11590] dump_stack_lvl+0x136/0x150 [ 1938.082005][T11590] should_fail_ex+0x4a3/0x5b0 [ 1938.086712][T11590] should_failslab+0x9/0x20 [ 1938.091244][T11590] kmem_cache_alloc+0x63/0x3b0 [ 1938.096038][T11590] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1938.101952][T11590] ? wait_for_completion_io_timeout+0x20/0x20 [ 1938.108041][T11590] mmu_topup_memory_caches+0x1f/0xd0 [ 1938.113343][T11590] kvm_mmu_load+0xd6/0x2140 [ 1938.117878][T11590] ? find_held_lock+0x2d/0x110 [ 1938.122687][T11590] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1938.128188][T11590] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1938.133863][T11590] ? __report_tpr_access.isra.0+0x160/0x160 [ 1938.139789][T11590] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1938.144926][T11590] ? invept_error+0xb0/0xb0 [ 1938.149622][T11590] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1938.154757][T11590] vcpu_enter_guest+0x3d21/0x5ff0 [ 1938.159806][T11590] ? lock_release+0x670/0x670 [ 1938.164569][T11590] ? kvm_check_nested_events+0xf0/0xf0 [ 1938.170039][T11590] ? mark_held_locks+0x9f/0xe0 [ 1938.174820][T11590] ? __local_bh_enable_ip+0xa4/0x130 [ 1938.180135][T11590] ? lockdep_hardirqs_on+0x7d/0x100 [ 1938.185366][T11590] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1938.190748][T11590] ? __local_bh_enable_ip+0xa4/0x130 [ 1938.196053][T11590] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1938.201790][T11590] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1938.207391][T11590] kvm_vcpu_ioctl+0x574/0xea0 [ 1938.212087][T11590] ? kvm_release_pfn_dirty+0x220/0x220 [ 1938.217576][T11590] ? wait_for_completion_io_timeout+0x20/0x20 [ 1938.223674][T11590] ? __fget_files+0x26a/0x480 [ 1938.228380][T11590] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1938.233327][T11590] ? kvm_release_pfn_dirty+0x220/0x220 [ 1938.238801][T11590] __x64_sys_ioctl+0x197/0x210 [ 1938.243679][T11590] do_syscall_64+0x39/0xb0 [ 1938.248121][T11590] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1938.254032][T11590] RIP: 0033:0x7fa9bfc8c169 [ 1938.258456][T11590] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1938.278079][T11590] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1938.286595][T11590] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1938.294597][T11590] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1938.302665][T11590] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 [ 1938.310670][T11590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1938.318677][T11590] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1938.326699][T11590] [ 1938.329764][ C1] vkms_vblank_simulate: vblank timer overrun 00:20:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 14) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xe) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x600) 00:20:04 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0xff000000}) 00:20:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x7) 00:20:04 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x44) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x700) 00:20:04 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:04 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xff00) 00:20:05 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:05 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x1000000) 00:20:05 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x2000000) [ 1938.861847][T11633] FAULT_INJECTION: forcing a failure. [ 1938.861847][T11633] name failslab, interval 1, probability 0, space 0, times 0 [ 1938.882415][T11633] CPU: 1 PID: 11633 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1938.892897][T11633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1938.902972][T11633] Call Trace: [ 1938.906247][T11633] [ 1938.909186][T11633] dump_stack_lvl+0x136/0x150 [ 1938.913890][T11633] should_fail_ex+0x4a3/0x5b0 [ 1938.918601][T11633] should_failslab+0x9/0x20 [ 1938.923102][T11633] kmem_cache_alloc+0x63/0x3b0 [ 1938.928217][T11633] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1938.934110][T11633] ? wait_for_completion_io_timeout+0x20/0x20 [ 1938.940177][T11633] mmu_topup_memory_caches+0x1f/0xd0 [ 1938.945459][T11633] kvm_mmu_load+0xd6/0x2140 [ 1938.949964][T11633] ? find_held_lock+0x2d/0x110 [ 1938.954735][T11633] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1938.960198][T11633] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1938.965828][T11633] ? __report_tpr_access.isra.0+0x160/0x160 [ 1938.971719][T11633] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1938.976840][T11633] ? invept_error+0xb0/0xb0 [ 1938.981344][T11633] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1938.986368][T11633] vcpu_enter_guest+0x3d21/0x5ff0 [ 1938.991423][T11633] ? lock_release+0x670/0x670 [ 1938.996129][T11633] ? kvm_check_nested_events+0xf0/0xf0 [ 1939.001587][T11633] ? mark_held_locks+0x9f/0xe0 [ 1939.006349][T11633] ? __local_bh_enable_ip+0xa4/0x130 [ 1939.011636][T11633] ? lockdep_hardirqs_on+0x7d/0x100 [ 1939.016853][T11633] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1939.022218][T11633] ? __local_bh_enable_ip+0xa4/0x130 [ 1939.027499][T11633] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1939.033211][T11633] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1939.038756][T11633] kvm_vcpu_ioctl+0x574/0xea0 [ 1939.043457][T11633] ? kvm_release_pfn_dirty+0x220/0x220 [ 1939.048915][T11633] ? wait_for_completion_io_timeout+0x20/0x20 [ 1939.054985][T11633] ? __fget_files+0x26a/0x480 [ 1939.059666][T11633] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1939.064599][T11633] ? kvm_release_pfn_dirty+0x220/0x220 [ 1939.070053][T11633] __x64_sys_ioctl+0x197/0x210 [ 1939.074837][T11633] do_syscall_64+0x39/0xb0 [ 1939.079255][T11633] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1939.085145][T11633] RIP: 0033:0x7fa9bfc8c169 [ 1939.089573][T11633] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1939.109202][T11633] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1939.117651][T11633] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1939.125631][T11633] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1939.133646][T11633] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 [ 1939.141744][T11633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1939.149715][T11633] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1939.157695][T11633] [ 1939.160776][ C1] vkms_vblank_simulate: vblank timer overrun 00:20:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 15) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:05 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:05 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x3000000) 00:20:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x8) 00:20:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x46) 00:20:05 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:05 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x4000000) 00:20:05 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:05 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x5000000) 00:20:05 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x6000000) 00:20:05 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x4}) [ 1939.635684][T11666] FAULT_INJECTION: forcing a failure. [ 1939.635684][T11666] name failslab, interval 1, probability 0, space 0, times 0 [ 1939.649832][T11666] CPU: 0 PID: 11666 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1939.660300][T11666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1939.670373][T11666] Call Trace: [ 1939.673661][T11666] [ 1939.676603][T11666] dump_stack_lvl+0x136/0x150 [ 1939.681305][T11666] should_fail_ex+0x4a3/0x5b0 [ 1939.686019][T11666] should_failslab+0x9/0x20 [ 1939.690540][T11666] kmem_cache_alloc+0x63/0x3b0 [ 1939.695336][T11666] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1939.701253][T11666] ? wait_for_completion_io_timeout+0x20/0x20 [ 1939.707342][T11666] mmu_topup_memory_caches+0x1f/0xd0 [ 1939.712647][T11666] kvm_mmu_load+0xd6/0x2140 [ 1939.717182][T11666] ? find_held_lock+0x2d/0x110 [ 1939.721989][T11666] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1939.727474][T11666] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1939.733130][T11666] ? __report_tpr_access.isra.0+0x160/0x160 [ 1939.739142][T11666] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1939.744300][T11666] ? invept_error+0xb0/0xb0 [ 1939.748836][T11666] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1939.753890][T11666] vcpu_enter_guest+0x3d21/0x5ff0 [ 1939.758947][T11666] ? lock_release+0x670/0x670 [ 1939.763644][T11666] ? kvm_check_nested_events+0xf0/0xf0 [ 1939.769115][T11666] ? mark_held_locks+0x9f/0xe0 [ 1939.773895][T11666] ? __local_bh_enable_ip+0xa4/0x130 [ 1939.779217][T11666] ? lockdep_hardirqs_on+0x7d/0x100 [ 1939.784435][T11666] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1939.789827][T11666] ? __local_bh_enable_ip+0xa4/0x130 [ 1939.795134][T11666] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1939.800981][T11666] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1939.806553][T11666] kvm_vcpu_ioctl+0x574/0xea0 [ 1939.811252][T11666] ? kvm_release_pfn_dirty+0x220/0x220 [ 1939.816742][T11666] ? wait_for_completion_io_timeout+0x20/0x20 [ 1939.822840][T11666] ? __fget_files+0x26a/0x480 [ 1939.827560][T11666] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1939.832514][T11666] ? kvm_release_pfn_dirty+0x220/0x220 [ 1939.837995][T11666] __x64_sys_ioctl+0x197/0x210 [ 1939.842789][T11666] do_syscall_64+0x39/0xb0 [ 1939.847236][T11666] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1939.853181][T11666] RIP: 0033:0x7fa9bfc8c169 [ 1939.857627][T11666] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1939.877247][T11666] RSP: 002b:00007fa9c0953168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1939.885676][T11666] RAX: ffffffffffffffda RBX: 00007fa9bfdac050 RCX: 00007fa9bfc8c169 [ 1939.893655][T11666] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1939.901637][T11666] RBP: 00007fa9c09531d0 R08: 0000000000000000 R09: 0000000000000000 [ 1939.909620][T11666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1939.917603][T11666] R13: 00007fa9bfecfb1f R14: 00007fa9c0953300 R15: 0000000000022000 [ 1939.925606][T11666] 00:20:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 16) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:06 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x7000000) 00:20:06 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x9) 00:20:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x10) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x48) 00:20:06 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xfdfdffff) 00:20:06 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:06 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xff000000) 00:20:06 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:06 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xfffffdfd) 00:20:06 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x300}) [ 1940.499259][T11701] FAULT_INJECTION: forcing a failure. [ 1940.499259][T11701] name failslab, interval 1, probability 0, space 0, times 0 [ 1940.512523][T11701] CPU: 1 PID: 11701 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1940.522998][T11701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1940.533109][T11701] Call Trace: [ 1940.536422][T11701] [ 1940.539362][T11701] dump_stack_lvl+0x136/0x150 [ 1940.544038][T11701] should_fail_ex+0x4a3/0x5b0 [ 1940.548735][T11701] should_failslab+0x9/0x20 [ 1940.553297][T11701] kmem_cache_alloc+0x63/0x3b0 [ 1940.558067][T11701] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1940.563958][T11701] ? wait_for_completion_io_timeout+0x20/0x20 [ 1940.570040][T11701] mmu_topup_memory_caches+0x1f/0xd0 [ 1940.575489][T11701] kvm_mmu_load+0xd6/0x2140 [ 1940.579994][T11701] ? find_held_lock+0x2d/0x110 [ 1940.584765][T11701] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1940.590241][T11701] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1940.595901][T11701] ? __report_tpr_access.isra.0+0x160/0x160 [ 1940.601829][T11701] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1940.606958][T11701] ? invept_error+0xb0/0xb0 [ 1940.611501][T11701] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1940.616550][T11701] vcpu_enter_guest+0x3d21/0x5ff0 [ 1940.621589][T11701] ? lock_release+0x670/0x670 [ 1940.626263][T11701] ? kvm_check_nested_events+0xf0/0xf0 [ 1940.631727][T11701] ? mark_held_locks+0x9f/0xe0 [ 1940.636512][T11701] ? __local_bh_enable_ip+0xa4/0x130 [ 1940.641799][T11701] ? lockdep_hardirqs_on+0x7d/0x100 [ 1940.647018][T11701] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1940.652412][T11701] ? __local_bh_enable_ip+0xa4/0x130 [ 1940.657713][T11701] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1940.663454][T11701] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1940.669028][T11701] kvm_vcpu_ioctl+0x574/0xea0 [ 1940.674257][T11701] ? kvm_release_pfn_dirty+0x220/0x220 [ 1940.679716][T11701] ? wait_for_completion_io_timeout+0x20/0x20 [ 1940.685802][T11701] ? __fget_files+0x26a/0x480 [ 1940.690497][T11701] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1940.695446][T11701] ? kvm_release_pfn_dirty+0x220/0x220 [ 1940.700900][T11701] __x64_sys_ioctl+0x197/0x210 [ 1940.705665][T11701] do_syscall_64+0x39/0xb0 [ 1940.710094][T11701] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1940.716032][T11701] RIP: 0033:0x7fa9bfc8c169 [ 1940.720441][T11701] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1940.740130][T11701] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1940.748546][T11701] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1940.756552][T11701] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1940.764595][T11701] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1940.772559][T11701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1940.780543][T11701] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1940.788545][T11701] [ 1940.791686][ C1] vkms_vblank_simulate: vblank timer overrun 00:20:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 17) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:07 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xffffff7f) 00:20:07 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4a) 00:20:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x11) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa) 00:20:07 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:07 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x100000000000000) 00:20:07 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x200000000000000) 00:20:07 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:07 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x300000000000000) 00:20:07 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0xff00}) [ 1941.216205][T11735] FAULT_INJECTION: forcing a failure. [ 1941.216205][T11735] name failslab, interval 1, probability 0, space 0, times 0 [ 1941.229239][T11735] CPU: 1 PID: 11735 Comm: syz-executor.2 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1941.239697][T11735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1941.249769][T11735] Call Trace: [ 1941.253051][T11735] [ 1941.255987][T11735] dump_stack_lvl+0x136/0x150 [ 1941.260682][T11735] should_fail_ex+0x4a3/0x5b0 [ 1941.265525][T11735] should_failslab+0x9/0x20 [ 1941.270049][T11735] kmem_cache_alloc+0x63/0x3b0 [ 1941.274844][T11735] __kvm_mmu_topup_memory_cache+0x186/0x460 [ 1941.280757][T11735] ? wait_for_completion_io_timeout+0x20/0x20 [ 1941.286861][T11735] mmu_topup_memory_caches+0x1f/0xd0 [ 1941.292159][T11735] kvm_mmu_load+0xd6/0x2140 [ 1941.296683][T11735] ? find_held_lock+0x2d/0x110 [ 1941.301480][T11735] ? kvm_hv_setup_tsc_page+0x2a0/0x910 [ 1941.306969][T11735] ? kvm_mmu_after_set_cpuid+0x440/0x440 [ 1941.312622][T11735] ? __report_tpr_access.isra.0+0x160/0x160 [ 1941.318551][T11735] ? vmx_flush_tlb_all+0x154/0x2e0 [ 1941.323700][T11735] ? invept_error+0xb0/0xb0 [ 1941.328228][T11735] ? vmx_get_nmi_mask+0x140/0x1d0 [ 1941.333284][T11735] vcpu_enter_guest+0x3d21/0x5ff0 [ 1941.338347][T11735] ? lock_release+0x670/0x670 [ 1941.343061][T11735] ? kvm_check_nested_events+0xf0/0xf0 [ 1941.348535][T11735] ? mark_held_locks+0x9f/0xe0 [ 1941.353316][T11735] ? __local_bh_enable_ip+0xa4/0x130 [ 1941.358619][T11735] ? lockdep_hardirqs_on+0x7d/0x100 [ 1941.363840][T11735] ? fpu_swap_kvm_fpstate+0x1aa/0x400 [ 1941.369250][T11735] ? __local_bh_enable_ip+0xa4/0x130 [ 1941.374552][T11735] ? kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1941.380296][T11735] kvm_arch_vcpu_ioctl_run+0xa2f/0x2810 [ 1941.385872][T11735] kvm_vcpu_ioctl+0x574/0xea0 [ 1941.390565][T11735] ? kvm_release_pfn_dirty+0x220/0x220 [ 1941.396048][T11735] ? wait_for_completion_io_timeout+0x20/0x20 [ 1941.402143][T11735] ? __fget_files+0x26a/0x480 [ 1941.406850][T11735] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1941.411802][T11735] ? kvm_release_pfn_dirty+0x220/0x220 [ 1941.417275][T11735] __x64_sys_ioctl+0x197/0x210 [ 1941.422069][T11735] do_syscall_64+0x39/0xb0 [ 1941.426516][T11735] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1941.432428][T11735] RIP: 0033:0x7fa9bfc8c169 [ 1941.436853][T11735] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1941.456488][T11735] RSP: 002b:00007fa9c0974168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1941.464923][T11735] RAX: ffffffffffffffda RBX: 00007fa9bfdabf80 RCX: 00007fa9bfc8c169 [ 1941.472912][T11735] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007 [ 1941.480901][T11735] RBP: 00007fa9c09741d0 R08: 0000000000000000 R09: 0000000000000000 [ 1941.488881][T11735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1941.496860][T11735] R13: 00007fa9bfecfb1f R14: 00007fa9c0974300 R15: 0000000000022000 [ 1941.504855][T11735] [ 1941.507963][ C1] vkms_vblank_simulate: vblank timer overrun 00:20:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) (fail_nth: 18) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:07 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:07 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x400000000000000) 00:20:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x12) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xb) 00:20:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4c) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x500000000000000) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x600000000000000) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x700000000000000) 00:20:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xfdfdffff00000000) 00:20:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x13) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4e) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xc) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xff00000000000000) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0xffffff7f00000000) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xd) 00:20:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x2, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:08 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x14) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4f) 00:20:08 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:09 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:09 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000580), 0x681, 0x0) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000680)=@base={0xa, 0x12, 0x9, 0x1000, 0x400, 0xffffffffffffffff, 0x2, '\x00', 0x0, r0}, 0x48) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000001c40)=@raw={'raw\x00', 0xc01, 0x3, 0x1230, 0x10e8, 0x5002004a, 0x0, 0x10e8, 0x0, 0x1198, 0x3c8, 0x3c8, 0x1198, 0x3c8, 0x3, 0x0, {[{{@uncond, 0x60, 0x10a0, 0x10e8, 0x0, {0xf8030000}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x48, './cgroup.cpu/syz1\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@multicast1, 'wg2\x00'}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "53f99237f41c832fc8969da1f2b7a86ddedeb7587f1590839a7a3acebc0f"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x1290) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x10, 0xb, &(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYBLOB="2c6c8effffffff926e4eeb2d00684a7a4d45c831fb956a6c000000cba09b1e0a601d7ae800000000bf16257e3087cbe4710000", @ANYRESOCT=r1, @ANYRESOCT=r1], &(0x7f0000001b00)='GPL\x00', 0x0, 0xe4, &(0x7f0000000340)=""/228, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xb8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x2}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) unshare(0x22020000) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x105880, 0x22) mkdir(&(0x7f0000000000)='./file0\x00', 0x199) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x0, 0x0) unshare(0x40020000) rmdir(&(0x7f0000000740)='./file0\x00') ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1d, 0x6, 0x9, 0xfffffffa, 0x300, 0x1, 0x6, '\x00', r5, 0xffffffffffffffff, 0x5, 0x2, 0x2}, 0x48) mkdirat(0xffffffffffffffff, &(0x7f0000000640)='./file0\x00', 0x22) unshare(0x70000580) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x4000, 0x0) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f00000005c0)='./file0\x00') getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000001c0)={0x2}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000a000/0x18000)=nil, &(0x7f0000000c80)=[@text64={0x40, &(0x7f0000000c00)="c4417e6fe3400f790bb9410800000f32b9800000c00f3235004000000f300f01cf66baf80cb854c46f85ef66bafc0ced440f0dc6f36d66b834000f00d066baa100ed", 0x42}], 0x1, 0x0, &(0x7f0000000cc0), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000280)="c4e2310b0a0fc79d00300000c4c15556b943ffffff360f011b8fc868a6ef0036660f38818b34dba25f660f3880520066b8bc000f00d00f017800", 0x3a}], 0x1, 0x0, 0x0, 0x0) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xe) 00:20:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x10, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x15) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x50) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:09 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000580), 0x681, 0x0) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000680)=@base={0xa, 0x12, 0x9, 0x1000, 0x400, 0xffffffffffffffff, 0x2, '\x00', 0x0, r0}, 0x48) (async) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000680)=@base={0xa, 0x12, 0x9, 0x1000, 0x400, 0xffffffffffffffff, 0x2, '\x00', 0x0, r0}, 0x48) socket$inet_tcp(0x2, 0x1, 0x0) (async) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000001c40)=@raw={'raw\x00', 0xc01, 0x3, 0x1230, 0x10e8, 0x5002004a, 0x0, 0x10e8, 0x0, 0x1198, 0x3c8, 0x3c8, 0x1198, 0x3c8, 0x3, 0x0, {[{{@uncond, 0x60, 0x10a0, 0x10e8, 0x0, {0xf8030000}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x48, './cgroup.cpu/syz1\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@multicast1, 'wg2\x00'}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "53f99237f41c832fc8969da1f2b7a86ddedeb7587f1590839a7a3acebc0f"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x1290) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x10, 0xb, &(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYBLOB="2c6c8effffffff926e4eeb2d00684a7a4d45c831fb956a6c000000cba09b1e0a601d7ae800000000bf16257e3087cbe4710000", @ANYRESOCT=r1, @ANYRESOCT=r1], &(0x7f0000001b00)='GPL\x00', 0x0, 0xe4, &(0x7f0000000340)=""/228, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xb8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x2}, &(0x7f0000000540)) (async) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x2}, &(0x7f0000000540)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) unshare(0x22020000) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x105880, 0x22) mkdir(&(0x7f0000000000)='./file0\x00', 0x199) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x0, 0x0) unshare(0x40020000) rmdir(&(0x7f0000000740)='./file0\x00') ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1d, 0x6, 0x9, 0xfffffffa, 0x300, 0x1, 0x6, '\x00', r5, 0xffffffffffffffff, 0x5, 0x2, 0x2}, 0x48) (async) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1d, 0x6, 0x9, 0xfffffffa, 0x300, 0x1, 0x6, '\x00', r5, 0xffffffffffffffff, 0x5, 0x2, 0x2}, 0x48) mkdirat(0xffffffffffffffff, &(0x7f0000000640)='./file0\x00', 0x22) (async) mkdirat(0xffffffffffffffff, &(0x7f0000000640)='./file0\x00', 0x22) unshare(0x70000580) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x4000, 0x0) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f00000005c0)='./file0\x00') (async) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f00000005c0)='./file0\x00') getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) (async) getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000001c0)={0x2}) (async) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000001c0)={0x2}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000a000/0x18000)=nil, &(0x7f0000000c80)=[@text64={0x40, &(0x7f0000000c00)="c4417e6fe3400f790bb9410800000f32b9800000c00f3235004000000f300f01cf66baf80cb854c46f85ef66bafc0ced440f0dc6f36d66b834000f00d066baa100ed", 0x42}], 0x1, 0x0, &(0x7f0000000cc0), 0x0) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000a000/0x18000)=nil, &(0x7f0000000c80)=[@text64={0x40, &(0x7f0000000c00)="c4417e6fe3400f790bb9410800000f32b9800000c00f3235004000000f300f01cf66baf80cb854c46f85ef66bafc0ced440f0dc6f36d66b834000f00d066baa100ed", 0x42}], 0x1, 0x0, &(0x7f0000000cc0), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000280)="c4e2310b0a0fc79d00300000c4c15556b943ffffff360f011b8fc868a6ef0036660f38818b34dba25f660f3880520066b8bc000f00d00f017800", 0x3a}], 0x1, 0x0, 0x0, 0x0) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf) 00:20:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x52) 00:20:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x541b, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x16) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:09 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000580), 0x681, 0x0) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000680)=@base={0xa, 0x12, 0x9, 0x1000, 0x400, 0xffffffffffffffff, 0x2, '\x00', 0x0, r0}, 0x48) (async) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000001c40)=@raw={'raw\x00', 0xc01, 0x3, 0x1230, 0x10e8, 0x5002004a, 0x0, 0x10e8, 0x0, 0x1198, 0x3c8, 0x3c8, 0x1198, 0x3c8, 0x3, 0x0, {[{{@uncond, 0x60, 0x10a0, 0x10e8, 0x0, {0xf8030000}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x48, './cgroup.cpu/syz1\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@multicast1, 'wg2\x00'}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "53f99237f41c832fc8969da1f2b7a86ddedeb7587f1590839a7a3acebc0f"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x1290) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x10, 0xb, &(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYBLOB="2c6c8effffffff926e4eeb2d00684a7a4d45c831fb956a6c000000cba09b1e0a601d7ae800000000bf16257e3087cbe4710000", @ANYRESOCT=r1, @ANYRESOCT=r1], &(0x7f0000001b00)='GPL\x00', 0x0, 0xe4, &(0x7f0000000340)=""/228, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xb8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) write$binfmt_script(0xffffffffffffffff, 0x0, 0x208e24b) (async, rerun: 32) timer_create(0x9, &(0x7f0000000100)={0x0, 0x12, 0x2}, &(0x7f0000000540)) (async, rerun: 32) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async) unshare(0x22020000) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x105880, 0x22) (async) mkdir(&(0x7f0000000000)='./file0\x00', 0x199) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)='ext2\x00', 0x0, 0x0) (async) unshare(0x40020000) (async) rmdir(&(0x7f0000000740)='./file0\x00') (async, rerun: 32) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg0\x00', 0x0}) (rerun: 32) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1d, 0x6, 0x9, 0xfffffffa, 0x300, 0x1, 0x6, '\x00', r5, 0xffffffffffffffff, 0x5, 0x2, 0x2}, 0x48) mkdirat(0xffffffffffffffff, &(0x7f0000000640)='./file0\x00', 0x22) (async, rerun: 32) unshare(0x70000580) (async, rerun: 32) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x4000, 0x0) (async) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f00000005c0)='./file0\x00') getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000001c0)={0x2}) (async) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000a000/0x18000)=nil, &(0x7f0000000c80)=[@text64={0x40, &(0x7f0000000c00)="c4417e6fe3400f790bb9410800000f32b9800000c00f3235004000000f300f01cf66baf80cb854c46f85ef66bafc0ced440f0dc6f36d66b834000f00d066baa100ed", 0x42}], 0x1, 0x0, &(0x7f0000000cc0), 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000280)="c4e2310b0a0fc79d00300000c4c15556b943ffffff360f011b8fc868a6ef0036660f38818b34dba25f660f3880520066b8bc000f00d00f017800", 0x3a}], 0x1, 0x0, 0x0, 0x0) 00:20:09 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:10 executing program 3: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x1b87, &(0x7f0000000040)={0x0, 0x7ae7, 0x400, 0x2, 0x1c2, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x3878, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000180)=0x0) r6 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0xc, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)='./file0\x00', r6, 0x0, 0x1, {0x0, r7}}, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000140)=@IORING_OP_SHUTDOWN={0x22, 0x0, 0x0, r0, 0x0, 0x0, 0x1, 0x0, 0x1, {0x0, r7}}, 0xffffffff) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x10) 00:20:10 executing program 3: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) syz_io_uring_setup(0x1b87, &(0x7f0000000040)={0x0, 0x7ae7, 0x400, 0x2, 0x1c2, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x3878, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000180)=0x0) r6 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0xc, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)='./file0\x00', r6, 0x0, 0x1, {0x0, r7}}, 0x0) (async) syz_io_uring_submit(0x0, r2, &(0x7f0000000140)=@IORING_OP_SHUTDOWN={0x22, 0x0, 0x0, r0, 0x0, 0x0, 0x1, 0x0, 0x1, {0x0, r7}}, 0xffffffff) (async) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x54) 00:20:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x5421, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x17) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:10 executing program 3: openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0) (async) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x1b87, &(0x7f0000000040)={0x0, 0x7ae7, 0x400, 0x2, 0x1c2, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) (async) syz_io_uring_setup(0x1b87, &(0x7f0000000040)={0x0, 0x7ae7, 0x400, 0x2, 0x1c2, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x3878, &(0x7f0000000240), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000180)=0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) r6 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0xc, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)='./file0\x00', r6, 0x0, 0x1, {0x0, r7}}, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000140)=@IORING_OP_SHUTDOWN={0x22, 0x0, 0x0, r0, 0x0, 0x0, 0x1, 0x0, 0x1, {0x0, r7}}, 0xffffffff) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x11) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:10 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x18, r2, 0xffffffffffffffff, 0x0, 0x0, {0x22}, [@ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0x18}}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x4}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40044}, 0x40000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:10 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x18, r2, 0xffffffffffffffff, 0x0, 0x0, {0x22}, [@ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0x18}}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x4}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40044}, 0x40000) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) (async) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x18, r2, 0xffffffffffffffff, 0x0, 0x0, {0x22}, [@ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0x18}}, 0x0) (async) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x4}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40044}, 0x40000) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) 00:20:10 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x56) 00:20:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x5450, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x18) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x18, r2, 0xffffffffffffffff, 0x0, 0x0, {0x22}, [@ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0x18}}, 0x0) (async) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x4}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40044}, 0x40000) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x140, 0x480, 0x780, 0x640, 0x7f, 0x3, 0x8, 0x2, {0x100, 0x5, 0x1}, {0x100, 0x40, 0x1}, {0x4, 0x1}, {0x9, 0x0, 0x1}, 0x3, 0x40, 0xfffffffb, 0x400, 0x1, 0x3, 0x0, 0x6, 0xffffffff, 0x5, 0x4, 0x1, 0x0, 0x100, 0x0, 0x4}) 00:20:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x12) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x140, 0x480, 0x780, 0x640, 0x7f, 0x3, 0x8, 0x2, {0x100, 0x5, 0x1}, {0x100, 0x40, 0x1}, {0x4, 0x1}, {0x9, 0x0, 0x1}, 0x3, 0x40, 0xfffffffb, 0x400, 0x1, 0x3, 0x0, 0x6, 0xffffffff, 0x5, 0x4, 0x1, 0x0, 0x100, 0x0, 0x4}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x140, 0x480, 0x780, 0x640, 0x7f, 0x3, 0x8, 0x2, {0x100, 0x5, 0x1}, {0x100, 0x40, 0x1}, {0x4, 0x1}, {0x9, 0x0, 0x1}, 0x3, 0x40, 0xfffffffb, 0x400, 0x1, 0x3, 0x0, 0x6, 0xffffffff, 0x5, 0x4, 0x1, 0x0, 0x100, 0x0, 0x4}) (async) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x140, 0x480, 0x780, 0x640, 0x7f, 0x3, 0x8, 0x2, {0x100, 0x5, 0x1}, {0x100, 0x40, 0x1}, {0x4, 0x1}, {0x9, 0x0, 0x1}, 0x3, 0x40, 0xfffffffb, 0x400, 0x1, 0x3, 0x0, 0x6, 0xffffffff, 0x5, 0x4, 0x1, 0x0, 0x100, 0x0, 0x4}) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x140, 0x480, 0x780, 0x640, 0x7f, 0x3, 0x8, 0x2, {0x100, 0x5, 0x1}, {0x100, 0x40, 0x1}, {0x4, 0x1}, {0x9, 0x0, 0x1}, 0x3, 0x40, 0xfffffffb, 0x400, 0x1, 0x3, 0x0, 0x6, 0xffffffff, 0x5, 0x4, 0x1, 0x0, 0x100, 0x0, 0x4}) 00:20:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x58) 00:20:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x5451, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x19) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x960, 0x3c00, 0x10, 0xff3d, 0x101, 0x2, 0x0, {0x9, 0x9, 0x1}, {0x0, 0x62ee, 0x1}, {0xffffae9b, 0xd1e, 0x1}, {0x7fffffff, 0x1}, 0x1, 0x0, 0x19e5, 0x6, 0x1, 0x3, 0x800, 0x1ff, 0xf4dc, 0x0, 0x8, 0x8, 0x10, 0x200, 0x0, 0x2}) 00:20:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x13) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x960, 0x3c00, 0x10, 0xff3d, 0x101, 0x2, 0x0, {0x9, 0x9, 0x1}, {0x0, 0x62ee, 0x1}, {0xffffae9b, 0xd1e, 0x1}, {0x7fffffff, 0x1}, 0x1, 0x0, 0x19e5, 0x6, 0x1, 0x3, 0x800, 0x1ff, 0xf4dc, 0x0, 0x8, 0x8, 0x10, 0x200, 0x0, 0x2}) 00:20:11 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async, rerun: 64) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async, rerun: 64) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x960, 0x3c00, 0x10, 0xff3d, 0x101, 0x2, 0x0, {0x9, 0x9, 0x1}, {0x0, 0x62ee, 0x1}, {0xffffae9b, 0xd1e, 0x1}, {0x7fffffff, 0x1}, 0x1, 0x0, 0x19e5, 0x6, 0x1, 0x3, 0x800, 0x1ff, 0xf4dc, 0x0, 0x8, 0x8, 0x10, 0x200, 0x0, 0x2}) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:11 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5a) 00:20:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x5452, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1a) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x14) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) openat$audio(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) ioctl$FBIOGETCMAP(0xffffffffffffffff, 0x4604, &(0x7f0000000040)={0x0, 0x2, &(0x7f0000000100)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)}) syz_io_uring_setup(0x5f5, &(0x7f0000000140)={0x0, 0x9605, 0x200, 0x1, 0x258}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000001c0)) 00:20:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5c) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1b) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x15) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) (async) openat$audio(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) (async) ioctl$FBIOGETCMAP(0xffffffffffffffff, 0x4604, &(0x7f0000000040)={0x0, 0x2, &(0x7f0000000100)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)}) (async) syz_io_uring_setup(0x5f5, &(0x7f0000000140)={0x0, 0x9605, 0x200, 0x1, 0x258}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000001c0)) 00:20:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x5460, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) openat$audio(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) ioctl$FBIOGETCMAP(0xffffffffffffffff, 0x4604, &(0x7f0000000040)={0x0, 0x2, &(0x7f0000000100)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)}) syz_io_uring_setup(0x5f5, &(0x7f0000000140)={0x0, 0x9605, 0x200, 0x1, 0x258}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0xfffffffffffffffc, &(0x7f00000001c0)) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x490002, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:12 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:12 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x490002, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x490002, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) 00:20:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5e) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:13 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x490002, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1c) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x16) 00:20:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8933, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:13 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f00000002c0)={{r2}, "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"}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:13 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f00000002c0)={{r2}, "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"}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x60) 00:20:13 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f00000002c0)={{r2}, "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"}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x17) 00:20:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xaece, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1d) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:13 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x780, 0x1e0, 0xf0, 0x258, 0x20, 0x7, 0x4, 0x2, {0x5, 0x7, 0x1}, {0x1, 0x8001}, {0x313, 0xff, 0x1}, {0x0, 0x7fff}, 0x3, 0x0, 0x80000001, 0x1ff, 0x1, 0x0, 0x9, 0x47f, 0x100, 0x9, 0x5d6, 0x0, 0x8, 0x0, 0x1}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:13 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x780, 0x1e0, 0xf0, 0x258, 0x20, 0x7, 0x4, 0x2, {0x5, 0x7, 0x1}, {0x1, 0x8001}, {0x313, 0xff, 0x1}, {0x0, 0x7fff}, 0x3, 0x0, 0x80000001, 0x1ff, 0x1, 0x0, 0x9, 0x47f, 0x100, 0x9, 0x5d6, 0x0, 0x8, 0x0, 0x1}) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:13 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x780, 0x1e0, 0xf0, 0x258, 0x20, 0x7, 0x4, 0x2, {0x5, 0x7, 0x1}, {0x1, 0x8001}, {0x313, 0xff, 0x1}, {0x0, 0x7fff}, 0x3, 0x0, 0x80000001, 0x1ff, 0x1, 0x0, 0x9, 0x47f, 0x100, 0x9, 0x5d6, 0x0, 0x8, 0x0, 0x1}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x64) 00:20:13 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0xc80, 0x1000, 0x640, 0x8c0, 0x8, 0x1, 0x20, 0x2, {0x8, 0xffffbdee}, {0xfffffff9, 0xdaf, 0x1}, {0x9, 0x2, 0x1}, {0x6, 0x3f, 0x1}, 0x2, 0x10, 0x1, 0xffffffff, 0x0, 0x63e, 0x3f, 0x7, 0x1, 0x1, 0x5, 0x8000, 0x24, 0x100, 0x3, 0x8}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x80, 0x280, 0x690, 0x140, 0x10001, 0x1, 0x1, 0x1, {0x1f, 0x6, 0x1}, {0x9, 0x424}, {0x1c65869f, 0x6f}, {0x8, 0x2}, 0x2, 0x0, 0x2, 0xe0b, 0x0, 0xca, 0x8000, 0x26, 0x5, 0x5, 0x9, 0x9, 0x12, 0x200, 0x0, 0xb}) 00:20:13 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x400448c9, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x18) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0xc80, 0x1000, 0x640, 0x8c0, 0x8, 0x1, 0x20, 0x2, {0x8, 0xffffbdee}, {0xfffffff9, 0xdaf, 0x1}, {0x9, 0x2, 0x1}, {0x6, 0x3f, 0x1}, 0x2, 0x10, 0x1, 0xffffffff, 0x0, 0x63e, 0x3f, 0x7, 0x1, 0x1, 0x5, 0x8000, 0x24, 0x100, 0x3, 0x8}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x80, 0x280, 0x690, 0x140, 0x10001, 0x1, 0x1, 0x1, {0x1f, 0x6, 0x1}, {0x9, 0x424}, {0x1c65869f, 0x6f}, {0x8, 0x2}, 0x2, 0x0, 0x2, 0xe0b, 0x0, 0xca, 0x8000, 0x26, 0x5, 0x5, 0x9, 0x9, 0x12, 0x200, 0x0, 0xb}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0xc80, 0x1000, 0x640, 0x8c0, 0x8, 0x1, 0x20, 0x2, {0x8, 0xffffbdee}, {0xfffffff9, 0xdaf, 0x1}, {0x9, 0x2, 0x1}, {0x6, 0x3f, 0x1}, 0x2, 0x10, 0x1, 0xffffffff, 0x0, 0x63e, 0x3f, 0x7, 0x1, 0x1, 0x5, 0x8000, 0x24, 0x100, 0x3, 0x8}) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x80, 0x280, 0x690, 0x140, 0x10001, 0x1, 0x1, 0x1, {0x1f, 0x6, 0x1}, {0x9, 0x424}, {0x1c65869f, 0x6f}, {0x8, 0x2}, 0x2, 0x0, 0x2, 0xe0b, 0x0, 0xca, 0x8000, 0x26, 0x5, 0x5, 0x9, 0x9, 0x12, 0x200, 0x0, 0xb}) (async) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0xc80, 0x1000, 0x640, 0x8c0, 0x8, 0x1, 0x20, 0x2, {0x8, 0xffffbdee}, {0xfffffff9, 0xdaf, 0x1}, {0x9, 0x2, 0x1}, {0x6, 0x3f, 0x1}, 0x2, 0x10, 0x1, 0xffffffff, 0x0, 0x63e, 0x3f, 0x7, 0x1, 0x1, 0x5, 0x8000, 0x24, 0x100, 0x3, 0x8}) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x80, 0x280, 0x690, 0x140, 0x10001, 0x1, 0x1, 0x1, {0x1f, 0x6, 0x1}, {0x9, 0x424}, {0x1c65869f, 0x6f}, {0x8, 0x2}, 0x2, 0x0, 0x2, 0xe0b, 0x0, 0xca, 0x8000, 0x26, 0x5, 0x5, 0x9, 0x9, 0x12, 0x200, 0x0, 0xb}) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOBLANK(r1, 0x4611, 0xfffffffffffffffb) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x1, 'pimreg\x00', {}, 0x1d}) 00:20:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x65) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOBLANK(r1, 0x4611, 0xfffffffffffffffb) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x1, 'pimreg\x00', {}, 0x1d}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) ioctl$FBIOBLANK(r1, 0x4611, 0xfffffffffffffffb) (async) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x1, 'pimreg\x00', {}, 0x1d}) (async) 00:20:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x22) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x400448dd, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x19) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x86) (async, rerun: 32) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async, rerun: 32) ioctl$FBIOBLANK(r1, 0x4611, 0xfffffffffffffffb) (async) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x1, 'pimreg\x00', {}, 0x1d}) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r2, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x0) flistxattr(r1, &(0x7f0000000000)=""/97, 0x61) 00:20:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x66) 00:20:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x400454ca, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x24) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:14 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r2, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x0) (async) flistxattr(r1, &(0x7f0000000000)=""/97, 0x61) 00:20:14 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1a) 00:20:15 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async, rerun: 64) r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r2, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x0) (async) flistxattr(r1, &(0x7f0000000000)=""/97, 0x61) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x26) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x40049409, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x67) 00:20:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1b) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x28) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4004ae8b, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:15 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:15 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1c) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa9) 00:20:16 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2a) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4004ae99, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:16 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:16 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000000)='scalable\x00', 0x9) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f00000000c0)={0x0, 0x12204205}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r5, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) lseek(r4, 0x8, 0x2) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x0, 0x0, 0xc, 0x0, "cce48159df4fddb82b4e7ed4657d036d49a836f24ad7591979f9fdb9fa3eac6ebf0f67e1aa90c781c18a1757f6bf49abade69ea5a585edb72c8b0831b908d78b94e7149e22e045c44fdb91520b2b62ab"}, 0xd8) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:16 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) (async) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000000)='scalable\x00', 0x9) (async) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000000)='scalable\x00', 0x9) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f00000000c0)={0x0, 0x12204205}) (async) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f00000000c0)={0x0, 0x12204205}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r5, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) (async) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r5, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) lseek(r4, 0x8, 0x2) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x0, 0x0, 0xc, 0x0, "cce48159df4fddb82b4e7ed4657d036d49a836f24ad7591979f9fdb9fa3eac6ebf0f67e1aa90c781c18a1757f6bf49abade69ea5a585edb72c8b0831b908d78b94e7149e22e045c44fdb91520b2b62ab"}, 0xd8) 00:20:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1d) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x300) 00:20:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2c) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x40086602, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:16 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000000)='scalable\x00', 0x9) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) (async) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f00000000c0)={0x0, 0x12204205}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r5, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) lseek(r4, 0x8, 0x2) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x0, 0x0, 0xc, 0x0, "cce48159df4fddb82b4e7ed4657d036d49a836f24ad7591979f9fdb9fa3eac6ebf0f67e1aa90c781c18a1757f6bf49abade69ea5a585edb72c8b0831b908d78b94e7149e22e045c44fdb91520b2b62ab"}, 0xd8) (async) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x0, 0x0, 0xc, 0x0, "cce48159df4fddb82b4e7ed4657d036d49a836f24ad7591979f9fdb9fa3eac6ebf0f67e1aa90c781c18a1757f6bf49abade69ea5a585edb72c8b0831b908d78b94e7149e22e045c44fdb91520b2b62ab"}, 0xd8) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:16 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:17 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:17 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x1e1041, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:17 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:17 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x1e1041, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:17 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x480) 00:20:17 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x40186366, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1e) 00:20:17 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x1e1041, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:17 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:17 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0) 00:20:17 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:17 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0) (async) 00:20:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x30) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:17 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:17 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x401c5820, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x500) 00:20:18 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x26) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x32) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) 00:20:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4020940d, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5a0) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) sync_file_range(r1, 0x8, 0x0, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r3, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0) readv(r2, &(0x7f0000000180)=[{&(0x7f0000000000)=""/97, 0x61}, {&(0x7f0000000080)=""/231, 0xe7}], 0x2) 00:20:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x28) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) sync_file_range(r1, 0x8, 0x0, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r3, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0) (async) readv(r2, &(0x7f0000000180)=[{&(0x7f0000000000)=""/97, 0x61}, {&(0x7f0000000080)=""/231, 0xe7}], 0x2) 00:20:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4048ae9b, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) sync_file_range(r1, 0x8, 0x0, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r3, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0) readv(r2, &(0x7f0000000180)=[{&(0x7f0000000000)=""/97, 0x61}, {&(0x7f0000000080)=""/231, 0xe7}], 0x2) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) sync_file_range(r1, 0x8, 0x0, 0x3) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)={0x1c, r3, 0xf2d, 0x0, 0x0, {{0x6b}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0) (async) readv(r2, &(0x7f0000000180)=[{&(0x7f0000000000)=""/97, 0x61}, {&(0x7f0000000080)=""/231, 0xe7}], 0x2) (async) 00:20:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x34) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:18 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:18 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x149201, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x600) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:19 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x149201, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4090ae82, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2e) 00:20:19 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x149201, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x36) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:19 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$FBIO_WAITFORVSYNC(r2, 0x40044620, 0x0) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:19 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$FBIO_WAITFORVSYNC(r2, 0x40044620, 0x0) 00:20:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x700) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:19 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$FBIO_WAITFORVSYNC(r2, 0x40044620, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r2, 0x40044620, 0x0) (async) 00:20:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x36) 00:20:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x4138ae84, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x38) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:19 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f00000002c0)={{r2}, "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"}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:19 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) (async, rerun: 64) r2 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f00000002c0)={{r2}, "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"}) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:19 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x900) 00:20:20 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f00000002c0)={{r2}, "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"}) (async) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f00000002c0)={{r2}, "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"}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x41a0ae8d, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3e) 00:20:20 executing program 3: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x220000, 0x0) io_uring_enter(r0, 0x4e95, 0xb002, 0x0, &(0x7f0000000040)={[0x1]}, 0x8) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3a) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:20 executing program 3: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x220000, 0x0) io_uring_enter(r0, 0x4e95, 0xb002, 0x0, &(0x7f0000000040)={[0x1]}, 0x8) (async, rerun: 64) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0) (rerun: 64) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:20 executing program 3: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x220000, 0x0) io_uring_enter(r0, 0x4e95, 0xb002, 0x0, &(0x7f0000000040)={[0x1]}, 0x8) (async) io_uring_enter(r0, 0x4e95, 0xb002, 0x0, &(0x7f0000000040)={[0x1]}, 0x8) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa00) 00:20:20 executing program 3: setsockopt$inet_sctp_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0)=0x8001, 0x4) r0 = syz_open_dev$mouse(&(0x7f0000000040), 0x80000003, 0x1840) ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000080)) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4f) 00:20:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x8004ae98, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3c) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:20 executing program 3: setsockopt$inet_sctp_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0)=0x8001, 0x4) r0 = syz_open_dev$mouse(&(0x7f0000000040), 0x80000003, 0x1840) ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000080)) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:20 executing program 3: setsockopt$inet_sctp_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000000c0)=0x8001, 0x4) (async) r0 = syz_open_dev$mouse(&(0x7f0000000040), 0x80000003, 0x1840) ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000080)) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:20 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x204000, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:20 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:20 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x204000, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xb00) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:21 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x204000, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x64) 00:20:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x80086301, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:21 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x8200, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000100)={0xfffffff9, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0]}) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:21 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x8200, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000100)={0xfffffff9, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0]}) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xc00) 00:20:21 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x8200, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000100)={0xfffffff9, 0x4, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0]}) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x42) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x65) 00:20:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x80086601, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:21 executing program 3: r0 = inotify_init1(0x80000) fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000040)=@v2={0x5, 0x1, 0x1, 0x7, 0xf1, "e36fdfe829bbad904d9efba38559f9bf4a6711a838bb7915a9dc34fa3af4c6052c169a89a8f1d5ab16655dd32efaa0f96ba2fcc0c6b7c54b23bfe9b7f23c33b4d4f18e394ed51ec5e83cccd1aa70e0e083f229b3a1f57b2286c45acd9c202c4b869adb9d6b0701d0ea43bbc96db1344618bc365810e341210b74aefc3101ba5f1cc8966a689030fd97d1a3b58c9a84de57b9779c77161448996ad94de0680cc6adb9f0658d65d075bdaae9d212bf7f738d8ab5858128a86918d601f7a6f965fde508d27ea23617c11478feb8f1a330fa8bb783b9ceabfde680208256ce26e0d3323a4c25836c4c710821f2fd1aa538f909"}, 0xfa, 0x2) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:21 executing program 3: r0 = inotify_init1(0x80000) fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000040)=@v2={0x5, 0x1, 0x1, 0x7, 0xf1, "e36fdfe829bbad904d9efba38559f9bf4a6711a838bb7915a9dc34fa3af4c6052c169a89a8f1d5ab16655dd32efaa0f96ba2fcc0c6b7c54b23bfe9b7f23c33b4d4f18e394ed51ec5e83cccd1aa70e0e083f229b3a1f57b2286c45acd9c202c4b869adb9d6b0701d0ea43bbc96db1344618bc365810e341210b74aefc3101ba5f1cc8966a689030fd97d1a3b58c9a84de57b9779c77161448996ad94de0680cc6adb9f0658d65d075bdaae9d212bf7f738d8ab5858128a86918d601f7a6f965fde508d27ea23617c11478feb8f1a330fa8bb783b9ceabfde680208256ce26e0d3323a4c25836c4c710821f2fd1aa538f909"}, 0xfa, 0x2) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) inotify_init1(0x80000) (async) fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000040)=@v2={0x5, 0x1, 0x1, 0x7, 0xf1, "e36fdfe829bbad904d9efba38559f9bf4a6711a838bb7915a9dc34fa3af4c6052c169a89a8f1d5ab16655dd32efaa0f96ba2fcc0c6b7c54b23bfe9b7f23c33b4d4f18e394ed51ec5e83cccd1aa70e0e083f229b3a1f57b2286c45acd9c202c4b869adb9d6b0701d0ea43bbc96db1344618bc365810e341210b74aefc3101ba5f1cc8966a689030fd97d1a3b58c9a84de57b9779c77161448996ad94de0680cc6adb9f0658d65d075bdaae9d212bf7f738d8ab5858128a86918d601f7a6f965fde508d27ea23617c11478feb8f1a330fa8bb783b9ceabfde680208256ce26e0d3323a4c25836c4c710821f2fd1aa538f909"}, 0xfa, 0x2) (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) (async) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:21 executing program 3: r0 = inotify_init1(0x80000) fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000040)=@v2={0x5, 0x1, 0x1, 0x7, 0xf1, "e36fdfe829bbad904d9efba38559f9bf4a6711a838bb7915a9dc34fa3af4c6052c169a89a8f1d5ab16655dd32efaa0f96ba2fcc0c6b7c54b23bfe9b7f23c33b4d4f18e394ed51ec5e83cccd1aa70e0e083f229b3a1f57b2286c45acd9c202c4b869adb9d6b0701d0ea43bbc96db1344618bc365810e341210b74aefc3101ba5f1cc8966a689030fd97d1a3b58c9a84de57b9779c77161448996ad94de0680cc6adb9f0658d65d075bdaae9d212bf7f738d8ab5858128a86918d601f7a6f965fde508d27ea23617c11478feb8f1a330fa8bb783b9ceabfde680208256ce26e0d3323a4c25836c4c710821f2fd1aa538f909"}, 0xfa, 0x2) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) inotify_init1(0x80000) (async) fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000040)=@v2={0x5, 0x1, 0x1, 0x7, 0xf1, "e36fdfe829bbad904d9efba38559f9bf4a6711a838bb7915a9dc34fa3af4c6052c169a89a8f1d5ab16655dd32efaa0f96ba2fcc0c6b7c54b23bfe9b7f23c33b4d4f18e394ed51ec5e83cccd1aa70e0e083f229b3a1f57b2286c45acd9c202c4b869adb9d6b0701d0ea43bbc96db1344618bc365810e341210b74aefc3101ba5f1cc8966a689030fd97d1a3b58c9a84de57b9779c77161448996ad94de0680cc6adb9f0658d65d075bdaae9d212bf7f738d8ab5858128a86918d601f7a6f965fde508d27ea23617c11478feb8f1a330fa8bb783b9ceabfde680208256ce26e0d3323a4c25836c4c710821f2fd1aa538f909"}, 0xfa, 0x2) (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) (async) 00:20:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xd00) 00:20:21 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x66) 00:20:21 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x3c0, 0x30, 0x9743baa2c3e60fce, 0x280, 0x5, 0x8, 0x0, 0x2, {0xbdc4, 0x1}, {0x3af3, 0x7}, {0x1f, 0x6}, {0x57c, 0x8}, 0x0, 0x0, 0x4, 0x5, 0x1, 0x1000, 0x2, 0x2, 0xfffff61c, 0x3, 0x0, 0x6, 0x6, 0x0, 0x2, 0x4}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000040)={0x60, 0x280, 0xc80, 0x240, 0xffff, 0x5, 0x0, 0x2, {0x6, 0x1}, {0x9ea868a, 0x8000}, {0x4, 0x20, 0x1}, {0x6, 0xff, 0x1}, 0x2, 0x80, 0x7, 0x101, 0x0, 0x401, 0x9, 0x4, 0x3, 0x3f, 0x8a86, 0x3c961752, 0x20, 0x4, 0x1, 0x5}) 00:20:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x44) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x801c581f, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:22 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:22 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x3c0, 0x30, 0x9743baa2c3e60fce, 0x280, 0x5, 0x8, 0x0, 0x2, {0xbdc4, 0x1}, {0x3af3, 0x7}, {0x1f, 0x6}, {0x57c, 0x8}, 0x0, 0x0, 0x4, 0x5, 0x1, 0x1000, 0x2, 0x2, 0xfffff61c, 0x3, 0x0, 0x6, 0x6, 0x0, 0x2, 0x4}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000040)={0x60, 0x280, 0xc80, 0x240, 0xffff, 0x5, 0x0, 0x2, {0x6, 0x1}, {0x9ea868a, 0x8000}, {0x4, 0x20, 0x1}, {0x6, 0xff, 0x1}, 0x2, 0x80, 0x7, 0x101, 0x0, 0x401, 0x9, 0x4, 0x3, 0x3f, 0x8a86, 0x3c961752, 0x20, 0x4, 0x1, 0x5}) 00:20:22 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:22 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x3c0, 0x30, 0x9743baa2c3e60fce, 0x280, 0x5, 0x8, 0x0, 0x2, {0xbdc4, 0x1}, {0x3af3, 0x7}, {0x1f, 0x6}, {0x57c, 0x8}, 0x0, 0x0, 0x4, 0x5, 0x1, 0x1000, 0x2, 0x2, 0xfffff61c, 0x3, 0x0, 0x6, 0x6, 0x0, 0x2, 0x4}) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000040)={0x60, 0x280, 0xc80, 0x240, 0xffff, 0x5, 0x0, 0x2, {0x6, 0x1}, {0x9ea868a, 0x8000}, {0x4, 0x20, 0x1}, {0x6, 0xff, 0x1}, 0x2, 0x80, 0x7, 0x101, 0x0, 0x401, 0x9, 0x4, 0x3, 0x3f, 0x8a86, 0x3c961752, 0x20, 0x4, 0x1, 0x5}) 00:20:22 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = memfd_create(&(0x7f0000000240)='\x00\xc1\xf9\xe7\x92\xc2\xe8\x82\x8e\t\x92\x84\x13\x11^h\x9a*\x0f]\x9d\xa7Z\xf8\xc1\x9cW\n\xa5\xbd\'f\x13\xc8\x8d\xc8\x9d|\x86\x99+\xfa\xef\x7f\xe9\xb2pP\xb8\x00&YY*\xa0,\x80\xef\x9e\xd7sY\x1b\x9c\b\x9b\x89\x82\x9dcup\xe9S\xfcl\x88y\x8bJ\a\xc6\xe3K\x1a(\x9a\x7fXP\xdd\x1a\xae\b<\xc0\xee\xf8\x11\xd1<,T?\x80-\x9f\xc0[<\xe3(\xd1\xb7}\xa1:\x95m\xcf\x83t\xaa\xaa\x80\x06_\xb0\x81\xee\xdfa\xcd#\xaf\xb5=\xa1\x80\xbc\x89X\xd2\x1et\xee\x99A}\xf8\x1dN\xc6\xb1\x87\xd7\xb7\xfa\x94zt\xe9eI\xac[\xad\\b\x13\x9e\x7f\x01\xfd\xd4\x03\x82\x00\x1c\xe8^\xbe\xa5\xd3\x83\x19T)\xee\xc1\vC\xd6[0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000640)={r2, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r2}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000008c0)={{}, 0x0, 0x10, @inherit={0x68, &(0x7f0000000040)={0x0, 0x4, 0x0, 0xfffffffffffffffc, {0x12, 0x2ec, 0xa5, 0x5, 0x4}, [0x0, 0x303c7df9, 0x0, 0x81]}}, @devid=r2}) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000000)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r4, 0x5452, &(0x7f0000000300)=0x208) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) setsockopt$sock_int(r4, 0x1, 0x7, &(0x7f0000000180), 0x4) sendto$inet6(r4, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) poll(&(0x7f0000000040)=[{r4, 0x80}], 0x1, 0x800) ioctl$VFAT_IOCTL_READDIR_SHORT(r4, 0x82307202, &(0x7f0000001b80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) shutdown(r4, 0x1) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r5}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000008c0)={{}, r3, 0x10, @unused=[0x6, 0x15b2c0, 0x1ff, 0x1], @devid=r5}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f00000002c0)={0x0, 0x1, 0x9, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f00000006c0)={0x0, 0x1, {0x8, @usage=0x80000001, r2, 0x20, 0x4, 0x4, 0x7, 0x0, 0x0, @struct={0x8, 0x8}, 0x6, 0xffff, [0x5, 0x8001, 0x2, 0xffff, 0x8, 0x6]}, {0x1, @struct={0x5, 0xe3c}, r5, 0x3ff, 0xfffffffffffffff8, 0x1, 0x1b75, 0x6, 0xa0, @usage=0x101, 0x1f, 0xffffffff, [0xc21, 0xffffffff, 0x3, 0x5, 0x1, 0x8000000000000000]}, {0x80000000, @struct={0x6, 0x23b9}, r6, 0x25ba, 0x100, 0x32, 0x1, 0x7fff, 0x20, @struct={0x7fffffff, 0xa4}, 0x7, 0x6, [0x80000000, 0x8000, 0x8, 0xffffffff00000000, 0x6, 0x1ff]}, {0xfff, 0x3ff, 0x7}}) 00:20:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf00) 00:20:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4a) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x480) 00:20:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0x81a0ae8c, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0045878, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:23 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) (async) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) (async) ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000300)=0x208) (async) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000300)=0x208) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f0000000180), 0x4) sendto$inet6(0xffffffffffffffff, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async) sendto$inet6(0xffffffffffffffff, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80}], 0x1, 0x800) (async) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80}], 0x1, 0x800) ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, &(0x7f0000001b80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) shutdown(0xffffffffffffffff, 0x1) (async) shutdown(0xffffffffffffffff, 0x1) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000640)={r2, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) (async) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000640)={r2, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r2}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000008c0)={{}, 0x0, 0x10, @inherit={0x68, &(0x7f0000000040)={0x0, 0x4, 0x0, 0xfffffffffffffffc, {0x12, 0x2ec, 0xa5, 0x5, 0x4}, [0x0, 0x303c7df9, 0x0, 0x81]}}, @devid=r2}) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000000)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r4, 0x5452, &(0x7f0000000300)=0x208) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) setsockopt$sock_int(r4, 0x1, 0x7, &(0x7f0000000180), 0x4) (async) setsockopt$sock_int(r4, 0x1, 0x7, &(0x7f0000000180), 0x4) sendto$inet6(r4, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) poll(&(0x7f0000000040)=[{r4, 0x80}], 0x1, 0x800) ioctl$VFAT_IOCTL_READDIR_SHORT(r4, 0x82307202, &(0x7f0000001b80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) shutdown(r4, 0x1) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) (async) ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r5}) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r5}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000008c0)={{}, r3, 0x10, @unused=[0x6, 0x15b2c0, 0x1ff, 0x1], @devid=r5}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f00000002c0)={0x0, 0x1, 0x9, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f00000006c0)={0x0, 0x1, {0x8, @usage=0x80000001, r2, 0x20, 0x4, 0x4, 0x7, 0x0, 0x0, @struct={0x8, 0x8}, 0x6, 0xffff, [0x5, 0x8001, 0x2, 0xffff, 0x8, 0x6]}, {0x1, @struct={0x5, 0xe3c}, r5, 0x3ff, 0xfffffffffffffff8, 0x1, 0x1b75, 0x6, 0xa0, @usage=0x101, 0x1f, 0xffffffff, [0xc21, 0xffffffff, 0x3, 0x5, 0x1, 0x8000000000000000]}, {0x80000000, @struct={0x6, 0x23b9}, r6, 0x25ba, 0x100, 0x32, 0x1, 0x7fff, 0x20, @struct={0x7fffffff, 0xa4}, 0x7, 0x6, [0x80000000, 0x8000, 0x8, 0xffffffff00000000, 0x6, 0x1ff]}, {0xfff, 0x3ff, 0x7}}) 00:20:23 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x500) 00:20:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf7c) 00:20:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4c) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0045878, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:24 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) (async) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000300)=0x208) (async) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) (async) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f0000000180), 0x4) (async) sendto$inet6(0xffffffffffffffff, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80}], 0x1, 0x800) (async) ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, &(0x7f0000001b80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) (async) shutdown(0xffffffffffffffff, 0x1) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000640)={r2, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r2}) (async) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000008c0)={{}, 0x0, 0x10, @inherit={0x68, &(0x7f0000000040)={0x0, 0x4, 0x0, 0xfffffffffffffffc, {0x12, 0x2ec, 0xa5, 0x5, 0x4}, [0x0, 0x303c7df9, 0x0, 0x81]}}, @devid=r2}) (async) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000000)=0x0) (async) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r4, 0x5452, &(0x7f0000000300)=0x208) (async) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c) (async) setsockopt$sock_int(r4, 0x1, 0x7, &(0x7f0000000180), 0x4) (async) sendto$inet6(r4, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async) poll(&(0x7f0000000040)=[{r4, 0x80}], 0x1, 0x800) (async) ioctl$VFAT_IOCTL_READDIR_SHORT(r4, 0x82307202, &(0x7f0000001b80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) shutdown(r4, 0x1) (async) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001780)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_GET_DEV_STATS(r4, 0xc4089434, &(0x7f0000000640)={r5, 0x9, 0x0, [0x10001, 0x77a6, 0x401, 0x400], [0x101, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x9, 0x0, 0x10000000000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x3, 0xd9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8000, 0x400, 0x5, 0x0, 0x5e, 0xaad, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x1000000000, 0x14, 0x5, 0x3, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x10000, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xb062, 0x0, 0x0, 0x0, 0x10, 0x100000001, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x8, 0x3, 0x0, 0x0, 0x5, 0x0, 0x800, 0x0, 0xfffffffffffffffd, 0x6, 0x9, 0x0, 0x0, 0x4005]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, 0x0, 0x6, @inherit={0x58, 0x0}, @devid=r5}) (async) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000008c0)={{}, r3, 0x10, @unused=[0x6, 0x15b2c0, 0x1ff, 0x1], @devid=r5}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f00000002c0)={0x0, 0x1, 0x9, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f00000006c0)={0x0, 0x1, {0x8, @usage=0x80000001, r2, 0x20, 0x4, 0x4, 0x7, 0x0, 0x0, @struct={0x8, 0x8}, 0x6, 0xffff, [0x5, 0x8001, 0x2, 0xffff, 0x8, 0x6]}, {0x1, @struct={0x5, 0xe3c}, r5, 0x3ff, 0xfffffffffffffff8, 0x1, 0x1b75, 0x6, 0xa0, @usage=0x101, 0x1f, 0xffffffff, [0xc21, 0xffffffff, 0x3, 0x5, 0x1, 0x8000000000000000]}, {0x80000000, @struct={0x6, 0x23b9}, r6, 0x25ba, 0x100, 0x32, 0x1, 0x7fff, 0x20, @struct={0x7fffffff, 0xa4}, 0x7, 0x6, [0x80000000, 0x8000, 0x8, 0xffffffff00000000, 0x6, 0x1ff]}, {0xfff, 0x3ff, 0x7}}) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc0189436, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:24 executing program 3: syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5a0) 00:20:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x10d8) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:24 executing program 3: syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') (async) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:24 executing program 3: syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc018ae85, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x600) 00:20:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1100) 00:20:24 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4f) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xc020660b, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x700) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1200) 00:20:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x50) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x900) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:25 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1300) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x52) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa00) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x3) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1400) 00:20:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x54) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xb00) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:26 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x4) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x56) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xc00) 00:20:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1500) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xd00) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1600) 00:20:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x58) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:27 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x6) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xe00) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1700) 00:20:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5a) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x7) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf00) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5c) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:28 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x8) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1800) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf7c) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x9) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1100) 00:20:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1900) 00:20:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x60) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:29 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:30 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x64) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1200) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1a00) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:30 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xb) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:30 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x101502, 0x0) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000040)={0x0, 0x1fe000000}) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x65) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:30 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x101502, 0x0) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000040)={0x0, 0x1fe000000}) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x101502, 0x0) (async) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000040)={0x0, 0x1fe000000}) (async) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) (async) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1300) 00:20:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1b00) 00:20:30 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x101502, 0x0) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000040)={0x0, 0x1fe000000}) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:30 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:30 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xc) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000000)) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) (async) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000000)) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x66) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000000)) (async) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r1, 0x40044620, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1400) 00:20:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xd) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:31 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x20800, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1c00) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:31 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x20800, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:31 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x20800, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x67) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:31 executing program 3: ioctl$VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000000)={0x2, @pix_mp={0xc5c, 0x800, 0x30324c4a, 0x5, 0x6, [{0x8, 0x7}, {0x0, 0x7}, {0x6}, {0x4, 0xfffffff9}, {0x1, 0x463}, {0x80, 0x800}, {0x8, 0x7ff}, {0x0, 0xd4}], 0x1, 0x81, 0x1, 0x2, 0x1}}) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x280, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1500) 00:20:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1d00) 00:20:31 executing program 3: ioctl$VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000000)={0x2, @pix_mp={0xc5c, 0x800, 0x30324c4a, 0x5, 0x6, [{0x8, 0x7}, {0x0, 0x7}, {0x6}, {0x4, 0xfffffff9}, {0x1, 0x463}, {0x80, 0x800}, {0x8, 0x7ff}, {0x0, 0xd4}], 0x1, 0x81, 0x1, 0x2, 0x1}}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x280, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x280, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xe) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:31 executing program 3: ioctl$VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000000)={0x2, @pix_mp={0xc5c, 0x800, 0x30324c4a, 0x5, 0x6, [{0x8, 0x7}, {0x0, 0x7}, {0x6}, {0x4, 0xfffffff9}, {0x1, 0x463}, {0x80, 0x800}, {0x8, 0x7ff}, {0x0, 0xd4}], 0x1, 0x81, 0x1, 0x2, 0x1}}) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x280, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:31 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="2d0f00000000000000006b00000008000300", @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x0) ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f00000002c0)={0xf20, 0xff, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xa9) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="2d0f00000000000000006b00000008000300", @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x0) ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f00000002c0)={0xf20, 0xff, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) (async) ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f00000002c0)={0xf20, 0xff, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1600) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="2d0f00000000000000006b00000008000300", @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x0) ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f00000002c0)={0xf20, 0xff, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0xf) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1e00) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x300) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) dup(r0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) dup(r0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1700) 00:20:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x10) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) dup(r0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) dup(r0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) 00:20:32 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) 00:20:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1f00) 00:20:32 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x108c0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x300, 0x2000, 0x300, 0x400, 0x4, 0x40258e, 0x1, 0x1, {0xb714, 0x7}, {0x8, 0xf548}, {0x100, 0xfffffff8, 0x1}, {0x4, 0x2b}, 0x2, 0x100, 0x7, 0x1, 0x0, 0x4, 0x800, 0xff, 0xfffffffe, 0xb2b1, 0x10000000, 0xb3e, 0x24, 0x2, 0x3, 0x1}) ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000440)={0x3, &(0x7f00000003c0)=[{0x6, 0xce, &(0x7f00000000c0)="7c71036422be708f3fe7a569e4f2a02d742b7257989ddc666bbfc0d8e8cadba816472ab4e8efa8cdce5402a48194474b33098f2bd6046017b8d969f2036ea6bb8cdf3e4f4d6c9d897e17241ffc26c244cdff746b66fd8be01cdc3ca7e1d77f5b3a7d91a794878d3a5b21767a3c3ef8c094f3a247a24aeb5a37d31eccdc6f536d897589c63c8c85913eb72c641e4c45967e870ccbda2ca4c0d312609ac55c4d1e1808d526afdd00439d8e3e46b28891f42cb3e9c4b6fdd7820d66e6bb3425e5f78fe121244a26cea0a6efcdb96597"}, {0x0, 0xb3, &(0x7f00000001c0)="c55228ca055096a3625766d58a84670bb17d56b72bd4c3e69cec5b86087beb1e58a9fafedaae8249ddd8cfbaa3ce2c820f835e2f8cb0536e1c7fcf5b0d899117b453a724e077cd7daf552d4c925a4320b52b9c1a73d79fcf1dcccd740827562fd9cf3e4f3f3a0255105caeb2e98faa316239c6503e6a4500843c90277c6a772d7bdc766ba1a244151c80f30ab92660fcfe18a1fb3bc912b945f46457dba38ee13bf4e9e599c3ffb0956518cdfd0e676f9e0ae9", 0x1}, {0x9, 0xe8, &(0x7f00000002c0)="50a3b3178671456be1f56a49cd6fbefa8e2c4f595bff82e1f18927af3863539dbdfa68645a0be2cf294eeadf2b948428e292ce038eda93d04aa93cae316bad8c6d97194f53858b7f9449b283fdb5affbc10d4777ed1dfe2f6189644a834e94dd35476a06d771f5c9d5ac2f19dc19dc7d41a1780c13ee8b266c3863779e6d171654b9dd98859de757ae9a7213e515e4708023dfe107814a7a430e3ace7a57ae7ef2dbaa070f26d381bcc3667dc52188fa76afa4ffebeadd27f7e3775b891af6c77795b9b06eaa2242ad20666410e1116e7ca3e0cc159cadb95c597579e738e5c9f4491282f4c7a234", 0x1}]}) 00:20:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x480) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) 00:20:33 executing program 3: openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x108c0, 0x0) (async) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x108c0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x300, 0x2000, 0x300, 0x400, 0x4, 0x40258e, 0x1, 0x1, {0xb714, 0x7}, {0x8, 0xf548}, {0x100, 0xfffffff8, 0x1}, {0x4, 0x2b}, 0x2, 0x100, 0x7, 0x1, 0x0, 0x4, 0x800, 0xff, 0xfffffffe, 0xb2b1, 0x10000000, 0xb3e, 0x24, 0x2, 0x3, 0x1}) ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000440)={0x3, &(0x7f00000003c0)=[{0x6, 0xce, &(0x7f00000000c0)="7c71036422be708f3fe7a569e4f2a02d742b7257989ddc666bbfc0d8e8cadba816472ab4e8efa8cdce5402a48194474b33098f2bd6046017b8d969f2036ea6bb8cdf3e4f4d6c9d897e17241ffc26c244cdff746b66fd8be01cdc3ca7e1d77f5b3a7d91a794878d3a5b21767a3c3ef8c094f3a247a24aeb5a37d31eccdc6f536d897589c63c8c85913eb72c641e4c45967e870ccbda2ca4c0d312609ac55c4d1e1808d526afdd00439d8e3e46b28891f42cb3e9c4b6fdd7820d66e6bb3425e5f78fe121244a26cea0a6efcdb96597"}, {0x0, 0xb3, &(0x7f00000001c0)="c55228ca055096a3625766d58a84670bb17d56b72bd4c3e69cec5b86087beb1e58a9fafedaae8249ddd8cfbaa3ce2c820f835e2f8cb0536e1c7fcf5b0d899117b453a724e077cd7daf552d4c925a4320b52b9c1a73d79fcf1dcccd740827562fd9cf3e4f3f3a0255105caeb2e98faa316239c6503e6a4500843c90277c6a772d7bdc766ba1a244151c80f30ab92660fcfe18a1fb3bc912b945f46457dba38ee13bf4e9e599c3ffb0956518cdfd0e676f9e0ae9", 0x1}, {0x9, 0xe8, &(0x7f00000002c0)="50a3b3178671456be1f56a49cd6fbefa8e2c4f595bff82e1f18927af3863539dbdfa68645a0be2cf294eeadf2b948428e292ce038eda93d04aa93cae316bad8c6d97194f53858b7f9449b283fdb5affbc10d4777ed1dfe2f6189644a834e94dd35476a06d771f5c9d5ac2f19dc19dc7d41a1780c13ee8b266c3863779e6d171654b9dd98859de757ae9a7213e515e4708023dfe107814a7a430e3ace7a57ae7ef2dbaa070f26d381bcc3667dc52188fa76afa4ffebeadd27f7e3775b891af6c77795b9b06eaa2242ad20666410e1116e7ca3e0cc159cadb95c597579e738e5c9f4491282f4c7a234", 0x1}]}) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x108c0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x300, 0x2000, 0x300, 0x400, 0x4, 0x40258e, 0x1, 0x1, {0xb714, 0x7}, {0x8, 0xf548}, {0x100, 0xfffffff8, 0x1}, {0x4, 0x2b}, 0x2, 0x100, 0x7, 0x1, 0x0, 0x4, 0x800, 0xff, 0xfffffffe, 0xb2b1, 0x10000000, 0xb3e, 0x24, 0x2, 0x3, 0x1}) (async) ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f0000000440)={0x3, &(0x7f00000003c0)=[{0x6, 0xce, &(0x7f00000000c0)="7c71036422be708f3fe7a569e4f2a02d742b7257989ddc666bbfc0d8e8cadba816472ab4e8efa8cdce5402a48194474b33098f2bd6046017b8d969f2036ea6bb8cdf3e4f4d6c9d897e17241ffc26c244cdff746b66fd8be01cdc3ca7e1d77f5b3a7d91a794878d3a5b21767a3c3ef8c094f3a247a24aeb5a37d31eccdc6f536d897589c63c8c85913eb72c641e4c45967e870ccbda2ca4c0d312609ac55c4d1e1808d526afdd00439d8e3e46b28891f42cb3e9c4b6fdd7820d66e6bb3425e5f78fe121244a26cea0a6efcdb96597"}, {0x0, 0xb3, &(0x7f00000001c0)="c55228ca055096a3625766d58a84670bb17d56b72bd4c3e69cec5b86087beb1e58a9fafedaae8249ddd8cfbaa3ce2c820f835e2f8cb0536e1c7fcf5b0d899117b453a724e077cd7daf552d4c925a4320b52b9c1a73d79fcf1dcccd740827562fd9cf3e4f3f3a0255105caeb2e98faa316239c6503e6a4500843c90277c6a772d7bdc766ba1a244151c80f30ab92660fcfe18a1fb3bc912b945f46457dba38ee13bf4e9e599c3ffb0956518cdfd0e676f9e0ae9", 0x1}, {0x9, 0xe8, &(0x7f00000002c0)="50a3b3178671456be1f56a49cd6fbefa8e2c4f595bff82e1f18927af3863539dbdfa68645a0be2cf294eeadf2b948428e292ce038eda93d04aa93cae316bad8c6d97194f53858b7f9449b283fdb5affbc10d4777ed1dfe2f6189644a834e94dd35476a06d771f5c9d5ac2f19dc19dc7d41a1780c13ee8b266c3863779e6d171654b9dd98859de757ae9a7213e515e4708023dfe107814a7a430e3ace7a57ae7ef2dbaa070f26d381bcc3667dc52188fa76afa4ffebeadd27f7e3775b891af6c77795b9b06eaa2242ad20666410e1116e7ca3e0cc159cadb95c597579e738e5c9f4491282f4c7a234", 0x1}]}) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1800) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000180)={0x5, 0x2, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$FBIOGET_CON2FBMAP(r2, 0x460f, &(0x7f0000000000)={0x16, 0x1}) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) 00:20:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x11) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2000) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) 00:20:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x500) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000180)={0x5, 0x2, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$FBIOGET_CON2FBMAP(r2, 0x460f, &(0x7f0000000000)={0x16, 0x1}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000180)={0x5, 0x2, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) (async) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) (async) ioctl$FBIOGET_CON2FBMAP(r2, 0x460f, &(0x7f0000000000)={0x16, 0x1}) (async) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000}) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000180)={0x5, 0x2, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$FBIOGET_CON2FBMAP(r2, 0x460f, &(0x7f0000000000)={0x16, 0x1}) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x200202, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) mmap$fb(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x40010, r1, 0xee000) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000)) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'}) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x0, 'net'}, {0x2b, 'freezer'}]}, 0xe) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1900) 00:20:33 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff000000}) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x200202, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) (async) mmap$fb(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x40010, r1, 0xee000) (async) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000)) (async) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'}) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x0, 'net'}, {0x2b, 'freezer'}]}, 0xe) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x12) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2200) 00:20:33 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x200202, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[], 0x86) (async) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) mmap$fb(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x40010, r1, 0xee000) (async) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000)) (async) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'}) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x0, 'net'}, {0x2b, 'freezer'}]}, 0xe) (async) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) 00:20:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x5a0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 00:20:34 executing program 3: ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_clone3(&(0x7f0000000540)={0x22800000, &(0x7f0000000240)=0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300), {0x1}, &(0x7f0000000340)=""/171, 0xab, &(0x7f0000000400)=""/206, &(0x7f0000000500)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x9}, 0x58) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f00000005c0)={0x0, 0x0, 0xffffffffffffffff}) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f0000000600)={{r2}, "0b25c22a39684885df3706b09ec60a59f2bd650449dcb59849749d1826919374348562fc85cbf4e3823118b0e5c3c586aeed9f3afc30bbe8ee4ab36ab2b5e8d7a9d86bc9369e029f0f9af9ec17f6e5bd927597835e2de7a2dfbbeaddee26278b38bb481a662c03a6f171e385a66a257c0ca088c839f0597c3d27d2b355ee8c486fc879cdca98cfdcca49529c5c1fe87ec6e12845d9b7daa7334ba01997d88d8ccac64c39736d5381c676530826d06c3eabdbbfb865f004e9cb238ae1f897372177c9f35991df321d4d9cad79543f9866208ff4ef5f8f1eab6f3fe293c67d9974e9c313312e85a786397c739c6c84d5b485c937245254fe33ec1961dbfce5aa22aa6a2b5096ffb54b7e7b7ceb22fea9d227252fa566f0a09afd4c3d56db93f5d0d8de46ab49e1268f602e2852828b39e6891eb14400ba8c0ecc4078e76806f79179c025ba5531c509e7d190276f595797c71a3111ec29d4d7d943b6ba0328371d5782ee997d1a95f39be909a69718df3e2e92075e2fa71f7237278f9471425cf53665dbd0330e9c143885deecfd35b560d13de49fd0ccc7e3dd8f7312d3b94cbd785c4c9742fe0dae78eb93d6ce3db5875f29aa412671a18c51dff4031e8738bb0a1e9d3e4220b80f4fd73a63c0150a42812d5124bf7582eb6fa06db656fd4aeb5bfa4e9902700dcbd854802ef4f928cc66e3f2965183fc78ebd2928c36fdc2bc174d0e76bbcab7f892ae8478889d4e0a1db0075f490a63b3428c580cf10d817df478a97f748d2bb271cec4cde79cf7a1d1a6ea6cbc28eebd650627cf5afa3c9f118aeed8d3385809104d68a80431283bd9f1053a2a1a1fea3543105e84960063bc89446a7a35afb40fe0f354810e8129dbbc86387533b2df6739022f382a8c14c3918f8c2a238aa1a350d8745737c90be2d59fd701eff78b5eebef90a1e50c5f383c061a3dd26cd67dd77c8b08b976de3210dfabc529a0ed6a62c881fdf6c8ee43a844116d2a1793fe34649b6e4403455b92e6d72e9b9df636218a8f524c5d790bfbfa1cbc8f524d35c13dcad63f7b11cc833f2750dd184016796d17068285f392b21c6504a505c3ef3edab95ca33c6d97d6057367c0b3821c1d907d10bfbfc5d31109983f7c27b050ef06ac4b8a73a10de868090e92399af254628b4b8111e065e5d819f164af283ad8a3945330afc16849ae402cd26c44227228658daf54d3a504419c39e0669d66b22f325c2e692888eb2eab5b1acfad004c36cee877df5a082168d01a9cc2130d908b85ba7110163375d68f47b63257e21b37407a4fc942cb0890f408c6f8df5cef135feaf97cd3796a4ef34312aa4619349180b33fd7ce6121a95dc65b1c3cd773095f99dc34f7814a0773b88c9c4eba8dc8d5ddcb393aaa36631ae6cbafd57b150e87c407ad2fb7ef9acae8837330dda9d4108322fcf46d181b81265e8b902ba9503c55bc0ae51c3df343d6a63256a2e442f941955e468b351548941fd00259568150921a0241f32435c90ec1679751bea65caa9675cf9b5c826a7a1c5d11ef72825684744d77c3577b2a9deedc9afbcd64d99216ecc70f76c06a0ae4cbfef3a7ebb103dbb97283ad638ba69c94a82abebe2040deab5da1326ba33886cd417cc51a1d6bdf18b000f28e24f9095a2819355fe580f71122a0214ea9c89fbf43a44ac43b72a38aa333d142bb0f27b12d236d4d97f5ea5d395cbed5c828f2c6ba260d89138e3569b38be8591e90793a8475daa3418a26f1f88810d73296432e409e9301200da6d61c10490e6409dd570ec16ba6b06dd167e66cbd09d89d5559f1075934dccafa012e044dc3e1abc64bf5f3f42b4d331daa4d8d604e616dee39308b067fb03e44dbbad9720c44e431160724e3e6d39df0940d3ced41f259610e9d598e887d9c26a74152da83d247925c748a5d8a88d90a67df2ae0bd80d0a2b2cbd9d586c17cce83849d15ea272bbe66e71c8324fb70c3a18c838d46a208ce4de498306a0aaab47fb946093c7a367120c095de50669e7cbf7e96d90c8088a8319401bdcab3152fb9796b4f617a7c34e4e2b5cdb052eac7762fa8756e7c9c75c517e0539faac65e12e6258b6930e3f89fc7075cdc728a6d8f71d4f3b873bb538c4714005f5db39b3c246d5fa01fe8c99a105cd6d37c6fd7e8a124a13e172b01bdb4fdd4ca90aaeaa4e150bab14dea489b732599dae71ca2c9624faeaa8a3cc8022369fc53c42967142b9895d307ee0a3cf4bd54dc5c7b787f86f13d8cf20f9407911c336babdb4b1f4bfdd6b82975cd91eb462d9f0b9f981a155a6e5ca931d323881dda99df45e3ef841c1e23942602f954af1bcfc757db150fb9b35d7e47fbc0bf3e9dd4b615730494b1b957546470669ea23e8d15a120831a15c973b696948210321735d4daecf483d61103a96f65422c6265965dc902f6c8f02bb96c5f4733d789a17eb42da439fadc0c001419301ef0d69e73e08871bcb318902fa2b6b13a1b8c217a4751a31e90646318b17c157ba67d74e6df55c4bddc46bb0968bea80d3f5b20114620f97a1c72675d4d3edc2fe0214b6cbf7a072301a02683da40b102c181afac681c8655554ba9cd3a03764d77fd0c3eddea1b5f9d3c6fc76a4b1c4adb87bf74e902519590d0ffa195d067a2c8fdc2e3d87c42318c0907af567fcfbe98457a0a6906a1c71f621e4f08707cc9167d4827cdfdef307de46b7f91825f33855a2ecb0e0c3295ef82c5f741b05d02e5a3247071a6aa814082f2abb1b5730dbf2c2abb293b4961d6f5999bbb49f3080c6dbda00ede42cb1f639492d44c21301b02e927132c4d8794ddda52e42ac52e4f5bad9cef77cf31bd8722af09e36614b62041a91e94082b02bc550b6513d771cffadd8819c41121b46971e3a059aeaa7c634827fb0f0e3d282ba836859ca38bc30c0b72fc0d97292391e0e4f9c204f40f33c1f5321d8ded488d0a5667d2e0780a1e5d2136d6acf82948031c888e90be62785d6af1782740cdfcdc8eb034e62ca7b15b3ce4c1ebf2b9310e16cc978d1b9f9dc7538dc221248247bb54999f1a43e4311f62260bcf0317ce0ca88cd172a03313d00d5134111bc812b8736e9bbf54f0d9368b47868cb8862c0eb807d5b7ef1f180fd04cbdc6f67e173b1c217e465f53eccb365bc2565ebb455242cd8f6c7c26e7079ce5f1cec6e73d8728b8d64575e036d1b07fef425d40483b5999e0eb856dec2f63b2627b64e276de7713794905b7f4ae564a3e172240cb300ca1fa95e7a4e72fb16305b895f8c66d1a52059cda0ce2faa5f1fe06d62e54e51495cccf7a14648abfa0a04791062f92f5fd2ae1f4cbaea7a17ea4d94006d9bcac0d190dfc052b99a473d9f53c5c8c61b5999e09363cd65e3dbfb53603868906444d59412587c8c3a25cdd3b0765218f5b55a9c66e3dea0a86cd94e623c4a8ca95954aa2dcc493de887eac60254fc09b47ab021eea9e4051aef86d94af5838d922be8ae69bdcb04d208d981b1c8886cea3886e7880ece2fbe84d8eee52ff86c7929bf13cdfa4cdf6353dfc8976c0d9945ab3495883f96e0ed499d5224bab53bd18ab1809cad00f02e0bdb18431df063f7c09f7e3d029925da10a5ce3bce7d522902d86860831e2b0d892939fee18d967ec559502a25561883e90a6d1d8f88c5841667336b8dcf60a0ed13e859bb309a7ca3f5bfb1fd6c200793770d2041929de9bd8643f97150c57c63686cfdcfd5be522bfe58adcf6e2b4b36885fba9a6cd70010f4748869a84fe5a4ccef35f2f2ebf8be1f0e40431933bbfaff3075f984605891e599ed6a2fee03da45a822fb0ceff326875c3acfb21b4145f2aa48a6d52dd23d53bc18062fbaa42271fad61ac34c78957a4b78e4c37ec32e1788bd54e979c9b3b158a181db33589ab6fb37099badb6131b6342011c42f1d410d00a044cd81202b25ea8b96ca7c6009abf1ea5d63c62bb46b6dfaa4069a4967496a0b5eedbe4652c0e603e83862a95ed05262d423f2440e74e5d9f5fd180c9be8f25b336a1c347bc21128895cfe6e305e6cb91580b51118ace916eeaea689fd139cc6e3ee6341aa2ae0680b0526b3dcb3d5b57bf8a1f1142269f68cc463a2044da910a82e67861c55cd2ec4269417b8211af37014e8c307ab2255689529f05953a422b315435558b16bf969bc53db60f7850e8e2a3c03b3ff4e69844aa05fe27e9b88096d7a0d4b7571c8d894c628ee54670117cf0877c1df72fd57c0396af85e2333eab27914e298ca3f5610d949101d80f1f7ddf3f1440284c702283a031e91927719645070acd492f8b3f04caec9a2324f61df152d234a0f88cce77974cd9d5b4923368685b59b0649aaf12728e28366f3922c9146b5cb41d2e5e421b0384d2352e99bb68d354a538aa7eb335508245fb235c7c5cf7ed4450a979831984452a9180cd298602a2276b925f18e643b82457bcc236b6c388efb09fb69a7300fc06fbd8a9e88ce789b2a9bd83c9df536a43bc2e9101bbd1b1ef722904c6525bd89f91380c9564e373e63ff4b72a3fa2fdeee582b5bdf82b054d041bb6a368a4c33fc9e376cc61568f2976476dc10d6e6b25a99e3ee8f3af3d65268aa8c472fade9fe0dcf88d017bf0a650c81561b8638ecbd5261aa3e5a04c69dfbd291d0893c177c1837fd66124be3d826c6e365de5da0c043461897b8e66f808e1a6804acd96e2da0a23e03eb68e4cb7284762aa0947aff087eeabfdd2a6d295380972308a16e58b48b2ec7cc5c40e35f851b6ecc1febbdbc0dc4fde844696b654fd708746209c5a380b6e8f1f46960dcd513f93a43353d077bd2fd4dcc971d1bc0c03bf6ada68ea3688b6abe2d1e91e4425d120601622344e07ce296425e741f99f14838dd28006e2d0544977f2d47817f8ebb95832a420f9336db6efa205452adf2fba00ecba4d2478f9c8aad90bcdc47e11d123d21e87796d85edb37d2e92329d97f142490c203c74b75ac8fc005168e3ea40051c7dd6e22b74bd8c3e160cea1aa4674d9dd0e7167a4ff960c70bf07b8266d3081c2250b43740019129a4d5d706743485cf928cab0c125e32d57375822e091f300416f446faab5c5cbdbe12233bde123ffb7aee9baf7fea176f4ac80635ae03426215f50917e200ccee008e587bf1e8c5db263d6215d35a9bcd6621f559c86d2169459268296e40c3b04f12cc34e88c6d79f7f603d0257b3e8d2e0c80ce7e81d79139920d0fad21f896ef177c8630e4b5324b50ce0960a17e196e91c0bcc47515c3cdb3536f2d4c36bc537df1ab026ffe72d424fe22c97059171d97a443c563723534671f5b3fbd518a99ab745ef122dd3adde73161ea7d676626ec15fc6ceb5b96052ab13e30890cb86e39563f463618a4bda5e387806821626e0ab4045a57553c8353acc4727b0eadcb17b71eeb1b9637d605d770a89690ca9fec33a813e29fab7920cb840fb18b97fbfe1e46a103eddfe4e3fcd40c274cf31e763794e431a0fbc090f94f951036813f07f1133e41d4ba339974df8906bf0a707cec9ed9e7b2c1ef6a9efb8151b183c647c885a485f404435fb6586824df0077676a3eeef1c41d6a7fd4afcdf81211225615f30f0898bd2c8254e98c72e5f6ccd7792372f2d3711e1c2d1dd7f4e814cfb38f41341a95a22e05bec1fe4c92ccca10cf213ea6a352534be21e079639daf8c993b7f3204ddb1f7affd5f7128f4aa8ddd1558f5138ff6f2bfeff8b4e935eb8207b3a8feacddb9cf7fb1577a88bd120863231e89e78ccd5a6e9413e700a26b798e9e"}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 00:20:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1a00) 00:20:34 executing program 3: ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) syz_clone3(&(0x7f0000000540)={0x22800000, &(0x7f0000000240), &(0x7f00000002c0), &(0x7f0000000300), {0x1}, &(0x7f0000000340)=""/171, 0xab, &(0x7f0000000400)=""/206, &(0x7f0000000500)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x9}, 0x58) (async) syz_clone3(&(0x7f0000000540)={0x22800000, &(0x7f0000000240)=0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300), {0x1}, &(0x7f0000000340)=""/171, 0xab, &(0x7f0000000400)=""/206, &(0x7f0000000500)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x9}, 0x58) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f00000005c0)={0x0, 0x0, 0xffffffffffffffff}) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f0000000600)={{r2}, "0b25c22a39684885df3706b09ec60a59f2bd650449dcb59849749d1826919374348562fc85cbf4e3823118b0e5c3c586aeed9f3afc30bbe8ee4ab36ab2b5e8d7a9d86bc9369e029f0f9af9ec17f6e5bd927597835e2de7a2dfbbeaddee26278b38bb481a662c03a6f171e385a66a257c0ca088c839f0597c3d27d2b355ee8c486fc879cdca98cfdcca49529c5c1fe87ec6e12845d9b7daa7334ba01997d88d8ccac64c39736d5381c676530826d06c3eabdbbfb865f004e9cb238ae1f897372177c9f35991df321d4d9cad79543f9866208ff4ef5f8f1eab6f3fe293c67d9974e9c313312e85a786397c739c6c84d5b485c937245254fe33ec1961dbfce5aa22aa6a2b5096ffb54b7e7b7ceb22fea9d227252fa566f0a09afd4c3d56db93f5d0d8de46ab49e1268f602e2852828b39e6891eb14400ba8c0ecc4078e76806f79179c025ba5531c509e7d190276f595797c71a3111ec29d4d7d943b6ba0328371d5782ee997d1a95f39be909a69718df3e2e92075e2fa71f7237278f9471425cf53665dbd0330e9c143885deecfd35b560d13de49fd0ccc7e3dd8f7312d3b94cbd785c4c9742fe0dae78eb93d6ce3db5875f29aa412671a18c51dff4031e8738bb0a1e9d3e4220b80f4fd73a63c0150a42812d5124bf7582eb6fa06db656fd4aeb5bfa4e9902700dcbd854802ef4f928cc66e3f2965183fc78ebd2928c36fdc2bc174d0e76bbcab7f892ae8478889d4e0a1db0075f490a63b3428c580cf10d817df478a97f748d2bb271cec4cde79cf7a1d1a6ea6cbc28eebd650627cf5afa3c9f118aeed8d3385809104d68a80431283bd9f1053a2a1a1fea3543105e84960063bc89446a7a35afb40fe0f354810e8129dbbc86387533b2df6739022f382a8c14c3918f8c2a238aa1a350d8745737c90be2d59fd701eff78b5eebef90a1e50c5f383c061a3dd26cd67dd77c8b08b976de3210dfabc529a0ed6a62c881fdf6c8ee43a844116d2a1793fe34649b6e4403455b92e6d72e9b9df636218a8f524c5d790bfbfa1cbc8f524d35c13dcad63f7b11cc833f2750dd184016796d17068285f392b21c6504a505c3ef3edab95ca33c6d97d6057367c0b3821c1d907d10bfbfc5d31109983f7c27b050ef06ac4b8a73a10de868090e92399af254628b4b8111e065e5d819f164af283ad8a3945330afc16849ae402cd26c44227228658daf54d3a504419c39e0669d66b22f325c2e692888eb2eab5b1acfad004c36cee877df5a082168d01a9cc2130d908b85ba7110163375d68f47b63257e21b37407a4fc942cb0890f408c6f8df5cef135feaf97cd3796a4ef34312aa4619349180b33fd7ce6121a95dc65b1c3cd773095f99dc34f7814a0773b88c9c4eba8dc8d5ddcb393aaa36631ae6cbafd57b150e87c407ad2fb7ef9acae8837330dda9d4108322fcf46d181b81265e8b902ba9503c55bc0ae51c3df343d6a63256a2e442f941955e468b351548941fd00259568150921a0241f32435c90ec1679751bea65caa9675cf9b5c826a7a1c5d11ef72825684744d77c3577b2a9deedc9afbcd64d99216ecc70f76c06a0ae4cbfef3a7ebb103dbb97283ad638ba69c94a82abebe2040deab5da1326ba33886cd417cc51a1d6bdf18b000f28e24f9095a2819355fe580f71122a0214ea9c89fbf43a44ac43b72a38aa333d142bb0f27b12d236d4d97f5ea5d395cbed5c828f2c6ba260d89138e3569b38be8591e90793a8475daa3418a26f1f88810d73296432e409e9301200da6d61c10490e6409dd570ec16ba6b06dd167e66cbd09d89d5559f1075934dccafa012e044dc3e1abc64bf5f3f42b4d331daa4d8d604e616dee39308b067fb03e44dbbad9720c44e431160724e3e6d39df0940d3ced41f259610e9d598e887d9c26a74152da83d247925c748a5d8a88d90a67df2ae0bd80d0a2b2cbd9d586c17cce83849d15ea272bbe66e71c8324fb70c3a18c838d46a208ce4de498306a0aaab47fb946093c7a367120c095de50669e7cbf7e96d90c8088a8319401bdcab3152fb9796b4f617a7c34e4e2b5cdb052eac7762fa8756e7c9c75c517e0539faac65e12e6258b6930e3f89fc7075cdc728a6d8f71d4f3b873bb538c4714005f5db39b3c246d5fa01fe8c99a105cd6d37c6fd7e8a124a13e172b01bdb4fdd4ca90aaeaa4e150bab14dea489b732599dae71ca2c9624faeaa8a3cc8022369fc53c42967142b9895d307ee0a3cf4bd54dc5c7b787f86f13d8cf20f9407911c336babdb4b1f4bfdd6b82975cd91eb462d9f0b9f981a155a6e5ca931d323881dda99df45e3ef841c1e23942602f954af1bcfc757db150fb9b35d7e47fbc0bf3e9dd4b615730494b1b957546470669ea23e8d15a120831a15c973b696948210321735d4daecf483d61103a96f65422c6265965dc902f6c8f02bb96c5f4733d789a17eb42da439fadc0c001419301ef0d69e73e08871bcb318902fa2b6b13a1b8c217a4751a31e90646318b17c157ba67d74e6df55c4bddc46bb0968bea80d3f5b20114620f97a1c72675d4d3edc2fe0214b6cbf7a072301a02683da40b102c181afac681c8655554ba9cd3a03764d77fd0c3eddea1b5f9d3c6fc76a4b1c4adb87bf74e902519590d0ffa195d067a2c8fdc2e3d87c42318c0907af567fcfbe98457a0a6906a1c71f621e4f08707cc9167d4827cdfdef307de46b7f91825f33855a2ecb0e0c3295ef82c5f741b05d02e5a3247071a6aa814082f2abb1b5730dbf2c2abb293b4961d6f5999bbb49f3080c6dbda00ede42cb1f639492d44c21301b02e927132c4d8794ddda52e42ac52e4f5bad9cef77cf31bd8722af09e36614b62041a91e94082b02bc550b6513d771cffadd8819c41121b46971e3a059aeaa7c634827fb0f0e3d282ba836859ca38bc30c0b72fc0d97292391e0e4f9c204f40f33c1f5321d8ded488d0a5667d2e0780a1e5d2136d6acf82948031c888e90be62785d6af1782740cdfcdc8eb034e62ca7b15b3ce4c1ebf2b9310e16cc978d1b9f9dc7538dc221248247bb54999f1a43e4311f62260bcf0317ce0ca88cd172a03313d00d5134111bc812b8736e9bbf54f0d9368b47868cb8862c0eb807d5b7ef1f180fd04cbdc6f67e173b1c217e465f53eccb365bc2565ebb455242cd8f6c7c26e7079ce5f1cec6e73d8728b8d64575e036d1b07fef425d40483b5999e0eb856dec2f63b2627b64e276de7713794905b7f4ae564a3e172240cb300ca1fa95e7a4e72fb16305b895f8c66d1a52059cda0ce2faa5f1fe06d62e54e51495cccf7a14648abfa0a04791062f92f5fd2ae1f4cbaea7a17ea4d94006d9bcac0d190dfc052b99a473d9f53c5c8c61b5999e09363cd65e3dbfb53603868906444d59412587c8c3a25cdd3b0765218f5b55a9c66e3dea0a86cd94e623c4a8ca95954aa2dcc493de887eac60254fc09b47ab021eea9e4051aef86d94af5838d922be8ae69bdcb04d208d981b1c8886cea3886e7880ece2fbe84d8eee52ff86c7929bf13cdfa4cdf6353dfc8976c0d9945ab3495883f96e0ed499d5224bab53bd18ab1809cad00f02e0bdb18431df063f7c09f7e3d029925da10a5ce3bce7d522902d86860831e2b0d892939fee18d967ec559502a25561883e90a6d1d8f88c5841667336b8dcf60a0ed13e859bb309a7ca3f5bfb1fd6c200793770d2041929de9bd8643f97150c57c63686cfdcfd5be522bfe58adcf6e2b4b36885fba9a6cd70010f4748869a84fe5a4ccef35f2f2ebf8be1f0e40431933bbfaff3075f984605891e599ed6a2fee03da45a822fb0ceff326875c3acfb21b4145f2aa48a6d52dd23d53bc18062fbaa42271fad61ac34c78957a4b78e4c37ec32e1788bd54e979c9b3b158a181db33589ab6fb37099badb6131b6342011c42f1d410d00a044cd81202b25ea8b96ca7c6009abf1ea5d63c62bb46b6dfaa4069a4967496a0b5eedbe4652c0e603e83862a95ed05262d423f2440e74e5d9f5fd180c9be8f25b336a1c347bc21128895cfe6e305e6cb91580b51118ace916eeaea689fd139cc6e3ee6341aa2ae0680b0526b3dcb3d5b57bf8a1f1142269f68cc463a2044da910a82e67861c55cd2ec4269417b8211af37014e8c307ab2255689529f05953a422b315435558b16bf969bc53db60f7850e8e2a3c03b3ff4e69844aa05fe27e9b88096d7a0d4b7571c8d894c628ee54670117cf0877c1df72fd57c0396af85e2333eab27914e298ca3f5610d949101d80f1f7ddf3f1440284c702283a031e91927719645070acd492f8b3f04caec9a2324f61df152d234a0f88cce77974cd9d5b4923368685b59b0649aaf12728e28366f3922c9146b5cb41d2e5e421b0384d2352e99bb68d354a538aa7eb335508245fb235c7c5cf7ed4450a979831984452a9180cd298602a2276b925f18e643b82457bcc236b6c388efb09fb69a7300fc06fbd8a9e88ce789b2a9bd83c9df536a43bc2e9101bbd1b1ef722904c6525bd89f91380c9564e373e63ff4b72a3fa2fdeee582b5bdf82b054d041bb6a368a4c33fc9e376cc61568f2976476dc10d6e6b25a99e3ee8f3af3d65268aa8c472fade9fe0dcf88d017bf0a650c81561b8638ecbd5261aa3e5a04c69dfbd291d0893c177c1837fd66124be3d826c6e365de5da0c043461897b8e66f808e1a6804acd96e2da0a23e03eb68e4cb7284762aa0947aff087eeabfdd2a6d295380972308a16e58b48b2ec7cc5c40e35f851b6ecc1febbdbc0dc4fde844696b654fd708746209c5a380b6e8f1f46960dcd513f93a43353d077bd2fd4dcc971d1bc0c03bf6ada68ea3688b6abe2d1e91e4425d120601622344e07ce296425e741f99f14838dd28006e2d0544977f2d47817f8ebb95832a420f9336db6efa205452adf2fba00ecba4d2478f9c8aad90bcdc47e11d123d21e87796d85edb37d2e92329d97f142490c203c74b75ac8fc005168e3ea40051c7dd6e22b74bd8c3e160cea1aa4674d9dd0e7167a4ff960c70bf07b8266d3081c2250b43740019129a4d5d706743485cf928cab0c125e32d57375822e091f300416f446faab5c5cbdbe12233bde123ffb7aee9baf7fea176f4ac80635ae03426215f50917e200ccee008e587bf1e8c5db263d6215d35a9bcd6621f559c86d2169459268296e40c3b04f12cc34e88c6d79f7f603d0257b3e8d2e0c80ce7e81d79139920d0fad21f896ef177c8630e4b5324b50ce0960a17e196e91c0bcc47515c3cdb3536f2d4c36bc537df1ab026ffe72d424fe22c97059171d97a443c563723534671f5b3fbd518a99ab745ef122dd3adde73161ea7d676626ec15fc6ceb5b96052ab13e30890cb86e39563f463618a4bda5e387806821626e0ab4045a57553c8353acc4727b0eadcb17b71eeb1b9637d605d770a89690ca9fec33a813e29fab7920cb840fb18b97fbfe1e46a103eddfe4e3fcd40c274cf31e763794e431a0fbc090f94f951036813f07f1133e41d4ba339974df8906bf0a707cec9ed9e7b2c1ef6a9efb8151b183c647c885a485f404435fb6586824df0077676a3eeef1c41d6a7fd4afcdf81211225615f30f0898bd2c8254e98c72e5f6ccd7792372f2d3711e1c2d1dd7f4e814cfb38f41341a95a22e05bec1fe4c92ccca10cf213ea6a352534be21e079639daf8c993b7f3204ddb1f7affd5f7128f4aa8ddd1558f5138ff6f2bfeff8b4e935eb8207b3a8feacddb9cf7fb1577a88bd120863231e89e78ccd5a6e9413e700a26b798e9e"}) (async) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f0000000600)={{r2}, "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"}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) 00:20:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x13) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2400) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) 00:20:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x600) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:34 executing program 3: ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) (async, rerun: 32) syz_clone3(&(0x7f0000000540)={0x22800000, &(0x7f0000000240)=0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300), {0x1}, &(0x7f0000000340)=""/171, 0xab, &(0x7f0000000400)=""/206, &(0x7f0000000500)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x9}, 0x58) (rerun: 32) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f00000005c0)={0x0, 0x0, 0xffffffffffffffff}) ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f0000000600)={{r2}, "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"}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) 00:20:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1b00) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}) 00:20:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x14) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) 00:20:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2600) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}) 00:20:34 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600}) 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700}) 00:20:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x700) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff00}) 00:20:35 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) lseek(r0, 0x5, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000480), 0x220200, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r1, 0x8004f50e, &(0x7f0000000040)) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000200), 0x4000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000980)={'wlan0\x00'}) ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000000500)={{r4}, 0x8, &(0x7f00000004c0)=[0xd7, 0x3, 0x0, 0x400, 0x3, 0x2, 0x0, 0x1000], 0x4, 0x2}) ioctl$FBIOGETCMAP(r3, 0x4604, &(0x7f0000000380)={0x9, 0x5, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0]}) write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000080)={'#! ', './file0', [{0x20, '/dev/fb0\x00'}, {0x20, '/dev/fb0\x00'}, {0x20, '}'}]}, 0x21) write$cgroup_subtree(r6, &(0x7f0000000280)=ANY=[], 0x86) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r6, 0x0) ioctl$HIDIOCGDEVINFO(r6, 0x801c4803, &(0x7f00000003c0)=""/166) r7 = signalfd4(r3, &(0x7f0000000800), 0x8, 0x80000) ioctl$DRM_IOCTL_MODE_GETPROPERTY(r7, 0xc04064aa, &(0x7f00000008c0)={&(0x7f0000000840)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000880)=[{}], 0x9545, 0x0, '\x00', 0x6, 0x1}) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x20010, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0xd1f, &(0x7f0000000740)={0x0, 0x4af4, 0x400, 0x3, 0x1}, &(0x7f0000001000/0x3000)=nil, &(0x7f0000000000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000007c0)=0x0) syz_io_uring_submit(r8, r9, &(0x7f00000006c0)=@IORING_OP_STATX={0x15, 0x20, 0x0, 0xffffffffffffff9c, &(0x7f0000000580), &(0x7f0000000700)='./file0\x00', 0x40, 0x6000}, 0x4) ioctl$FBIOGET_FSCREENINFO(r5, 0x4602, &(0x7f0000000180)) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f00000000c0)={0x40, 0x240, 0xf0, 0x258, 0x0, 0x3, 0x0, 0x2, {0x9, 0x4, 0x1}, {0x100, 0x9, 0x1}, {0x1ff, 0x3}, {0xcc, 0x5}, 0x1, 0x0, 0xffff, 0x3, 0x1, 0x9, 0x100, 0x0, 0x1, 0x7fffffff, 0x400, 0x9, 0x14, 0x1, 0x1, 0xb}) 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}) [ 1968.859845][T13817] ------------[ cut here ]------------ [ 1968.865731][T13817] kernel BUG at mm/memory.c:2163! [ 1968.871645][T13817] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 1968.877753][T13817] CPU: 1 PID: 13817 Comm: syz-executor.3 Not tainted 6.3.0-rc6-syzkaller-00030-g2c40519251d6 #0 [ 1968.888191][T13817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 1968.898269][T13817] RIP: 0010:vmf_insert_pfn_prot+0x24c/0x460 [ 1968.904346][T13817] Code: 0f 0b e8 d7 57 c2 ff 4d 89 f7 bf 20 00 00 00 41 83 e7 28 4c 89 fe e8 33 54 c2 ff 49 83 ff 20 0f 85 a5 fe ff ff e8 b4 57 c2 ff <0f> 0b 49 be ff ff ff ff ff ff 0f 00 e8 a3 57 c2 ff 4d 21 ee 4c 89 [ 1968.924411][T13817] RSP: 0018:ffffc9000b2978e0 EFLAGS: 00010216 [ 1968.930496][T13817] RAX: 00000000000011b2 RBX: 1ffff92001652f1e RCX: ffffc90003d01000 [ 1968.938474][T13817] RDX: 0000000000040000 RSI: ffffffff81c083ac RDI: 0000000000000007 [ 1968.946458][T13817] RBP: ffff88807e3938c0 R08: 0000000000000007 R09: 0000000000000020 [ 1968.954431][T13817] R10: 0000000000000020 R11: 0000000000000044 R12: 0000000020000000 [ 1968.962453][T13817] R13: 000000000001df6c R14: 000000000c040471 R15: 0000000000000020 [ 1968.970446][T13817] FS: 00007fbcd650a700(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 1968.979408][T13817] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1968.986006][T13817] CR2: 0000000020000000 CR3: 000000001dd6e000 CR4: 00000000003526e0 [ 1968.994078][T13817] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1969.002067][T13817] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1969.010048][T13817] Call Trace: [ 1969.013355][T13817] [ 1969.016317][T13817] ? __lock_acquire+0xbc5/0x5d40 [ 1969.021291][T13817] ? insert_pfn+0x680/0x680 [ 1969.025823][T13817] drm_gem_shmem_fault+0x1e1/0x290 [ 1969.031037][T13817] __do_fault+0x107/0x600 [ 1969.035487][T13817] __handle_mm_fault+0x24f3/0x3e60 [ 1969.040643][T13817] ? vm_iomap_memory+0x190/0x190 [ 1969.045611][T13817] handle_mm_fault+0x2ba/0x9c0 [ 1969.050399][T13817] do_user_addr_fault+0x475/0x1230 [ 1969.055536][T13817] ? rcu_is_watching+0x12/0xb0 [ 1969.060329][T13817] exc_page_fault+0x98/0x170 [ 1969.064936][T13817] asm_exc_page_fault+0x26/0x30 [ 1969.069811][T13817] RIP: 0010:strncpy_from_user+0x1c1/0x3c0 [ 1969.075551][T13817] Code: ed 08 4d 89 74 1d 00 bf 07 00 00 00 48 83 c3 08 48 89 ee e8 61 36 44 fd 48 83 fd 07 0f 86 c0 01 00 00 e8 e2 39 44 fd 45 31 ff <49> 8b 04 1c 31 ff 44 89 fe 49 89 c6 e8 1e 36 44 fd 45 85 ff 0f 84 [ 1969.095169][T13817] RSP: 0018:ffffc9000b297d08 EFLAGS: 00050246 [ 1969.101248][T13817] RAX: 000000000000006c RBX: 0000000000000000 RCX: ffffc90003d01000 [ 1969.109317][T13817] RDX: 0000000000040000 RSI: ffffffff843ea17e RDI: 0000000000000007 [ 1969.117299][T13817] RBP: 0000000000000fe0 R08: 0000000000000007 R09: 0000000000000007 [ 1969.125284][T13817] R10: 0000000000000fe0 R11: 0000000000000000 R12: 0000000020000000 [ 1969.133282][T13817] R13: ffff88802c924420 R14: ffff88802c924420 R15: 0000000000000000 [ 1969.141280][T13817] ? strncpy_from_user+0x1be/0x3c0 [ 1969.146428][T13817] ? strncpy_from_user+0x1be/0x3c0 [ 1969.151560][T13817] getname_flags.part.0+0x95/0x4f0 [ 1969.156708][T13817] getname+0x92/0xd0 [ 1969.160644][T13817] do_sys_openat2+0xf5/0x4c0 [ 1969.165312][T13817] ? build_open_flags+0x6f0/0x6f0 [ 1969.170365][T13817] ? xfd_validate_state+0x5d/0x180 [ 1969.175497][T13817] __x64_sys_openat+0x143/0x1f0 [ 1969.180382][T13817] ? __ia32_sys_open+0x1c0/0x1c0 [ 1969.185348][T13817] ? syscall_enter_from_user_mode+0x26/0x80 [ 1969.191262][T13817] do_syscall_64+0x39/0xb0 [ 1969.195728][T13817] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 1969.201642][T13817] RIP: 0033:0x7fbcd588c169 [ 1969.206066][T13817] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1969.225712][T13817] RSP: 002b:00007fbcd650a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1969.234134][T13817] RAX: ffffffffffffffda RBX: 00007fbcd59abf80 RCX: 00007fbcd588c169 [ 1969.242133][T13817] RDX: 0000000000002000 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1969.250110][T13817] RBP: 00007fbcd58e7ca1 R08: 0000000000000000 R09: 0000000000000000 [ 1969.258131][T13817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1969.266104][T13817] R13: 00007fbcd5acfb1f R14: 00007fbcd650a300 R15: 0000000000022000 [ 1969.274091][T13817] [ 1969.277138][T13817] Modules linked in: [ 1969.284026][T13817] ---[ end trace 0000000000000000 ]--- [ 1969.302263][T13817] RIP: 0010:vmf_insert_pfn_prot+0x24c/0x460 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) [ 1969.308622][T13817] Code: 0f 0b e8 d7 57 c2 ff 4d 89 f7 bf 20 00 00 00 41 83 e7 28 4c 89 fe e8 33 54 c2 ff 49 83 ff 20 0f 85 a5 fe ff ff e8 b4 57 c2 ff <0f> 0b 49 be ff ff ff ff ff ff 0f 00 e8 a3 57 c2 ff 4d 21 ee 4c 89 [ 1969.339052][T13817] RSP: 0018:ffffc9000b2978e0 EFLAGS: 00010216 [ 1969.350632][T13817] RAX: 00000000000011b2 RBX: 1ffff92001652f1e RCX: ffffc90003d01000 00:20:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x1c00) 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}) 00:20:35 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f01"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x15) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="2000005805bd92000000006fc41d001435203a2b0000008550c15065d38a382a4a22c4ef9980708fef247bc60ec0ee7f75511a00dcef24d1b908d5", @ANYRES32, @ANYRES32, @ANYRESOCT, @ANYRESHEX, @ANYRES16, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB="4fab9553e5f1059ab939d98016c9ce3ac08f2b0d92f94dba06ed2f665ecc68b69b8d7750610201d9751fa4e825662732f3a8c5bb3c2a7bedfc8388942a7f84f5434729e98830850e4837672e0997c21445bb63447f73451530bcb43cde8f6c3c564ba1157d944311652a7a2a0f2845e931e945ad06149c51b866526ed983323e3d6a5a8c4356ac469305f76e9df5bcf50ce30795c6892a26c1ca6cbfb96759825995d069975dd7b0d218695c13259783b9a876b1cba18f8bfcab26683a564a085d22edb936a6e8483b45100488e1295cc4f734970fb17ac5542044f59fd95b709c957c0d598a28f7c80cdf3c213c5522b263dd1ca032"], 0x40}}], 0x1, 0x0) [ 1969.368332][T13817] RDX: 0000000000040000 RSI: ffffffff81c083ac RDI: 0000000000000007 [ 1969.392129][T13817] RBP: ffff88807e3938c0 R08: 0000000000000007 R09: 0000000000000020 [ 1969.409291][T13817] R10: 0000000000000020 R11: 0000000000000044 R12: 0000000020000000 00:20:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x2800) 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}) 00:20:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7feb1b640710ef72954a0917000000007e0c541801247c81a26af0d00d0f"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000000)=0x9e) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000bc0)={0x0, 0x11c000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x900) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000}) [ 1969.422765][T13817] R13: 000000000001df6c R14: 000000000c040471 R15: 0000000000000020 [ 1969.435054][T13817] FS: 00007fbcd650a700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 1969.453155][T13817] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 00:20:35 executing program 5: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000}) [ 1969.471409][T13817] CR2: 00007f8d0a7a3e0c CR3: 000000001dd6e000 CR4: 00000000003526f0 [ 1969.537340][T13817] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1969.545581][T13817] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1969.553882][T13817] Kernel panic - not syncing: Fatal exception [ 1969.560130][T13817] Kernel Offset: disabled [ 1969.564453][T13817] Rebooting in 86400 seconds..